dockcross/imagefiles/install-gosu-binary.sh

#!/usr/bin/env bash

set -ex
set -o pipefail

if ! command -v curl &> /dev/null; then
	echo >&2 'error: "curl" not found!'
	exit 1
fi

if ! command -v gpg &> /dev/null; then
	echo >&2 'error: "gpg" not found!'
	exit 1
fi

GOSU_VERSION=1.10
dpkgArch=$(if test $(uname -m) = "x86_64"; then echo amd64; else echo i386; fi)
url="https://github.com/tianon/gosu/releases/download/${GOSU_VERSION}/gosu-${dpkgArch}"
url_key="https://github.com/tianon/gosu/releases/download/${GOSU_VERSION}/gosu-${dpkgArch}.asc"

# download and verify the signature
export GNUPGHOME="$(mktemp -d)"

gpg --keyserver hkp://pool.sks-keyservers.net:80 --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4 || \
gpg --keyserver hkp://pgp.key-server.io:80 --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4 || \
gpg --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4

echo "Downloading $url"
curl -o /usr/local/bin/gosu -# -SL $url

echo "Downloading $url_key"
curl -o /usr/local/bin/gosu.asc -# -SL $url_key

gpg --verify /usr/local/bin/gosu.asc

# cleanup
rm -r "$GNUPGHOME" /usr/local/bin/gosu.asc

chmod +x /usr/local/bin/gosu

# verify that the binary works
gosu nobody true


cat << EOF >> /usr/bin/sudo
#!/bin/sh

# Emulate the sudo command

exec gosu root:root "\$@"

EOF

chmod +x /usr/bin/sudo
common: Fix bash shell script invocation `#!/usr/bin/env bash` should be used to avoid hard paths. To address: dockcross-manylinux-x64: bad interpreter: /bin/bash^M: no such file or directory 2018-06-13 20:12:52 +02:00			`#!/usr/bin/env bash`
common.*: Optimize image size introducing "install-gosu-binary.sh" script Script was copied from https://github.com/dockbuild/dockbuild 2018-06-05 07:01:18 +02:00
			`set -ex`
install-gosu-binary: Improve gpg key download listing additonal servers 2018-06-06 20:34:04 +02:00			`set -o pipefail`
common.*: Optimize image size introducing "install-gosu-binary.sh" script Script was copied from https://github.com/dockbuild/dockbuild 2018-06-05 07:01:18 +02:00
			`if ! command -v curl &> /dev/null; then`
			`echo >&2 'error: "curl" not found!'`
			`exit 1`
			`fi`

			`if ! command -v gpg &> /dev/null; then`
			`echo >&2 'error: "gpg" not found!'`
			`exit 1`
			`fi`

			`GOSU_VERSION=1.10`
			`dpkgArch=$(if test $(uname -m) = "x86_64"; then echo amd64; else echo i386; fi)`
			`url="https://github.com/tianon/gosu/releases/download/${GOSU_VERSION}/gosu-${dpkgArch}"`
			`url_key="https://github.com/tianon/gosu/releases/download/${GOSU_VERSION}/gosu-${dpkgArch}.asc"`

			`# download and verify the signature`
			`export GNUPGHOME="$(mktemp -d)"`

install-gosu-binary: Improve gpg key download listing additonal servers 2018-06-06 20:34:04 +02:00			`gpg --keyserver hkp://pool.sks-keyservers.net:80 --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4 \|\| \`
			`gpg --keyserver hkp://pgp.key-server.io:80 --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4 \|\| \`
			`gpg --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4`
common.*: Optimize image size introducing "install-gosu-binary.sh" script Script was copied from https://github.com/dockbuild/dockbuild 2018-06-05 07:01:18 +02:00
			`echo "Downloading $url"`
			`curl -o /usr/local/bin/gosu -# -SL $url`

			`echo "Downloading $url_key"`
			`curl -o /usr/local/bin/gosu.asc -# -SL $url_key`

			`gpg --verify /usr/local/bin/gosu.asc`

			`# cleanup`
			`rm -r "$GNUPGHOME" /usr/local/bin/gosu.asc`

			`chmod +x /usr/local/bin/gosu`

			`# verify that the binary works`
			`gosu nobody true`
install-gosu-binary.sh: install sudo wrapper when executing the script 2018-06-07 02:00:46 +02:00

			`cat << EOF >> /usr/bin/sudo`
			`#!/bin/sh`

			`# Emulate the sudo command`

			`exec gosu root:root "\$@"`

			`EOF`

			`chmod +x /usr/bin/sudo`