forked from grimm-co/GOCSP-responder
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Dockerfile
26 lines (20 loc) · 885 Bytes
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
FROM ubuntu:latest
# Install aws kms dependencies
RUN apt update && apt install --no-install-recommends -y libjson-c5 awscli jq
### add required libs for pkcs11 provider
# ignore symlinks.
COPY vcpkg/installed/x64-linux-dynamic/lib/ /usr/local/lib/
# Install aws kms (depends on aws-sdk-cpp libs
COPY aws-kms-pkcs11/aws_kms_pkcs11.so /usr/local/lib/
# create required symlinks for above libs
RUN /usr/sbin/ldconfig
# Copy OCSP server images
COPY go-ocsp-responder/go-ocsp-responder /usr/bin/go-ocsp-responder
COPY go-ocsp-responder/gencsr/gencsr /usr/bin/gencsr
# Copy fake config so we can write to the filesystem. FIXME hardcoded depot location.
RUN mkdir -p /etc/aws-kms-pkcs11/ && ln -s /depot/aws-kms-config.json /etc/aws-kms-pkcs11/config.json
# Add startup.sh
COPY go-ocsp-responder/startup.sh /startup.sh
RUN chmod 0755 /startup.sh
EXPOSE 8080
ENTRYPOINT ["/startup.sh"]