From 5b7260f70682eaa32f2a6da2616712dccb0774b3 Mon Sep 17 00:00:00 2001
From: TPT <teryl.taylor@gmail.com>
Date: Mon, 14 Mar 2022 20:45:06 +0000
Subject: [PATCH] build(image): updated UBI image to build dkms, and use falco
 binaries rather than rpm. This reduces dependencies.

Signed-off-by: TPT <teryl.taylor@gmail.com>
---
 docker/falco/Dockerfile.ubi | 22 ++++++++--------------
 1 file changed, 8 insertions(+), 14 deletions(-)

diff --git a/docker/falco/Dockerfile.ubi b/docker/falco/Dockerfile.ubi
index 23321007..f6b81b14 100644
--- a/docker/falco/Dockerfile.ubi
+++ b/docker/falco/Dockerfile.ubi
@@ -26,24 +26,18 @@ RUN  dnf -y update && \
         make \
         cmake \
 	gcc \
-	llvm \
+	llvm-toolset \
         clang \
+        kmod \
 	&& rm -rf /var/lib/apt/lists/*
 
-#Install dkms from EPEL.
-# ref: https://access.redhat.com/solutions/1132653
-RUN dnf -y install http://mirror.centos.org/centos/8-stream/BaseOS/x86_64/os/Packages/kernel-devel-4.18.0-365.el8.x86_64.rpm && \
-    dnf -y install http://mirror.centos.org/centos/8-stream/BaseOS/x86_64/os/Packages/elfutils-libelf-0.185-1.el8.x86_64.rpm && \
-    dnf -y install http://mirror.centos.org/centos/8-stream/BaseOS/x86_64/os/Packages/elfutils-libelf-devel-0.185-1.el8.x86_64.rpm && \
-    dnf -y install https://dl.fedoraproject.org/pub/epel/epel-release-latest-8.noarch.rpm && \
-    dnf -y install dkms && \
-    dnf -y remove epel-release && dnf autoremove
-
-RUN rpm --import https://falco.org/repo/falcosecurity-3672BA8F.asc && \
-    curl -s -o /etc/yum.repos.d/falcosecurity.repo https://falco.org/repo/falcosecurity-rpm.repo && \
-    dnf -y install "falco-${FALCO_VERSION}"
-
+RUN mkdir /build && cd /build/ && curl --remote-name-all -L https://github.com/dell/dkms/archive/refs/tags/v3.0.3.tar.gz && \
+     tar xvf v3.0.3.tar.gz && cd dkms-3.0.3 && make install-redhat && rm -rf /build 
 
+RUN mkdir /deploy && cd /deploy/ && curl --remote-name-all -L https://download.falco.org/packages/bin/x86_64/falco-${FALCO_VERSION}-x86_64.tar.gz && \
+     tar xvf falco-${FALCO_VERSION}-x86_64.tar.gz && cd falco-${FALCO_VERSION}-x86_64 && cp usr/bin/falco* /usr/bin/ && \ 
+     chmod +x /usr/bin/falco-driver-loader && cp -r etc/falco /etc/ && cp -r usr/src/falco-* /usr/src/ && cp -r usr/share/falco /usr/share/falco && \
+     rm -rf /deploy
 
 COPY ./docker-entrypoint.sh /
 COPY ./docker-entrypoint-ubi.sh /