CircleCI: Do not run build as root. Move to public docker repo.

Change docker hub repository to 'openwrtorg'. Create and use non-root user 'build'. Add xz-utils and unzip. Use version numbers for docker images (SHA has no sense of time). Disable pipefail in build step Signed-off-by: Ted Hess <thess@kitschensync.net>
author: Ted Hess <thess@kitschensync.net> 2018-12-05 13:35:05 -0500
committer: Ted Hess <thess@kitschensync.net> 2018-12-05 15:28:36 -0500
commit: 1c2c18a16a1e18d9680fe72d444094b386b05231 (patch)
tree: 765304c8b3e747a3690e773f6b4f980220b544d3 /.circleci/Dockerfile
parent: ae102f4ef89abbce3a150368007e245a6b9a57cc (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/.circleci/Dockerfile b/.circleci/Dockerfile
index 6eea9d250..b619ffd74 100644
--- a/.circleci/Dockerfile
+++ b/.circleci/Dockerfile
@@ -14,8 +14,14 @@ subversion \
 time \
 wget \
 zlib1g-dev \
+unzip \
+xz-utils \
 && rm -rf /var/lib/apt/lists/*
 
+RUN useradd -c "OpenWrt Builder" -m -d /home/build -s /bin/bash build
+USER build
+ENV HOME /home/build
+
 # LEDE Build System (LEDE GnuPG key for unattended build jobs)
 RUN curl 'https://git.openwrt.org/?p=keyring.git;a=blob_plain;f=gpg/626471F1.asc' | gpg --import \
  && echo '54CC74307A2C6DC9CE618269CD84BCED626471F1:6:' | gpg --import-ownertrust
author	Ted Hess <thess@kitschensync.net>	2018-12-05 13:35:05 -0500
committer	Ted Hess <thess@kitschensync.net>	2018-12-05 15:28:36 -0500
commit	1c2c18a16a1e18d9680fe72d444094b386b05231 (patch)
tree	765304c8b3e747a3690e773f6b4f980220b544d3 /.circleci/Dockerfile
parent	ae102f4ef89abbce3a150368007e245a6b9a57cc (diff)