about summary refs log tree commit diff
diff options
context:
space:
mode:
authorBen Challenor <ben@challenor.org>2018-03-19T04·56+0000
committerBen Challenor <ben@challenor.org>2018-03-19T04·56+0000
commita74288b9439153d17df8486230185c7e6b2b588b (patch)
treefc9f5a745d82fe5ee130bb51e6b971986608db06
parentec6a328fe8d4070669a6e5116cbc36e1909c4612 (diff)
Dockerfile: verify tar file with sha256sum
-rw-r--r--misc/docker/Dockerfile4
1 files changed, 3 insertions, 1 deletions
diff --git a/misc/docker/Dockerfile b/misc/docker/Dockerfile
index 0646d30e5c48..2f8e3dd7a679 100644
--- a/misc/docker/Dockerfile
+++ b/misc/docker/Dockerfile
@@ -4,7 +4,9 @@ FROM alpine
 RUN apk add --update openssl
 
 # Download Nix and install it into the system.
-RUN wget -O- https://nixos.org/releases/nix/nix-2.0/nix-2.0-x86_64-linux.tar.bz2 | bzcat - | tar xf - \
+RUN wget https://nixos.org/releases/nix/nix-2.0/nix-2.0-x86_64-linux.tar.bz2 \
+  && echo "6312837aee33306cdbb351b75ba1638b89d21b30f0caf0346f9a742425f197ee  nix-2.0-x86_64-linux.tar.bz2" | sha256sum -c \
+  && tar xjf nix-*-x86_64-linux.tar.bz2 \
   && addgroup -g 30000 -S nixbld \
   && for i in $(seq 1 30); do adduser -S -D -h /var/empty -g "Nix build user $i" -u $((30000 + i)) -G nixbld nixbld$i ; done \
   && mkdir -m 0755 /nix && USER=root sh nix-*-x86_64-linux/install \