From 054b565bcd3f6f6a385f3a2015a8250a51c92b9d Mon Sep 17 00:00:00 2001 From: Christophe LARUE Date: Mon, 27 Jun 2022 04:51:11 +0200 Subject: [PATCH] Adding support for cosign for all images --- .gitlab/ci/step-build-application.yaml | 81 ++++++-- .gitlab/ci/step-build-basic.yaml | 105 +++++++++++ .gitlab/ci/step-build-runners.yaml | 175 ++++++++++++++++++ .gitlab/ci/step-build-services.yaml | 247 +++++++++++++++++++++++++ .gitlab/ci/step-build-vdi.yaml | 68 +++++++ 5 files changed, 665 insertions(+), 11 deletions(-) diff --git a/.gitlab/ci/step-build-application.yaml b/.gitlab/ci/step-build-application.yaml index 2c3c8742..1e649572 100644 --- a/.gitlab/ci/step-build-application.yaml +++ b/.gitlab/ci/step-build-application.yaml @@ -14,6 +14,19 @@ build-application-phpmyadmin-latest: SXDI_ENGINE: docker only: - master +build-application-phpmyadmin-latest-sign: + stage: "build Application" + extends: .build-image-sign-latest + needs: + - "build-application-phpmyadmin-latest" + allow_failure: true + variables: + SXDI_PATH: "Applications/phpmyadmin" + SXDI_DOCKERNAME: "app-phpmyadmin" + SXDI_QUAYNAME: "phpmyadmin" + SXDI_ENGINE: docker + only: + - master build-application-phpmyadmin: stage: "build Application" extends: .build-image @@ -35,17 +48,29 @@ build-application-phpmyadmin: - fc35 - fc34 - fc33 - - fc32 - - fc31 - - fc30 - - fc29 - - fc28 - - fc27 - - fc26 - - fc25 - - fc24 - - fc23 - - fc22 +build-application-phpmyadmin-sign: + stage: "build Application" + extends: .build-image-sign + needs: + - "build-application-phpmyadmin" + allow_failure: true + variables: + SXDI_PATH: "Applications/phpmyadmin" + SXDI_DOCKERNAME: "app-phpmyadmin" + SXDI_QUAYNAME: "phpmyadmin" + SXDI_ENGINE: docker + only: + - alma + - rocky + - centos8 + - centos7 + - centos6 + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the ocp-reliability application image build-application-ocp-reliability-latest: @@ -59,6 +84,19 @@ build-application-ocp-reliability-latest: SXDI_ENGINE: docker only: - master +build-application-ocp-reliability-latest-sign: + stage: "build Application" + extends: .build-image-sign-latest + needs: + - "build-application-ocp-reliability-latest" + allow_failure: true + variables: + SXDI_PATH: "Applications/ocp-reliability" + SXDI_DOCKERNAME: "app-ocp-reliability" + SXDI_QUAYNAME: "ocp-reliability" + SXDI_ENGINE: docker + only: + - master build-application-ocp-reliability: stage: "build Application" extends: .build-image @@ -78,3 +116,24 @@ build-application-ocp-reliability: - ubi8 - fc36 - fc35 +build-application-ocp-reliability-sign: + stage: "build Application" + extends: .build-image-sign + needs: + - "build-application-ocp-reliability" + allow_failure: true + variables: + SXDI_PATH: "Applications/ocp-reliability" + SXDI_DOCKERNAME: "app-ocp-reliability" + SXDI_QUAYNAME: "ocp-reliability" + SXDI_ENGINE: docker + only: + - alma + - rocky + - centos8 + - centos7 + - centos6 + - alpine + - ubi8 + - fc36 + - fc35 diff --git a/.gitlab/ci/step-build-basic.yaml b/.gitlab/ci/step-build-basic.yaml index 4f00b0cf..0a940a71 100644 --- a/.gitlab/ci/step-build-basic.yaml +++ b/.gitlab/ci/step-build-basic.yaml @@ -13,6 +13,18 @@ build-apache-latest: SXDI_ENGINE: docker only: - master +build-apache-latest-sign: + stage: "build basic" + extends: .build-image-sign-latest + needs: + - "build-apache-latest" + variables: + SXDI_PATH: "Services/apache" + SXDI_DOCKERNAME: "sv-apache" + SXDI_QUAYNAME: "apache" + SXDI_ENGINE: docker + only: + - master build-apache: stage: "build basic" extends: .build-image @@ -46,6 +58,28 @@ build-apache: - fc22 - fc21 - fc20 +build-apache-sign: + stage: "build basic" + extends: .build-image-sign + needs: + - "build-apache" + variables: + SXDI_PATH: "Services/apache" + SXDI_DOCKERNAME: "sv-apache" + SXDI_QUAYNAME: "apache" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - centos6 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the nodejs image build-nodejs-latest: @@ -59,6 +93,19 @@ build-nodejs-latest: SXDI_ENGINE: docker only: - master +build-nodejs-latest-sign: + stage: "build basic" + extends: .build-image-sign-latest + needs: + - "build-nodejs-latest" + allow_failure: true + variables: + SXDI_PATH: "Services/nodejs" + SXDI_DOCKERNAME: "sv-nodejs" + SXDI_QUAYNAME: "nodejs" + SXDI_ENGINE: docker + only: + - master build-nodejs: stage: "build basic" extends: .build-image @@ -93,6 +140,29 @@ build-nodejs: - fc22 - fc21 - fc20 +build-nodejs-sign: + stage: "build basic" + extends: .build-image-sign + needs: + - "build-nodejs" + allow_failure: true + variables: + SXDI_PATH: "Services/nodejs" + SXDI_DOCKERNAME: "sv-nodejs" + SXDI_QUAYNAME: "nodejs" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - centos6 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the bash gitlab-runner image build-runner-bash-latest: @@ -106,6 +176,19 @@ build-runner-bash-latest: SXDI_ENGINE: docker only: - master +build-runner-bash-latest-sign: + stage: "build basic" + extends: .build-image-sign-latest + needs: + - "build-runner-bash-latest" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/bash" + SXDI_DOCKERNAME: "runner-bash" + SXDI_QUAYNAME: "runner-bash" + SXDI_ENGINE: docker + only: + - master build-runner-bash: stage: "build basic" extends: .build-image @@ -133,3 +216,25 @@ build-runner-bash: - fc28 - fc27 - fc26 +build-runner-bash-sign: + stage: "build basic" + extends: .build-image-sign + needs: + - "build-runner-bash" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/bash" + SXDI_DOCKERNAME: "runner-bash" + SXDI_QUAYNAME: "runner-bash" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 diff --git a/.gitlab/ci/step-build-runners.yaml b/.gitlab/ci/step-build-runners.yaml index b62b530a..f23b0787 100644 --- a/.gitlab/ci/step-build-runners.yaml +++ b/.gitlab/ci/step-build-runners.yaml @@ -14,6 +14,19 @@ build-runner-ansible-latest: SXDI_ENGINE: docker only: - master +build-runner-ansible-latest-sign: + stage: "build Runners" + extends: .build-image-sign-latest + needs: + - "build-runner-ansible-latest" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/ansible" + SXDI_DOCKERNAME: "runner-ansible" + SXDI_QUAYNAME: "runner-ansible" + SXDI_ENGINE: docker + only: + - master build-runner-ansible: stage: "build Runners" extends: .build-image @@ -41,6 +54,28 @@ build-runner-ansible: - fc28 - fc27 - fc26 +build-runner-ansible-sign: + stage: "build Runners" + extends: .build-image-sign + needs: + - "build-runner-ansible" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/ansible" + SXDI_DOCKERNAME: "runner-ansible" + SXDI_QUAYNAME: "runner-ansible" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the apache gitlab-runner image build-runner-apache-latest: @@ -54,6 +89,19 @@ build-runner-apache-latest: SXDI_ENGINE: docker only: - master +build-runner-apache-latest-sign: + stage: "build Runners" + extends: .build-image-sign-latest + needs: + - "build-runner-apache-latest" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/apache" + SXDI_DOCKERNAME: "runner-apache" + SXDI_QUAYNAME: "runner-apache" + SXDI_ENGINE: docker + only: + - master build-runner-apache: stage: "build Runners" extends: .build-image @@ -81,6 +129,28 @@ build-runner-apache: - fc28 - fc27 - fc26 +build-runner-apache-sign: + stage: "build Runners" + extends: .build-image-sign + needs: + - "build-runner-apache" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/apache" + SXDI_DOCKERNAME: "runner-apache" + SXDI_QUAYNAME: "runner-apache" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the nodejs gitlab-runner image build-runner-nodejs-latest: @@ -94,6 +164,19 @@ build-runner-nodejs-latest: SXDI_ENGINE: docker only: - master +build-runner-nodejs-latest-sign: + stage: "build Runners" + extends: .build-image-sign-latest + needs: + - "build-runner-nodejs-latest" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/nodejs" + SXDI_DOCKERNAME: "runner-nodejs" + SXDI_QUAYNAME: "runner-nodejs" + SXDI_ENGINE: docker + only: + - master build-runner-nodejs: stage: "build Runners" extends: .build-image @@ -121,6 +204,28 @@ build-runner-nodejs: - fc28 - fc27 - fc26 +build-runner-nodejs-sign: + stage: "build Runners" + extends: .build-image-sign + needs: + - "build-runner-nodejs" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/nodejs" + SXDI_DOCKERNAME: "runner-nodejs" + SXDI_QUAYNAME: "runner-nodejs" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the oc gitlab-runner image build-runner-oc-latest: @@ -134,6 +239,19 @@ build-runner-oc-latest: SXDI_ENGINE: docker only: - master +build-runner-oc-latest-sign: + stage: "build Runners" + extends: .build-image-sign-latest + needs: + - "build-runner-oc-latest" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/oc" + SXDI_DOCKERNAME: "runner-oc" + SXDI_QUAYNAME: "runner-oc" + SXDI_ENGINE: docker + only: + - master build-runner-oc: stage: "build Runners" extends: .build-image @@ -160,6 +278,28 @@ build-runner-oc: - fc29 - fc28 - fc27 +build-runner-oc-sign: + stage: "build Runners" + extends: .build-image-sign + needs: + - "build-runner-oc" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/oc" + SXDI_DOCKERNAME: "runner-oc" + SXDI_QUAYNAME: "runner-oc" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the php gitlab-runner image build-runner-php-latest: @@ -173,6 +313,19 @@ build-runner-php-latest: SXDI_ENGINE: docker only: - master +build-runner-php-latest-sign: + stage: "build Runners" + extends: .build-image-sign-latest + needs: + - "build-runner-php-latest" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/php" + SXDI_DOCKERNAME: "runner-php" + SXDI_QUAYNAME: "runner-php" + SXDI_ENGINE: docker + only: + - master build-runner-php: stage: "build Runners" extends: .build-image @@ -199,3 +352,25 @@ build-runner-php: - fc29 - fc28 - fc27 +build-runner-php-sign: + stage: "build Runners" + extends: .build-image-sign + needs: + - "build-runner-php" + allow_failure: true + variables: + SXDI_PATH: "GitlabRunner/php" + SXDI_DOCKERNAME: "runner-php" + SXDI_QUAYNAME: "runner-php" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 diff --git a/.gitlab/ci/step-build-services.yaml b/.gitlab/ci/step-build-services.yaml index 0b5d3e8c..fd855dcc 100644 --- a/.gitlab/ci/step-build-services.yaml +++ b/.gitlab/ci/step-build-services.yaml @@ -14,6 +14,19 @@ build-couchbase-latest: SXDI_ENGINE: docker only: - master +build-couchbase-latest-sign: + stage: "build Services" + extends: .build-image-sign-latest + needs: + - "build-couchbase-latest" + allow_failure: true + variables: + SXDI_PATH: "Services/couchbase" + SXDI_DOCKERNAME: "sv-couchbase" + SXDI_QUAYNAME: "couchbase" + SXDI_ENGINE: docker + only: + - master build-couchbase: stage: "build Services" extends: .build-image @@ -41,6 +54,28 @@ build-couchbase: - fc28 - fc27 - fc26 +build-couchbase-sign: + stage: "build Services" + extends: .build-image-sign + needs: + - "build-couchbase" + allow_failure: true + variables: + SXDI_PATH: "Services/couchbase" + SXDI_DOCKERNAME: "sv-couchbase" + SXDI_QUAYNAME: "couchbase" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - centos6 + - alma + - rocky + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the mariadb image build-mariadb-latest: @@ -54,6 +89,19 @@ build-mariadb-latest: SXDI_ENGINE: docker only: - master +build-mariadb-latest-sign: + stage: "build Services" + extends: .build-image-sign-latest + needs: + - "build-mariadb-latest" + allow_failure: true + variables: + SXDI_PATH: "Services/mariadb" + SXDI_DOCKERNAME: "sv-mariadb" + SXDI_QUAYNAME: "mariadb" + SXDI_ENGINE: docker + only: + - master build-mariadb: stage: "build Services" extends: .build-image @@ -86,6 +134,29 @@ build-mariadb: - fc24 - fc23 - fc22 +build-mariadb-sign: + stage: "build Services" + extends: .build-image-sign + needs: + - "build-mariadb" + allow_failure: true + variables: + SXDI_PATH: "Services/mariadb" + SXDI_DOCKERNAME: "sv-mariadb" + SXDI_QUAYNAME: "mariadb" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - centos6 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the memcache image build-memcache-latest: @@ -99,6 +170,19 @@ build-memcache-latest: SXDI_ENGINE: docker only: - master +build-memcache-latest-sign: + stage: "build Services" + extends: .build-image-sign-latest + needs: + - "build-memcache-latest" + allow_failure: true + variables: + SXDI_PATH: "Services/memcache" + SXDI_DOCKERNAME: "sv-memcache" + SXDI_QUAYNAME: "memcache" + SXDI_ENGINE: docker + only: + - master build-memcache: stage: "build Services" extends: .build-image @@ -133,6 +217,29 @@ build-memcache: - fc22 - fc21 - fc20 +build-memcache-sign: + stage: "build Services" + extends: .build-image-sign + needs: + - "build-memcache" + allow_failure: true + variables: + SXDI_PATH: "Services/memcache" + SXDI_DOCKERNAME: "sv-memcache" + SXDI_QUAYNAME: "memcache" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - centos6 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the mongo image build-mongo-latest: @@ -146,6 +253,19 @@ build-mongo-latest: SXDI_ENGINE: docker only: - master +build-mongo-latest-sign: + stage: "build Services" + extends: .build-image-sign-latest + needs: + - "build-mongo-latest" + allow_failure: true + variables: + SXDI_PATH: "Services/mongo" + SXDI_DOCKERNAME: "sv-mongo" + SXDI_QUAYNAME: "mongo" + SXDI_ENGINE: docker + only: + - master build-mongo: stage: "build Services" extends: .build-image @@ -180,6 +300,29 @@ build-mongo: - fc22 - fc21 - fc20 +build-mongo-sign: + stage: "build Services" + extends: .build-image-sign + needs: + - "build-mongo" + allow_failure: true + variables: + SXDI_PATH: "Services/mongo" + SXDI_DOCKERNAME: "sv-mongo" + SXDI_QUAYNAME: "mongo" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - centos6 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the ooconv image build-ooconv-latest: @@ -193,6 +336,19 @@ build-ooconv-latest: SXDI_ENGINE: docker only: - master +build-ooconv-latest-sign: + stage: "build Services" + extends: .build-image-sign-latest + needs: + - "build-ooconv-latest" + allow_failure: true + variables: + SXDI_PATH: "Services/ooconv" + SXDI_DOCKERNAME: "sv-ooconv" + SXDI_QUAYNAME: "ooconv" + SXDI_ENGINE: docker + only: + - master build-ooconv: stage: "build Services" extends: .build-image @@ -223,6 +379,27 @@ build-ooconv: - fc24 - fc23 - fc22 +build-ooconv-sign: + stage: "build Services" + extends: .build-image-sign + needs: + - "build-ooconv" + allow_failure: true + variables: + SXDI_PATH: "Services/ooconv" + SXDI_DOCKERNAME: "sv-ooconv" + SXDI_QUAYNAME: "ooconv" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - centos6 + - alma + - rocky + - fc36 + - fc35 + - fc34 + - fc33 # Build the php image build-php-latest: @@ -236,6 +413,19 @@ build-php-latest: SXDI_ENGINE: docker only: - master +build-php-latest-sign: + stage: "build Services" + extends: .build-image-sign-latest + needs: + - "build-php-latest" + allow_failure: true + variables: + SXDI_PATH: "Services/php" + SXDI_DOCKERNAME: "sv-php" + SXDI_QUAYNAME: "php" + SXDI_ENGINE: docker + only: + - master build-php: stage: "build Services" extends: .build-image @@ -270,6 +460,29 @@ build-php: - fc22 - fc21 - fc20 +build-php-sign: + stage: "build Services" + extends: .build-image-sign + needs: + - "build-php" + allow_failure: true + variables: + SXDI_PATH: "Services/php" + SXDI_DOCKERNAME: "sv-php" + SXDI_QUAYNAME: "php" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - centos6 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 # Build the postgres image build-postgres-latest: @@ -282,6 +495,18 @@ build-postgres-latest: SXDI_ENGINE: docker only: - master +build-postgres-latest-sign: + stage: "build Services" + extends: .build-image-sign-latest + needs: + - "build-postgres-latest" + variables: + SXDI_PATH: "Services/postgres" + SXDI_DOCKERNAME: "sv-postgres" + SXDI_QUAYNAME: "postgres" + SXDI_ENGINE: docker + only: + - master build-postgres: stage: "build Services" extends: .build-image @@ -312,3 +537,25 @@ build-postgres: - fc25 - fc24 - fc23 +build-postgres-sign: + stage: "build Services" + extends: .build-image-sign + needs: + - "build-postgres" + variables: + SXDI_PATH: "Services/postgres" + SXDI_DOCKERNAME: "sv-postgres" + SXDI_QUAYNAME: "postgres" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - centos6 + - alma + - rocky + - alpine + - ubi8 + - fc36 + - fc35 + - fc34 + - fc33 diff --git a/.gitlab/ci/step-build-vdi.yaml b/.gitlab/ci/step-build-vdi.yaml index cdfc30cd..6251e145 100644 --- a/.gitlab/ci/step-build-vdi.yaml +++ b/.gitlab/ci/step-build-vdi.yaml @@ -14,6 +14,19 @@ build-vdi-chrome-latest: SXDI_ENGINE: docker only: - master +build-vdi-chrome-latest-sign: + stage: "build VDI" + extends: .build-image-sign-latest + needs: + - "build-vdi-chrome-latest" + allow_failure: true + variables: + SXDI_PATH: "VDI/chrome" + SXDI_DOCKERNAME: "vdi-chrome" + SXDI_QUAYNAME: "chrome" + SXDI_ENGINE: docker + only: + - master build-vdi-chrome: stage: "build VDI" extends: .build-image @@ -38,6 +51,27 @@ build-vdi-chrome: - fc30 - fc29 - fc28 +build-vdi-chrome-sign: + stage: "build VDI" + extends: .build-image-sign + needs: + - "build-vdi-chrome" + allow_failure: true + variables: + SXDI_PATH: "VDI/chrome" + SXDI_DOCKERNAME: "vdi-chrome" + SXDI_QUAYNAME: "chrome" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - alma + - rocky + - alpine + - fc36 + - fc35 + - fc34 + - fc33 # Build the firefox VDI image build-vdi-firefox-latest: @@ -51,6 +85,19 @@ build-vdi-firefox-latest: SXDI_ENGINE: docker only: - master +build-vdi-firefox-latest-sign: + stage: "build VDI" + extends: .build-image-sign-latest + needs: + - "build-vdi-firefox-latest" + allow_failure: true + variables: + SXDI_PATH: "VDI/firefox" + SXDI_DOCKERNAME: "vdi-firefox" + SXDI_QUAYNAME: "firefox" + SXDI_ENGINE: docker + only: + - master build-vdi-firefox: stage: "build VDI" extends: .build-image @@ -75,3 +122,24 @@ build-vdi-firefox: - fc30 - fc29 - fc28 +build-vdi-firefox-sign: + stage: "build VDI" + extends: .build-image-sign + needs: + - "build-vdi-firefox" + allow_failure: true + variables: + SXDI_PATH: "VDI/firefox" + SXDI_DOCKERNAME: "vdi-firefox" + SXDI_QUAYNAME: "firefox" + SXDI_ENGINE: docker + only: + - centos8 + - centos7 + - alma + - rocky + - alpine + - fc36 + - fc35 + - fc34 + - fc33