readonly/docker-ripe-atlas
1
0
Fork 0
mirror of https://github.com/minoplhy/docker-ripe-atlas.git synced 2025-04-21 20:36:58 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix atlas build method

Browse Source
This commit is contained in:
minoplhy 2025-03-11 13:26:04 +07:00
parent ea95309aa4
commit 8ee5d7202c
Signed by: minoplhy
GPG Key ID: 41D406044E2434BF
2 changed files with 40 additions and 57 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

29
Dockerfile
View File

@ -4,41 +4,37 @@ LABEL image="ripe-atlas-builder"
ARG DEBIAN_FRONTEND=noninteractive ARG DEBIAN_FRONTEND=noninteractive
ARG GIT_URL=https://github.com/RIPE-NCC/ripe-atlas-software-probe.git ARG GIT_URL=https://github.com/RIPE-NCC/ripe-atlas-software-probe.git
WORKDIR /root WORKDIR /tmp
RUN apt-get update -y && \ RUN apt-get update -y && \
apt-get install -y git build-essential debhelper libssl-dev autotools-dev psmisc net-tools apt-get install -y git build-essential debhelper libssl-dev autotools-dev psmisc net-tools
RUN git clone --recursive "$GIT_URL" RUN git clone --recursive "$GIT_URL" /tmp/ripe-atlas-software-probe
WORKDIR /root/ripe-atlas-software-probe WORKDIR /tmp/ripe-atlas-software-probe
# version 5100 # version 5100
RUN git checkout 5100 RUN git checkout 5100
RUN autoreconf -iv RUN autoreconf -iv
RUN ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var --libdir=/usr/lib64 --runstatedir=/run --with-user=ripe-atlas --with-group=ripe-atlas --with-measurement-user=ripe-atlas-measurement --disable-systemd --enable-chown --enable-setcap-install RUN ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var --libdir=/usr/lib64 --runstatedir=/run --with-user=ripe-atlas --with-group=ripe-atlas --with-measurement-user=ripe-atlas --disable-systemd --enable-chown --enable-setcap-install
RUN make RUN make
WORKDIR /root
## artifacts ## artifacts
FROM scratch AS artifacts FROM scratch AS artifacts
LABEL image="ripe-atlas-artifacts" LABEL image="ripe-atlas-artifacts"
COPY --from=builder /root/ripe-atlas-software-probe / COPY --from=builder /tmp/ripe-atlas-software-probe /
## the actual image ## the actual image
FROM debian:12 FROM debian:12
LABEL maintainer="dockerhub@public.swineson.me" LABEL maintainer="dockerhub@public.swineson.me"
LABEL image="ripe-atlas" LABEL image="ripe-atlas"
ARG DEBIAN_FRONTEND=noninteractive
COPY --from=builder /root/ripe-atlas-software-probe /tmp COPY --from=builder /tmp/ripe-atlas-software-probe /tmp/ripe-atlas-software-probe
ARG ATLAS_UID=101 ARG ATLAS_UID=101
ARG ATLAS_MEAS_UID=102 ARG ATLAS_MEAS_UID=102
ARG ATLAS_GID=999 ARG ATLAS_GID=999
RUN ln -s /bin/true /bin/systemctl \ RUN ln -s /bin/true /bin/systemctl \
&& adduser --system --uid $ATLAS_UID ripe-atlas \ && adduser --system --uid $ATLAS_UID ripe-atlas \
&& adduser --system --uid $ATLAS_MEAS_UID ripe-atlas-measurement \
&& groupadd --force --system --gid $ATLAS_GID ripe-atlas \ && groupadd --force --system --gid $ATLAS_GID ripe-atlas \
&& apt-get update -y \ && apt-get update -y \
&& apt-get install -y libcap2-bin iproute2 openssh-client procps net-tools tini debhelper libssl-dev autotools-dev psmisc opensysusers && apt-get install -y libcap2-bin iproute2 openssh-client procps net-tools tini debhelper libssl-dev autotools-dev psmisc opensysusers
@ -50,13 +46,14 @@ RUN make install
COPY entrypoint.sh /usr/local/bin COPY entrypoint.sh /usr/local/bin
RUN chmod +x /usr/local/bin/* \ RUN chmod +x /usr/local/bin/* \
&& chown -R atlas:atlas /var/atlas-probe \ && rm -rf /var/lib/apt/lists/* \
&& mkdir -p /var/atlasdata \ && rm -rf /tmp/ripe-atlas-software-probe \
&& chown -R atlas:atlas /var/atlasdata \ && mkdir -p /opt/ripe-atlas \
&& chmod 777 /var/atlasdata && chown -R ripe-atlas:ripe-atlas /opt/ripe-atlas \
&& chmod 777 /opt/ripe-atlas
WORKDIR /var/atlas-probe WORKDIR /var/atlas-probe
VOLUME [ "/var/atlas-probe/etc", "/var/atlas-probe/status" ] VOLUME [ "/etc/ripe-atlas", "/run/ripe-atlas/status", "/var/spool/ripe-atlas" ]
ENTRYPOINT [ "tini", "--", "entrypoint.sh" ] ENTRYPOINT [ "tini", "--", "entrypoint.sh" ]
CMD [ "atlas" ] CMD [ "ripe-atlas" ]

38
entrypoint.sh
View File

@ -1,13 +1,6 @@
#!/usr/bin/env bash #!/usr/bin/env bash
set -Eeuo pipefail set -Eeuo pipefail
CONFIG_FILE="/var/atlas-probe/state/config.txt"
declare -a OPTIONS=(
"RXTXRPT"
"HTTP_POST_PORT"
"TELNETD_PORT"
)
# test essential syscalls # test essential syscalls
if ! sleep 0 >/dev/null 2>&1; then if ! sleep 0 >/dev/null 2>&1; then
>&2 echo "WARNING: clock_nanosleep or clock_nanosleep_time64 is not available on the system" >&2 echo "WARNING: clock_nanosleep or clock_nanosleep_time64 is not available on the system"
@ -16,26 +9,19 @@ fi
export ATLAS_UID="${ATLAS_UID:-101}" export ATLAS_UID="${ATLAS_UID:-101}"
export ATLAS_GID="${ATLAS_GID:-999}" export ATLAS_GID="${ATLAS_GID:-999}"
usermod -u $ATLAS_UID atlas usermod -u $ATLAS_UID ripe-atlas
groupmod -g $ATLAS_GID atlas groupmod -g $ATLAS_GID ripe-atlas
chown -R atlas:atlas /var/atlas-probe || true
chown -R atlas:atlas /var/atlasdata || true
# create essential files and fix permission # create essential files and fix permission
mkdir -p /var/atlas-probe/status mkdir -p /var/spool/ripe-atlas
chown -R atlas:atlas /var/atlas-probe/status || true chown -R ripe-atlas:ripe-atlas /var/spool/ripe-atlas || true
mkdir -p /var/atlas-probe/etc mkdir -p /var/spool/ripe-atlas/data
chown -R atlas:atlas /var/atlas-probe/etc || true chown -R ripe-atlas:ripe-atlas /var/spool/ripe-atlas/data || true
mkdir -p /var/atlas-probe/state mkdir -p /run/ripe-atlas/status
chown -R atlas:atlas /var/atlas-probe/state || true chown -R ripe-atlas:ripe-atlas /run/ripe-atlas/status || true
echo "CHECK_ATLASDATA_TMPFS=no" > "${CONFIG_FILE}" mkdir -p /etc/ripe-atlas
chown -R ripe-atlas:ripe-atlas /etc/ripe-atlas || true
# set probe configuration #mkdir -p /var/atlas-probe/state
for OPT in "${OPTIONS[@]}"; do #chown -R ripe-atlas:ripe-atlas /var/atlas-probe/state || true
if [ ! -z "${!OPT+x}" ]; then
echo "Option ${OPT}=${!OPT}"
echo "${OPT}=${!OPT}" >> "${CONFIG_FILE}"
fi
done
exec setpriv --reuid=$ATLAS_UID --regid=$ATLAS_GID --init-groups "$@" exec setpriv --reuid=$ATLAS_UID --regid=$ATLAS_GID --init-groups "$@"