1
0
Fork 0
cacert-devsetup/signer.Dockerfile
Jan Dittberner fd39d4adce Add a signer variant with ancient base image
The production signer is using a really old base OS (Debian 4.0 Etch or
5.0 Lenny) with some packages like openssl from Debian 6.0 Stretch. This
commit uses the oldest available Docker base image to make a somewhat
reproducible variant of this OS.
2020-12-25 08:13:22 +01:00

29 lines
852 B
Docker

# should be etch or lenny but dockerhub doesn't have such old versions
FROM debian:squeeze
RUN echo "deb http://archive.debian.org/debian squeeze main" > /etc/apt/sources.list ; \
apt-get -o=Acquire::AllowInsecureRepositories=true update \
&& DEBIAN_FRONTEND=noninteractive \
apt-get -o=APT::Get::AllowUnauthenticated=true install -y --no-install-recommends \
gnupg \
libdevice-serialport-perl \
libdigest-sha-perl \
libfile-counterfile-perl \
openssl \
perl \
socat \
xdelta \
&& apt-get clean \
&& rm -rf /var/lib/apt/lists/*
COPY cacert-software/CommModule/server.pl \
cacert-software/CommModule/logclean.sh \
/srv/CommModule/
COPY docker/run-signer usr/local/bin/
COPY docker/signer-config/* /srv/caconfig/
COPY testca /srv/testca/
VOLUME /srv/ca
CMD ["/usr/local/bin/run-signer"]