mirror of
https://github.com/linuxkit/linuxkit.git
synced 2025-10-29 02:10:39 +00:00
9e879dc56a
This includes nested build support so we can look at starting to dogfood. Signed-off-by: Justin Cormack <justin.cormack@docker.com>
46 lines
1.6 KiB
Docker
46 lines
1.6 KiB
Docker
FROM linuxkit/alpine:c5021a113803f7608e3908014d316c3490183d0b@sha256:4c7a80173c71ca5019dc56f40442b3a8345f141dd46593bd1fe6d130294d07cb AS mirror
|
|
|
|
FROM alpine:3.5@sha256:dfbd4a3a8ebca874ebd2474f044a0b33600d4523d03b0df76e5c5986cb02d7e8
|
|
COPY --from=mirror /etc/apk/repositories /etc/apk/repositories
|
|
COPY --from=mirror /etc/apk/keys /etc/apk/keys/
|
|
COPY --from=mirror /mirror /mirror/
|
|
|
|
# https://github.com/docker/docker/blob/master/project/PACKAGERS.md#runtime-dependencies
|
|
# removed openssl as I do not think server needs it
|
|
RUN apk add --no-cache \
|
|
btrfs-progs \
|
|
ca-certificates \
|
|
curl \
|
|
e2fsprogs \
|
|
e2fsprogs-extra \
|
|
iptables \
|
|
xfsprogs \
|
|
xz
|
|
RUN rm -rf /mirror /etc/apk/repositories /etc/apk/keys
|
|
|
|
# set up Docker group
|
|
# set up subuid/subgid so that "--userns-remap=default" works out-of-the-box
|
|
RUN set -x \
|
|
&& addgroup -S docker \
|
|
&& addgroup -S dockremap \
|
|
&& adduser -S -G dockremap dockremap \
|
|
&& echo 'dockremap:165536:65536' >> /etc/subuid \
|
|
&& echo 'dockremap:165536:65536' >> /etc/subgid
|
|
|
|
ENV DOCKER_BUCKET get.docker.com
|
|
ENV DOCKER_VERSION 17.05.0-ce
|
|
ENV DOCKER_SHA256 340e0b5a009ba70e1b644136b94d13824db0aeb52e09071410f35a95d94316d9
|
|
|
|
# we could avoid installing client here I suppose
|
|
RUN set -x \
|
|
&& curl -fSL "https://${DOCKER_BUCKET}/builds/Linux/x86_64/docker-${DOCKER_VERSION}.tgz" -o docker.tgz \
|
|
&& echo "${DOCKER_SHA256} *docker.tgz" | sha256sum -c - \
|
|
&& tar -xzvf docker.tgz \
|
|
&& mv docker/* /usr/bin/ \
|
|
&& rmdir docker \
|
|
&& rm docker.tgz \
|
|
&& docker -v
|
|
|
|
# use the Docker copy of tini as our init for zombie reaping
|
|
ENTRYPOINT ["/usr/bin/docker-init", "/usr/bin/dockerd"]
|