Dockerfile: Adjust file permissions; add comments; tidy formatting

2024-01-01 23:18:40 -05:00 · 2024-01-01 23:18:40 -05:00 · 1d3d3b47b3
parent 6a1565e246
commit 1d3d3b47b3
1 changed files with 21 additions and 6 deletions
--- a/27
+++ b/27
@ -1,14 +1,29 @@
 FROM scratch
-ADD guix-tarball-pack.tar.gz /guix-builder
-ADD links.tar.gz /
-ADD passwd /etc/passwd
-ADD passwd /tmp/proot/delete-me

+# Extract guix produced relocatable
+ADD guix-tarball-pack.tar.gz /guix-builder
+
+# Extract variety of links to be setup in root, pointing into /guix-builder
+ADD links.tar.gz /
+
+ADD passwd /etc/passwd
+
+# Create an empty directory for use by proot
+#
+# Any following RUN command or command in the container will not run without the below PROOT
+# env var set, and the directory existing
+ADD passwd /tmp/proot/delete-me
+ENV PROOT_TMP_DIR=/tmp/proot
+
+# Setup ssl and glibc-locales environment variables
 ENV SSL_CERT_DIR=/etc/ssl/certs
 ENV SSL_CERT_FILE=/etc/ssl/certs/ca-certificates.crt
 ENV GUIX_LOCPATH=/guix-builder/lib/locale
-ENV PROOT_TMP_DIR=/tmp/proot
-RUN rm /tmp/proot/delete-me
+
+# Remove the empty file that was used to create a temporary directory, and adjust file
+# permissions
+RUN rm /tmp/proot/delete-me \
+ && chown -PR 0:0 /etc /bin

 VOLUME /var/guix/daemon-socket/socket /gnu/store /etc/ssl
 CMD ["/guix-builder/bin/bash"]