This container image includes Phusion version 0.11 contains the following packages:
- OpenSSL version:
1.0.2ubuild with FIPS 140-2 compliant OpenSSL module version:2.0.16 - Ruby version:
2.5compiled against the FIPS 140-2 compliant OpenSSL module - Postgres client version:
12-12.2compiled against the FIPS 140-2 compliant OpenSSL module - Bundler version:
2.1.4
- Current directory is directory where this repository is cloned
- Docker version is 17.05 or higher
Phusion container image will be built with a three-stage process:
- the first stage builds the OpenSSL compiled with the FIPS 140-2 compliant OpenSSL module.
- the second stage builds the Ruby and Postgres client packages.
- the third stage ship the results of both stages, without the penalty of the build-chain and tooling.
| Image name | Description |
|---|---|
| openssl-builder | Install OpenSSL with the FIPS 140-2 compliant module |
| postgres-client-builder | Install Postgres client |
| phusion-ruby-builder | Install Ruby version |
| phusion-ruby-fips | Final image |
Create image for openssl-builder:
./openssl-builder/build.sh
Create images for phusion-ruby-builder and postgres-client-builder:
./postgres-client-builder/build.sh
./phusion-ruby-builder/build.sh
Create the final image
$IMAGE_NAME is assumed to be the required name of Docker image
$IMAGE_TAG is assumed to be the required tag of Docker image
docker build --build-arg "OPENSSL_BUILDER_TAG=1.0.2u-fips-2.0.16" -t "$IMAGE_NAME":"$IMAGE_TAG" phusion-ruby-fips