Skip to content

[CVE-2024-45321] generate: hotpatch bin/cpanm to use HTTPS endpoints #180

[CVE-2024-45321] generate: hotpatch bin/cpanm to use HTTPS endpoints

[CVE-2024-45321] generate: hotpatch bin/cpanm to use HTTPS endpoints #180

Workflow file for this run

name: Build and Test
on:
push:
branches:
- '**'
tags-ignore:
- '*'
pull_request:
defaults:
run:
shell: 'bash -Eeuo pipefail -x {0}'
jobs:
generate-matrix:
name: Generate Matrix
runs-on: ubuntu-latest
outputs:
matrix: ${{ steps.generate.outputs.matrix }}
steps:
- uses: actions/checkout@master
- id: generate
name: Enumerate Dockerfiles
run: |
matrix="$(dirname */Dockerfile | sort -rn | jq -csR 'rtrimstr("\n") | split("\n") | { directory: . }')"
echo "matrix=$matrix" >> $GITHUB_OUTPUT
build-image:
needs: generate-matrix
runs-on: ubuntu-latest
strategy:
matrix: ${{ fromJson(needs.generate-matrix.outputs.matrix) }}
name: ${{ matrix.directory }}
steps:
- uses: actions/checkout@master
- name: Clone docker-library/official-images (for testing)
run: |
git clone --depth 1 --single-branch https://github.com/docker-library/official-images.git
- name: Build image
run: |
docker version
dir='${{ matrix.directory }}'
img="perl:${dir//,/-}"
docker build -t "$img" "$dir"
- name: Inspect image creation and tag time
run: |
dir='${{ matrix.directory }}'
img="perl:${dir//,/-}"
docker image inspect --format '{{.Created}}' "$img"
docker image inspect --format '{{.Metadata.LastTagTime}}' "$img"
- name: Run tests from docker-library/official-images
run: |
dir='${{ matrix.directory }}'
img="perl:${dir//,/-}"
./official-images/test/run.sh "$img"
- name: Run HTTPS access test
run: |
dir='${{ matrix.directory }}'
img="perl:${dir//,/-}"
docker run "$img" perl -MHTTP::Tiny -E 'if (HTTP::Tiny->new->get("https://github.com")->{status} == 200) { exit 0 } exit 1'
- name: Run cpanm install test
run: |
dir='${{ matrix.directory }}'
img="perl:${dir//,/-}"
if [[ "$dir" != *"slim"* ]]; then
docker run "$img" cpanm -v Try::Tiny@0.30
docker run "$img" cpanm -v Net::DNS@1.45_02
fi
docker run "$img" cpanm -v Mojolicious
- name: Run cpm install test
run: |
dir='${{ matrix.directory }}'
img="perl:${dir//,/-}"
if [[ "$dir" != *"slim"* ]]; then
docker run "$img" cpm install -v Try::Tiny@0.30
docker run "$img" cpm install -v Net::DNS@1.45_02
fi
docker run "$img" cpm install -v Mojolicious
- name: COPY all to default WORKDIR
run: |
dir='${{ matrix.directory }}'
img="perl:${dir//,/-}"
mkdir -p test/lib
cat <<EOF >Dockerfile
FROM $img
COPY . .
EOF
docker build -f Dockerfile test