Merge pull request #119 from matusmarhefka/install-image-name

jan-cerny · web-flow · commit 74cdc863eb0c · 2017-11-03T13:10:20.000+01:00
Container image install now also sets image name into /etc/atomic.d/openscap
diff --git a/container/install.sh b/container/install.sh
@@ -3,12 +3,14 @@
 ETC='/etc/oscapd'
 ETC_FILE='config.ini'
 HOST='/host'
+SELF=$1
 
 echo ""
 echo "Installing the configuration file 'openscap' into /etc/atomic.d/.  You can now use this scanner with atomic scan with the --scanner openscap command-line option.  You can also set 'openscap' as the default scanner in /etc/atomic.conf.  To list the scanners you have configured for your system, use 'atomic scan --list'."
 
 echo ""
 cp /root/openscap /host/etc/atomic.d/
+sed -i "s|\$IMAGE_NAME|${SELF}|" /host/etc/atomic.d/openscap
 
 SCRIPTS="/etc/atomic.d/scripts/"
 echo ""
diff --git a/container/openscap b/container/openscap
@@ -1,6 +1,6 @@
 type: scanner
 scanner_name: openscap
-image_name: openscap
+image_name: $IMAGE_NAME
 default_scan: cve
 custom_args: ['-v', '/etc/oscapd:/etc/oscapd:ro']
 remediation_script: '/etc/atomic.d/scripts/remediate.py'
diff --git a/generate-dockerfile.py b/generate-dockerfile.py
@@ -12,7 +12,7 @@
     ("io.k8s.display-name", "OpenSCAP"),
     ("io.k8s.description", "OpenSCAP is an auditing tool that utilizes the Extensible Configuration Checklist Description Format (XCCDF). XCCDF is a standard way of expressing checklist content and defines security checklists."),
     ("io.openshift.tags", "security openscap scan"),
-    ("install", "docker run --rm --privileged -v /:/host/ IMAGE sh /root/install.sh"),
+    ("install", "docker run --rm --privileged -v /:/host/ IMAGE sh /root/install.sh IMAGE"),
     ("run", "docker run -it --rm -v /:/host/ IMAGE sh /root/run.sh")
 ]
 packages = [

Original file line number	Diff line number	Diff line change
`@@ -12,7 +12,7 @@`
`12`	`12`	`("io.k8s.display-name", "OpenSCAP"),`
`13`	`13`	`("io.k8s.description", "OpenSCAP is an auditing tool that utilizes the Extensible Configuration Checklist Description Format (XCCDF). XCCDF is a standard way of expressing checklist content and defines security checklists."),`
`14`	`14`	`("io.openshift.tags", "security openscap scan"),`
`15`		`- ("install", "docker run --rm --privileged -v /:/host/ IMAGE sh /root/install.sh"),`
	`15`	`+ ("install", "docker run --rm --privileged -v /:/host/ IMAGE sh /root/install.sh IMAGE"),`
`16`	`16`	`("run", "docker run -it --rm -v /:/host/ IMAGE sh /root/run.sh")`
`17`	`17`	`]`
`18`	`18`	`packages = [`