forked from rancher/runc-cve
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathDockerfile
More file actions
43 lines (41 loc) · 1.17 KB
/
Dockerfile
File metadata and controls
43 lines (41 loc) · 1.17 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
FROM golang:1.11.4-stretch
RUN apt-get update && apt-get install -y \
build-essential \
curl \
sudo \
gawk \
iptables \
jq \
pkg-config \
libaio-dev \
libcap-dev \
libprotobuf-dev \
libprotobuf-c0-dev \
libnl-3-dev \
libnet-dev \
libseccomp2 \
libseccomp-dev \
libapparmor-dev \
protobuf-c-compiler \
protobuf-compiler \
python-minimal \
uidmap \
kmod \
libseccomp-dev \
--no-install-recommends \
&& apt-get clean
COPY . /go/src/github.com/opencontainers/runc
WORKDIR /go/src/github.com/opencontainers/runc
ENV TAG build3
RUN for VER in v1.12.6 v1.13.1 v17.03.2 v17.06.2 v17.09.1 v17.12.1 v18.03.1 v18.06.1; do \
git checkout release-${VER}-${TAG} && \
for GOARCH in $(go env GOARCH); do \
export GOARCH && \
mkdir -p dist && \
make BUILDTAGS="seccomp selinux apparmor" static && \
mv runc dist/runc-${VER}-${GOARCH} && \
make CGO_CFLAGS="-DDISABLE_MEMFD_CREATE=1" BUILDTAGS="seccomp selinux apparmor" static && \
mv runc dist/runc-${VER}-${GOARCH}-no-memfd_create \
; done ; done && \
cd dist && \
sha256sum * > sha256sum-${GOARCH}.txt