stagex/packages/openssl/Dockerfile

FROM ocirep/busybox:latest as busybox
FROM ocirep/gcc:latest as gcc
FROM ocirep/binutils:latest as binutils
FROM ocirep/musl:latest as musl
FROM ocirep/make:latest as make
FROM ocirep/perl:latest as perl
FROM ocirep/linux-headers:latest as linux-headers

FROM busybox as build
COPY --from=gcc . /
COPY --from=binutils . /
COPY --from=make . /
COPY --from=musl . /
COPY --from=perl . /
COPY --from=linux-headers . /
ENV SRC_SITE=https://www.openssl.org/source
ENV SRC_VERSION=3.0.12
ENV SRC_HASH=f93c9e8edde5e9166119de31755fc87b4aa34863662f67ddfcba14d0b6b69b61
RUN wget ${SRC_SITE}/openssl-${SRC_VERSION}.tar.gz
RUN echo "${SRC_HASH}  openssl-${SRC_VERSION}.tar.gz" | sha256sum -c
RUN tar -xf openssl-${SRC_VERSION}.tar.gz
WORKDIR openssl-${SRC_VERSION}
RUN set -eux; \
    export CC='gcc -fPIE -pie -static'; \
    perl ./Configure \
        --prefix=/usr \
        --libdir=lib \
        --openssldir=/etc/ssl \
        --static \
        -static \
        enable-ktls \
        no-shared \
		no-zlib \
		no-async \
		no-comp \
		no-idea \
		no-mdc2 \
		no-rc5 \
		no-ec2m \
		no-ssl3 \
		no-seed \
		no-weak-ssl-ciphers \
        linux-x86_64; \
    make; \
    make DESTDIR=/home/user/rootfs install

FROM scratch
COPY --from=build /home/user/rootfs /
USER 100:100
ENTRYPOINT ["/usr/bin/openssl"]
CMD ["version"]
make, openssl, and perl packages 2023-11-16 10:01:19 +00:00			`FROM ocirep/busybox:latest as busybox`
			`FROM ocirep/gcc:latest as gcc`
			`FROM ocirep/binutils:latest as binutils`
			`FROM ocirep/musl:latest as musl`
			`FROM ocirep/make:latest as make`
			`FROM ocirep/perl:latest as perl`
			`FROM ocirep/linux-headers:latest as linux-headers`

			`FROM busybox as build`
			`COPY --from=gcc . /`
			`COPY --from=binutils . /`
			`COPY --from=make . /`
			`COPY --from=musl . /`
			`COPY --from=perl . /`
			`COPY --from=linux-headers . /`
			`ENV SRC_SITE=https://www.openssl.org/source`
			`ENV SRC_VERSION=3.0.12`
			`ENV SRC_HASH=f93c9e8edde5e9166119de31755fc87b4aa34863662f67ddfcba14d0b6b69b61`
			`RUN wget ${SRC_SITE}/openssl-${SRC_VERSION}.tar.gz`
			`RUN echo "${SRC_HASH} openssl-${SRC_VERSION}.tar.gz" \| sha256sum -c`
			`RUN tar -xf openssl-${SRC_VERSION}.tar.gz`
			`WORKDIR openssl-${SRC_VERSION}`
			`RUN set -eux; \`
			`export CC='gcc -fPIE -pie -static'; \`
			`perl ./Configure \`
			`--prefix=/usr \`
			`--libdir=lib \`
			`--openssldir=/etc/ssl \`
			`--static \`
			`-static \`
			`enable-ktls \`
			`no-shared \`
			`no-zlib \`
			`no-async \`
			`no-comp \`
			`no-idea \`
			`no-mdc2 \`
			`no-rc5 \`
			`no-ec2m \`
			`no-ssl3 \`
			`no-seed \`
			`no-weak-ssl-ciphers \`
			`linux-x86_64; \`
			`make; \`
			`make DESTDIR=/home/user/rootfs install`

			`FROM scratch`
			`COPY --from=build /home/user/rootfs /`
			`USER 100:100`
			`ENTRYPOINT ["/usr/bin/openssl"]`
			`CMD ["version"]`