From 9a4de56ad5ec191c036ea1fcdf887700bbc2677f Mon Sep 17 00:00:00 2001
From: Armin Kuster <akuster808@gmail.com>
Date: Sun, 18 Oct 2020 20:21:56 -0700
Subject: gitlab-ci: add meta-hardening build image

Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 .gitlab-ci.yml            |  5 +++++
 kas/kas-security-base.yml |  1 +
 kas/qemux86-harden.yml    | 10 ++++++++++
 3 files changed, 16 insertions(+)
 create mode 100644 kas/qemux86-harden.yml

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 50bfe4f..f1c844f 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -136,6 +136,11 @@ qemuarm64-musl:
   script:
   - kas build --target security-build-image kas/$CI_JOB_NAME.yml 
 
+qemux86-harden:
+  extends: .build
+  script:
+  - kas build --target harden-image-minimal kas/$CI_JOB_NAME.yml 
+
 qemux86-test:
   extends: .build
   allow_failure: true
diff --git a/kas/kas-security-base.yml b/kas/kas-security-base.yml
index 6a77af5..ba0e0f8 100644
--- a/kas/kas-security-base.yml
+++ b/kas/kas-security-base.yml
@@ -10,6 +10,7 @@ repos:
       meta-tpm:
       meta-integrity:
       meta-security-compliance:
+      meta-hardening:
 
   poky:
     url: https://git.yoctoproject.org/git/poky
diff --git a/kas/qemux86-harden.yml b/kas/qemux86-harden.yml
new file mode 100644
index 0000000..fb59dda
--- /dev/null
+++ b/kas/qemux86-harden.yml
@@ -0,0 +1,10 @@
+header:
+  version: 8
+  includes:
+    - kas-security-base.yml
+
+local_conf_header:
+  meta-security: |
+    DISTRO = "harden"
+
+machine: qemux86
-- 
cgit v1.2.3-54-g00ecf