xref: /unit/pkg/docker/Dockerfile.go1.18 (revision 2092:d4ee68907b05) 
1FROM golang:1.18 as BUILDER
2
3LABEL maintainer="NGINX Docker Maintainers <docker-maint@nginx.com>"
4
5RUN set -ex \
6    && apt-get update \
7    && apt-get install --no-install-recommends --no-install-suggests -y ca-certificates mercurial build-essential libssl-dev libpcre2-dev \
8    && mkdir -p /usr/lib/unit/modules /usr/lib/unit/debug-modules \
9    && hg clone https://hg.nginx.org/unit \
10    && cd unit \
11    && hg up 1.26.1 \
12    && NCPU="$(getconf _NPROCESSORS_ONLN)" \
13    && DEB_HOST_MULTIARCH="$(dpkg-architecture -q DEB_HOST_MULTIARCH)" \
14    && CC_OPT="$(DEB_BUILD_MAINT_OPTIONS="hardening=+all,-pie" DEB_CFLAGS_MAINT_APPEND="-Wp,-D_FORTIFY_SOURCE=2 -fPIC" dpkg-buildflags --get CFLAGS)" \
15    && LD_OPT="$(DEB_BUILD_MAINT_OPTIONS="hardening=+all,-pie" DEB_LDFLAGS_MAINT_APPEND="-Wl,--as-needed -pie" dpkg-buildflags --get LDFLAGS)" \
16    && CONFIGURE_ARGS="--prefix=/usr \
17                --state=/var/lib/unit \
18                --control=unix:/var/run/control.unit.sock \
19                --pid=/var/run/unit.pid \
20                --log=/var/log/unit.log \
21                --tmp=/var/tmp \
22                --user=unit \
23                --group=unit \
24                --openssl \
25                --libdir=/usr/lib/$DEB_HOST_MULTIARCH" \
26    && ./configure $CONFIGURE_ARGS --cc-opt="$CC_OPT" --ld-opt="$LD_OPT" --modules=/usr/lib/unit/debug-modules --debug \
27    && make -j $NCPU unitd \
28    && install -pm755 build/unitd /usr/sbin/unitd-debug \
29    && make clean \
30    && ./configure $CONFIGURE_ARGS --cc-opt="$CC_OPT" --ld-opt="$LD_OPT" --modules=/usr/lib/unit/modules \
31    && make -j $NCPU unitd \
32    && install -pm755 build/unitd /usr/sbin/unitd \
33    && make clean \
34    && ./configure $CONFIGURE_ARGS --cc-opt="$CC_OPT" --modules=/usr/lib/unit/debug-modules --debug \
35    && ./configure go --go-path=$GOPATH \
36    && make -j $NCPU go-install-src libunit-install \
37    && make clean \
38    && ./configure $CONFIGURE_ARGS --cc-opt="$CC_OPT" --modules=/usr/lib/unit/modules \
39    && ./configure go --go-path=$GOPATH \
40    && make -j $NCPU go-install-src libunit-install \
41    && ldd /usr/sbin/unitd | awk '/=>/{print $(NF-1)}' | while read n; do dpkg-query -S $n; done | sed 's/^\([^:]\+\):.*$/\1/' | sort | uniq > /requirements.apt
42
43FROM golang:1.18
44COPY docker-entrypoint.sh /usr/local/bin/
45COPY --from=BUILDER /usr/sbin/unitd /usr/sbin/unitd
46COPY --from=BUILDER /usr/sbin/unitd-debug /usr/sbin/unitd-debug
47COPY --from=BUILDER /usr/lib/unit/ /usr/lib/unit/
48COPY --from=BUILDER /requirements.apt /requirements.apt
49COPY --from=BUILDER /usr/lib/*-linux-gnu/libunit.a /tmp/
50COPY --from=BUILDER /usr/include/nxt_* /usr/include/
51COPY --from=BUILDER /go/src/ /go/src/
52RUN set -x \
53    && if [ -f "/tmp/libunit.a" ]; then \
54        mv /tmp/libunit.a /usr/lib/$(dpkg-architecture -q DEB_HOST_MULTIARCH)/libunit.a; \
55        rm -f /tmp/libunit.a; \
56    fi \
57    && mkdir -p /var/lib/unit/ \
58    && mkdir /docker-entrypoint.d/ \
59    && addgroup --system unit \
60    && adduser \
61         --system \
62         --disabled-login \
63         --ingroup unit \
64         --no-create-home \
65         --home /nonexistent \
66         --gecos "unit user" \
67         --shell /bin/false \
68         unit \
69    && apt update \
70    && apt --no-install-recommends --no-install-suggests -y install curl $(cat /requirements.apt) \
71    && apt-get clean && rm -rf /var/lib/apt/lists/* \
72    && rm -f /requirements.apt \
73    && ln -sf /dev/stdout /var/log/unit.log
74
75STOPSIGNAL SIGTERM
76
77ENTRYPOINT ["/usr/local/bin/docker-entrypoint.sh"]
78
79CMD ["unitd", "--no-daemon", "--control", "unix:/var/run/control.unit.sock"]
80