forked from awslabs/tough
-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathDockerfile.tuffer
32 lines (21 loc) · 1.14 KB
/
Dockerfile.tuffer
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
FROM registry.access.redhat.com/ubi9/ubi:latest as builder
USER root
ARG RUST_VERSION="1.79.0"
RUN dnf install -y perl gcc openssl openssl-devel cmake gcc-c++ git curl-minimal unzip cyrus-sasl-devel
RUN curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs/ | sh -s -- --default-toolchain=${RUST_VERSION} -y
ENV PATH "$PATH:/root/.cargo/bin"
RUN mkdir /tmp/tuftool
COPY . /tmp/tuftool
RUN cd /tmp/tuftool && cargo build --release
FROM registry.access.redhat.com/ubi9/ubi:latest as deploy
COPY --from=builder /tmp/tuftool/target/release/tuftool /usr/bin/
COPY rhtas/tuf-repo-init.sh /usr/bin/
ENTRYPOINT ["/usr/bin/tuf-repo-init.sh"]
USER 1001
LABEL description ="Tuffer is a utility application used for generating an initial trust root for RHTAS"
LABEL io.k8s.description="Tuffer is a utility application used for generating an initial trust root for RHTAS"
LABEL io.k8s.display-name="Tuffer container image for Red Hat Trusted Artifact Signer"
LABEL io.openshift.tags="Tuffer Trusted Artifact Signer"
LABEL summary="Provides the tuf-repo-init script for generating an initial trust root for RHTAS"
LABEL com.redhat.component="tuffer"
LABEL name="tuffer"