From ac4613aad41df7206491edd437e40de78a10e762 Mon Sep 17 00:00:00 2001 From: Sebastiaan van Stijn Date: Wed, 5 Feb 2020 22:43:01 +0100 Subject: [PATCH] static-linux: verify that binaries are static Signed-off-by: Sebastiaan van Stijn --- static/Makefile | 3 +++ 1 file changed, 3 insertions(+) diff --git a/static/Makefile b/static/Makefile index d86e89e7a2..c8564a057f 100644 --- a/static/Makefile +++ b/static/Makefile @@ -4,6 +4,7 @@ CLI_DIR=$(realpath $(CURDIR)/../src/github.com/docker/cli) ENGINE_DIR=$(realpath $(CURDIR)/../src/github.com/docker/docker) GEN_STATIC_VER=$(shell ./gen-static-ver $(CLI_DIR) $(VERSION)) HASH_CMD=docker run -v $(CURDIR):/sum -w /sum debian:jessie bash hash_files +LDD_RUN=ldd >/dev/null 2>/dev/null DIR_TO_HASH:=build/linux DOCKER_CLI_GOLANG_IMG=golang:$(GO_VERSION) @@ -44,6 +45,7 @@ static-linux: static-cli static-engine ## create tgz with linux x86_64 client an mkdir -p build/linux/docker cp $(CLI_DIR)/build/docker build/linux/docker/ for f in dockerd containerd ctr containerd-shim containerd-shim-runc-v2 docker-init docker-proxy runc; do \ + if $(LDD_RUN) $(ENGINE_DIR)/bundles/binary-daemon/$$f; then echo "$$f is not static, exiting..."; exit 1; fi; \ cp -L $(ENGINE_DIR)/bundles/binary-daemon/$$f build/linux/docker/$$f; \ done tar -C build/linux -c -z -f build/linux/docker-$(GEN_STATIC_VER).tgz docker @@ -52,6 +54,7 @@ static-linux: static-cli static-engine ## create tgz with linux x86_64 client an mkdir -p build/linux/docker-rootless-extras for f in rootlesskit rootlesskit-docker-proxy dockerd-rootless.sh dockerd-rootless-setuptool.sh vpnkit; do \ if [ -f $(ENGINE_DIR)/bundles/binary-daemon/$$f ]; then \ + if $(LDD_RUN) $(ENGINE_DIR)/bundles/binary-daemon/$$f; then echo "$$f is not static, exiting..."; exit 1; fi; \ cp -L $(ENGINE_DIR)/bundles/binary-daemon/$$f build/linux/docker-rootless-extras/$$f; \ fi \ done