starlingx/root
Code Issues Proposed changes
Files
add2c84a28ed7b371c0c20ab1be1a55e0ca7410f
root/build-tools/build-docker-images
History
Michel Thebeau 9e9e65d18e update stx-vault-manager image tag 
There is no code change per-se, the image is based on latest version of
debian:stable-slim.  This is picking up CVE fixes, in particular:
  CVE-2022-32221   curl

Test Plan:
PASS - apply vault application
PASS - AIO-SX
PASS - delete vault pod
PASS - delete vault-manager pod

Story: 2010710
Task: 47906

Change-Id: I9bfdf88ed884712ee08d45416c1d2f3def83c20c
Signed-off-by: Michel Thebeau <michel.thebeau@windriver.com>
2023-04-27 16:07:40 -04:00
..
loci/patches
docker-images: don't embed wheel tar in images
2023-02-10 15:23:40 -05:00
stx-centos
Revert "Add priority to repositories in base-image"
2022-01-13 10:38:00 -05:00
stx-debian
build-tools: fix invalid apt cache removal
2022-07-25 17:30:25 +00:00
tag-management
update stx-vault-manager image tag
2023-04-27 16:07:40 -04:00
base-image-build-centos-dev.cfg
debian: base docker image: add support for debian
2022-03-14 12:58:31 -04:00
base-image-build-centos-stable.cfg
debian: base docker image: add support for debian
2022-03-14 12:58:31 -04:00
build-stx-base.sh
build-tools: apt repo priority based on "Origin"
2022-07-05 20:39:40 -04:00
build-stx-images.sh
docker-images: update default spice-html5 git URL
2023-04-25 15:50:57 +00:00
FIXME
docker-images: add Loci patches
2022-09-14 10:56:06 -04:00
internal-update-stx-image.sh
Tool for incremental image updates
2019-06-03 20:36:16 +00:00
README
Update wheels and build tool
2019-03-24 21:03:21 -04:00
update-stx-image.sh
Fix incorrect entrypoint for updated image
2020-12-07 13:09:10 +02:00

README 

## Example commands for building StarlingX images

PRIVATE_REGISTRY_USERID=myuser
PRIVATE_REGISTRY=xxx.xxx.xxx.xxx:9001
VERSION=2018.11.13
OS=centos
OS_VERSION=7.5.1804
BUILD_STREAM=stable
HOST_PORT=8088

## Step 1: Build stx-centos
time $MY_REPO/build-tools/build-docker-images/build-stx-base.sh \
    --os ${OS} \
    --os-version ${OS_VERSION} \
    --version ${VERSION} \
    --user ${PRIVATE_REGISTRY_USERID} \
    --registry ${PRIVATE_REGISTRY} \
    --push \
    --repo stx-local-build,http://${HOSTNAME}:${HOST_PORT}/${MY_WORKSPACE}/std/rpmbuild/RPMS \
    --repo stx-mirror-distro,http://${HOSTNAME}:${HOST_PORT}/${MY_REPO}/cgcs-root/cgcs-${OS}-repo/Binary \
    --clean


## Step 2: Build wheels (output as tarball)
time $MY_REPO/build-tools/build-wheels/build-wheel-tarball.sh \
    --os ${OS} \
    --os-version ${OS_VERSION} \
    --stream ${BUILD_STREAM}

## Step 3: Build images
time $MY_REPO/build-tools/build-docker-images/build-stx-images.sh \
    --os ${OS} \
    --version ${VERSION} \
    --stream ${BUILD_STREAM} \
    --base ${PRIVATE_REGISTRY}/${PRIVATE_REGISTRY_USERID}/stx-${OS}:${VERSION} \
    --wheels http://${HOSTNAME}:${HOST_PORT}/${MY_WORKSPACE}/std/build-wheels-${OS}-${BUILD_STREAM}/stx-${OS}-${BUILD_STREAM}-wheels.tar \
    --user ${PRIVATE_REGISTRY_USERID} \
    --registry ${PRIVATE_REGISTRY} \
    --push --latest \
    --clean


## Note: Verify that lighttpd is not bound to "localhost"
vi /etc/lighttpd/lighttpd.conf
# server.bind = "localhost"
systemctl restart lighttpd

## Note: You may need to add an iptables rule to allow the docker
## containers to access the http server on your host. For example:
iptables -I INPUT 6 -i docker0 -p tcp --dport ${HOST_PORT} -m state --state NEW,ESTABLISHED -j ACCEPT