richmidwinter · January 13, 2020 14:36
diff --git a/Dockerfile b/Dockerfile
 FROM azul/zulu-openjdk-alpine:11 AS builder
 WORKDIR /
 RUN /usr/lib/jvm/default-jvm/bin/jlink --no-header-files --no-man-pages --compress=2 --strip-debug --add-modules java.base,java.compiler,java.desktop,java.instrument,java.logging,java.management,java.naming,java.scripting,java.security.jgss,java.sql,java.xml,jdk.attach,jdk.jdi,jdk.management,jdk.unsupported,jdk.crypto.ec --output /build/jre

 FROM alpine
 COPY --from=builder /build/jre /usr/local/java
 COPY ld-musl-x86_64.path /etc/ld-musl-x86_64.path
 RUN apk add --no-cache libcap
 RUN adduser -S java
 RUN ln -sf /usr/local/java/bin/java /usr/bin/java
 RUN setcap 'cap_net_bind_service=+ep' /usr/local/java/bin/java
diff --git a/ld-musl-x86_64.path b/ld-musl-x86_64.path
 /lib
 /usr/lib
 /usr/local/java/lib
 /usr/local/java/lib/server
 /usr/local/java/lib/security
 /usr/local/java/lib/jli
	FROM azul/zulu-openjdk-alpine:11 AS builder
	WORKDIR /
	RUN /usr/lib/jvm/default-jvm/bin/jlink --no-header-files --no-man-pages --compress=2 --strip-debug --add-modules java.base,java.compiler,java.desktop,java.instrument,java.logging,java.management,java.naming,java.scripting,java.security.jgss,java.sql,java.xml,jdk.attach,jdk.jdi,jdk.management,jdk.unsupported,jdk.crypto.ec --output /build/jre

	FROM alpine
	COPY --from=builder /build/jre /usr/local/java
	COPY ld-musl-x86_64.path /etc/ld-musl-x86_64.path
	RUN apk add --no-cache libcap
	RUN adduser -S java
	RUN ln -sf /usr/local/java/bin/java /usr/bin/java
	RUN setcap 'cap_net_bind_service=+ep' /usr/local/java/bin/java