Página inicial Explorar Ajuda
Entrar
miti
/
mitigator
1
0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Tree: 974f4b08e4
Branches Tags
mitigator
/
docker
/
Dockerfile

Dockerfile 2.4 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051 
  1. FROM graphene
    2. 

  2. ENV SGX_SDK=/opt/intel/sgxsdk/
    3. 

  3. RUN apt install -y nano gdb #tmux #TODO Move tmux to run script and nano to sgx-docker script. 
    4. 

  4. RUN mkdir source
    5. 

  5. WORKDIR source
    6. 

  6. ## Setting up prereqs for decryptor - Intel SGX SSL 
    7. 

  7. # Just curling the tar.gz file and then running the build script didn't work as the extracted folder had a different name (dependent on the foldername which was compressed) --- I didnt want to make a new fork of the sgxssl script for that.
    8. 

  8. RUN git clone https://github.com/openssl/openssl.git OpenSSL_1.1.1d && \ 
    9. 

  9. 	cd OpenSSL_1.1.1d && git checkout tags/OpenSSL_1_1_1d && \ 
    10. 

  10. 	cd ../ && tar -cf OpenSSL_1.1.1d.tar.gz OpenSSL_1.1.1d/
    11. 

  11. 

  12. #Setting up SGXSSL with the version of OpenSSL that we downloaded in the previous step.
    13. 

  13. RUN git clone https://github.com/intel/intel-sgx-ssl.git && \ 
    14. 

  14. 	cd intel-sgx-ssl && git checkout tags/lin_2.5_1.1.1d && \ 
    15. 

  15. 	cp ../OpenSSL_1.1.1d.tar.gz ./openssl_source/  && \ 
    16. 

  16. 	cd Linux &&  make && make install
    17. 

  17. 

  18. #Temp - TODO: Make the git repo public and remove these commands and retest.  
    19. 

  19. COPY gitcrysp-docker-deploy-key.id_rsa /root/.ssh/id_rsa
    20. 

  20. COPY gitcrysp-docker-deploy-key.id_rsa.pub /root/.ssh/id_rsa.pub
    21. 

  21. RUN ssh-keyscan git-crysp.uwaterloo.ca > /root/.ssh/known_hosts
    22. 

  22. 

  23. #Setting up protobuf definitions for exchanging LA and post-LA messages between enclaves.
    24. 

  24. RUN git clone gogs@git-crysp.uwaterloo.ca:miti/dhmsgs_proto_defs.git && \ 
    25. 

  25. 	cd dhmsgs_proto_defs/ && protoc --cpp_out=./ ./*.proto
    26. 

  26. 

  27. #Setting up the decryptor enclave itself. 
    28. 

  28. RUN git clone gogs@git-crysp.uwaterloo.ca:miti/Decryptor.git && \ 
    29. 

  29. 	cd Decryptor/ && make 
    30. 

  30. 

  31. #Setting up common files used in the verifier, PHP extension for LA/post-LA message processing. 
    32. 

  32. RUN git clone gogs@git-crysp.uwaterloo.ca:miti/commonVerifierPHPfiles.git
    33. 

  33. 

  34. #Setting up the verifier. 
    35. 

  35. RUN git clone gogs@git-crysp.uwaterloo.ca:miti/verifier.git && \ 
    36. 

  36. 	cd verifier/ && make && cp verifier /root/graphene/LibOS/shim/test/native
    37. 

  37. 

  38. #Verifier manifest file, makefile changes - comment out JDK/python related content
    39. 

  39. #WORKDIR /root/graphene/LibOS/shim/test/native
    40. 

  40. #RUN make SGX=1 && make SGX_RUN=1 
    41. 

  41. 

  42. RUN apt install -y php7.0-dev
    43. 

  43. 

  44. RUN git clone --recursive https://github.com/CopernicaMarketingSoftware/PHP-CPP.git && \
    45. 

  45. 	cd PHP-CPP/ && git checkout tags/v2.1.4 &&  make all && \
    46. 

  46. 	cp libphpcpp.so.* /usr/lib/ && make install 
    47. 

  47. 

  48. RUN git clone gogs@git-crysp.uwaterloo.ca:miti/Apache_PHP_extension.git && \
    49. 

  49. 	cd Apache_PHP_extension && \
    50. 

  50. 	make 
    51. 

  51.