chahine/rebreak-monorepo
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
rebreak-monorepo/ops/pir-server/Dockerfile
chahinebrini 29bbf23405 feat(protection): iOS NEURLFilter-Spike + PIR-Server-Ops 
NEURLFilter-Stack (iOS 26): Extension RebreakURLFilter -> URLFilterExtension
umbenannt, url-filter-provider-Entitlement, Bloom-Prefilter-Extension,
PIR-Client-Config (pirServerURL/pirAuthToken via Build-Env).
PIR-Server-Ops unter ops/pir-server/ (Dockerfile, build-and-deploy, Patches,
DTS-Report). backend/scripts/generate-pir-input.ts erzeugt die PIR-Datenbank.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-05-21 18:09:42 +02:00

48 lines
2.3 KiB
Docker
Raw Blame History

# PIR Service — Multi-Stage Docker Build
#
# Stage 1 (builder): Swift 6.2-noble — kompiliert PIRProcessDatabase + PIRService
# Stage 2 (runtime): swift:6.2-noble-slim — minimales Runtime-Image mit Swift-Libs
#
# Build-Kontext: /srv/pir-build/ (enthält pir-service-example/ + swift-homomorphic-encryption/)
# Anmerkung: swift:6.2-noble-slim enthält alle Swift-Runtime-Libs (~300 MB),
# ist aber OHNE Swift-Toolchain (kein swiftc, kein spm).
# ── Stage 1: Builder ────────────────────────────────────────────────────────
FROM swift:6.2-noble AS builder
WORKDIR /build
# swift-homomorphic-encryption → PIRProcessDatabase bauen
COPY swift-homomorphic-encryption/ ./swift-homomorphic-encryption/
RUN cd swift-homomorphic-encryption && \
swift build -c release --product PIRProcessDatabase 2>&1 && \
cp .build/release/PIRProcessDatabase /usr/local/bin/PIRProcessDatabase
# pir-service-example → PIRService + ConstructDatabase bauen
COPY pir-service-example/ ./pir-service-example/
RUN cd pir-service-example && \
swift build -c release --product PIRService 2>&1 && \
swift build -c release --product ConstructDatabase 2>&1 && \
cp .build/release/PIRService /usr/local/bin/PIRService && \
cp .build/release/ConstructDatabase /usr/local/bin/ConstructDatabase
# ── Stage 2: Runtime ─────────────────────────────────────────────────────────
# swift:6.2-noble enthält alle Swift-Runtime-Libs — kein manueller Lib-Transfer nötig
FROM swift:6.2-noble AS runtime
# Nur die Binaries aus dem Builder-Stage kopieren
COPY --from=builder /usr/local/bin/PIRService /usr/local/bin/PIRService
COPY --from=builder /usr/local/bin/PIRProcessDatabase /usr/local/bin/PIRProcessDatabase
COPY --from=builder /usr/local/bin/ConstructDatabase /usr/local/bin/ConstructDatabase
# Verzeichnisse: /data = DB-Artifacts, /config = service-config.json
RUN mkdir -p /data /config
WORKDIR /data
EXPOSE 8090
# service-config.json wird via Volume gemountet (/config/service-config.json)
# Daten-Artifacts werden via Volume gemountet (/data/)
CMD ["PIRService", "--hostname", "0.0.0.0", "--port", "8090", "/config/service-config.json"]
Reference in New Issue View Git Blame Copy Permalink