stagex/packages/linux-nitro/Containerfile

FROM scratch as base
ENV VERSION=5.19.6
ENV SRC_HASH=41a4f824af614460c429a7c723e8dcbb0e042f0047d328c18b4ed6f2b4efa63a
ENV SRC_FILE=linux-${VERSION}.tar.xz
ENV SRC_SITE=http://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/${SRC_FILE}
ENV NSM_VERSION=ed24913346a34d719afa2031299253160a2e3460
ENV NSM_SRC_HASH=720916a640f7579a1e9a972ddd43448d201b9ce4d4750079d8256e83be3e937c
ENV NSM_SRC_FILE=nsm.tgz
ENV NSM_SRC_SITE=https://codeload.github.com/aws/aws-nitro-enclaves-sdk-bootstrap/legacy.tar.gz/${NSM_VERSION}

FROM base as fetch
ADD --checksum=sha256:${SRC_HASH} ${SRC_SITE} .
ADD --checksum=sha256:${NSM_SRC_HASH} ${NSM_SRC_SITE} ${NSM_SRC_FILE}

FROM fetch as build
COPY --from=musl . /
COPY --from=make . /
COPY --from=binutils . /
COPY --from=linux-headers . /
COPY --from=elfutils . /
COPY --from=openssl . /
COPY --from=perl . /
COPY --from=m4 . /
COPY --from=gcc . /
COPY --from=bison . /
COPY --from=libzstd . /
COPY --from=zlib . /
COPY --from=flex . /
COPY --from=pkgconf . /
COPY --from=coreutils . /
COPY --from=findutils . /
COPY --from=diffutils . /
COPY --from=tar . /
COPY --from=gzip . /
COPY --from=xz . /
COPY --from=sed . /
COPY --from=grep . /
COPY --from=gawk . /
COPY --from=bc . /
COPY --from=bash . /
COPY --from=bash /bin/bash /bin/sh
RUN mkdir nitro-bootstrap
RUN tar -xf ${NSM_SRC_FILE} -C nitro-bootstrap --strip-components 1
RUN tar -xf ${SRC_FILE}
WORKDIR linux-${VERSION}
ADD linux.config .config
RUN <<-EOF
	set -eux
	mkdir /tmp
	make olddefconfig
	make bzImage
	make modules_prepare
	cd ../nitro-bootstrap
	make -C ../linux-${VERSION} M=../nitro-bootstrap/nsm-driver
EOF
from build as package

FROM build as install
RUN <<-EOF
	set -eux
	mkdir /rootfs
	cp arch/x86_64/boot/bzImage /rootfs
	cp /nitro-bootstrap/nsm-driver/nsm.ko /rootfs
EOF
RUN find /rootfs -exec touch -hcd "@0" "{}" +

FROM scratch as package
COPY --from=install /rootfs /
add nitro kernel 2024-02-12 18:05:54 +00:00			`FROM scratch as base`
fix: linux-nitro paths/vars 2024-02-14 15:02:42 +00:00			`ENV VERSION=5.19.6`
			`ENV SRC_HASH=41a4f824af614460c429a7c723e8dcbb0e042f0047d328c18b4ed6f2b4efa63a`
			`ENV SRC_FILE=linux-${VERSION}.tar.xz`
			`ENV SRC_SITE=http://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/${SRC_FILE}`
feat: build nitro module with nitro kernel 2024-02-13 15:42:58 +00:00			`ENV NSM_VERSION=ed24913346a34d719afa2031299253160a2e3460`
			`ENV NSM_SRC_HASH=720916a640f7579a1e9a972ddd43448d201b9ce4d4750079d8256e83be3e937c`
			`ENV NSM_SRC_FILE=nsm.tgz`
fix: linux-nitro nsm version 2024-02-14 14:47:18 +00:00			`ENV NSM_SRC_SITE=https://codeload.github.com/aws/aws-nitro-enclaves-sdk-bootstrap/legacy.tar.gz/${NSM_VERSION}`
add nitro kernel 2024-02-12 18:05:54 +00:00
			`FROM base as fetch`
			`ADD --checksum=sha256:${SRC_HASH} ${SRC_SITE} .`
feat: build nitro module with nitro kernel 2024-02-13 15:42:58 +00:00			`ADD --checksum=sha256:${NSM_SRC_HASH} ${NSM_SRC_SITE} ${NSM_SRC_FILE}`
add nitro kernel 2024-02-12 18:05:54 +00:00
			`FROM fetch as build`
			`COPY --from=musl . /`
			`COPY --from=make . /`
			`COPY --from=binutils . /`
			`COPY --from=linux-headers . /`
			`COPY --from=elfutils . /`
			`COPY --from=openssl . /`
			`COPY --from=perl . /`
			`COPY --from=m4 . /`
			`COPY --from=gcc . /`
			`COPY --from=bison . /`
			`COPY --from=libzstd . /`
			`COPY --from=zlib . /`
			`COPY --from=flex . /`
			`COPY --from=pkgconf . /`
fix: linux-nitro deps 2024-02-14 19:22:22 +00:00			`COPY --from=coreutils . /`
			`COPY --from=findutils . /`
fix: linux-nitro vars 2024-02-14 22:56:06 +00:00			`COPY --from=diffutils . /`
fix: linux-nitro deps 2024-02-14 19:22:22 +00:00			`COPY --from=tar . /`
			`COPY --from=gzip . /`
			`COPY --from=xz . /`
			`COPY --from=sed . /`
			`COPY --from=grep . /`
			`COPY --from=gawk . /`
			`COPY --from=bc . /`
			`COPY --from=bash . /`
			`COPY --from=bash /bin/bash /bin/sh`
fix: linux-nitro paths/vars 2024-02-14 15:02:42 +00:00			`RUN mkdir nitro-bootstrap`
			`RUN tar -xf ${NSM_SRC_FILE} -C nitro-bootstrap --strip-components 1`
add nitro kernel 2024-02-12 18:05:54 +00:00			`RUN tar -xf ${SRC_FILE}`
fix: linux-nitro paths/vars 2024-02-14 15:02:42 +00:00			`WORKDIR linux-${VERSION}`
add nitro kernel 2024-02-12 18:05:54 +00:00			`ADD linux.config .config`
			`RUN <<-EOF`
			`set -eux`
fix: linux-nitro deps 2024-02-14 19:22:22 +00:00			`mkdir /tmp`
add nitro kernel 2024-02-12 18:05:54 +00:00			`make olddefconfig`
fix: linux-nitro paths/vars 2024-02-14 15:02:42 +00:00			`make bzImage`
feat: build nitro module with nitro kernel 2024-02-13 15:42:58 +00:00			`make modules_prepare`
fix: linux-nitro paths/vars 2024-02-14 15:02:42 +00:00			`cd ../nitro-bootstrap`
fix: linux-nitro vars 2024-02-14 22:56:06 +00:00			`make -C ../linux-${VERSION} M=../nitro-bootstrap/nsm-driver`
add nitro kernel 2024-02-12 18:05:54 +00:00			`EOF`
fix: linux-nitro deps 2024-02-14 19:22:22 +00:00			`from build as package`
add nitro kernel 2024-02-12 18:05:54 +00:00
			`FROM build as install`
			`RUN <<-EOF`
			`set -eux`
fix: linux-nitro paths/vars 2024-02-14 15:02:42 +00:00			`mkdir /rootfs`
			`cp arch/x86_64/boot/bzImage /rootfs`
			`cp /nitro-bootstrap/nsm-driver/nsm.ko /rootfs`
add nitro kernel 2024-02-12 18:05:54 +00:00			`EOF`
			`RUN find /rootfs -exec touch -hcd "@0" "{}" +`

			`FROM scratch as package`
			`COPY --from=install /rootfs /`