-
Notifications
You must be signed in to change notification settings - Fork 44
Expand file tree
/
Copy pathdocker-compose.yml
More file actions
113 lines (103 loc) · 3.1 KB
/
docker-compose.yml
File metadata and controls
113 lines (103 loc) · 3.1 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
x-envoy-build-base: &envoy-build-base
image: >-
${ENVOY_BUILD_IMAGE:-envoyproxy/envoy-build-ubuntu:f4a881a1205e8e6db1a57162faf3df7aed88eae8@sha256:b10346fe2eee41733dbab0e02322c47a538bf3938d093a5daebad9699860b814}
user: root:root
working_dir: ${ENVOY_DOCKER_SOURCE_DIR:-/source}
stdin_open: true
tty: true
platform: ${ENVOY_DOCKER_PLATFORM:-}
environment:
# Core build environment
- BUILD_DIR=/build
- ENVOY_DOCKER_SOURCE_DIR=${ENVOY_DOCKER_SOURCE_DIR:-/source}
- ENVOY_DOCKER_BUILD_DIR="${ENVOY_DOCKER_BUILD_DIR:-/tmp/envoy-docker-build}"
- ENVOY_OCI_DIR
# Proxy settings
- HTTP_PROXY
- HTTPS_PROXY
- NO_PROXY
- GOPROXY
# Bazel configuration
- BAZEL_STARTUP_OPTIONS
- BAZEL_BUILD_EXTRA_OPTIONS
- BAZEL_EXTRA_TEST_OPTIONS
- BAZEL_REMOTE_CACHE
- BAZEL_STARTUP_EXTRA_OPTIONS
- BAZEL_REMOTE_INSTANCE
- BAZELISK_BASE_URL
# CI/CD variables
- CI_BRANCH
- CI_SHA1
- CI_TARGET_BRANCH
- BUILD_REASON
- GITHUB_REF_NAME
- GITHUB_REF_TYPE
- GITHUB_TOKEN
- GITHUB_APP_ID
- GITHUB_INSTALL_ID
# Build configuration
- NUM_CPUS
- ENVOY_BRANCH
- ENVOY_RBE
- ENVOY_BUILD_IMAGE
- ENVOY_SRCDIR
- ENVOY_BUILD_TARGET
- ENVOY_BUILD_DEBUG_INFORMATION
- ENVOY_BUILD_FILTER_EXAMPLE
- ENVOY_COMMIT
- ENVOY_HEAD_REF
- ENVOY_REPO
- ENVOY_BUILD_ARCH
- ENVOY_GEN_COMPDB_OPTIONS
# Publishing and artifacts
- DOCKERHUB_USERNAME
- DOCKERHUB_PASSWORD
- ENVOY_DOCKER_SAVE_IMAGE
- ENVOY_PUBLISH_DRY_RUN
- ENVOY_TARBALL_DIR
- GCS_ARTIFACT_BUCKET
- GCS_REDIRECT_PATH
- GCP_SERVICE_ACCOUNT_KEY
- GCP_SERVICE_ACCOUNT_KEY_PATH
- MOBILE_DOCS_CHECKOUT_DIR
- SYSTEM_STAGEDISPLAYNAME
- SYSTEM_JOBDISPLAYNAME
- SSH_AUTH_SOCK
entrypoint:
- "/bin/bash"
- "-c"
- |
groupadd --gid ${DOCKER_GID:-${USER_GID:-$(id -g)}} -f envoygroup
useradd -o \
--uid ${USER_UID:-$(id -u)} \
--gid ${DOCKER_GID:-${USER_GID:-$(id -g)}} \
--no-create-home \
-s /bin/bash \
--home-dir /build envoybuild
usermod -a -G pcap envoybuild
chown envoybuild:envoygroup /build
chown envoybuild /proc/self/fd/2 2>/dev/null || true
[[ -e /entrypoint-extra.sh ]] && /entrypoint-extra.sh
sudo -EHs -u envoybuild bash -c 'cd ${ENVOY_DOCKER_SOURCE_DIR:-/source} && exec ${DOCKER_COMMAND:-bash}'
services:
envoy-build:
<<: *envoy-build-base
volumes:
- ${ENVOY_DOCKER_BUILD_DIR:-/tmp/envoy-docker-build}:/build:z
- ${SOURCE_DIR:-..}:/source:z
- ${SHARED_TMP_DIR:-/tmp/bazel-shared}:${SHARED_TMP_DIR:-/tmp/bazel-shared}:z
envoy-build-gpg:
<<: *envoy-build-base
volumes:
- ${ENVOY_DOCKER_BUILD_DIR:-/tmp/envoy-docker-build}:/build:z
- ${SOURCE_DIR:-..}:/source:z
- ${ENVOY_GPG_DIR-${HOME}/.gnupg}:/build/.gnupg:z
- ${SHARED_TMP_DIR:-/tmp/bazel-shared}:${SHARED_TMP_DIR:-/tmp/bazel-shared}:z
envoy-build-dind:
privileged: true
<<: *envoy-build-base
volumes:
- ${ENVOY_DOCKER_BUILD_DIR:-/tmp/envoy-docker-build}:/build:z
- ${SOURCE_DIR:-..}:/source:z
- /var/run/docker.sock:/var/run/docker.sock:z
- ${SHARED_TMP_DIR:-/tmp/bazel-shared}:${SHARED_TMP_DIR:-/tmp/bazel-shared}:z