chore(core): build openssl (#963)

Build the openssl package and replace it in virt-launcher image.

---------

Signed-off-by: Nikita Korolev <nikita.korolev@flant.com>

Author: universal-itengineer

component_versions/version_map.yml

@@ -6,3 +6,4 @@ package:
   swtpm: 0.10.0
   xorriso: 1.5.6
   numactl: 2.0.19
+  openssl: openssl-3.4.1

images/packages/binaries/openssl/werf.inc.yaml

@@ -0,0 +1,52 @@
+---
+image: {{ $.ImageType }}/{{ $.ImageName }}
+final: false
+fromImage: builder/scratch
+import:
+- image: {{ $.ImageType }}/{{ $.ImageName }}-builder
+  add: /out
+  to: /openssl
+  before: setup
+
+---
+{{- $version := get $.Package $.ImageName }}
+{{- $gitRepoUrl := "openssl/openssl.git" }}
+
+{{- $name := print $.ImageName "-dependencies" -}}
+{{- define "$name" -}}
+packages:
+- gcc git make glibc-devel-static musl-devel-static
+- autoconf automake libtool makeinfo
+- perl-Net-SSLeay perl-IPC-Cmd perl-Pod-Html
+- autoconf libtool makeinfo gettext-devel po4a
+{{- end -}}
+
+{{ $builderDependencies := include "$name" . | fromYaml }}
+
+image: {{ $.ImageType }}/{{ $.ImageName }}-builder
+final: false
+fromImage: builder/alt
+secrets:
+- id: SOURCE_REPO
+  value: {{ $.SOURCE_REPO }}
+shell:
+  beforeInstall:
+    - |
+      apt-get update && apt-get install -y \
+        {{ $builderDependencies.packages | join " " }}
+
+      apt-get clean
+      rm --recursive --force /var/lib/apt/lists/ftp.altlinux.org* /var/cache/apt/*.bin
+
+  install:
+    - |
+      OUTDIR=/out
+      mkdir -p ~/.ssh && echo "StrictHostKeyChecking accept-new" > ~/.ssh/config
+      
+      git clone --depth=1 $(cat /run/secrets/SOURCE_REPO)/{{ $gitRepoUrl }} --branch {{ $version }} /src
+      cd /src
+      
+      ./Configure --prefix=/usr CC=/usr/bin/musl-gcc -static
+      make -j $(nproc)
+      make install_sw -j $(nproc) DESTDIR=$OUTDIR
+      strip $OUTDIR/usr/bin/openssl

images/virt-launcher/werf.inc.yaml

@@ -127,7 +127,6 @@ packages:
   - iptables
   - libffi8
   - nftables
-  - openssl
   - passt
   - pcre
   - procps
@@ -141,8 +140,6 @@ binaries:
   - /usr/bin/ocsptool
   - /usr/bin/p11tool
   - /usr/bin/psktool
-  # Openssl
-  - /usr/bin/openssl
   # Xorriso (Creates an image of an ISO9660 filesystem)
   - /usr/bin/xorriso-dd-target /usr/bin/xorrisofs /usr/bin/xorriso
   # Swtpm
@@ -252,6 +249,13 @@ import:
   to: /xorriso
   before: install
 
+# Statically builded
+- image: packages/binaries/openssl
+  add: /openssl
+  to: /relocate
+  after: setup
+  includePaths:
+  - usr/bin/openssl
 - image: tools/coreutils
   add: /
   to: /relocate
@@ -261,6 +265,7 @@ import:
   - usr/bin/cp
   - usr/bin/sleep
   - usr/bin/coreutils
+
 - image: {{ $.ImageName }}-cbuilder
   add: /bins
   to: /relocate/usr/bin