diff --git a/docker/rhel/Dockerfile b/docker/rhel/Dockerfile deleted file mode 100644 index 3d2f3405..00000000 --- a/docker/rhel/Dockerfile +++ /dev/null @@ -1,38 +0,0 @@ -FROM registry.access.redhat.com/rhel7 - -LABEL maintainer="cncf-falco-dev@lists.cncf.io" - -## Atomic/OpenShift Labels - https://github.com/projectatomic/ContainerApplicationGenericLabels -LABEL name="falco" -LABEL vendor="falcosecurity" -LABEL url="http://falco.org" -LABEL summary="Cloud Native Runtime Security" -LABEL description="Falco is an open-source project for intrusion and abnormality detection for Cloud Native platforms." -LABEL run='docker run -d --name falco --restart always --privileged --net host --pid host -v /var/run/docker.sock:/host/var/run/docker.sock -v /dev:/host/dev -v /proc:/host/proc:ro -v /boot:/host/boot:ro -v /lib/modules:/host/lib/modules:ro -v /usr:/host/usr:ro -v /etc:/host/etc:ro --shm-size=350m ' - -COPY help.md /tmp/ - -ENV HOST_ROOT /host -ENV HOME /root - -ADD https://falco.org/repo/falcosecurity-rpm.repo /etc/yum.repos.d/falcosecurity.repo -RUN rpm --import https://falco.org/repo/falcosecurity-3672BA8F.asc && \ - rpm -Uvh https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm && \ - yum clean all && \ - REPOLIST=rhel-7-server-rpms,rhel-7-server-optional-rpms,epel,draios \ - INSTALL_PKGS="gcc dkms kernel-devel kernel-headers python golang-github-cpuguy83-go-md2man falco" && \ - yum -y update-minimal --disablerepo "*" --enablerepo ${REPOLIST} --setopt=tsflags=nodocs \ - --security --sec-severity=Important --sec-severity=Critical && \ - yum -y install --disablerepo "*" --enablerepo ${REPOLIST} --setopt=tsflags=nodocs ${INSTALL_PKGS} && \ - ## help file markdown to man conversion - go-md2man -in /tmp/help.md -out /help.1 && \ - ## we delete everything on /usr/src/kernels otherwise it messes up docker-entrypoint.sh - rm -fr /usr/src/kernels && \ - rm -df /lib/modules && ln -s $HOST_ROOT/lib/modules /lib/modules && \ - yum clean all - -COPY ./docker-entrypoint.sh / - -ENTRYPOINT ["/docker-entrypoint.sh"] - -CMD ["/usr/bin/falco"] diff --git a/docker/rhel/docker-entrypoint.sh b/docker/rhel/docker-entrypoint.sh deleted file mode 100755 index da6ddb81..00000000 --- a/docker/rhel/docker-entrypoint.sh +++ /dev/null @@ -1,35 +0,0 @@ -#!/usr/bin/env bash -# -# Copyright (C) 2019 The Falco Authors. -# -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. -# - -# set -e - -# Set the SKIP_MODULE_LOAD variable to skip loading the kernel module - -if [[ -z "${SKIP_MODULE_LOAD}" ]]; then - echo "* Setting up /usr/src links from host" - - for i in "$HOST_ROOT/usr/src"/* - do - base=$(basename "$i") - ln -s "$i" "/usr/src/$base" - done - - /usr/bin/falco-driver-loader -fi - -exec "$@" \ No newline at end of file diff --git a/docker/rhel/help.md b/docker/rhel/help.md deleted file mode 100644 index 5cc8a0a8..00000000 --- a/docker/rhel/help.md +++ /dev/null @@ -1,15 +0,0 @@ -% falco (1) Container Image Pages -% Falco Team -% June, 2017 - -# NAME -falco \- Container Native runtime security - -# DESCRIPTION -Falco is an open source project for intrusion and abnormality detection for Cloud Native platforms. See Falco website for more information: http://falco.org/ - -# EXAMPLE - docker run -d --name falco --restart always --privileged --net host --pid host -v /var/run/docker.sock:/host/var/run/docker.sock -v /dev:/host/dev -v /proc:/host/proc:ro -v /boot:/host/boot:ro -v /lib/modules:/host/lib/modules:ro -v /usr:/host/usr:ro -v /etc:/host/etc:ro --shm-size=350m registry.connect.redhat.com/sysdig/falco - -# AUTHORS -Falco Team