first commit

Author: psych0d0g

Dockerfile

@@ -0,0 +1,39 @@
+FROM alpine:3.17
+LABEL author="Lukas Wingerberg"
+LABEL author_email="h@xx0r.eu"
+
+# renovate: datasource=github-tags depName=PowerDNS/pdns extractVersion=^auth-(?<version>.*)$ versioning=semver
+ENV POWERDNS_VERSION=4.7.3
+ENV MYSQL_DEFAULT_AUTOCONF=true \
+    MYSQL_DEFAULT_HOST="mysql" \
+    MYSQL_DEFAULT_PORT="3306" \
+    MYSQL_DEFAULT_USER="root" \
+    MYSQL_DEFAULT_PASS="root" \
+    MYSQL_DEFAULT_DB="pdns"
+
+RUN mkdir -p /etc/pdns/conf.d
+
+RUN addgroup -S pdns 2>/dev/null && \
+    adduser -S -D -H -h /var/empty -s /bin/false -G pdns -g pdns pdns 2>/dev/null
+
+RUN apk --update add bash libpq sqlite-libs libstdc++ libgcc mariadb-client mariadb-connector-c lua-dev curl-dev && \
+    apk add --virtual build-deps \
+      g++ make mariadb-dev postgresql-dev sqlite-dev curl boost-dev mariadb-connector-c-dev
+
+RUN curl -sSL https://downloads.powerdns.com/releases/pdns-$POWERDNS_VERSION.tar.bz2 | tar xj -C /tmp && \
+    cd /tmp/pdns-$POWERDNS_VERSION && \
+    ./configure --prefix="" --exec-prefix=/usr --sysconfdir=/etc/pdns \
+      --with-modules="bind gmysql gpgsql gsqlite3" && \
+    make && make install-strip 
+    
+RUN cp /usr/lib/libboost_program_options.so* /tmp && \
+    apk del --purge build-deps && \
+    apk add boost-libs && \
+    mv /tmp/lib* /usr/lib/ && \
+    rm -rf /tmp/pdns-$POWERDNS_VERSION /var/cache/apk/*
+
+ADD rootfs/ /
+
+EXPOSE 53/tcp 53/udp
+
+ENTRYPOINT ["/entrypoint.sh"]

build.sh

@@ -0,0 +1,59 @@
+#!/usr/bin/env bash
+set -e
+
+IMAGES=( "powerdns" )
+if [[ ${CI_COMMIT_TAG}  ]]; then
+  VERSION=$CI_COMMIT_TAG
+else
+  VERSION="0.0.1-devnotworking"
+fi
+REPO=${CI_REGISTRY_IMAGE}
+#REPO=harbor.harbor-dev.internal.ing.staging.k8s.gfsrv.net/jitsi
+PUSH=NO
+BUILD_ARGS=()
+CommitMessage=
+
+# Parse command line params
+while [[ $# -gt 0 ]]; do
+  arg="$1";
+  
+  case $arg in
+    --push)
+      PUSH=YES
+    ;;
+    --pull)
+      BUILD_ARGS+=("--pull")
+    ;;
+    --no-cache)
+      BUILD_ARGS+=("--no-cache")
+    ;;
+    *)
+      break
+    ;;
+  esac
+
+  shift
+done
+
+for IMAGE in "${IMAGES[@]}"
+do
+  IMAGE_TAG_PATCH=${REPO}/${IMAGE}:${VERSION}
+  IMAGE_TAG=${REPO}/${IMAGE}:${VERSION%-*}
+  IMAGE_LATEST=${REPO}/${IMAGE}:latest
+  docker build \
+      -t "${IMAGE_TAG}" \
+      -t "${IMAGE_TAG_PATCH}" \
+      -t "${IMAGE_LATEST}" \
+      -f ./Dockerfile \
+      ./
+
+  if [[ ${PUSH} = YES ]]; then
+    if [[ ${CI_COMMIT_TAG} ]]; then
+      docker push ${IMAGE_TAG_PATCH}
+      docker push ${IMAGE_TAG}
+      docker push ${IMAGE_LATEST}
+     else
+      docker push ${IMAGE_TAG}
+    fi
+  fi
+done

release-config.ts

@@ -0,0 +1,3 @@
+export default {
+    skipCommitsWithoutPullRequest: false,
+  }

renovate.json

@@ -0,0 +1,29 @@
+{
+  "$schema": "https://docs.renovatebot.com/renovate-schema.json",
+  "dependencyDashboard": true,
+  "packageRules": [
+    {"datasources": ["docker"],  "registryUrls": ["https://harbor.crystalnet.org/dockerhub-proxy"]}
+  ],
+  "regexManagers": [
+    {
+      "fileMatch": ["^Dockerfile$"],
+      "matchStrings": [
+        "datasource=(?<datasource>.*?) depName=(?<depName>.*?)(?: extractVersion=(?<extractVersion>.+?))?( versioning=(?<versioning>.*?))?\\sENV .*?_VERSION=(?<currentValue>.*)\\s"
+      ],
+      "versioningTemplate": "{{#if versioning}}{{{versioning}}}{{else}}semver{{/if}}"
+    },
+    {
+      "fileMatch": ["^Dockerfile$"],
+      "matchStrings": [
+        "ARG IMAGE=(?<depName>.*?):(?<currentValue>.*?)@(?<currentDigest>sha256:[a-f0-9]+)\\s"
+      ],
+      "datasourceTemplate": "docker"
+    },
+    {
+      "fileMatch": ["Dockerfile$"],
+      "matchStrings": ["FROM harbor\\.crystalnet\\.org/dockerhub-proxy/(?<depName>.*?):(?<currentValue>.*?)\n"],
+      "datasourceTemplate": "docker"
+    }
+  ]
+}
+

rootfs/entrypoint.sh

@@ -0,0 +1,108 @@
+#!/bin/bash
+set -e
+
+# usage: file_env VAR [DEFAULT]
+#    ie: file_env 'XYZ_DB_PASSWORD' 'example'
+# (will allow for "$XYZ_DB_PASSWORD_FILE" to fill in the value of
+#  "$XYZ_DB_PASSWORD" from a file, especially for Docker's secrets feature)
+# source: https://github.com/docker-library/mariadb/blob/master/docker-entrypoint.sh
+file_env() {
+    local var="$1"
+    local fileVar="${var}_FILE"
+    local def="${2:-}"
+    if [ "${!var:-}" ] && [ "${!fileVar:-}" ]; then
+        echo "Both $var and $fileVar are set (but are exclusive)"
+        exit 1
+    fi
+    local val="$def"
+    if [ "${!var:-}" ]; then
+        val="${!var}"
+    elif [ "${!fileVar:-}" ]; then
+        val="$(< "${!fileVar}")"
+    fi
+    export "$var"="$val"
+    unset "$fileVar"
+}
+
+# Loads various settings that are used elsewhere in the script
+docker_setup_env() {
+    # Initialize values that might be stored in a file
+
+    file_env 'MYSQL_AUTOCONF' $MYSQL_DEFAULT_AUTOCONF
+    file_env 'MYSQL_HOST' $MYSQL_DEFAULT_HOST
+    file_env 'MYSQL_DNSSEC' 'no'
+    file_env 'MYSQL_DB' $MYSQL_DEFAULT_DB
+    file_env 'MYSQL_PASS' $MYSQL_DEFAULT_PASS
+    file_env 'MYSQL_USER' $MYSQL_DEFAULT_USER
+    file_env 'MYSQL_PORT' $MYSQL_DEFAULT_PORT
+}
+
+docker_setup_env
+
+# --help, --version
+[ "$1" = "--help" ] || [ "$1" = "--version" ] && exec pdns_server $1
+# treat everything except -- as exec cmd
+[ "${1:0:2}" != "--" ] && exec "$@"
+
+if $MYSQL_AUTOCONF ; then
+  # Set MySQL Credentials in pdns.conf
+  sed -r -i "s/^[# ]*gmysql-host=.*/gmysql-host=${MYSQL_HOST}/g" /etc/pdns/pdns.conf
+  sed -r -i "s/^[# ]*gmysql-port=.*/gmysql-port=${MYSQL_PORT}/g" /etc/pdns/pdns.conf
+  sed -r -i "s/^[# ]*gmysql-user=.*/gmysql-user=${MYSQL_USER}/g" /etc/pdns/pdns.conf
+  sed -r -i "s/^[# ]*gmysql-password=.*/gmysql-password=${MYSQL_PASS}/g" /etc/pdns/pdns.conf
+  sed -r -i "s/^[# ]*gmysql-dbname=.*/gmysql-dbname=${MYSQL_DB}/g" /etc/pdns/pdns.conf
+  sed -r -i "s/^[# ]*gmysql-dnssec=.*/gmysql-dnssec=${MYSQL_DNSSEC}/g" /etc/pdns/pdns.conf
+
+  MYSQLCMD="mysql --host=${MYSQL_HOST} --user=${MYSQL_USER} --password=${MYSQL_PASS} --port=${MYSQL_PORT} -r -N"
+
+  # wait for Database come ready
+  isDBup () {
+    echo "SHOW STATUS" | $MYSQLCMD 1>/dev/null
+    echo $?
+  }
+
+  RETRY=10
+  until [ `isDBup` -eq 0 ] || [ $RETRY -le 0 ] ; do
+    echo "Waiting for database to come up"
+    sleep 5
+    RETRY=$(expr $RETRY - 1)
+  done
+  if [ $RETRY -le 0 ]; then
+    >&2 echo Error: Could not connect to Database on $MYSQL_HOST:$MYSQL_PORT
+    exit 1
+  fi
+
+  # init database if necessary
+  echo "CREATE DATABASE IF NOT EXISTS $MYSQL_DB;" | $MYSQLCMD
+  MYSQLCMD="$MYSQLCMD $MYSQL_DB"
+
+  if [ "$(echo "SELECT COUNT(*) FROM information_schema.tables WHERE table_schema = \"$MYSQL_DB\";" | $MYSQLCMD)" -le 1 ]; then
+    echo Initializing Database
+    cat /etc/pdns/schema.sql | $MYSQLCMD
+
+    # Run custom mysql post-init sql scripts
+    if [ -d "/etc/pdns/mysql-postinit" ]; then
+      for SQLFILE in $(ls -1 /etc/pdns/mysql-postinit/*.sql | sort) ; do
+        echo Source $SQLFILE
+        cat $SQLFILE | $MYSQLCMD
+      done
+    fi
+  fi
+
+  unset -v MYSQL_PASS
+fi
+
+if [[ ! -z "${POWERDNS_LOGLEVEL}" ]]; then
+  sed -r -i "s/^[# ]*loglevel=.*/loglevel=${POWERDNS_LOGLEVEL}/g" /etc/pdns/pdns.conf
+fi
+
+if [[ ! -z "${POWERDNS_ALLOW_AXFR_IPS}" ]]; then
+  sed -r -i "s/^[# ]*allow-axfr-ips=.*/allow-axfr-ips=${POWERDNS_ALLOW_AXFR_IPS}/g" /etc/pdns/pdns.conf
+fi
+
+# Run pdns server
+trap "pdns_control quit" SIGHUP SIGINT SIGTERM
+
+pdns_server "$@" &
+
+wait