-
-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathDockerfile
71 lines (65 loc) · 2.05 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
FROM alpine:3.17.2
ARG STRONGSWAN_VERSION=5.9.10
ARG S6_OVERLAY_VERSION=3.1.4.1
RUN apk add --no-cache \
bash~=5.2 \
iptables~=1.8 \
nmap=~7.93 \
util-linux~=2.38 \
gmp~=6.2 \
openssl~=3.0 \
libcurl~=7.88 \
python3~=3.10 \
sqlite-libs~=3.40 \
\
&& apk add --no-cache --virtual .build-deps \
build-base~=0.5 \
linux-headers~=5.19 \
gmp-dev~=6.2 \
curl-dev~=7.88 \
sqlite-dev~=3.40 \
&& wget --quiet "https://download.strongswan.org/strongswan-${STRONGSWAN_VERSION}.tar.bz2" \
&& tar -xjf "strongswan-${STRONGSWAN_VERSION}.tar.bz2" \
&& rm "strongswan-${STRONGSWAN_VERSION}.tar.bz2" \
&& cd "strongswan-${STRONGSWAN_VERSION}" \
&& ./configure --prefix=/usr/local --sysconfdir=/etc \
--enable-ha \
--enable-openssl \
--enable-curl \
--enable-sqlite \
--enable-bypass-lan \
--enable-farp \
--enable-eap-identity \
--enable-eap-sim \
--enable-eap-aka \
--enable-eap-aka-3gpp2 \
--enable-eap-simaka-pseudonym \
--enable-eap-simaka-reauth \
--enable-eap-md5 \
--enable-eap-mschapv2 \
--enable-eap-radius \
--enable-eap-tls \
--enable-xauth-eap \
--enable-dhcp \
--enable-unity \
--enable-counters \
&& make \
&& make install \
&& cd - \
&& rm -r "strongswan-${STRONGSWAN_VERSION}" \
&& apk del .build-deps \
\
&& ARCH="$(uname -m)" \
&& export ARCH \
&& wget --quiet "https://github.com/just-containers/s6-overlay/releases/download/v${S6_OVERLAY_VERSION}/s6-overlay-noarch.tar.xz" \
&& tar -C / -Jxpf s6-overlay-noarch.tar.xz \
&& rm s6-overlay-noarch.tar.xz \
&& wget --quiet "https://github.com/just-containers/s6-overlay/releases/download/v${S6_OVERLAY_VERSION}/s6-overlay-${ARCH}.tar.xz" \
&& tar -C / -Jxpf "s6-overlay-${ARCH}.tar.xz" \
&& rm "s6-overlay-${ARCH}.tar.xz"
ENV PATH="/usr/local/bin:${PATH}"
COPY etc /etc
COPY www /var/www
# Generating keys takes longer than the default timeout of 5 seconds.
ENV S6_CMD_WAIT_FOR_SERVICES_MAXTIME=0
ENTRYPOINT ["/init"]