Guest24897
/
DockerCLI
mirror of https://github.com/docker/cli.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
DockerCLI/dockerfiles/Dockerfile.e2e

46 lines
1.5 KiB
Docker
Raw Normal View History

Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190 From the mailing list: We have just released Go versions 1.19.1 and 1.18.6, minor point releases. These minor releases include 2 security fixes following the security policy: - net/http: handle server errors after sending GOAWAY A closing HTTP/2 server connection could hang forever waiting for a clean shutdown that was preempted by a subsequent fatal error. This failure mode could be exploited to cause a denial of service. Thanks to Bahruz Jabiyev, Tommaso Innocenti, Anthony Gavazzi, Steven Sprecher, and Kaan Onarlioglu for reporting this. This is CVE-2022-27664 and Go issue https://go.dev/issue/54658. - net/url: JoinPath does not strip relative path components in all circumstances JoinPath and URL.JoinPath would not remove `../` path components appended to a relative path. For example, `JoinPath("https://go.dev", "../go")` returned the URL `https://go.dev/../go`, despite the JoinPath documentation stating that `../` path elements are cleaned from the result. Thanks to q0jt for reporting this issue. This is CVE-2022-32190 and Go issue https://go.dev/issue/54385. Release notes: go1.18.6 (released 2022-09-06) includes security fixes to the net/http package, as well as bug fixes to the compiler, the go command, the pprof command, the runtime, and the crypto/tls, encoding/xml, and net packages. See the Go 1.18.6 milestone on the issue tracker for details; https://github.com/golang/go/issues?q=milestone%3AGo1.18.6+label%3ACherryPickApproved Signed-off-by: Sebastiaan van Stijn <github@gone.nl> (cherry picked from commit 1061f744969a648a4dccd91d0a422f9ef18b7465) Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2022-09-06 16:11:15 -04:00
ARG GO_VERSION=1.18.6
Add engine commands built on containerd This new collection of commands supports initializing a local engine using containerd, updating that engine, and activating the EE product Signed-off-by: Daniel Hiltgen <daniel.hiltgen@docker.com>
2018-03-19 18:56:51 -04:00
Make e2e test image - Build image that contains everything needed to run e2e tests - Add ability to run e2e tests against an endpoint Signed-off-by: Christopher Crone <christopher.crone@docker.com>
2018-05-17 07:11:59 -04:00
# Use Debian based image as docker-compose requires glibc.
Update Golang 1.13.8 Also pinning the e2e image to the "buster" variant, which is what's currently used, but making it explicit. Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2020-02-26 05:16:35 -05:00
FROM golang:${GO_VERSION}-buster
Make e2e test image - Build image that contains everything needed to run e2e tests - Add ability to run e2e tests against an endpoint Signed-off-by: Christopher Crone <christopher.crone@docker.com>
2018-05-17 07:11:59 -04:00
RUN apt-get update && apt-get install -y \
build-essential \
curl \
openssl \
connhelper: add e2e Signed-off-by: Akihiro Suda <suda.akihiro@lab.ntt.co.jp>
2018-09-06 01:38:01 -04:00
openssh-client \
Make e2e test image - Build image that contains everything needed to run e2e tests - Add ability to run e2e tests against an endpoint Signed-off-by: Christopher Crone <christopher.crone@docker.com>
2018-05-17 07:11:59 -04:00
&& rm -rf /var/lib/apt/lists/*
e2e: update docker-compose to 1.29.2 Newer versions have COMPOSE_DOCKER_CLI_BUILD enabled by default, so removing that env-var. Signed-off-by: Sebastiaan van Stijn <github@gone.nl> (cherry picked from commit 524e3b215dc92119194b5ebe47a95720ca8f78c7) Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2021-06-09 08:07:58 -04:00
ARG COMPOSE_VERSION=1.29.2
Dockerfile.e2e: don't show progress, force TLS, and follow redirects Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2020-02-13 08:49:21 -05:00
RUN curl -fsSL https://github.com/docker/compose/releases/download/${COMPOSE_VERSION}/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-compose \
Make e2e test image - Build image that contains everything needed to run e2e tests - Add ability to run e2e tests against an endpoint Signed-off-by: Christopher Crone <christopher.crone@docker.com>
2018-05-17 07:11:59 -04:00
&& chmod +x /usr/local/bin/docker-compose
ARG NOTARY_VERSION=v0.6.1
Dockerfile.e2e: don't show progress, force TLS, and follow redirects Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2020-02-13 08:49:21 -05:00
RUN curl -fsSL https://github.com/theupdateframework/notary/releases/download/${NOTARY_VERSION}/notary-Linux-amd64 -o /usr/local/bin/notary \
Make e2e test image - Build image that contains everything needed to run e2e tests - Add ability to run e2e tests against an endpoint Signed-off-by: Christopher Crone <christopher.crone@docker.com>
2018-05-17 07:11:59 -04:00
&& chmod +x /usr/local/bin/notary
bump gotestsum v0.4.0 full diff: https://github.com/gotestyourself/gotestsum/compare/v0.3.5...v0.4.0 includes: - gotestyourself/gotestsum#59 Report if a package was cached in short formats - gotestyourself/gotestsum#63 always colorize output unless specifically requested not to - gotestyourself/gotestsum#61 Improve short-verbose output for tests in CWD - gotestyourself/gotestsum#70 https://github.com/gotestyourself/gotestsum/pull/70 - gotestyourself/gotestsum#73 Add short-with-failures format Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2020-01-27 11:48:01 -05:00
ARG GOTESTSUM_VERSION=0.4.0
Dockerfile.e2e: don't show progress, force TLS, and follow redirects Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2020-02-13 08:49:21 -05:00
RUN curl -fsSL https://github.com/gotestyourself/gotestsum/releases/download/v${GOTESTSUM_VERSION}/gotestsum_${GOTESTSUM_VERSION}_linux_amd64.tar.gz -o gotestsum.tar.gz \
Use gotest.tools/gotestsum binary to run unit and e2e tests and simplify the output. Signed-off-by: Silvin Lubecki <silvin.lubecki@docker.com>
2019-01-24 11:53:42 -05:00
&& tar -xf gotestsum.tar.gz gotestsum \
&& mv gotestsum /usr/local/bin/gotestsum \
&& rm gotestsum.tar.gz
Make e2e test image - Build image that contains everything needed to run e2e tests - Add ability to run e2e tests against an endpoint Signed-off-by: Christopher Crone <christopher.crone@docker.com>
2018-05-17 07:11:59 -04:00
ENV CGO_ENABLED=0 \
DISABLE_WARN_OUTSIDE_CONTAINER=1 \
PATH=/go/src/github.com/docker/cli/build:$PATH
WORKDIR /go/src/github.com/docker/cli
# Trust notary CA cert.
COPY e2e/testdata/notary/root-ca.cert /usr/share/ca-certificates/notary.cert
RUN echo 'notary.cert' >> /etc/ca-certificates.conf && update-ca-certificates
COPY . .
ARG VERSION
ARG GITCOMMIT
Dockerfile.e2e: update compose v1.25.1, enable buildkit Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2020-01-15 12:41:44 -05:00
ENV VERSION=${VERSION}
ENV GITCOMMIT=${GITCOMMIT}
ENV DOCKER_BUILDKIT=1
Make e2e test image - Build image that contains everything needed to run e2e tests - Add ability to run e2e tests against an endpoint Signed-off-by: Christopher Crone <christopher.crone@docker.com>
2018-05-17 07:11:59 -04:00
RUN ./scripts/build/binary
Add some simple e2e tests for executing CLI plugins To help with this add a bad plugin which produces invalid metadata and arrange for it to be built in the e2e container. Signed-off-by: Ian Campbell <ijc@docker.com>
2018-12-11 09:15:04 -05:00
RUN ./scripts/build/plugins e2e/cli-plugins/plugins/*
Make e2e test image - Build image that contains everything needed to run e2e tests - Add ability to run e2e tests against an endpoint Signed-off-by: Christopher Crone <christopher.crone@docker.com>
2018-05-17 07:11:59 -04:00
CMD ./scripts/test/e2e/entry