hoellen/dockerfiles
1
0
Fork 0
mirror of https://github.com/hoellen/dockerfiles.git synced 2025-07-01 06:35:38 +00:00
Code Issues Projects Releases Wiki Activity

boring-nginx: enable TLS 1.3 by default

Browse Source
This commit is contained in:
Wonderfall
2016-11-25 15:34:43 +00:00
parent 3dbde9e891
commit 80b8a10c8c
2 changed files with 62 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
boring-nginx/Dockerfile
View File

@ -7,6 +7,8 @@ ARG NGINX_VERSION=1.11.6
ARG GPG_NGINX="B0F4 2533 73F8 F6F5 10D4 2178 520A 9993 A1C0 52F8"
ARG BUILD_CORES
COPY tls1.3.patch /tmp/tls1.3.patch
RUN echo "@commuedge https://nl.alpinelinux.org/alpine/edge/community" >> /etc/apk/repositories \
&& NB_CORES=${BUILD_CORES-$(getconf _NPROCESSORS_CONF)} \
&& BUILD_DEPS=" \
@ -41,6 +43,7 @@ RUN echo "@commuedge https://nl.alpinelinux.org/alpine/edge/community" >> /etc/a
&& git clone https://github.com/openresty/headers-more-nginx-module --depth=1 \
&& git clone https://boringssl.googlesource.com/boringssl --depth=1 \
&& cd boringssl \
&& patch -p1 < /tmp/tls1.3.patch \
&& mkdir build && cd build && cmake -DCMAKE_BUILD_TYPE=Release .. \
&& make -j ${NB_CORES} && cd .. \
&& mkdir -p .openssl/lib/ && cd .openssl && ln -s ../include && cd .. \