Fix docker build for EOL Debian release

Merge remote-tracking branch 'origin/master' into run-locally
* origin/master: Add proper quotes to .env file
2024-02-10 13:48:02 +01:00 · 2022-12-21 18:05:56 +01:00 · 2022-12-21 18:04:18 +01:00 · 2021-08-27 18:48:09 +02:00 · 2021-08-27 18:45:42 +02:00 · 2021-08-27 18:00:13 +02:00
9 changed files with 42 additions and 15 deletions
--- a/.mrconfig
+++ b/.mrconfig
@ -5,4 +5,5 @@ checkout = git clone https://github.com/CAcertOrg/cats cacert-cats
 checkout = git clone git+ssh://git.cacert.org/srv/git/cacert-mgr.git cacert-mgr
 [cacert-software]
-checkout = git clone git+ssh://git.cacert.org/srv/git/cacert-devel.git cacert-software
+#checkout = git clone git+ssh://git.cacert.org/srv/git/cacert-devel.git cacert-software
 checkout = git clone -b run-locally https://github.com/jandd/cacert-devel.git cacert-software
--- a/cats.Dockerfile
+++ b/cats.Dockerfile
@ -1,6 +1,10 @@
-FROM debian:jessie
+FROM debian/eol:jessie
-RUN apt-get update \
+RUN sed -i \
      -e 's@\(^deb http://deb\..*\)$@#\1@' \
      -e 's@\(^deb http://security\..*\)$@deb http://archive.debian.org/debian-security jessie/updates main@' \
      /etc/apt/sources.list \
    && apt-get update \
    && DEBIAN_FRONTEND=noninteractive \
    apt-get install -y --no-install-recommends \
    ca-certificates \
--- a/docker-compose.yml
+++ b/docker-compose.yml
@ -42,6 +42,7 @@ services:
      CRL_DIRECTORY: /srv/certs/crl
      DEFAULT_HOSTNAME: www.cacert.localhost
      SECURE_HOSTNAME: secure.cacert.localhost
      TVERIFY_HOSTNAME: tverify.cacert.localhost
      INSECURE_PORT: 8080
      SECURE_PORT: 8443
      RETURN_ADDRESS: "returns@cacert.localhost"
@ -101,6 +102,7 @@ services:
    volumes:
      - certstaging:/srv/certs
      - signersockets:/srv/sockets
      - webdbincl:/home/cacert/www/includes/
    depends_on:
      - db
      - smtp
@ -127,3 +129,4 @@ volumes:
  certstaging: { }
  signersockets: { }
  signerdata: { }
  webdbincl: { }
--- a/docker/run-signer
+++ b/docker/run-signer
@ -23,7 +23,7 @@ if [ ! -f /srv/ca/gpg/gpg_root_0/secring.gpg ]; then cp /srv/testca/gpg/gpg_root
 if [ ! -f /srv/ca/gpg/gpg_root_0/pubring.gpg ]; then cp /srv/testca/gpg/gpg_root_0/pubring.gpg /srv/ca/gpg/gpg_root_0/pubring.gpg; fi
 rm -f /srv/sockets/signer
-socat -d -d PTY,link=/dev/ttyUSB0 UNIX-LISTEN:/srv/sockets/signer 2>&1 &
+socat -d -d "PTY,link=${SERIAL_PORT}" UNIX-LISTEN:/srv/sockets/signer 2>&1 &
 sleep 1
 cd /srv/CommModule/
--- a/docker/run-signer_client
+++ b/docker/run-signer_client
@ -2,10 +2,12 @@
 set -eu
-socat -d -d UNIX:/srv/sockets/signer PTY,link=/dev/ttyS0 2>&1 &
+export SERIAL_PORT=/dev/ttyUSB0
 socat -d -d "UNIX:/srv/sockets/signer" "PTY,link=${SERIAL_PORT}" 2>&1 &
 sleep 1
-export SERIAL_PORT=/dev/ttyS0
+echo "<?php mysql_connect(\"${MYSQL_WEBDB_HOSTNAME}\", \"${MYSQL_WEBDB_USER}\", \"${MYSQL_WEBDB_PASSWORD}\");" > "/home/cacert/www/includes/mysql.php"
 cd /srv/CommModule/
--- a/mgr.Dockerfile
+++ b/mgr.Dockerfile
@ -1,6 +1,10 @@
-FROM debian:jessie
+FROM debian/eol:jessie
-RUN apt-get update \
+RUN sed -i \
      -e 's@\(^deb http://deb\..*\)$@#\1@' \
      -e 's@\(^deb http://security\..*\)$@deb http://archive.debian.org/debian-security jessie/updates main@' \
      /etc/apt/sources.list \
    && apt-get update \
    && DEBIAN_FRONTEND=noninteractive \
    apt-get install -y --no-install-recommends \
    ca-certificates \
--- a/signer.Dockerfile
+++ b/signer.Dockerfile
@ -1,6 +1,10 @@
-FROM debian:jessie
+FROM debian/eol:jessie
-RUN apt-get update \
+RUN sed -i \
      -e 's@\(^deb http://deb\..*\)$@#\1@' \
      -e 's@\(^deb http://security\..*\)$@deb http://archive.debian.org/debian-security jessie/updates main@' \
      /etc/apt/sources.list \
    && apt-get update \
    && DEBIAN_FRONTEND=noninteractive \
    apt-get install -y --no-install-recommends \
    gnupg \
--- a/signer_client.Dockerfile
+++ b/signer_client.Dockerfile
@ -1,9 +1,13 @@
-FROM debian:jessie
+FROM debian/eol:jessie
 COPY testca/root/ca.crt.pem /usr/local/share/ca-certificates/testca_root.crt
 COPY testca/class3/ca.crt.pem /usr/local/share/ca-certificates/testca_class3.crt
-RUN apt-get update \
+RUN sed -i \
      -e 's@\(^deb http://deb\..*\)$@#\1@' \
      -e 's@\(^deb http://security\..*\)$@deb http://archive.debian.org/debian-security jessie/updates main@' \
      /etc/apt/sources.list \
    && apt-get update \
    && DEBIAN_FRONTEND=noninteractive \
    apt-get install -y --no-install-recommends \
    ca-certificates \
--- a/webdb.Dockerfile
+++ b/webdb.Dockerfile
@ -1,6 +1,10 @@
-FROM debian:jessie
+FROM debian/eol:jessie
-RUN apt-get update \
+RUN sed -i \
      -e 's@\(^deb http://deb\..*\)$@#\1@' \
      -e 's@\(^deb http://security\..*\)$@deb http://archive.debian.org/debian-security jessie/updates main@' \
      /etc/apt/sources.list \
    && apt-get update \
    && DEBIAN_FRONTEND=noninteractive \
    apt-get install -y --no-install-recommends \
    ca-certificates \
@ -35,6 +39,7 @@ RUN apt-get update \
    php5-recode \
    psmisc \
    wamerican \
    wget \
    whois \
    && apt-get clean \
    && rm -rf /var/lib/apt/lists/* \
Author	SHA1	Message	Date
Jan Dittberner	8db91abf9e	Fix docker build for EOL Debian release	2024-02-10 13:48:02 +01:00
Jan Dittberner	767ba26a9c	Merge remote-tracking branch 'origin/master' into run-locally * origin/master: Add proper quotes to .env file	2022-12-21 18:05:56 +01:00
Jan Dittberner	2c1dc14eaf	Fix image builds for jessie - jessie's regular archive key expired. This commit switches to debian/eol:jessie as base image	2022-12-21 18:04:18 +01:00
Jan Dittberner	1f815bad85	Point mr to jandd's run-locally github branch	2021-08-27 18:48:09 +02:00
Jan Dittberner	d3a44eb38e	Add TVERIFY_HOSTNAME to support older code base	2021-08-27 18:45:42 +02:00
Jan Dittberner	dbb500f8e8	Add wget to allow download of translations on first start	2021-08-27 18:00:13 +02:00
Jan Dittberner	0857806acf	Make signer and signer_client work with minimal changes	2021-08-27 17:41:26 +02:00