Artifact
28c84c758241ba2879ebf9d052c74cee60d0d6339f74f4b60ec45e5d32107041
File
Dockerfile
— part of check-in
[4cb5c03e]
at
2023-03-23 16:40:19
on branch trunk
— The /etc/os-release workaround for nspawn's pickiness has caused the
feature to go into negative ROI territory. Ripped it out of the
mainstream process and made it a manual step for those who need it, in
the hopes that this will cause fewer ongoing problems than leaving it as
it is.
(user:
wyoung
size: 5406)
0000: 23 20 73 79 6e 74 61 78 3d 64 6f 63 6b 65 72 2f # syntax=docker/
0010: 64 6f 63 6b 65 72 66 69 6c 65 3a 31 2e 30 0a 23 dockerfile:1.0.#
0020: 20 53 65 65 20 77 77 77 2f 63 6f 6e 74 61 69 6e See www/contain
0030: 65 72 73 2e 6d 64 20 66 6f 72 20 64 6f 63 75 6d ers.md for docum
0040: 65 6e 74 61 74 69 6f 6e 20 6f 6e 20 68 6f 77 20 entation on how
0050: 74 6f 20 75 73 65 20 74 68 69 73 20 66 69 6c 65 to use this file
0060: 2e 0a 0a 23 23 20 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ...## ----------
0070: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0080: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0090: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
00a0: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 0a 23 23 20 53 -----------.## S
00b0: 54 41 47 45 20 31 3a 20 42 75 69 6c 64 20 73 74 TAGE 1: Build st
00c0: 61 74 69 63 20 46 6f 73 73 69 6c 20 26 20 42 75 atic Fossil & Bu
00d0: 73 79 42 6f 78 20 62 69 6e 61 72 69 65 73 20 61 syBox binaries a
00e0: 74 6f 70 20 41 6c 70 69 6e 65 20 4c 69 6e 75 78 top Alpine Linux
00f0: 0a 23 23 20 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d .## ------------
0100: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0110: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0120: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0130: 2d 2d 2d 2d 2d 2d 2d 2d 2d 0a 0a 46 52 4f 4d 20 ---------..FROM
0140: 61 6c 70 69 6e 65 3a 6c 61 74 65 73 74 20 41 53 alpine:latest AS
0150: 20 62 75 69 6c 64 65 72 0a 57 4f 52 4b 44 49 52 builder.WORKDIR
0160: 20 2f 74 6d 70 0a 0a 23 23 23 20 42 61 6b 65 20 /tmp..### Bake
0170: 74 68 65 20 62 61 73 69 63 20 41 6c 70 69 6e 65 the basic Alpine
0180: 20 4c 69 6e 75 78 20 69 6e 74 6f 20 61 20 62 61 Linux into a ba
0190: 73 65 20 6c 61 79 65 72 20 73 6f 20 77 65 20 6e se layer so we n
01a0: 65 76 65 72 20 68 61 76 65 20 74 6f 0a 23 23 23 ever have to.###
01b0: 20 72 65 70 65 61 74 20 74 68 61 74 20 73 74 65 repeat that ste
01c0: 70 20 75 6e 6c 65 73 73 20 77 65 20 63 68 61 6e p unless we chan
01d0: 67 65 20 74 68 65 20 70 61 63 6b 61 67 65 20 73 ge the package s
01e0: 65 74 2e 20 20 41 6c 74 68 6f 75 67 68 20 77 65 et. Although we
01f0: 27 72 65 0a 23 23 23 20 67 6f 69 6e 67 20 74 6f 're.### going to
0200: 20 74 68 72 6f 77 20 74 68 69 73 20 6c 61 79 65 throw this laye
0210: 72 20 61 77 61 79 20 62 65 6c 6f 77 2c 20 77 65 r away below, we
0220: 20 73 74 69 6c 6c 20 70 61 73 73 20 2d 2d 6e 6f still pass --no
0230: 2d 63 61 63 68 65 0a 23 23 23 20 62 65 63 61 75 -cache.### becau
0240: 73 65 20 74 68 61 74 20 63 61 63 68 65 20 69 73 se that cache is
0250: 20 6f 66 20 6e 6f 20 75 73 65 20 69 6e 20 61 6e of no use in an
0260: 20 69 6d 6d 75 74 61 62 6c 65 20 6c 61 79 65 72 immutable layer
0270: 2e 0a 52 55 4e 20 73 65 74 20 2d 78 20 20 20 20 ..RUN set -x
0280: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0290: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
02a0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
02b0: 20 20 20 20 20 20 20 20 20 5c 0a 20 20 20 20 26 \. &
02c0: 26 20 61 70 6b 20 75 70 64 61 74 65 20 20 20 20 & apk update
02d0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
02e0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
02f0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0300: 20 20 5c 0a 20 20 20 20 26 26 20 61 70 6b 20 75 \. && apk u
0310: 70 67 72 61 64 65 20 2d 2d 6e 6f 2d 63 61 63 68 pgrade --no-cach
0320: 65 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 e
0330: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0340: 20 20 20 20 20 20 20 20 20 20 20 5c 0a 20 20 20 \.
0350: 20 26 26 20 61 70 6b 20 61 64 64 20 2d 2d 6e 6f && apk add --no
0360: 2d 63 61 63 68 65 20 20 20 20 20 20 20 20 20 20 -cache
0370: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0380: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0390: 20 20 20 20 5c 0a 20 20 20 20 20 20 20 20 20 67 \. g
03a0: 63 63 20 6d 61 6b 65 20 20 20 20 20 20 20 20 20 cc make
03b0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
03c0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
03d0: 20 20 20 20 20 20 20 20 20 20 20 20 20 5c 0a 20 \.
03e0: 20 20 20 20 20 20 20 20 6c 69 6e 75 78 2d 68 65 linux-he
03f0: 61 64 65 72 73 20 6d 75 73 6c 2d 64 65 76 20 20 aders musl-dev
0400: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0410: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0420: 20 20 20 20 20 20 5c 0a 20 20 20 20 20 20 20 20 \.
0430: 20 6f 70 65 6e 73 73 6c 2d 64 65 76 20 6f 70 65 openssl-dev ope
0440: 6e 73 73 6c 2d 6c 69 62 73 2d 73 74 61 74 69 63 nssl-libs-static
0450: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0460: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 5c \
0470: 0a 20 20 20 20 20 20 20 20 20 7a 6c 69 62 2d 64 . zlib-d
0480: 65 76 20 7a 6c 69 62 2d 73 74 61 74 69 63 0a 0a ev zlib-static..
0490: 23 23 23 20 42 61 6b 65 20 74 68 65 20 63 75 73 ### Bake the cus
04a0: 74 6f 6d 20 42 75 73 79 42 6f 78 20 69 6e 74 6f tom BusyBox into
04b0: 20 61 6e 6f 74 68 65 72 20 6c 61 79 65 72 2e 20 another layer.
04c0: 20 54 68 65 20 69 6e 74 65 6e 74 20 69 73 20 74 The intent is t
04d0: 68 61 74 20 74 68 69 73 0a 23 23 23 20 63 68 61 hat this.### cha
04e0: 6e 67 65 73 20 6f 6e 6c 79 20 77 68 65 6e 20 77 nges only when w
04f0: 65 20 63 68 61 6e 67 65 20 42 42 58 56 45 52 2e e change BBXVER.
0500: 20 20 54 68 61 74 20 77 69 6c 6c 20 66 6f 72 63 That will forc
0510: 65 20 61 6e 20 75 70 64 61 74 65 20 6f 66 0a 23 e an update of.#
0520: 23 23 20 74 68 65 20 6c 61 79 65 72 73 20 62 65 ## the layers be
0530: 6c 6f 77 2c 20 62 75 74 20 74 68 69 73 20 69 73 low, but this is
0540: 20 61 20 72 61 72 65 20 6f 63 63 75 72 72 65 6e a rare occurren
0550: 63 65 2e 0a 41 52 47 20 42 42 58 56 45 52 3d 22 ce..ARG BBXVER="
0560: 31 5f 33 35 5f 30 22 0a 45 4e 56 20 42 42 58 55 1_35_0".ENV BBXU
0570: 52 4c 20 22 68 74 74 70 73 3a 2f 2f 67 69 74 68 RL "https://gith
0580: 75 62 2e 63 6f 6d 2f 6d 69 72 72 6f 72 2f 62 75 ub.com/mirror/bu
0590: 73 79 62 6f 78 2f 74 61 72 62 61 6c 6c 2f 24 7b sybox/tarball/${
05a0: 42 42 58 56 45 52 7d 22 0a 43 4f 50 59 20 63 6f BBXVER}".COPY co
05b0: 6e 74 61 69 6e 65 72 73 2f 62 75 73 79 62 6f 78 ntainers/busybox
05c0: 2d 63 6f 6e 66 69 67 20 2f 74 6d 70 2f 62 62 78 -config /tmp/bbx
05d0: 2f 2e 63 6f 6e 66 69 67 0a 41 44 44 20 24 42 42 /.config.ADD $BB
05e0: 58 55 52 4c 20 2f 74 6d 70 2f 62 62 78 2f 73 72 XURL /tmp/bbx/sr
05f0: 63 2e 74 61 72 2e 67 7a 0a 52 55 4e 20 73 65 74 c.tar.gz.RUN set
0600: 20 2d 78 20 20 20 20 20 20 20 20 20 20 20 20 20 -x
0610: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0620: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0630: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0640: 5c 0a 20 20 20 20 26 26 20 74 61 72 20 2d 2d 73 \. && tar --s
0650: 74 72 69 70 2d 63 6f 6d 70 6f 6e 65 6e 74 73 3d trip-components=
0660: 31 20 2d 43 20 62 62 78 20 2d 78 7a 66 20 62 62 1 -C bbx -xzf bb
0670: 78 2f 73 72 63 2e 74 61 72 2e 67 7a 20 20 20 20 x/src.tar.gz
0680: 20 20 20 20 20 20 20 20 20 5c 0a 20 20 20 20 26 \. &
0690: 26 20 28 20 63 64 20 62 62 78 20 26 26 20 79 65 & ( cd bbx && ye
06a0: 73 20 22 22 20 7c 20 6d 61 6b 65 20 6f 6c 64 63 s "" | make oldc
06b0: 6f 6e 66 69 67 20 26 26 20 6d 61 6b 65 20 2d 6a onfig && make -j
06c0: 31 31 20 29 0a 0a 23 23 23 20 54 68 65 20 63 68 11 )..### The ch
06d0: 61 6e 67 65 61 62 6c 65 20 46 6f 73 73 69 6c 20 angeable Fossil
06e0: 6c 61 79 65 72 20 69 73 20 74 68 65 20 6f 6e 6c layer is the onl
06f0: 79 20 6f 6e 65 20 69 6e 20 74 68 65 20 66 69 72 y one in the fir
0700: 73 74 20 73 74 61 67 65 20 74 68 61 74 0a 23 23 st stage that.##
0710: 23 20 63 68 61 6e 67 65 73 20 6f 66 74 65 6e 2c # changes often,
0720: 20 73 6f 20 61 64 64 20 69 74 20 6c 61 73 74 2c so add it last,
0730: 20 74 6f 20 6d 61 6b 65 20 69 74 20 69 6e 64 65 to make it inde
0740: 70 65 6e 64 65 6e 74 20 6f 66 20 74 68 65 20 6f pendent of the o
0750: 74 68 65 72 73 2e 0a 23 23 23 0a 23 23 23 20 24 thers..###.### $
0760: 46 53 4c 53 54 42 20 63 61 6e 20 62 65 20 65 69 FSLSTB can be ei
0770: 74 68 65 72 20 61 20 66 69 6c 65 20 6f 72 20 61 ther a file or a
0780: 20 64 69 72 65 63 74 6f 72 79 20 64 75 65 20 74 directory due t
0790: 6f 20 61 20 41 44 44 27 73 20 62 69 7a 61 72 72 o a ADD's bizarr
07a0: 65 0a 23 23 23 20 62 65 68 61 76 69 6f 72 3a 20 e.### behavior:
07b0: 69 74 20 75 6e 70 61 63 6b 73 20 74 61 72 62 61 it unpacks tarba
07c0: 6c 6c 73 20 77 68 65 6e 20 61 64 64 65 64 20 66 lls when added f
07d0: 72 6f 6d 20 61 20 6c 6f 63 61 6c 20 66 69 6c 65 rom a local file
07e0: 20 62 75 74 20 6e 6f 74 0a 23 23 23 20 66 72 6f but not.### fro
07f0: 6d 20 61 20 55 52 4c 21 20 20 20 49 74 20 6d 61 m a URL! It ma
0800: 74 74 65 72 73 20 62 65 63 61 75 73 65 20 77 65 tters because we
0810: 20 64 65 66 61 75 6c 74 20 74 6f 20 61 20 55 52 default to a UR
0820: 4c 20 69 6e 20 63 61 73 65 20 79 6f 75 27 72 65 L in case you're
0830: 0a 23 23 23 20 62 75 69 6c 64 69 6e 67 20 6f 75 .### building ou
0840: 74 73 69 64 65 20 61 20 46 6f 73 73 69 6c 20 63 tside a Fossil c
0850: 68 65 63 6b 6f 75 74 2c 20 62 75 74 20 77 68 65 heckout, but whe
0860: 6e 20 62 75 69 6c 64 69 6e 67 20 76 69 61 20 74 n building via t
0870: 68 65 0a 23 23 23 20 63 6f 6e 74 61 69 6e 65 72 he.### container
0880: 2d 69 6d 61 67 65 20 74 61 72 67 65 74 2c 20 77 -image target, w
0890: 65 20 63 61 6e 20 61 76 6f 69 64 20 61 20 63 6f e can avoid a co
08a0: 73 74 6c 79 20 68 69 74 20 6f 6e 20 74 68 65 20 stly hit on the
08b0: 46 6f 73 73 69 6c 0a 23 23 23 20 70 72 6f 6a 65 Fossil.### proje
08c0: 63 74 27 73 20 68 6f 6d 65 20 73 69 74 65 20 62 ct's home site b
08d0: 79 20 70 75 6c 6c 69 6e 67 20 74 68 65 20 64 61 y pulling the da
08e0: 74 61 20 66 72 6f 6d 20 74 68 65 20 6c 6f 63 61 ta from the loca
08f0: 6c 20 72 65 70 6f 20 76 69 61 20 74 68 65 0a 23 l repo via the.#
0900: 23 23 20 22 74 61 72 62 61 6c 6c 22 20 63 6f 6d ## "tarball" com
0910: 6d 61 6e 64 2e 20 20 54 68 69 73 20 69 73 20 61 mand. This is a
0920: 20 44 56 43 53 2c 20 61 66 74 65 72 20 61 6c 6c DVCS, after all
0930: 21 0a 41 52 47 20 46 53 4c 43 46 47 3d 22 22 0a !.ARG FSLCFG="".
0940: 41 52 47 20 46 53 4c 56 45 52 3d 22 74 72 75 6e ARG FSLVER="trun
0950: 6b 22 0a 41 52 47 20 46 53 4c 55 52 4c 3d 22 68 k".ARG FSLURL="h
0960: 74 74 70 73 3a 2f 2f 66 6f 73 73 69 6c 2d 73 63 ttps://fossil-sc
0970: 6d 2e 6f 72 67 2f 68 6f 6d 65 2f 74 61 72 62 61 m.org/home/tarba
0980: 6c 6c 2f 73 72 63 3f 72 3d 24 7b 46 53 4c 56 45 ll/src?r=${FSLVE
0990: 52 7d 22 0a 45 4e 56 20 46 53 4c 53 54 42 3d 2f R}".ENV FSLSTB=/
09a0: 74 6d 70 2f 66 73 6c 2f 73 72 63 2e 74 61 72 2e tmp/fsl/src.tar.
09b0: 67 7a 0a 41 44 44 20 24 46 53 4c 55 52 4c 20 24 gz.ADD $FSLURL $
09c0: 46 53 4c 53 54 42 0a 52 55 4e 20 73 65 74 20 2d FSLSTB.RUN set -
09d0: 78 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 x
09e0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
09f0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0a00: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 5c 0a \.
0a10: 20 20 20 20 26 26 20 69 66 20 5b 20 2d 64 20 24 && if [ -d $
0a20: 46 53 4c 53 54 42 20 5d 20 3b 20 74 68 65 6e 20 FSLSTB ] ; then
0a30: 6d 76 20 24 46 53 4c 53 54 42 2f 73 72 63 20 66 mv $FSLSTB/src f
0a40: 73 6c 20 3b 20 20 20 20 20 20 20 20 20 20 20 20 sl ;
0a50: 20 20 20 20 20 20 20 5c 0a 20 20 20 20 20 20 20 \.
0a60: 65 6c 73 65 20 74 61 72 20 2d 43 20 66 73 6c 20 else tar -C fsl
0a70: 2d 78 7a 66 20 66 73 6c 2f 73 72 63 2e 74 61 72 -xzf fsl/src.tar
0a80: 2e 67 7a 20 3b 20 66 69 20 20 20 20 20 20 20 20 .gz ; fi
0a90: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0aa0: 5c 0a 20 20 20 20 26 26 20 6d 3d 66 73 6c 2f 73 \. && m=fsl/s
0ab0: 72 63 2f 73 72 63 2f 6d 61 69 6e 2e 6d 6b 20 20 rc/src/main.mk
0ac0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0ad0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0ae0: 20 20 20 20 20 20 20 20 20 5c 0a 20 20 20 20 26 \. &
0af0: 26 20 66 73 6c 2f 73 72 63 2f 63 6f 6e 66 69 67 & fsl/src/config
0b00: 75 72 65 20 2d 2d 73 74 61 74 69 63 20 43 46 4c ure --static CFL
0b10: 41 47 53 3d 27 2d 4f 73 20 2d 73 27 20 24 46 53 AGS='-Os -s' $FS
0b20: 4c 43 46 47 20 26 26 20 6d 61 6b 65 20 2d 6a 31 LCFG && make -j1
0b30: 31 0a 0a 0a 23 23 20 2d 2d 2d 2d 2d 2d 2d 2d 2d 1...## ---------
0b40: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0b50: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0b60: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0b70: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 0a 23 23 20 ------------.##
0b80: 53 54 41 47 45 20 32 3a 20 50 61 72 65 20 74 68 STAGE 2: Pare th
0b90: 61 74 20 62 61 63 6b 20 74 6f 20 74 68 65 20 62 at back to the b
0ba0: 61 72 65 20 65 73 73 65 6e 74 69 61 6c 73 2e 0a are essentials..
0bb0: 23 23 20 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ## -------------
0bc0: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0bd0: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0be0: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
0bf0: 2d 2d 2d 2d 2d 2d 2d 2d 0a 0a 46 52 4f 4d 20 73 --------..FROM s
0c00: 63 72 61 74 63 68 0a 57 4f 52 4b 44 49 52 20 2f cratch.WORKDIR /
0c10: 6a 61 69 6c 0a 41 52 47 20 55 49 44 3d 34 39 39 jail.ARG UID=499
0c20: 0a 45 4e 56 20 50 41 54 48 20 22 2f 62 69 6e 3a .ENV PATH "/bin:
0c30: 2f 75 73 72 2f 62 69 6e 3a 2f 6a 61 69 6c 2f 62 /usr/bin:/jail/b
0c40: 69 6e 22 0a 0a 23 23 23 20 4c 61 79 20 42 75 73 in"..### Lay Bus
0c50: 79 42 6f 78 20 64 6f 77 6e 20 61 73 20 74 68 65 yBox down as the
0c60: 20 66 69 72 73 74 20 62 61 73 65 20 6c 61 79 65 first base laye
0c70: 72 2e 20 43 6f 75 70 6c 65 64 20 77 69 74 68 20 r. Coupled with
0c80: 74 68 65 20 68 6f 73 74 27 73 0a 23 23 23 20 6b the host's.### k
0c90: 65 72 6e 65 6c 2c 20 74 68 69 73 20 69 73 20 74 ernel, this is t
0ca0: 68 65 20 22 4f 53 2e 22 0a 43 4f 50 59 20 2d 2d he "OS.".COPY --
0cb0: 66 72 6f 6d 3d 62 75 69 6c 64 65 72 20 2f 74 6d from=builder /tm
0cc0: 70 2f 62 62 78 2f 62 75 73 79 62 6f 78 20 2f 62 p/bbx/busybox /b
0cd0: 69 6e 2f 0a 43 4f 50 59 20 2d 2d 66 72 6f 6d 3d in/.COPY --from=
0ce0: 62 75 69 6c 64 65 72 20 2f 65 74 63 2f 6f 73 2d builder /etc/os-
0cf0: 72 65 6c 65 61 73 65 20 2f 65 74 63 2f 0a 52 55 release /etc/.RU
0d00: 4e 20 5b 20 22 2f 62 69 6e 2f 62 75 73 79 62 6f N [ "/bin/busybo
0d10: 78 22 2c 20 22 2d 2d 69 6e 73 74 61 6c 6c 22 2c x", "--install",
0d20: 20 22 2f 62 69 6e 22 20 5d 0a 0a 23 23 23 20 53 "/bin" ]..### S
0d30: 65 74 20 75 70 20 74 68 61 74 20 62 61 73 65 20 et up that base
0d40: 4f 53 20 66 6f 72 20 6f 75 72 20 73 70 65 63 69 OS for our speci
0d50: 66 69 63 20 75 73 65 20 77 69 74 68 6f 75 74 20 fic use without
0d60: 74 79 69 6e 67 20 69 74 20 74 6f 0a 23 23 23 20 tying it to.###
0d70: 61 6e 79 74 68 69 6e 67 20 6c 69 6b 65 6c 79 20 anything likely
0d80: 74 6f 20 63 68 61 6e 67 65 20 6f 66 74 65 6e 2e to change often.
0d90: 20 20 53 6f 20 6c 6f 6e 67 20 61 73 20 74 68 65 So long as the
0da0: 20 75 73 65 72 20 6c 65 61 76 65 73 0a 23 23 23 user leaves.###
0db0: 20 55 49 44 20 61 6c 6f 6e 65 2c 20 74 68 69 73 UID alone, this
0dc0: 20 6c 61 79 65 72 20 77 69 6c 6c 20 62 65 20 64 layer will be d
0dd0: 75 72 61 62 6c 65 2e 0a 52 55 4e 20 73 65 74 20 urable..RUN set
0de0: 2d 78 20 20 20 20 20 20 20 20 20 20 20 20 20 20 -x
0df0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0e00: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0e10: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 5c \
0e20: 0a 20 20 20 20 26 26 20 65 63 68 6f 20 27 72 6f . && echo 'ro
0e30: 6f 74 3a 78 3a 30 3a 30 3a 53 79 73 41 64 6d 69 ot:x:0:0:SysAdmi
0e40: 6e 3a 2f 3a 2f 62 69 6e 2f 6e 6f 6c 6f 67 69 6e n:/:/bin/nologin
0e50: 27 20 3e 20 2f 65 74 63 2f 70 61 73 73 77 64 20 ' > /etc/passwd
0e60: 20 20 20 20 20 20 20 20 5c 0a 20 20 20 20 26 26 \. &&
0e70: 20 65 63 68 6f 20 27 72 6f 6f 74 3a 78 3a 30 3a echo 'root:x:0:
0e80: 72 6f 6f 74 27 20 20 20 20 20 20 20 20 20 20 20 root'
0e90: 20 20 20 20 20 20 20 20 20 20 20 3e 20 2f 65 74 > /et
0ea0: 63 2f 67 72 6f 75 70 20 20 20 20 20 20 20 20 20 c/group
0eb0: 20 5c 0a 20 20 20 20 26 26 20 61 64 64 67 72 6f \. && addgro
0ec0: 75 70 20 2d 53 20 2d 67 20 24 7b 55 49 44 7d 20 up -S -g ${UID}
0ed0: 66 6f 73 73 69 6c 20 20 20 20 20 20 20 20 20 20 fossil
0ee0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0ef0: 20 20 20 20 20 20 20 20 20 20 5c 0a 20 20 20 20 \.
0f00: 26 26 20 61 64 64 75 73 65 72 20 2d 53 20 2d 68 && adduser -S -h
0f10: 20 60 70 77 64 60 20 2d 67 20 27 46 6f 73 73 69 `pwd` -g 'Fossi
0f20: 6c 20 55 73 65 72 27 20 2d 47 20 66 6f 73 73 69 l User' -G fossi
0f30: 6c 20 2d 75 20 24 7b 55 49 44 7d 20 66 6f 73 73 l -u ${UID} foss
0f40: 69 6c 20 5c 0a 20 20 20 20 26 26 20 69 6e 73 74 il \. && inst
0f50: 61 6c 6c 20 2d 64 20 2d 6d 20 37 30 30 20 2d 6f all -d -m 700 -o
0f60: 20 66 6f 73 73 69 6c 20 2d 67 20 66 6f 73 73 69 fossil -g fossi
0f70: 6c 20 6c 6f 67 20 6d 75 73 65 75 6d 20 20 20 20 l log museum
0f80: 20 20 20 20 20 20 20 20 20 20 20 20 5c 0a 20 20 \.
0f90: 20 20 26 26 20 69 6e 73 74 61 6c 6c 20 2d 64 20 && install -d
0fa0: 2d 6d 20 37 35 35 20 2d 6f 20 66 6f 73 73 69 6c -m 755 -o fossil
0fb0: 20 2d 67 20 66 6f 73 73 69 6c 20 64 65 76 20 20 -g fossil dev
0fc0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
0fd0: 20 20 20 20 20 5c 0a 20 20 20 20 26 26 20 69 6e \. && in
0fe0: 73 74 61 6c 6c 20 2d 64 20 2d 6d 20 37 35 35 20 stall -d -m 755
0ff0: 2d 6f 20 72 6f 6f 74 20 2d 67 20 72 6f 6f 74 20 -o root -g root
1000: 2f 75 73 72 2f 62 69 6e 20 20 20 20 20 20 20 20 /usr/bin
1010: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 5c 0a \.
1020: 20 20 20 20 26 26 20 69 6e 73 74 61 6c 6c 20 2d && install -
1030: 64 20 2d 6d 20 34 30 30 20 2d 6f 20 72 6f 6f 74 d -m 400 -o root
1040: 20 2d 67 20 72 6f 6f 74 20 2f 72 75 6e 20 20 20 -g root /run
1050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
1060: 20 20 20 20 20 20 20 5c 0a 20 20 20 20 26 26 20 \. &&
1070: 69 6e 73 74 61 6c 6c 20 2d 64 20 2d 6d 20 31 37 install -d -m 17
1080: 37 37 20 2d 6f 20 72 6f 6f 74 20 2d 67 20 72 6f 77 -o root -g ro
1090: 6f 74 20 2f 74 6d 70 20 20 20 20 20 20 20 20 20 ot /tmp
10a0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
10b0: 5c 0a 20 20 20 20 26 26 20 6d 6b 6e 6f 64 20 2d \. && mknod -
10c0: 6d 20 36 36 36 20 64 65 76 2f 6e 75 6c 6c 20 20 m 666 dev/null
10d0: 20 20 63 20 31 20 33 20 20 20 20 20 20 20 20 20 c 1 3
10e0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
10f0: 20 20 20 20 20 20 20 20 20 5c 0a 20 20 20 20 26 \. &
1100: 26 20 6d 6b 6e 6f 64 20 2d 6d 20 34 34 34 20 64 & mknod -m 444 d
1110: 65 76 2f 75 72 61 6e 64 6f 6d 20 63 20 31 20 39 ev/urandom c 1 9
1120: 0a 0a 23 23 23 20 44 6f 20 46 6f 73 73 69 6c 2d ..### Do Fossil-
1130: 73 70 65 63 69 66 69 63 20 74 68 69 6e 67 73 20 specific things
1140: 61 74 6f 70 20 74 68 6f 73 65 20 62 61 73 65 20 atop those base
1150: 6c 61 79 65 72 73 3b 20 74 68 69 73 20 77 69 6c layers; this wil
1160: 6c 20 63 68 61 6e 67 65 0a 23 23 23 20 61 73 20 l change.### as
1170: 6f 66 74 65 6e 20 61 73 20 74 68 65 20 46 6f 73 often as the Fos
1180: 73 69 6c 20 62 75 69 6c 64 2d 66 72 6f 6d 2d 73 sil build-from-s
1190: 6f 75 72 63 65 20 6c 61 79 65 72 20 61 62 6f 76 ource layer abov
11a0: 65 2e 0a 43 4f 50 59 20 2d 2d 66 72 6f 6d 3d 62 e..COPY --from=b
11b0: 75 69 6c 64 65 72 20 2f 74 6d 70 2f 66 6f 73 73 uilder /tmp/foss
11c0: 69 6c 20 62 69 6e 2f 0a 52 55 4e 20 73 65 74 20 il bin/.RUN set
11d0: 2d 78 20 20 20 20 20 20 20 20 20 20 20 20 20 20 -x
11e0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
11f0: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
1200: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 5c \
1210: 0a 20 20 20 20 26 26 20 6c 6e 20 2d 73 20 2f 6a . && ln -s /j
1220: 61 69 6c 2f 62 69 6e 2f 66 6f 73 73 69 6c 20 2f ail/bin/fossil /
1230: 75 73 72 2f 62 69 6e 2f 66 20 20 20 20 20 20 20 usr/bin/f
1240: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
1250: 20 20 20 20 20 20 20 20 5c 0a 20 20 20 20 26 26 \. &&
1260: 20 65 63 68 6f 20 2d 65 20 27 23 21 2f 62 69 6e echo -e '#!/bin
1270: 2f 73 68 5c 6e 66 6f 73 73 69 6c 20 73 68 61 31 /sh\nfossil sha1
1280: 73 75 6d 20 22 24 40 22 27 20 3e 20 2f 75 73 72 sum "$@"' > /usr
1290: 2f 62 69 6e 2f 73 68 61 31 73 75 6d 20 20 20 20 /bin/sha1sum
12a0: 20 5c 0a 20 20 20 20 26 26 20 65 63 68 6f 20 2d \. && echo -
12b0: 65 20 27 23 21 2f 62 69 6e 2f 73 68 5c 6e 66 6f e '#!/bin/sh\nfo
12c0: 73 73 69 6c 20 73 68 61 33 73 75 6d 20 22 24 40 ssil sha3sum "$@
12d0: 22 27 20 3e 20 2f 75 73 72 2f 62 69 6e 2f 73 68 "' > /usr/bin/sh
12e0: 61 33 73 75 6d 20 20 20 20 20 5c 0a 20 20 20 20 a3sum \.
12f0: 26 26 20 65 63 68 6f 20 2d 65 20 27 23 21 2f 62 && echo -e '#!/b
1300: 69 6e 2f 73 68 5c 6e 66 6f 73 73 69 6c 20 73 71 in/sh\nfossil sq
1310: 6c 69 74 65 33 20 2d 2d 6e 6f 2d 72 65 70 6f 73 lite3 --no-repos
1320: 69 74 6f 72 79 20 22 24 40 22 27 20 3e 20 20 20 itory "$@"' >
1330: 20 20 20 5c 0a 20 20 20 20 20 20 20 2f 75 73 72 \. /usr
1340: 2f 62 69 6e 2f 73 71 6c 69 74 65 33 20 20 20 20 /bin/sqlite3
1350: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
1360: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20
1370: 20 20 20 20 20 20 20 20 20 20 20 20 5c 0a 20 20 \.
1380: 20 20 26 26 20 63 68 6d 6f 64 20 2b 78 20 2f 75 && chmod +x /u
1390: 73 72 2f 62 69 6e 2f 73 68 61 3f 73 75 6d 20 2f sr/bin/sha?sum /
13a0: 75 73 72 2f 62 69 6e 2f 73 71 6c 69 74 65 33 0a usr/bin/sqlite3.
13b0: 0a 0a 23 23 20 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ..## -----------
13c0: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
13d0: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
13e0: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
13f0: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 0a 23 23 20 53 54 ----------.## ST
1400: 41 47 45 20 33 3a 20 52 75 6e 21 0a 23 23 20 2d AGE 3: Run!.## -
1410: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
1420: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
1430: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
1440: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d ----------------
1450: 2d 2d 2d 2d 0a 0a 45 58 50 4f 53 45 20 38 30 38 ----..EXPOSE 808
1460: 30 2f 74 63 70 0a 43 4d 44 20 5b 20 5c 0a 20 20 0/tcp.CMD [ \.
1470: 20 20 22 66 6f 73 73 69 6c 22 2c 20 22 73 65 72 "fossil", "ser
1480: 76 65 72 22 2c 20 20 20 20 20 5c 0a 20 20 20 20 ver", \.
1490: 22 2d 2d 63 68 72 6f 6f 74 22 2c 20 22 2f 6a 61 "--chroot", "/ja
14a0: 69 6c 22 2c 20 20 20 20 5c 0a 20 20 20 20 22 2d il", \. "-
14b0: 2d 63 72 65 61 74 65 22 2c 20 20 20 20 20 20 20 -create",
14c0: 20 20 20 20 20 20 5c 0a 20 20 20 20 22 2d 2d 6a \. "--j
14d0: 73 6d 6f 64 65 22 2c 20 22 62 75 6e 64 6c 65 64 smode", "bundled
14e0: 22 2c 20 20 5c 0a 20 20 20 20 22 2d 2d 75 73 65 ", \. "--use
14f0: 72 22 2c 20 22 61 64 6d 69 6e 22 2c 20 20 20 20 r", "admin",
1500: 20 20 5c 0a 20 20 20 20 22 6d 75 73 65 75 6d 2f \. "museum/
1510: 72 65 70 6f 2e 66 6f 73 73 69 6c 22 5d 0a repo.fossil"].