Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

mystikos container base image should have cryptsetup-bin preinstalled #1334

Open
jupacaza opened this issue May 23, 2022 · 0 comments
Open

mystikos container base image should have cryptsetup-bin preinstalled #1334

jupacaza opened this issue May 23, 2022 · 0 comments
Assignees
@radhikaj @CyanDevs
Labels
area/tooling issues against build tooling severity/moderate Severity: Moderate status/triaged Status: Triaged

Comments

@jupacaza
Copy link

When using the mystikos base image to build a container one library that needs to be installed is cryptsetup-bin:

RUN apt-get update && apt-get install -y cryptsetup-bin

The ask is to ship mystikos-bionic with this preinstalled so that the consumer of mystikos-bionic does not have to do apt-get, which requires internet connection.

Example dockerfile:

FROM mystikos.azurecr.io/mystikos-bionic:v0.8.0 AS build

WORKDIR /home
RUN apt-get update && apt-get install -y cryptsetup-bin
...
RUN myst mkext2 appdir-tokenservice rootfs
RUN myst fssig --roothash rootfs > roothash
RUN openssl genrsa -out private.pem -3 3072
RUN myst package-sgx --roothash=roothash private.pem config.json
...

CMD [ "/home/myst/bin/dotnet" ]

Desired:
no need to run apt-get update and install

FROM mystikos.azurecr.io/mystikos-bionic:v0.8.0 AS build

WORKDIR /home
...

RUN myst mkext2 appdir-tokenservice rootfs
RUN myst fssig --roothash rootfs > roothash
RUN openssl genrsa -out private.pem -3 3072
RUN myst package-sgx --roothash=roothash private.pem config.json
...

CMD [ "/home/myst/bin/dotnet" ]
@paulcallen paulcallen added status/triaged Status: Triaged severity/moderate Severity: Moderate area/tooling issues against build tooling labels Jun 13, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@radhikaj radhikaj

@CyanDevs CyanDevs

Labels
area/tooling issues against build tooling severity/moderate Severity: Moderate status/triaged Status: Triaged
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@jupacaza @radhikaj @paulcallen @CyanDevs