ResiLien
/
terraform
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Create smaller docker images for releases 

Now we'll use build containers to perform preparation steps, causing the release
images to contain only Terraform itself and git/openssh.
This commit is contained in:
Robert J 2019-04-10 12:06:04 -05:00 committed by Martin Atkins
parent 5066003284
commit b4e8e63618
1 changed files with 12 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
scripts/docker-release/Dockerfile-release
View File

@ -7,8 +7,8 @@
# tree, without any dependency on there being an existing release on # tree, without any dependency on there being an existing release on
# releases.hashicorp.com. # releases.hashicorp.com.
FROM alpine:latest FROM alpine:3.9.2 as build
MAINTAINER "HashiCorp Terraform Team <terraform@hashicorp.com>" LABEL maintainer="HashiCorp Terraform Team <terraform@hashicorp.com>"
# This is intended to be run from the hooks/build script, which sets this # This is intended to be run from the hooks/build script, which sets this
# appropriately based on git tags. # appropriately based on git tags.
@ -22,11 +22,10 @@ COPY releases_public_key .
# - Verify that the zip file matches the expected checksum # - Verify that the zip file matches the expected checksum
# - Extract the zip file so it can be run # - Extract the zip file so it can be run
RUN echo Building image for Terraform ${TERRAFORM_VERSION} && \ RUN apk add --no-cache git curl openssh gnupg && \
apk add --update git curl openssh gnupg && \ curl -O https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_linux_amd64.zip && \
curl https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_linux_amd64.zip > terraform_${TERRAFORM_VERSION}_linux_amd64.zip && \ curl -O https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_SHA256SUMS.sig && \
curl https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_SHA256SUMS.sig > terraform_${TERRAFORM_VERSION}_SHA256SUMS.sig && \ curl -O https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_SHA256SUMS && \
curl https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_SHA256SUMS > terraform_${TERRAFORM_VERSION}_SHA256SUMS && \
gpg --import releases_public_key && \ gpg --import releases_public_key && \
gpg --verify terraform_${TERRAFORM_VERSION}_SHA256SUMS.sig terraform_${TERRAFORM_VERSION}_SHA256SUMS && \ gpg --verify terraform_${TERRAFORM_VERSION}_SHA256SUMS.sig terraform_${TERRAFORM_VERSION}_SHA256SUMS && \
grep linux_amd64 terraform_${TERRAFORM_VERSION}_SHA256SUMS >terraform_${TERRAFORM_VERSION}_SHA256SUMS_linux_amd64 && \ grep linux_amd64 terraform_${TERRAFORM_VERSION}_SHA256SUMS >terraform_${TERRAFORM_VERSION}_SHA256SUMS_linux_amd64 && \
@ -34,6 +33,12 @@ RUN echo Building image for Terraform ${TERRAFORM_VERSION} && \
unzip terraform_${TERRAFORM_VERSION}_linux_amd64.zip -d /bin && \ unzip terraform_${TERRAFORM_VERSION}_linux_amd64.zip -d /bin && \
rm -f terraform_${TERRAFORM_VERSION}_linux_amd64.zip terraform_${TERRAFORM_VERSION}_SHA256SUMS* rm -f terraform_${TERRAFORM_VERSION}_linux_amd64.zip terraform_${TERRAFORM_VERSION}_SHA256SUMS*
FROM alpine:3.9.2 as final
LABEL "com.hashicorp.terraform.version"="${TERRAFORM_VERSION}" LABEL "com.hashicorp.terraform.version"="${TERRAFORM_VERSION}"
RUN apk add --no-cache git openssh
COPY --from=build ["/bin/terraform", "/bin/terraform"]
ENTRYPOINT ["/bin/terraform"] ENTRYPOINT ["/bin/terraform"]