forked from tg123/sshpiper
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathDockerfile
More file actions
49 lines (40 loc) · 1.43 KB
/
Dockerfile
File metadata and controls
49 lines (40 loc) · 1.43 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
FROM docker.io/golang:1.24-bookworm AS builder
ARG VER=devel
ARG BUILDTAGS
ARG EXTERNAL=0
ENV CGO_ENABLED=0
WORKDIR /src
RUN \
--mount=target=/src,type=bind,source=. \
--mount=type=cache,target=/root/.cache/go-build \
<<HEREDOC
# Create directories required for `cp` / `go build -o`:
mkdir -p /sshpiperd/plugins
if [ "${EXTERNAL}" = "1" ]; then
cp sshpiperd /sshpiperd
cp -r plugins /sshpiperd
else
go build -o /sshpiperd -ldflags "-X main.mainver=${VER}" ./cmd/...
go build -o /sshpiperd/plugins -tags "${BUILDTAGS}" ./plugin/... ./e2e/testplugin/...
fi
HEREDOC
FROM builder AS testrunner
COPY --from=farmer1992/openssh-static:V_9_8_P1 /usr/bin/ssh /usr/bin/ssh-9.8p1
COPY --from=farmer1992/openssh-static:V_8_0_P1 /usr/bin/ssh /usr/bin/ssh-8.0p1
FROM docker.io/busybox AS sshpiperd
ARG USERID=1000
ARG GROUPID=1000
RUN <<HEREDOC
# Add a non-root system (-S) user/group to run `sshpiperd` with (final arg is group/user name):
addgroup -S -g "${GROUPID}" sshpiperd
adduser -S -u "${USERID}" -G sshpiperd sshpiperd
# Support `SSHPIPERD_SERVER_KEY_GENERATE_MODE=notexist` to create host key at `/etc/ssh`:
mkdir /etc/ssh/
chown -R "${USERID}:${GROUPID}" /etc/ssh/
HEREDOC
COPY --from=builder --chown=${USERID} /sshpiperd/ /sshpiperd
# Runtime setup:
ENV SSHPIPERD_SERVER_KEY_GENERATE_MODE=notexist PLUGIN=workingdir
ENTRYPOINT ["/sshpiperd/sshpiperd"]
USER ${USERID}:${GROUPID}
EXPOSE 2222