We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
If the content of layer.tar was sorted by filename, the compressed images created by the docker plugin would be reproducible.
This would permit distributions to build container images and use the sha256sum of the archive to determine if the docker-hub image is out of date.
sha256sum
For heavily git based workflows, a git commit -a would report no changes if the component files are actually the same.
git commit -a
Today, differences in the file order returned by readdir can result in differing archives with identical content.
readdir
Example workflow: https://fedoramagazine.org/building-fedora-rawhide-images-imagefactory/
The text was updated successfully, but these errors were encountered:
Sort docker archive to provide reproducibility
aced500
Resolves redhat-imaging#407
No branches or pull requests
If the content of layer.tar was sorted by filename, the compressed images created by the docker plugin would be reproducible.
This would permit distributions to build container images and use the
sha256sumof the archive to determine if the docker-hub image is out of date.For heavily git based workflows, a
git commit -awould report no changes if the component files are actually the same.Today, differences in the file order returned by
readdircan result in differing archives with identical content.Example workflow: https://fedoramagazine.org/building-fedora-rawhide-images-imagefactory/
The text was updated successfully, but these errors were encountered: