dockerfiles/tor/Dockerfile

FROM alpine:edge

ARG TOR_VERSION=0.2.9.10
ARG ARM_VERSION=1.4.5.0

ARG GPG_Mathewson="2133 BC60 0AB1 33E1 D826  D173 FE43 009C 4607 B1FB"
ARG GPG_Johnson="6827 8CC5 DD2D 1E85 C4E4  5AD9 0445 B7AB 9ABB EEC6"

ENV TERM=xterm \
    UID=991 GID=991

RUN echo "@community https://nl.alpinelinux.org/alpine/v3.4/community" >> /etc/apk/repositories \
 && BUILD_DEPS=" \
    libevent-dev \
    libressl-dev \
    zlib-dev \
    build-base \
    gnupg \
    ca-certificates" \
 && apk -U upgrade && apk add \
    ${BUILD_DEPS} \
    su-exec \
    tini@community \
    python \
    libevent \
    libressl \
    zlib \
 && cd /tmp \
 && TOR_TARBALL="tor-${TOR_VERSION}.tar.gz" \
 && wget -q https://www.torproject.org/dist/${TOR_TARBALL} \
 && echo "Verifying ${TOR_TARBALL} using GPG..." \
 && wget -q https://www.torproject.org/dist/${TOR_TARBALL}.asc \
 && gpg --keyserver pool.sks-keyservers.net --recv-keys 0xFE43009C4607B1FB \
 && FINGERPRINT="$(LANG=C gpg --verify ${TOR_TARBALL}.asc ${TOR_TARBALL} 2>&1 \
  | sed -n "s#Primary key fingerprint: \(.*\)#\1#p")" \
 && if [ -z "${FINGERPRINT}" ]; then echo "Warning! Invalid GPG signature!" && exit 1; fi \
 && if [ "${FINGERPRINT}" != "${GPG_Mathewson}" ]; then echo "Warning! Wrong GPG fingerprint!" && exit 1; fi \
 && echo "All seems good, now unpacking ${TOR_TARBALL}..." \
 && tar xzf ${TOR_TARBALL} && cd tor-${TOR_VERSION} \
 && ./configure --disable-asciidoc && make && make install \
 && cd /tmp \
 && ARM_TARBALL="arm-${ARM_VERSION}.tar.bz2" \
 && wget -q https://www.atagar.com/arm/resources/static/${ARM_TARBALL}  \
 && echo "Verifying ${ARM_TARBALL}..." \
 && wget -q https://www.atagar.com/arm/resources/static/${ARM_TARBALL}.asc \
 && gpg --keyserver pgp.mit.edu --recv-keys 0x9ABBEEC6 \
 && FINGERPRINT="$(LANG=C gpg --verify ${ARM_TARBALL}.asc ${ARM_TARBALL} 2>&1 \
  | sed -n "s#Primary key fingerprint: \(.*\)#\1#p")" \
 && if [ -z "${FINGERPRINT}" ]; then echo "Warning! Invalid GPG signature!" && exit 1; fi \
 && if [ "${FINGERPRINT}" != "${GPG_Johnson}" ]; then echo "Warning! Wrong GPG fingerprint!" && exit 1; fi \
 && echo "All seems good, now unpacking ${ARM_TARBALL}..." \
 && tar xjf /tmp/${ARM_TARBALL} && cd arm && ./install \
 && apk del ${BUILD_DEPS} \
 && rm -rf /var/cache/apk/* /tmp/* /root/.gnupg

COPY run.sh /usr/local/bin/run.sh

RUN chmod +x /usr/local/bin/run.sh

VOLUME /tor/config /tor/data

EXPOSE 9001 9030

LABEL tor="Tor $TOR_VERSION" \
      arm="Arm $ARM_VERSION" \
      maintainer="Wonderfall <wonderfall@targaryen.house>"

ENTRYPOINT ["run.sh"]
tor: update 2017-03-08 16:27:08 +01:00			`FROM alpine:edge`
add tor 2016-05-06 12:39:35 +02:00
tor: update 2017-03-08 16:27:08 +01:00			`ARG TOR_VERSION=0.2.9.10`
tor: verify arm tarball 2016-05-08 13:05:53 +02:00			`ARG ARM_VERSION=1.4.5.0`

update dockerfiles, clean up 2017-01-16 22:13:29 +01:00			`ARG GPG_Mathewson="2133 BC60 0AB1 33E1 D826 D173 FE43 009C 4607 B1FB"`
tor: verify arm tarball 2016-05-08 13:05:53 +02:00			`ARG GPG_Johnson="6827 8CC5 DD2D 1E85 C4E4 5AD9 0445 B7AB 9ABB EEC6"`
tor: compile from source and verify tarball using gpg 2016-05-08 00:37:04 +02:00
delete all root process 2016-09-16 17:08:06 +02:00			`ENV TERM=xterm \`
			`UID=991 GID=991`
tor: add arm 2016-05-06 19:36:08 +02:00
delete all root process 2016-09-16 17:08:06 +02:00			`RUN echo "@community https://nl.alpinelinux.org/alpine/v3.4/community" >> /etc/apk/repositories \`
			`&& BUILD_DEPS=" \`
tor: compile from source and verify tarball using gpg 2016-05-08 00:37:04 +02:00			`libevent-dev \`
update dockerfiles, clean up 2017-01-16 22:13:29 +01:00			`libressl-dev \`
			`zlib-dev \`
tor: compile from source and verify tarball using gpg 2016-05-08 00:37:04 +02:00			`build-base \`
			`gnupg \`
			`ca-certificates" \`
tor: update 2017-03-08 16:27:08 +01:00			`&& apk -U upgrade && apk add \`
tor: compile from source and verify tarball using gpg 2016-05-08 00:37:04 +02:00			`${BUILD_DEPS} \`
delete all root process 2016-09-16 17:08:06 +02:00			`su-exec \`
			`tini@community \`
tor: compile from source and verify tarball using gpg 2016-05-08 00:37:04 +02:00			`python \`
			`libevent \`
update dockerfiles, clean up 2017-01-16 22:13:29 +01:00			`libressl \`
			`zlib \`
tor: compile from source and verify tarball using gpg 2016-05-08 00:37:04 +02:00			`&& cd /tmp \`
tor: update dockerfile 2016-05-08 13:47:45 +02:00			`&& TOR_TARBALL="tor-${TOR_VERSION}.tar.gz" \`
			`&& wget -q https://www.torproject.org/dist/${TOR_TARBALL} \`
tor: missing '\' 2016-05-08 13:49:27 +02:00			`&& echo "Verifying ${TOR_TARBALL} using GPG..." \`
tor: update dockerfile 2016-05-08 13:47:45 +02:00			`&& wget -q https://www.torproject.org/dist/${TOR_TARBALL}.asc \`
update dockerfiles, clean up 2017-01-16 22:13:29 +01:00			`&& gpg --keyserver pool.sks-keyservers.net --recv-keys 0xFE43009C4607B1FB \`
tor: update dockerfile 2016-05-08 13:47:45 +02:00			`&& FINGERPRINT="$(LANG=C gpg --verify ${TOR_TARBALL}.asc ${TOR_TARBALL} 2>&1 \`
tor: verify gpg fingerprint 2016-05-08 12:29:41 +02:00			`\| sed -n "s#Primary key fingerprint: \(.*\)#\1#p")" \`
			`&& if [ -z "${FINGERPRINT}" ]; then echo "Warning! Invalid GPG signature!" && exit 1; fi \`
			`&& if [ "${FINGERPRINT}" != "${GPG_Mathewson}" ]; then echo "Warning! Wrong GPG fingerprint!" && exit 1; fi \`
tor: update dockerfile 2016-05-08 13:47:45 +02:00			`&& echo "All seems good, now unpacking ${TOR_TARBALL}..." \`
			`&& tar xzf ${TOR_TARBALL} && cd tor-${TOR_VERSION} \`
			`&& ./configure --disable-asciidoc && make && make install \`
tor: compile from source and verify tarball using gpg 2016-05-08 00:37:04 +02:00			`&& cd /tmp \`
tor: update dockerfile 2016-05-08 13:47:45 +02:00			`&& ARM_TARBALL="arm-${ARM_VERSION}.tar.bz2" \`
			`&& wget -q https://www.atagar.com/arm/resources/static/${ARM_TARBALL} \`
			`&& echo "Verifying ${ARM_TARBALL}..." \`
			`&& wget -q https://www.atagar.com/arm/resources/static/${ARM_TARBALL}.asc \`
tor: verify arm tarball 2016-05-08 13:05:53 +02:00			`&& gpg --keyserver pgp.mit.edu --recv-keys 0x9ABBEEC6 \`
tor: update dockerfile 2016-05-08 13:47:45 +02:00			`&& FINGERPRINT="$(LANG=C gpg --verify ${ARM_TARBALL}.asc ${ARM_TARBALL} 2>&1 \`
tor: verify arm tarball 2016-05-08 13:05:53 +02:00			`\| sed -n "s#Primary key fingerprint: \(.*\)#\1#p")" \`
			`&& if [ -z "${FINGERPRINT}" ]; then echo "Warning! Invalid GPG signature!" && exit 1; fi \`
			`&& if [ "${FINGERPRINT}" != "${GPG_Johnson}" ]; then echo "Warning! Wrong GPG fingerprint!" && exit 1; fi \`
tor: update dockerfile 2016-05-08 13:47:45 +02:00			`&& echo "All seems good, now unpacking ${ARM_TARBALL}..." \`
			`&& tar xjf /tmp/${ARM_TARBALL} && cd arm && ./install \`
tor: compile from source and verify tarball using gpg 2016-05-08 00:37:04 +02:00			`&& apk del ${BUILD_DEPS} \`
clean /root/.gnupg 2016-05-30 19:43:23 +02:00			`&& rm -rf /var/cache/apk/* /tmp/* /root/.gnupg`
add tor 2016-05-06 12:39:35 +02:00
delete all root process 2016-09-16 17:08:06 +02:00			`COPY run.sh /usr/local/bin/run.sh`

			`RUN chmod +x /usr/local/bin/run.sh`

			`VOLUME /tor/config /tor/data`

tor: add port 9030 (dirport) 2016-05-06 19:21:00 +02:00			`EXPOSE 9001 9030`
tor: verify arm tarball 2016-05-08 13:05:53 +02:00
MAINTAINER is deprecated 2017-01-19 02:31:59 +01:00			`LABEL tor="Tor $TOR_VERSION" \`
			`arm="Arm $ARM_VERSION" \`
			`maintainer="Wonderfall <wonderfall@targaryen.house>"`

delete all root process 2016-09-16 17:08:06 +02:00			`ENTRYPOINT ["run.sh"]`