This repository has been archived by the owner on Mar 15, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 8
/
Dockerfile-alpine
124 lines (102 loc) · 3.26 KB
/
Dockerfile-alpine
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
# Licensed to the Apache Software Foundation (ASF) under one
# or more contributor license agreements. See the NOTICE file
# distributed with this work for additional information
# regarding copyright ownership. The ASF licenses this file
# to you under the Apache License, Version 2.0 (the
# "License"); you may not use this file except in compliance
# with the License. You may obtain a copy of the License at
# http://www.apache.org/licenses/LICENSE-2.0
# Unless required by applicable law or agreed to in writing,
# software distributed under the License is distributed on an
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
# KIND, either express or implied. See the License for the
# specific language governing permissions and limitations
# under the License.
FROM golang:1.13-alpine as builder
RUN apk update && apk add --no-cache \
ca-certificates \
cmake \
musl-dev \
g++ \
gcc \
git \
make \
libtool \
automake \
autoconf
ENV BUILD_PATH=/tmp/milagro-dta-build
ENV LIBRARY_PATH=$BUILD_PATH/lib:$BUILD_PATH/lib64
ENV LD_LIBRARY_PATH=$LIBRARY_PATH
ENV C_INCLUDE_PATH=$BUILD_PATH/include
WORKDIR /root
# Milagro Crypto C Library
RUN echo Building Milagro Crypto C library && \
git clone https://github.com/apache/incubator-milagro-crypto-c.git && \
cd incubator-milagro-crypto-c && \
git checkout feecb27e7cc24ba5809405cc3efe74b0f7ac69ef && \
mkdir build && \
cd build && \
cmake \
-DCMAKE_BUILD_TYPE=Release \
-DBUILD_SHARED_LIBS=OFF \
-DAMCL_CHUNK=64 \
-DAMCL_CURVE="BLS381,SECP256K1" \
-DAMCL_RSA="" \
-DBUILD_PYTHON=OFF \
-DBUILD_BLS=ON \
-DBUILD_WCC=OFF \
-DBUILD_MPIN=OFF \
-DBUILD_X509=OFF \
-DWORD_SIZE=64 \
-DCMAKE_C_FLAGS="-fPIC" \
-DCMAKE_INSTALL_PREFIX=$BUILD_PATH \
.. && \
make && make install
# LibOQS
RUN echo Building LibOQS && \
git clone https://github.com/open-quantum-safe/liboqs.git && \
cd liboqs && \
git checkout 7cb03c3ce9182790c77e69cd21a6901e270781d6 && \
autoreconf -i && \
./configure \
--prefix=$BUILD_PATH \
--disable-shared \
--disable-aes-ni \
--disable-kem-bike \
--disable-kem-frodokem \
--disable-kem-newhope \
--disable-kem-kyber \
--disable-sig-qtesla \
--disable-doxygen-doc && \
make -j && make install
# Lib pqnist
ADD libs/crypto/libpqnist pqnist/
RUN mkdir -p pqnist/build && \
cd pqnist/build && \
cmake \
-DCMAKE_BUILD_TYPE=Release\
-DBUILD_SHARED_LIBS=OFF \
-DCMAKE_INSTALL_PREFIX=$BUILD_PATH \
.. && \
make && make install
RUN go get -u golang.org/x/lint/golint
RUN echo Building Milagro DTA
ENV PROJECT_PATH=/src/github.com/apache/incubator-milagro-dta
ENV CGO_LDFLAGS="-L $LIBRARY_PATH"
ENV CGO_CPPFLAGS="-I $C_INCLUDE_PATH"
WORKDIR $PROJECT_PATH
ADD . $PROJECT_PATH
RUN GO111MODULES=on go mod vendor
RUN ./lint.sh
RUN CGO_ENABLED=1 \
go build \
-ldflags '-w -linkmode external -extldflags "-static"' \
-o $GOPATH/bin/milagro \
github.com/apache/incubator-milagro-dta/cmd/service
RUN go test -cover `go list ./...`
RUN $GOPATH/bin/milagro init
FROM scratch
COPY --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/
COPY --from=builder /root/.milagro .milagro
COPY --from=builder /go/bin/milagro /
ENTRYPOINT ["/milagro", "daemon"]