busybox/Dockerfile

FROM frebib/debian-builder as builder

ARG ARCH=x86_64
ARG ARCH_ALT=i686

ARG GLIBC_VER=2.26
ARG BUSYB_VER=1.27.1
ARG SU_EXEC_VER=v0.2
ARG TINI_VER=v0.15.0

ARG PREFIX=/output
WORKDIR $PREFIX

#Set up our dependencies, configure the output filesystem a bit
RUN mkdir -p bin dev etc home lib proc root sbin tmp usr/bin usr/sbin usr/lib var && \
    # This is probably only relevant on 64bit systems?
    ln -sv usr/lib usr/lib64 && \
    ln -sv lib lib64

# Pull tini and su-exec utilities
RUN curl -fL https://github.com/javabean/su-exec/releases/download/${SU_EXEC_VER}/su-exec.amd64 > sbin/su-exec && \
    curl -fL https://github.com/krallin/tini/releases/download/${TINI_VER}/tini-amd64 > sbin/tini && \
    chmod +x sbin/su-exec sbin/tini

WORKDIR /tmp/glibc

# Download and build glibc from source
RUN curl -fL https://ftp.gnu.org/gnu/glibc/glibc-${GLIBC_VER}.tar.xz | tar xJ && \
    mkdir -p glibc-build && cd glibc-build && \
    \
    echo "slibdir=/lib" >> configparms && \
    echo "rtlddir=/lib" >> configparms && \
    echo "sbindir=/bin" >> configparms && \
    echo "rootsbindir=/bin" >> configparms && \
    \
    # Fix debian lib path weirdness
    rm -rf /usr/include/${ARCH}-linux-gnu/c++ && \
    ln -s /usr/include/${ARCH}-linux-gnu/* /usr/include && \
    \
    ../glibc-${GLIBC_VER}/configure \
        --prefix="$(pwd)/root" \
        --libdir="$(pwd)/root/lib" \
        --libexecdir=/lib \
        --with-headers=/usr/include \
        --enable-add-ons \
        --enable-obsolete-rpc \
        --enable-kernel=3.10.0 \
        --enable-bind-now \
        --disable-profile \
        --enable-stackguard-randomization \
        --enable-stack-protector=strong \
        --enable-lock-elision \
        --enable-multi-arch \
        --disable-werror && \
    make -j "$(nproc)" && \
    make install_root=$(pwd)/out install

# Copy glibc libs & generate ld cache
RUN cp -d glibc-build/out/lib/*.so "${PREFIX}/lib" && \
    echo '/usr/lib' > "${PREFIX}/etc/ld.so.conf" && \
    ldconfig -r "${PREFIX}"

WORKDIR /tmp/busybox

# Download and build busybox from source
RUN curl -fL https://busybox.net/downloads/busybox-${BUSYB_VER}.tar.bz2 \
        | tar xj --strip-components=1 && \
    # Use default configuration
    make defconfig && \
    make -j "$(nproc)" && \
    cp busybox "${PREFIX}/bin" && \
    # "Install" busybox, creating symlinks to all binaries it provides
    ./busybox --list-full | xargs -i ln -s /bin/busybox "${PREFIX}/{}"

WORKDIR $PREFIX

# Add default skeleton configuration files
RUN for f in passwd shadow group profile; do \
        curl -fL -o "${PREFIX}/etc/$f" "https://git.busybox.net/buildroot/plain/system/skeleton/etc/$f"; \
    done && \
    \
    # Copy UTC localtime to output
    cp /usr/share/zoneinfo/Etc/UTC etc/

# =============

FROM scratch
WORKDIR /

COPY --from=builder /output/ /
RUN mkdir -p /tmp && \
    chmod 1777 /tmp

CMD ["/bin/sh"]
Add downstream triggering, change builder image 2017-08-10 01:23:37 +00:00			`FROM frebib/debian-builder as builder`
Initial commit 2017-05-10 20:55:40 +00:00
Refactor from scratch, not busybox 2017-05-11 21:15:10 +00:00			`ARG ARCH=x86_64`
Fix busybox download URL 2017-08-09 18:44:55 +00:00			`ARG ARCH_ALT=i686`
Initial commit 2017-05-10 20:55:40 +00:00
Bump versions 2017-08-02 21:02:14 +00:00			`ARG GLIBC_VER=2.26`
			`ARG BUSYB_VER=1.27.1`
Add su-exec and tini 2017-05-12 00:30:49 +00:00			`ARG SU_EXEC_VER=v0.2`
Bump versions 2017-08-02 21:02:14 +00:00			`ARG TINI_VER=v0.15.0`
Add su-exec and tini 2017-05-12 00:30:49 +00:00
Ensure output paths are relative for consistency 2017-05-22 16:06:05 +00:00			`ARG PREFIX=/output`
			`WORKDIR $PREFIX`
Add su-exec & tini 2017-05-11 09:36:22 +00:00
Refactor busybox install, rearrange dockerfile 2017-05-11 22:37:11 +00:00			`#Set up our dependencies, configure the output filesystem a bit`
Remove duplicated build steps - new builder image 2017-08-10 12:38:31 +00:00			`RUN mkdir -p bin dev etc home lib proc root sbin tmp usr/bin usr/sbin usr/lib var && \`
Add some clarifying comments 2017-05-22 16:27:07 +00:00			`# This is probably only relevant on 64bit systems?`
Compile busybox from source, providing more utilities 2017-08-09 20:16:39 +00:00			`ln -sv usr/lib usr/lib64 && \`
Remove some symlinks, separating fs directories 2017-05-22 16:05:55 +00:00			`ln -sv lib lib64`
Refactor busybox install, rearrange dockerfile 2017-05-11 22:37:11 +00:00
Compile busybox from source, providing more utilities 2017-08-09 20:16:39 +00:00			`# Pull tini and su-exec utilities`
Ensure curl fails properly 2017-08-09 20:39:40 +00:00			`RUN curl -fL https://github.com/javabean/su-exec/releases/download/${SU_EXEC_VER}/su-exec.amd64 > sbin/su-exec && \`
			`curl -fL https://github.com/krallin/tini/releases/download/${TINI_VER}/tini-amd64 > sbin/tini && \`
Compile busybox from source, providing more utilities 2017-08-09 20:16:39 +00:00			`chmod +x sbin/su-exec sbin/tini`
Fix for busybox symlinks 2017-05-11 23:34:57 +00:00
Compile busybox from source, providing more utilities 2017-08-09 20:16:39 +00:00			`WORKDIR /tmp/glibc`
Initial commit 2017-05-10 20:55:40 +00:00
Build glibc from source- it produces smaller & cleaner libs 2017-05-12 10:50:24 +00:00			`# Download and build glibc from source`
Ensure curl fails properly 2017-08-09 20:39:40 +00:00			`RUN curl -fL https://ftp.gnu.org/gnu/glibc/glibc-${GLIBC_VER}.tar.xz \| tar xJ && \`
Build glibc from source- it produces smaller & cleaner libs 2017-05-12 10:50:24 +00:00			`mkdir -p glibc-build && cd glibc-build && \`
Enforce 4 space indentation, not tabs 2017-08-09 20:29:31 +00:00			`\`
Build glibc from source- it produces smaller & cleaner libs 2017-05-12 10:50:24 +00:00			`echo "slibdir=/lib" >> configparms && \`
			`echo "rtlddir=/lib" >> configparms && \`
			`echo "sbindir=/bin" >> configparms && \`
			`echo "rootsbindir=/bin" >> configparms && \`
Enforce 4 space indentation, not tabs 2017-08-09 20:29:31 +00:00			`\`
Add some clarifying comments 2017-05-22 16:27:07 +00:00			`# Fix debian lib path weirdness`
Add architecture variable to glibc build step 2017-08-02 21:30:15 +00:00			`rm -rf /usr/include/${ARCH}-linux-gnu/c++ && \`
			`ln -s /usr/include/${ARCH}-linux-gnu/* /usr/include && \`
Add some clarifying comments 2017-05-22 16:27:07 +00:00			`\`
Improve Dockerfile consistency with curly braces 2017-08-02 21:28:58 +00:00			`../glibc-${GLIBC_VER}/configure \`
Build glibc from source- it produces smaller & cleaner libs 2017-05-12 10:50:24 +00:00			`--prefix="$(pwd)/root" \`
			`--libdir="$(pwd)/root/lib" \`
			`--libexecdir=/lib \`
			`--with-headers=/usr/include \`
			`--enable-add-ons \`
			`--enable-obsolete-rpc \`
			`--enable-kernel=3.10.0 \`
			`--enable-bind-now \`
			`--disable-profile \`
			`--enable-stackguard-randomization \`
			`--enable-stack-protector=strong \`
			`--enable-lock-elision \`
			`--enable-multi-arch \`
			`--disable-werror && \`
Use make multicore compilation with $(nproc) 2017-08-09 20:42:08 +00:00			`make -j "$(nproc)" && \`
			`make install_root=$(pwd)/out install`
Build glibc from source- it produces smaller & cleaner libs 2017-05-12 10:50:24 +00:00
			`# Copy glibc libs & generate ld cache`
Improve Dockerfile consistency with curly braces 2017-08-02 21:28:58 +00:00			`RUN cp -d glibc-build/out/lib/*.so "${PREFIX}/lib" && \`
			`echo '/usr/lib' > "${PREFIX}/etc/ld.so.conf" && \`
			`ldconfig -r "${PREFIX}"`
Build glibc from source- it produces smaller & cleaner libs 2017-05-12 10:50:24 +00:00
Compile busybox from source, providing more utilities 2017-08-09 20:16:39 +00:00			`WORKDIR /tmp/busybox`

			`# Download and build busybox from source`
Ensure curl fails properly 2017-08-09 20:39:40 +00:00			`RUN curl -fL https://busybox.net/downloads/busybox-${BUSYB_VER}.tar.bz2 \`
Enforce 4 space indentation, not tabs 2017-08-09 20:29:31 +00:00			`\| tar xj --strip-components=1 && \`
			`# Use default configuration`
			`make defconfig && \`
Use make multicore compilation with $(nproc) 2017-08-09 20:42:08 +00:00			`make -j "$(nproc)" && \`
Enforce 4 space indentation, not tabs 2017-08-09 20:29:31 +00:00			`cp busybox "${PREFIX}/bin" && \`
Compile busybox from source, providing more utilities 2017-08-09 20:16:39 +00:00			`# "Install" busybox, creating symlinks to all binaries it provides`
Use correct path to busybox binary 2017-08-09 20:42:28 +00:00			`./busybox --list-full \| xargs -i ln -s /bin/busybox "${PREFIX}/{}"`
Compile busybox from source, providing more utilities 2017-08-09 20:16:39 +00:00
Add root user and group 2017-05-22 17:09:32 +00:00			`WORKDIR $PREFIX`

Copy missing configuration files from official busybox:glibc container 2017-08-09 13:06:52 +00:00			`# Add default skeleton configuration files`
			`RUN for f in passwd shadow group profile; do \`
Ensure curl fails properly 2017-08-09 20:39:40 +00:00			`curl -fL -o "${PREFIX}/etc/$f" "https://git.busybox.net/buildroot/plain/system/skeleton/etc/$f"; \`
Enforce 4 space indentation, not tabs 2017-08-09 20:29:31 +00:00			`done && \`
			`\`
			`# Copy UTC localtime to output`
			`cp /usr/share/zoneinfo/Etc/UTC etc/`
Add root user and group 2017-05-22 17:09:32 +00:00
Refactor from scratch, not busybox 2017-05-11 21:15:10 +00:00			`# =============`

			`FROM scratch`
Initial commit 2017-05-10 20:55:40 +00:00			`WORKDIR /`
Copy missing configuration files from official busybox:glibc container 2017-08-09 13:06:52 +00:00
Fix for busybox symlinks 2017-05-11 23:34:57 +00:00			`COPY --from=builder /output/ /`
Copy missing configuration files from official busybox:glibc container 2017-08-09 13:06:52 +00:00			`RUN mkdir -p /tmp && \`
Enforce 4 space indentation, not tabs 2017-08-09 20:29:31 +00:00			`chmod 1777 /tmp`
Copy missing configuration files from official busybox:glibc container 2017-08-09 13:06:52 +00:00
Change default command to /bin/sh 2017-08-09 13:21:09 +00:00			`CMD ["/bin/sh"]`