m4_changequote([[, ]]) ################################################## ## "build" stage ################################################## FROM docker.io/ubuntu:22.04 AS build # Install system packages RUN export DEBIAN_FRONTEND=noninteractive \ && apt-get update \ && apt-get install -y --no-install-recommends \ binutils-mingw-w64-i686 \ ca-certificates \ curl \ gcc-mingw-w64-i686 \ genisoimage \ make \ p7zip-full \ qemu-system-x86 \ qemu-utils \ && rm -rf /var/lib/apt/lists/* # Download noVNC ARG NOVNC_VERSION=v1.4.0 ARG NOVNC_TARBALL_URL=https://github.com/novnc/noVNC/archive/${NOVNC_VERSION}.tar.gz ARG NOVNC_TARBALL_CHECKSUM=89b0354c94ad0b0c88092ec7a08e28086d3ed572f13660bac28d5470faaae9c1 RUN curl -Lo /tmp/novnc.tgz "${NOVNC_TARBALL_URL:?}" RUN printf '%s' "${NOVNC_TARBALL_CHECKSUM:?} /tmp/novnc.tgz" | sha256sum -c RUN mkdir /tmp/novnc/ && tar -xzf /tmp/novnc.tgz --strip-components=1 -C /tmp/novnc/ # Download Websockify ARG WEBSOCKIFY_VERSION=v0.11.0 ARG WEBSOCKIFY_TARBALL_URL=https://github.com/novnc/websockify/archive/${WEBSOCKIFY_VERSION}.tar.gz ARG WEBSOCKIFY_TARBALL_CHECKSUM=628dd586e80865cd775cc402b96cf75f4daa647b0fefdc31366d08b7753016be RUN curl -Lo /tmp/websockify.tgz "${WEBSOCKIFY_TARBALL_URL:?}" RUN printf '%s' "${WEBSOCKIFY_TARBALL_CHECKSUM:?} /tmp/websockify.tgz" | sha256sum -c RUN mkdir /tmp/websockify/ && tar -xzf /tmp/websockify.tgz --strip-components=1 -C /tmp/websockify/ # Download and build srvany-ng ARG SRVANY_NG_TARBALL_URL=https://github.com/hectorm/srvany-ng/archive/refs/tags/v1.0.tar.gz ARG SRVANY_NG_TARBALL_CHECKSUM=62d4c85d5dbef86d57bf5d21ff913bce81b821735df293968e1706f85096c8b0 RUN curl -Lo /tmp/srvany-ng.tgz "${SRVANY_NG_TARBALL_URL:?}" RUN printf '%s' "${SRVANY_NG_TARBALL_CHECKSUM:?} /tmp/srvany-ng.tgz" | sha256sum -c RUN mkdir /tmp/srvany-ng/ && tar -xzf /tmp/srvany-ng.tgz --strip-components=1 -C /tmp/srvany-ng/ RUN make -C /tmp/srvany-ng/ build # Download ncat ARG NCAT_ZIP_URL=https://nmap.org/dist/ncat-portable-5.59BETA1.zip ARG NCAT_ZIP_CHECKSUM=9cdc2e688410f4563af7002d8dfa3f8a5710f15f6d409be2cab4e87890c91d1c RUN curl -Lo /tmp/ncat.zip "${NCAT_ZIP_URL:?}" RUN printf '%s' "${NCAT_ZIP_CHECKSUM:?} /tmp/ncat.zip" | sha256sum -c RUN 7z e /tmp/ncat.zip -so '**/*.exe' > /tmp/ncat.exe # Download Samba ARG SAMBA_EXE_URL=https://svn.reactos.org/packages/samba-for-ReactOSv1.3.exe ARG SAMBA_EXE_CHECKSUM=c3f55cd7a4069cd682cbdca3954c425f6657e3a1aba786e3d1559448e9f849a3 RUN curl -Lo /tmp/samba.exe "${SAMBA_EXE_URL:?}" RUN printf '%s' "${SAMBA_EXE_CHECKSUM:?} /tmp/samba.exe" | sha256sum -c # Download BusyBox ARG BUSYBOX_EXE_URL=https://frippery.org/files/busybox/busybox-w32-FRP-4784-g5507c8744.exe ARG BUSYBOX_EXE_CHECKSUM=1a257708ce5c455e0a1a56023e0d91af7e894455b9d61f69d56b126928481b82 RUN curl -Lo /tmp/busybox.exe "${BUSYBOX_EXE_URL:?}" RUN printf '%s' "${BUSYBOX_EXE_CHECKSUM:?} /tmp/busybox.exe" | sha256sum -c # Download and install ReactOS ARG REACTOS_ISO_URL=https://downloads.sourceforge.net/reactos/ReactOS-0.4.14-release-61-gef399cd-iso.zip ARG REACTOS_ISO_CHECKSUM=9d5eb98e5eea12938a5752d9e92a5329ae0a788fe92545909e9f6192401f7c9b RUN curl -Lo /tmp/reactos.zip "${REACTOS_ISO_URL:?}" RUN printf '%s' "${REACTOS_ISO_CHECKSUM:?} /tmp/reactos.zip" | sha256sum -c RUN 7z e /tmp/reactos.zip -so '*.iso' > /tmp/reactos.iso \ && 7z x /tmp/reactos.iso -o/tmp/reactos/ \ && rm -f /tmp/reactos.iso COPY --chown=root:root ./data/iso/ /tmp/reactos/ RUN install -D /tmp/srvany-ng/srvany-ng.exe /tmp/reactos/reactos/3rdParty/srvany-ng.exe RUN install -D /tmp/ncat.exe /tmp/reactos/reactos/3rdParty/ncat.exe RUN install -D /tmp/samba.exe /tmp/reactos/reactos/3rdParty/samba.exe RUN install -D /tmp/busybox.exe /tmp/reactos/reactos/3rdParty/busybox.exe RUN mkisofs -no-emul-boot -iso-level 4 -eltorito-boot loader/isoboot.bin -o /tmp/reactos.iso /tmp/reactos/ \ && qemu-img create -f qcow2 /tmp/reactos.qcow2 128G \ && timeout 900 qemu-system-x86_64 \ -machine pc -smp 2 -m 512M -accel tcg \ -device VGA -display none -serial stdio \ -device e1000,netdev=n0 -netdev user,id=n0,ipv4=on,ipv6=off,net=10.0.2.0/24,host=10.0.2.2,dns=10.0.2.3,dhcpstart=10.0.2.15,restrict=on \ -device ide-hd,id=disk0,bus=ide.0,drive=disk0 -blockdev driver=qcow2,node-name=disk0,file.driver=file,file.filename=/tmp/reactos.qcow2 \ -device ide-cd,id=cd0,bus=ide.1,drive=cd0 -blockdev driver=raw,node-name=cd0,file.driver=file,file.filename=/tmp/reactos.iso,read-only=on \ -boot order=cd,menu=off \ -usb -device usb-tablet ################################################## ## "base" stage ################################################## m4_ifdef([[CROSS_ARCH]], [[FROM docker.io/CROSS_ARCH/ubuntu:22.04]], [[FROM docker.io/ubuntu:22.04]]) AS base m4_ifdef([[CROSS_QEMU]], [[COPY --from=docker.io/hectorm/qemu-user-static:latest CROSS_QEMU CROSS_QEMU]]) # Install system packages RUN export DEBIAN_FRONTEND=noninteractive \ && apt-get update \ && apt-get install -y --no-install-recommends \ catatonit \ net-tools \ netcat-openbsd \ procps \ python3 \ qemu-system-x86 \ qemu-utils \ rlwrap \ runit \ samba \ && rm -rf /var/lib/apt/lists/* # Environment ENV VM_CPU=2 ENV VM_RAM=1024M ENV VM_KEYBOARD=en-us ENV VM_NET_EXTRA_OPTIONS= ENV VM_KVM=true ENV SVDIR=/etc/service/ # Copy noVNC COPY --from=build --chown=root:root /tmp/novnc/ /opt/novnc/ # Copy Websockify COPY --from=build --chown=root:root /tmp/websockify/ /opt/novnc/utils/websockify/ # Copy ReactOS disk COPY --from=build --chown=root:root /tmp/reactos.qcow2 /var/lib/qemu/disk/reactos.qcow2 # Copy Samba config COPY --chown=root:root ./config/samba/ /etc/samba/ RUN find /etc/samba/ -type d -not -perm 0755 -exec chmod 0755 '{}' ';' RUN find /etc/samba/ -type f -not -perm 0644 -exec chmod 0644 '{}' ';' # Copy services COPY --chown=root:root ./scripts/service/ /etc/service/ RUN find /etc/service/ -type d -not -perm 0755 -exec chmod 0755 '{}' ';' RUN find /etc/service/ -type f -not -perm 0755 -exec chmod 0755 '{}' ';' # Copy bin scripts COPY --chown=root:root ./scripts/bin/ /usr/local/bin/ RUN find /usr/local/bin/ -type d -not -perm 0755 -exec chmod 0755 '{}' ';' RUN find /usr/local/bin/ -type f -not -perm 0755 -exec chmod 0755 '{}' ';' ENTRYPOINT ["/usr/bin/catatonit", "--", "/usr/local/bin/container-init"] ################################################## ## "test" stage ################################################## FROM base AS test RUN if [ "$(uname -m)" = 'x86_64' ]; then \ container-init & \ printf '%s\n' 'The quick brown fox jumps over the lazy dog' > /mnt/in || exit 1; \ printf '%s\n' '@echo off & smbclient -c "get /in C:/local; quit" //10.0.2.2/share noop & exit' | timeout 900 vmshell || exit 1; \ printf '%s\n' '@echo off & smbclient -c "put C:/local /out; quit" //10.0.2.2/share noop & exit' | timeout 120 vmshell || exit 1; \ cmp -s /mnt/in /mnt/out || exit 1; \ fi ################################################## ## "main" stage ################################################## FROM base AS main # Dummy instruction so BuildKit does not skip the test stage RUN --mount=type=bind,from=test,source=/mnt/,target=/mnt/