vw_small

Hardened fork of Vaultwarden (https://github.com/dani-garcia/vaultwarden) with fewer features.
git clone https://git.philomathiclife.com/repos/vw_small
Log | Files | Refs | README

commit 5f7b220eb43f85b4286c9a32f3798f35678fdac9
parent 1b20a2551440d6e4a7d516d1e8de879d78507dd8
Author: Miroslav Prasil <miroslav@prasil.info>
Date:   Thu, 30 Aug 2018 17:35:02 +0100

Initial shot as cross compilation

Diffstat:
ADockerfile.armv7 | 114+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 114 insertions(+), 0 deletions(-)

diff --git a/Dockerfile.armv7 b/Dockerfile.armv7 @@ -0,0 +1,113 @@ +# Using multistage build: +# https://docs.docker.com/develop/develop-images/multistage-build/ +# https://whitfin.io/speeding-up-rust-docker-builds/ +####################### VAULT BUILD IMAGE ####################### +FROM node:8-alpine as vault + +ENV VAULT_VERSION "v2.2.0" + +ENV URL "https://github.com/bitwarden/web.git" + +RUN apk add --update-cache --upgrade \ + curl \ + git \ + tar + +RUN git clone -b $VAULT_VERSION --depth 1 $URL web-build +WORKDIR /web-build + +COPY /docker/set-vault-baseurl.patch /web-build/ +RUN git apply set-vault-baseurl.patch + +RUN npm run sub:init && npm install + +RUN npm run dist \ + && mv build /web-vault + +########################## BUILD IMAGE ########################## +# We need to use the Rust build image, because +# we need the Rust compiler and Cargo tooling +FROM rust as build + +RUN apt-get update \ + && apt-get install -y \ + gcc-arm-linux-gnueabihf \ + && mkdir -p ~/.cargo \ + && echo '[target.armv7-unknown-linux-gnueabihf]' >> ~/.cargo/config \ + && echo 'linker = "arm-linux-gnueabihf-gcc"' >> ~/.cargo/config + +ENV CARGO_HOME "/root/.cargo" +ENV USER "root" + +# Creates a dummy project used to grab dependencies +RUN USER=root cargo new --bin app +WORKDIR /app + +# Copies over *only* your manifests and vendored dependencies +COPY ./Cargo.* ./ +COPY ./libs ./libs +COPY ./rust-toolchain ./rust-toolchain + +# Prepare openssl armhf libs +RUN sed 's/^deb/deb-src/' /etc/apt/sources.list > \ + /etc/apt/sources.list.d/deb-src.list \ + && dpkg --add-architecture armhf \ + && apt-get update \ + && apt-get install -y \ + libssl-dev:armhf \ + libc6-dev:armhf + +ENV CC_armv7_unknown_linux_gnueabihf="/usr/bin/arm-linux-gnueabihf-gcc" +ENV CROSS_COMPILE="1" +ENV OPENSSL_INCLUDE_DIR="/usr/include/arm-linux-gnueabihf" +ENV OPENSSL_LIB_DIR="/usr/lib/arm-linux-gnueabihf" + +# Builds your dependencies and removes the +# dummy project, except the target folder +# This folder contains the compiled dependencies +COPY . . +RUN rustup target add armv7-unknown-linux-gnueabihf +RUN cargo build --release --target=armv7-unknown-linux-gnueabihf -v +RUN find . -not -path "./target*" -delete + +# Copies the complete project +# To avoid copying unneeded files, use .dockerignore +COPY . . + +# Builds again, this time it'll just be +# your actual source files being built +RUN cargo build --release --target=armv7-unknown-linux-gnueabihf -v + +######################## RUNTIME IMAGE ######################## +# Create a new stage with a minimal image +# because we already have a binary built +FROM resin/armv7hf-debian:stretch + +ENV ROCKET_ENV "staging" +ENV ROCKET_WORKERS=10 + +RUN [ "cross-build-start" ] + +# Install needed libraries +RUN apt-get update && apt-get install -y\ + openssl\ + ca-certificates\ + --no-install-recommends\ + && rm -rf /var/lib/apt/lists/* + +RUN mkdir /data + +RUN [ "cross-build-end" ] + +VOLUME /data +EXPOSE 80 + +# Copies the files from the context (env file and web-vault) +# and the binary from the "build" stage to the current stage +COPY .env . +COPY Rocket.toml . +COPY --from=vault /web-vault ./web-vault +COPY --from=build app/target/release/bitwarden_rs . + +# Configures the startup! +CMD ./bitwarden_rs +\ No newline at end of file