Created
January 31, 2018 21:07
-
-
Save burdzwastaken/f0a647e6860042517705ee9cb7f4bc13 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
FROM scratch | |
ADD assets/ubuntu-xenial-core-cloudimg-amd64-root.tar.gz / | |
# a few minor docker-specific tweaks | |
# see https://github.com/docker/docker/blob/9a9fc01af8fb5d98b8eec0740716226fadb3735c/contrib/mkimage/debootstrap | |
RUN set -xe \ | |
\ | |
# https://github.com/docker/docker/blob/9a9fc01af8fb5d98b8eec0740716226fadb3735c/contrib/mkimage/debootstrap#L40-L48 | |
&& echo '#!/bin/sh' > /usr/sbin/policy-rc.d \ | |
&& echo 'exit 101' >> /usr/sbin/policy-rc.d \ | |
&& chmod +x /usr/sbin/policy-rc.d \ | |
\ | |
# https://github.com/docker/docker/blob/9a9fc01af8fb5d98b8eec0740716226fadb3735c/contrib/mkimage/debootstrap#L54-L56 | |
&& dpkg-divert --local --rename --add /sbin/initctl \ | |
&& cp -a /usr/sbin/policy-rc.d /sbin/initctl \ | |
&& sed -i 's/^exit.*/exit 0/' /sbin/initctl \ | |
\ | |
# https://github.com/docker/docker/blob/9a9fc01af8fb5d98b8eec0740716226fadb3735c/contrib/mkimage/debootstrap#L71-L78 | |
&& echo 'force-unsafe-io' > /etc/dpkg/dpkg.cfg.d/docker-apt-speedup \ | |
\ | |
# https://github.com/docker/docker/blob/9a9fc01af8fb5d98b8eec0740716226fadb3735c/contrib/mkimage/debootstrap#L85-L105 | |
&& echo 'DPkg::Post-Invoke { "rm -f /var/cache/apt/archives/*.deb /var/cache/apt/archives/partial/*.deb /var/cache/apt/*.bin || true"; };' > /etc/apt/apt.conf.d/docker-clean \ | |
&& echo 'APT::Update::Post-Invoke { "rm -f /var/cache/apt/archives/*.deb /var/cache/apt/archives/partial/*.deb /var/cache/apt/*.bin || true"; };' >> /etc/apt/apt.conf.d/docker-clean \ | |
&& echo 'Dir::Cache::pkgcache ""; Dir::Cache::srcpkgcache "";' >> /etc/apt/apt.conf.d/docker-clean \ | |
\ | |
# https://github.com/docker/docker/blob/9a9fc01af8fb5d98b8eec0740716226fadb3735c/contrib/mkimage/debootstrap#L109-L115 | |
&& echo 'Acquire::Languages "none";' > /etc/apt/apt.conf.d/docker-no-languages \ | |
\ | |
# https://github.com/docker/docker/blob/9a9fc01af8fb5d98b8eec0740716226fadb3735c/contrib/mkimage/debootstrap#L118-L130 | |
&& echo 'Acquire::GzipIndexes "true"; Acquire::CompressionTypes::Order:: "gz";' > /etc/apt/apt.conf.d/docker-gzip-indexes \ | |
\ | |
# https://github.com/docker/docker/blob/9a9fc01af8fb5d98b8eec0740716226fadb3735c/contrib/mkimage/debootstrap#L134-L151 | |
&& echo 'Apt::AutoRemove::SuggestsImportant "false";' > /etc/apt/apt.conf.d/docker-autoremove-suggests | |
# delete all the apt list files since they're big and get stale quickly | |
RUN rm -rf /var/lib/apt/lists/* | |
# this forces "apt-get update" in dependent images, which is also good | |
# enable the universe | |
RUN sed -i 's/^#\s*\(deb.*universe\)$/\1/g' /etc/apt/sources.list | |
# make systemd-detect-virt return "docker" | |
# See: https://github.com/systemd/systemd/blob/aa0c34279ee40bce2f9681b496922dedbadfca19/src/basic/virt.c#L434 | |
RUN mkdir -p /run/systemd && echo 'docker' > /run/systemd/container | |
# Install extra tool: dumb-init | |
RUN apt-get update && apt-get install -y apt-transport-https ca-certificates curl wget --no-install-recommends \ | |
&& rm -rf /var/lib/apt/lists/* \ | |
&& wget -O /usr/bin/dumb-init https://github.com/Yelp/dumb-init/releases/download/v1.2.0/dumb-init_1.2.0_amd64 \ | |
&& chmod +x /usr/bin/dumb-init | |
# Install extra tool: gosu | |
ENV GOSU_VERSION 1.10 | |
RUN set -ex; \ | |
\ | |
fetchDeps=' \ | |
ca-certificates \ | |
wget \ | |
'; \ | |
apt-get update; \ | |
apt-get install -y --no-install-recommends $fetchDeps; \ | |
rm -rf /var/lib/apt/lists/*; \ | |
\ | |
dpkgArch="$(dpkg --print-architecture | awk -F- '{ print $NF }')"; \ | |
wget -O /usr/local/bin/gosu "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$dpkgArch"; \ | |
wget -O /usr/local/bin/gosu.asc "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$dpkgArch.asc"; \ | |
\ | |
# verify the signature | |
export GNUPGHOME="$(mktemp -d)"; \ | |
gpg --keyserver ha.pool.sks-keyservers.net --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4; \ | |
gpg --batch --verify /usr/local/bin/gosu.asc /usr/local/bin/gosu; \ | |
rm -r "$GNUPGHOME" /usr/local/bin/gosu.asc; \ | |
\ | |
chmod +x /usr/local/bin/gosu; \ | |
# verify that the binary works | |
gosu nobody true; | |
# enable the universe | |
RUN sed -i 's/^#\s*\(deb.*universe\)$/\1/g' /etc/apt/sources.list | |
# Runs "/usr/bin/dumb-init -- /bin/bash" | |
ENTRYPOINT ["/usr/bin/dumb-init", "--"] | |
CMD ["/bin/bash"] |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment