This is a Docker image for building Alpine Linux packages.
Build packages for any Alpine Linux release, specifying the target release in the Docker image tag:
andyshinn/alpine-abuild:3.1: based on Alpine 3.1andyshinn/alpine-abuild:3.2: based on Alpine 3.2andyshinn/alpine-abuild:3.3: based on Alpine 3.3andyshinn/alpine-abuild:3.4: based on Alpine 3.4andyshinn/alpine-abuild:3.5: based on Alpine 3.5andyshinn/alpine-abuild:3.6: based on Alpine 3.6andyshinn/alpine-abuild:latest: based on the most recent Alpine (currently 3.6)andyshinn/alpine-abuild:edge: based on Alpine edge (includes testing repository as well)
The builder is typically run from your Alpine Linux package source directory (changing ~/.abuild/mykey.rsa and ~/.abuild/mykey.rsa.pub to your packager private and public key locations):
docker run \
-e RSA_PRIVATE_KEY="$(cat ~/.abuild/mykey.rsa)" \
-e RSA_PRIVATE_KEY_NAME="mykey.rsa" \
-v "$PWD:/home/builder/package" \
-v "$HOME/.abuild/packages:/packages" \
-v "$HOME/.abuild/mykey.rsa.pub:/etc/apk/keys/mykey.rsa.pub" \
andyshinn/alpine-abuild:latest
This would build the package at your current working directory, and place the resulting packages in ~/.abuild/packages/builder/x86_64. Subsequent builds of packages will update the ~/.abuild/packages/builder/x86_64/APKINDEX.tar.gz file.
You can also run the builder anywhere. You just need to mount your package source and build directories to /home/builder/package and /packages, respectively.
There are a number of environment variables you can change at package build time:
RSA_PRIVATE_KEY: This is the contents of your RSA private key. This is optional. You should usePACKAGER_PRIVKEYand mount your private key if not usingRSA_PRIVATE_KEY.RSA_PRIVATE_KEY_NAME: Defaults tossh.rsa. This is the name we will set the private key file as when usingRSA_PRIVATE_KEY. The file will be written out to/home/builder/$RSA_PRIVATE_KEY_NAME.PACKAGER_PRIVKEY: Defaults to/home/builder/.abuild/$RSA_PRIVATE_KEY_NAME. This is generally used if you are bind mounting your private key instead of passing it in withRSA_PRIVATE_KEY.REPODEST: Defaults to/packages. If you want to override the destination of the build packages. You must also be sure thebuilderuser has access to write to the destination. Theabuilderentry point will attempt tomkdir -pthis location.PACKAGER: Defaults toGlider Labs <[email protected]>. This is the name of the package used in package metadata.
You can use this image to generate keys if you don't already have them. Generate them in a container using the following command (replacing Glider Labs <[email protected]> with your own name and email):
docker run --name keys --entrypoint abuild-keygen -e PACKAGER="Glider Labs <[email protected]>" andyshinn/alpine-abuild:latest -n
You'll see some output like the following:
Generating RSA private key, 2048 bit long modulus
.............................................+++
.................................+++
e is 65537 (0x10001)
writing RSA key
>>>
>>> You'll need to install /home/builder/.abuild/[email protected] into
>>> /etc/apk/keys to be able to install packages and repositories signed with
>>> /home/builder/.abuild/[email protected]
>>>
>>> You might want add following line to /home/builder/.abuild/abuild.conf:
>>>
>>> PACKAGER_PRIVKEY="/home/builder/.abuild/[email protected]"
>>>
>>>
>>> Please remember to make a safe backup of your private key:
>>> /home/builder/.abuild/[email protected]
>>>
This output contains the path to your public and private keys. Copy the keys out of the container:
mkdir ~/.abuild
docker cp keys:/home/builder/.abuild/[email protected] ~/.abuild/
docker cp keys:/home/builder/.abuild/[email protected] ~/.abuild/
Put your key files in a safe place and destroy this container:
docker rm -f keys
Developer Note: The underlying alpine version is determined using the build argument VERSION, so:
docker build --build-arg VERSION=3.6
to build your image using Alpine Linu version 3.6