nomad

Dockerfile (3732B)

---

 # The MIT License
 #
 #  Copyright (c) 2015-2020, CloudBees, Inc. and other Jenkins contributors
 #
 #  Permission is hereby granted, free of charge, to any person obtaining a copy
 #  of this software and associated documentation files (the "Software"), to deal
 #  in the Software without restriction, including without limitation the rights
 #  to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 #  copies of the Software, and to permit persons to whom the Software is
 #  furnished to do so, subject to the following conditions:
 #
 #  The above copyright notice and this permission notice shall be included in
 #  all copies or substantial portions of the Software.
 #
 #  THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 #  IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 #  FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 #  AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 #  LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 #  OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
 #  THE SOFTWARE.
 
 # Based on:
 # https://github.com/jenkinsci/docker-agent/blob/master/alpine/Dockerfile
 # https://github.com/jenkinsci/docker-inbound-agents/blob/master/docker/Dockerfile
 
 ## Agent image target
 FROM docker.io/alpine:latest AS agent
 
 ARG user=jenkins
 ARG group=jenkins
 ARG uid=1000
 ARG gid=1000
 ARG AGENT_WORKDIR="/home/${user}/agent"
 
 RUN addgroup -g "${gid}" "${group}"
 RUN adduser -h "/home/${user}" -u "${uid}" -G "${group}" -D "${user}"
 
 ENV LANG='en_US.UTF-8' LANGUAGE='en_US:en' LC_ALL='en_US.UTF-8'
 ENV TZ=Etc/UTC
 
 RUN apk update && apk add --no-cache \
       curl bash git git-lfs musl-locales openssh-client openssl \
       procps tzdata tzdata-utils
 
 RUN apk add openjdk24 \
  --repository http://dl-cdn.alpinelinux.org/alpine/edge/testing
 
 # Download Jenkins remoting agent
 ARG VERSION=3327.v868139a_d00e0
 ADD --chown="${user}":"${group}" "https://repo.jenkins-ci.org/public/org/jenkins-ci/main/remoting/${VERSION}/remoting-${VERSION}.jar" /usr/share/jenkins/agent.jar
 RUN chmod 0644 /usr/share/jenkins/agent.jar \
   && ln -sf /usr/share/jenkins/agent.jar /usr/share/jenkins/slave.jar
 
 USER "${user}"
 ENV AGENT_WORKDIR="${AGENT_WORKDIR}"
 RUN mkdir -p "/home/${user}/.jenkins" && mkdir -p "${AGENT_WORKDIR}"
 
 VOLUME "/home/${user}/.jenkins"
 VOLUME "${AGENT_WORKDIR}"
 WORKDIR "/home/${user}"
 ENV user="${user}"
 
 ## Inbound Agent image target
 FROM agent AS inbound-agent
 
 USER root
 
 # Install docker command for docker-workflow Jenkins plugin and buildah to
 # build and push containers.
 RUN apk add --no-cache docker buildah netavark
 
 # Set up environment variables to note that this is not starting with user
 # namespace and default to isolate the filesystem with chroot.
 # https://developers.redhat.com/blog/2019/08/14/best-practices-for-running-buildah-in-a-container
 ENV _BUILDAH_STARTED_IN_USERNS="" BUILDAH_ISOLATION=chroot
 
 # 'overlay' is not supported over overlayfs without fuse-overlayfs. VFS is the alternative.
 # - https://docs.gitlab.com/ci/docker/using_docker_build/#buildah-example
 # - https://wiki.alpinelinux.org/wiki/Podman
 # - https://github.com/containers/storage/blob/main/docs/containers-storage.conf.5.md
 # - https://docs.podman.io/en/latest/markdown/podman.1.html#environment-variables
 ENV STORAGE_DRIVER=vfs
 
 # Configure missing subuid/subgids for rootless podman builds
 # https://docs.podman.io/en/latest/markdown/podman.1.html#rootless-mode
 RUN echo "${user}:10000:65536" >> /etc/subuid
 RUN echo "${user}:10000:65536" >> /etc/subgid
 
 USER ${user}
 
 CMD ["/bin/sh", "-c", "java -jar /usr/share/jenkins/agent.jar ${REMOTING_OPTS} $@"]