9f1fc40a |
# This file describes the standard way to build Docker, using docker |
fa806f26 |
#
# Usage:
#
# # Assemble the full dev environment. This is slow the first time.
# docker build -t docker .
# |
d757bd09 |
# # Mount your source in an interactive container for quick testing: |
b3ee9ac7 |
# docker run -v `pwd`:/go/src/github.com/docker/docker --privileged -i -t docker bash |
d757bd09 |
# |
fa806f26 |
# # Run the test suite: |
bc82b139 |
# docker run -e DOCKER_GITCOMMIT=foo --privileged docker hack/make.sh test-unit test-integration test-docker-py |
fa806f26 |
#
# # Publish a release: |
44fe8cbb |
# docker run --privileged \ |
ccefe478 |
# -e AWS_S3_BUCKET=baz \
# -e AWS_ACCESS_KEY=foo \
# -e AWS_SECRET_KEY=bar \
# -e GPG_PASSPHRASE=gloubiboulga \
# docker hack/release.sh
# |
cd440188 |
# Note: AppArmor used to mess with privileged mode, but this is no longer |
31638ab2 |
# the case. Therefore, you don't have to disable it anymore.
# |
fa806f26 |
|
e89a5e5e |
FROM debian:stretch |
ccefe478 |
|
060196ee |
# allow replacing httpredir or deb mirror
ARG APT_MIRROR=deb.debian.org
RUN sed -ri "s/(httpredir|deb).debian.org/$APT_MIRROR/g" /etc/apt/sources.list
|
484a75f3 |
# Packaged dependencies |
179e9deb |
RUN apt-get update && apt-get install -y \ |
cdc14c7c |
apparmor \ |
996138bf |
apt-utils \ |
484a75f3 |
aufs-tools \ |
94566b74 |
automake \ |
e8edcf47 |
bash-completion \ |
4677f803 |
binutils-mingw-w64 \ |
996138bf |
bsdmainutils \ |
6922f1be |
btrfs-tools \ |
484a75f3 |
build-essential \ |
d58b4762 |
cmake \ |
c850e97c |
createrepo \ |
484a75f3 |
curl \
dpkg-sig \ |
e6274592 |
gcc-mingw-w64 \ |
484a75f3 |
git \
iptables \ |
359d0c24 |
jq \ |
7d1a72a2 |
less \ |
94566b74 |
libapparmor-dev \
libcap-dev \ |
84f1c054 |
libdevmapper-dev \ |
7ffae3d5 |
libnet-dev \ |
d8fef66b |
libnl-3-dev \
libprotobuf-c0-dev \ |
7edbdd9c |
libprotobuf-dev \ |
1b51a053 |
libseccomp-dev \ |
e89a5e5e |
libsystemd-dev \ |
d616a097 |
libtool \ |
e89a5e5e |
libudev-dev \ |
484a75f3 |
mercurial \ |
f27b5dda |
net-tools \ |
fd35494a |
pigz \ |
e611a189 |
pkg-config \ |
d8fef66b |
protobuf-compiler \
protobuf-c-compiler \ |
ce2a0120 |
python-backports.ssl-match-hostname \ |
92756bdc |
python-dev \ |
5d6eca66 |
python-mock \
python-pip \ |
ce2a0120 |
python-requests \ |
e89a5e5e |
python-setuptools \ |
100267de |
python-websocket \ |
ce2a0120 |
python-wheel \ |
7d1a72a2 |
tar \ |
e89a5e5e |
thin-provisioning-tools \ |
7d1a72a2 |
vim \ |
d58b4762 |
vim-common \ |
7d1a72a2 |
xfsprogs \ |
fda99a7e |
zip \ |
6c818f3e |
--no-install-recommends \ |
f8dacaf0 |
&& pip install awscli==1.10.15 |
c4fde49a |
|
1cbdaeba |
# Install Go |
6c1382e1 |
# IMPORTANT: If the version of Go is updated, the Windows to Linux CI machines |
4357ed4a |
# will need updating, to avoid errors. Ping #docker-maintainers on IRC |
6c1382e1 |
# with a heads-up. |
72df48d1 |
# IMPORTANT: When updating this please note that stdlib archive/tar pkg is vendored |
d6e1cc32 |
ENV GO_VERSION 1.9.2 |
732d1035 |
RUN curl -fsSL "https://golang.org/dl/go${GO_VERSION}.linux-amd64.tar.gz" \ |
91201678 |
| tar -xzC /usr/local |
3b3e58b6 |
|
2677f1ad |
ENV PATH /go/bin:/usr/local/go/bin:$PATH |
f2614f21 |
ENV GOPATH /go |
62a81370 |
|
d8fef66b |
# Install CRIU for checkpoint/restore support |
7ffae3d5 |
ENV CRIU_VERSION 3.6
RUN mkdir -p /usr/src/criu \ |
f01d2029 |
&& curl -sSL https://github.com/checkpoint-restore/criu/archive/v${CRIU_VERSION}.tar.gz | tar -C /usr/src/criu/ -xz --strip-components=1 \ |
d8fef66b |
&& cd /usr/src/criu \
&& make \
&& make install-criu
|
1fa2e311 |
# Install two versions of the registry. The first is an older version that
# only supports schema1 manifests. The second is a newer version that supports
# both. This allows integration-cli tests to cover push/pull with both schema1
# and schema2 manifests.
ENV REGISTRY_COMMIT_SCHEMA1 ec87e9b6971d831f0eff752ddb54fb64693e51cd |
588e27f9 |
ENV REGISTRY_COMMIT 47a064d4195a9b56133891bbb13620c3ac83a827 |
681f4d84 |
RUN set -x \ |
f61d595b |
&& export GOPATH="$(mktemp -d)" \
&& git clone https://github.com/docker/distribution.git "$GOPATH/src/github.com/docker/distribution" \
&& (cd "$GOPATH/src/github.com/docker/distribution" && git checkout -q "$REGISTRY_COMMIT") \
&& GOPATH="$GOPATH/src/github.com/docker/distribution/Godeps/_workspace:$GOPATH" \
go build -o /usr/local/bin/registry-v2 github.com/docker/distribution/cmd/registry \ |
1fa2e311 |
&& (cd "$GOPATH/src/github.com/docker/distribution" && git checkout -q "$REGISTRY_COMMIT_SCHEMA1") \
&& GOPATH="$GOPATH/src/github.com/docker/distribution/Godeps/_workspace:$GOPATH" \
go build -o /usr/local/bin/registry-v2-schema1 github.com/docker/distribution/cmd/registry \ |
f61d595b |
&& rm -rf "$GOPATH" |
681f4d84 |
|
6e4c87c0 |
# Install notary and notary-server |
175792a6 |
ENV NOTARY_VERSION v0.5.0 |
58a1de9b |
RUN set -x \
&& export GOPATH="$(mktemp -d)" \
&& git clone https://github.com/docker/notary.git "$GOPATH/src/github.com/docker/notary" \ |
1c32a668 |
&& (cd "$GOPATH/src/github.com/docker/notary" && git checkout -q "$NOTARY_VERSION") \ |
3e0bd74a |
&& GOPATH="$GOPATH/src/github.com/docker/notary/vendor:$GOPATH" \ |
58a1de9b |
go build -o /usr/local/bin/notary-server github.com/docker/notary/cmd/notary-server \ |
3e0bd74a |
&& GOPATH="$GOPATH/src/github.com/docker/notary/vendor:$GOPATH" \ |
1db0c7bb |
go build -o /usr/local/bin/notary github.com/docker/notary/cmd/notary \ |
58a1de9b |
&& rm -rf "$GOPATH"
|
100267de |
# Get the "docker-py" source so we can run their integration tests |
d1a0773d |
ENV DOCKER_PY_COMMIT 1d6b5b203222ba5df7dedfcd1ee061a452f99c8a |
c7c92359 |
# To run integration tests docker-pycreds is required. |
3c01c971 |
RUN git clone https://github.com/docker/docker-py.git /docker-py \
&& cd /docker-py \ |
8db14104 |
&& git checkout -q $DOCKER_PY_COMMIT \ |
0ec8f56a |
&& pip install docker-pycreds==0.2.1 \ |
8db14104 |
&& pip install -r test-requirements.txt |
100267de |
|
5c4abd10 |
# Install yamllint for validating swagger.yaml
RUN pip install yamllint==1.5.0
# Install go-swagger for validating swagger.yaml
ENV GO_SWAGGER_COMMIT c28258affb0b6251755d92489ef685af8d4ff3eb
RUN git clone https://github.com/go-swagger/go-swagger.git /go/src/github.com/go-swagger/go-swagger \
&& (cd /go/src/github.com/go-swagger/go-swagger && git checkout -q $GO_SWAGGER_COMMIT) \
&& go install -v github.com/go-swagger/go-swagger/cmd/swagger
|
94c5f51c |
# Set user.email so crosbymichael's in-container merge commits go smoothly |
179e9deb |
RUN git config --global user.email 'docker-dummy@example.com' |
94c5f51c |
|
599cb12b |
# Add an unprivileged user to be used for tests which need it |
886d3c93 |
RUN groupadd -r docker
RUN useradd --create-home --gid docker unprivilegeduser |
599cb12b |
|
179e9deb |
VOLUME /var/lib/docker
WORKDIR /go/src/github.com/docker/docker |
b877fc31 |
ENV DOCKER_BUILDTAGS apparmor seccomp selinux |
179e9deb |
|
c62230a8 |
# Let us use a .bashrc file
RUN ln -sfv $PWD/.bashrc ~/.bashrc |
1d945a97 |
# Add integration helps to bashrc
RUN echo "source $PWD/hack/make/.integration-test-helpers" >> /etc/bash.bashrc |
c62230a8 |
|
09b4c258 |
# Get useful and necessary Hub images so we can "docker load" locally instead of pulling |
359d0c24 |
COPY contrib/download-frozen-image-v2.sh /go/src/github.com/docker/docker/contrib/ |
eaae7750 |
# TODO: when issue #35963 fixed, we can upgrade the busybox to multi-arch |
359d0c24 |
RUN ./contrib/download-frozen-image-v2.sh /docker-frozen-images \ |
eaae7750 |
buildpack-deps:jessie@sha256:dd86dced7c9cd2a724e779730f0a53f93b7ef42228d4344b25ce9a42a1486251 \ |
1ecd8ed5 |
busybox:latest@sha256:32f093055929dbc23dec4d03e09dfe971f5973a9ca5cf059cbfb644c206aa83f \ |
eaae7750 |
debian:jessie@sha256:287a20c5f73087ab406e6b364833e3fb7b3ae63ca0eb3486555dc27ed32c6e60 \
hello-world:latest@sha256:be0cd392e45be79ffeffa6b05338b98ebb16c87b255f48e297ec7f98e123905c |
1ecd8ed5 |
# See also ensureFrozenImagesLinux() in "integration-cli/fixtures_linux_daemon_test.go" (which needs to be updated when adding images to this list) |
351074ed |
|
32915b1d |
# Install tomlv, vndr, runc, containerd, tini, docker-proxy dockercli |
1b41125a |
# Please edit hack/dockerfile/install-binaries.sh to update them. |
2790ac68 |
COPY hack/dockerfile/binaries-commits /tmp/binaries-commits |
1b41125a |
COPY hack/dockerfile/install-binaries.sh /tmp/install-binaries.sh |
d7e2c4ce |
RUN /tmp/install-binaries.sh tomlv vndr runc containerd tini proxy dockercli gometalinter |
32915b1d |
ENV PATH=/usr/local/cli:$PATH |
ee3ac3aa |
|
cec5ca75 |
# Activate bash completion and include Docker's completion if mounted with DOCKER_BASH_COMPLETION_PATH
RUN echo "source /usr/share/bash-completion/bash_completion" >> /etc/bash.bashrc |
0e2c424a |
RUN ln -s /usr/local/completion/bash/docker /etc/bash_completion.d/docker
|
34eab428 |
# Wrap all commands in the "docker-in-docker" script to allow nested containers |
179e9deb |
ENTRYPOINT ["hack/dind"] |
ccefe478 |
|
503b03a3 |
# Options for hack/validate/gometalinter |
c11508a5 |
ENV GOMETALINTER_OPTS="--deadline=2m" |
503b03a3 |
|
47838051 |
# Upload docker source |
179e9deb |
COPY . /go/src/github.com/docker/docker |
b96093fa |
|