bucde
/
docker_php_apache
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 2 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
34 KiB
Tree: 04a64bfa60
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '04a64bfa60'
${ noResults }
docker_php_apache/Dockerfile

291 lines
8.9 KiB
Raw Normal View History

feat: add files from https://github.com/docker-library/php/tree/15ddd64eb28016277ff2da21a13282b745277f9e/7.4/buster/apache
3 years ago
feat: create build script and change Dockerfile
3 years ago
feat: add files from https://github.com/docker-library/php/tree/15ddd64eb28016277ff2da21a13282b745277f9e/7.4/buster/apache
3 years ago
 
  1. #

  2. # NOTE: THIS DOCKERFILE IS GENERATED VIA "apply-templates.sh"

  3. #

  4. # PLEASE DO NOT EDIT IT DIRECTLY.

  5. #

  6. 

  7. FROM debian:buster-slim

  8. 

  9. ARG PHP_APACHE_WWW_DATA_UID=33
  10. ARG PHP_APACHE_WWW_DATA_GID=33
  11. RUN groupmod -g $PHP_APACHE_WWW_DATA_GID www-data; \

  12. 	usermod -u $PHP_APACHE_WWW_DATA_UID -g $PHP_APACHE_WWW_DATA_GID www-data

  13. 

  14. # prevent Debian's PHP packages from being installed

  15. # https://github.com/docker-library/php/pull/542

  16. RUN set -eux; \

  17. 	{ \

  18. 		echo 'Package: php*'; \

  19. 		echo 'Pin: release *'; \

  20. 		echo 'Pin-Priority: -1'; \

  21. 	} > /etc/apt/preferences.d/no-debian-php

  22. 

  23. # dependencies required for running "phpize"

  24. # (see persistent deps below)

  25. ENV PHPIZE_DEPS \

  26. 		autoconf \

  27. 		dpkg-dev \

  28. 		file \

  29. 		g++ \

  30. 		gcc \

  31. 		libc-dev \

  32. 		make \

  33. 		pkg-config \

  34. 		re2c

  35. 

  36. # persistent / runtime deps

  37. RUN set -eux; \

  38. 	apt-get update; \

  39. 	apt-get install -y --no-install-recommends \

  40. 		$PHPIZE_DEPS \

  41. 		ca-certificates \

  42. 		curl \

  43. 		xz-utils \

  44. 	; \

  45. 	rm -rf /var/lib/apt/lists/*

  46. 

  47. ENV PHP_INI_DIR /usr/local/etc/php

  48. RUN set -eux; \

  49. 	mkdir -p "$PHP_INI_DIR/conf.d"; \

  50. # allow running as an arbitrary user (https://github.com/docker-library/php/issues/743)

  51. 	[ ! -d /var/www/html ]; \

  52. 	mkdir -p /var/www/html; \

  53. 	chown www-data:www-data /var/www/html; \

  54. 	chmod 777 /var/www/html

  55. 

  56. ENV APACHE_CONFDIR /etc/apache2

  57. ENV APACHE_ENVVARS $APACHE_CONFDIR/envvars

  58. 

  59. RUN set -eux; \

  60. 	apt-get update; \

  61. 	apt-get install -y --no-install-recommends apache2; \

  62. 	rm -rf /var/lib/apt/lists/*; \

  63. 	\

  64. # generically convert lines like

  65. #   export APACHE_RUN_USER=www-data

  66. # into

  67. #   : ${APACHE_RUN_USER:=www-data}

  68. #   export APACHE_RUN_USER

  69. # so that they can be overridden at runtime ("-e APACHE_RUN_USER=...")

  70. 	sed -ri 's/^export ([^=]+)=(.*)$/: ${\1:=\2}\nexport \1/' "$APACHE_ENVVARS"; \

  71. 	\

  72. # setup directories and permissions

  73. 	. "$APACHE_ENVVARS"; \

  74. 	for dir in \

  75. 		"$APACHE_LOCK_DIR" \

  76. 		"$APACHE_RUN_DIR" \

  77. 		"$APACHE_LOG_DIR" \

  78. 	; do \

  79. 		rm -rvf "$dir"; \

  80. 		mkdir -p "$dir"; \

  81. 		chown "$APACHE_RUN_USER:$APACHE_RUN_GROUP" "$dir"; \

  82. # allow running as an arbitrary user (https://github.com/docker-library/php/issues/743)

  83. 		chmod 777 "$dir"; \

  84. 	done; \

  85. 	\

  86. # delete the "index.html" that installing Apache drops in here

  87. 	rm -rvf /var/www/html/*; \

  88. 	\

  89. # logs should go to stdout / stderr

  90. 	ln -sfT /dev/stderr "$APACHE_LOG_DIR/error.log"; \

  91. 	ln -sfT /dev/stdout "$APACHE_LOG_DIR/access.log"; \

  92. 	ln -sfT /dev/stdout "$APACHE_LOG_DIR/other_vhosts_access.log"; \

  93. 	chown -R --no-dereference "$APACHE_RUN_USER:$APACHE_RUN_GROUP" "$APACHE_LOG_DIR"

  94. 

  95. # Apache + PHP requires preforking Apache for best results

  96. RUN a2dismod mpm_event && a2enmod mpm_prefork

  97. 

  98. # PHP files should be handled by PHP, and should be preferred over any other file type

  99. RUN { \

  100. 		echo '<FilesMatch \.php$>'; \

  101. 		echo '\tSetHandler application/x-httpd-php'; \

  102. 		echo '</FilesMatch>'; \

  103. 		echo; \

  104. 		echo 'DirectoryIndex disabled'; \

  105. 		echo 'DirectoryIndex index.php index.html'; \

  106. 		echo; \

  107. 		echo '<Directory /var/www/>'; \

  108. 		echo '\tOptions -Indexes'; \

  109. 		echo '\tAllowOverride All'; \

  110. 		echo '</Directory>'; \

  111. 	} | tee "$APACHE_CONFDIR/conf-available/docker-php.conf" \

  112. 	&& a2enconf docker-php

  113. 

  114. # Apply stack smash protection to functions using local buffers and alloca()

  115. # Make PHP's main executable position-independent (improves ASLR security mechanism, and has no performance impact on x86_64)

  116. # Enable optimization (-O2)

  117. # Enable linker optimization (this sorts the hash buckets to improve cache locality, and is non-default)

  118. # https://github.com/docker-library/php/issues/272

  119. # -D_LARGEFILE_SOURCE and -D_FILE_OFFSET_BITS=64 (https://www.php.net/manual/en/intro.filesystem.php)

  120. ENV PHP_CFLAGS="-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64"

  121. ENV PHP_CPPFLAGS="$PHP_CFLAGS"

  122. ENV PHP_LDFLAGS="-Wl,-O1 -pie"

  123. 

  124. ENV GPG_KEYS 42670A7FE4D0441C8E4632349E4FDC074A4EF02D 5A52880781F755608BF815FC910DEB46F53EA312

  125. 

  126. ENV PHP_VERSION 7.4.24

  127. ENV PHP_URL="https://www.php.net/distributions/php-7.4.24.tar.xz" PHP_ASC_URL="https://www.php.net/distributions/php-7.4.24.tar.xz.asc"

  128. ENV PHP_SHA256="ff7658ee2f6d8af05b48c21146af5f502e121def4e76e862df5ec9fa06e98734"

  129. 

  130. RUN set -eux; \

  131. 	\

  132. 	savedAptMark="$(apt-mark showmanual)"; \

  133. 	apt-get update; \

  134. 	apt-get install -y --no-install-recommends gnupg dirmngr; \

  135. 	rm -rf /var/lib/apt/lists/*; \

  136. 	\

  137. 	mkdir -p /usr/src; \

  138. 	cd /usr/src; \

  139. 	\

  140. 	curl -fsSL -o php.tar.xz "$PHP_URL"; \

  141. 	\

  142. 	if [ -n "$PHP_SHA256" ]; then \

  143. 		echo "$PHP_SHA256 *php.tar.xz" | sha256sum -c -; \

  144. 	fi; \

  145. 	\

  146. 	if [ -n "$PHP_ASC_URL" ]; then \

  147. 		curl -fsSL -o php.tar.xz.asc "$PHP_ASC_URL"; \

  148. 		export GNUPGHOME="$(mktemp -d)"; \

  149. 		for key in $GPG_KEYS; do \

  150. 			gpg --batch --keyserver keyserver.ubuntu.com --recv-keys "$key"; \

  151. 		done; \

  152. 		gpg --batch --verify php.tar.xz.asc php.tar.xz; \

  153. 		gpgconf --kill all; \

  154. 		rm -rf "$GNUPGHOME"; \

  155. 	fi; \

  156. 	\

  157. 	apt-mark auto '.*' > /dev/null; \

  158. 	apt-mark manual $savedAptMark > /dev/null; \

  159. 	apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false

  160. 

  161. COPY docker-php-source /usr/local/bin/

  162. 

  163. RUN set -eux; \

  164. 	\

  165. 	savedAptMark="$(apt-mark showmanual)"; \

  166. 	apt-get update; \

  167. 	apt-get install -y --no-install-recommends \

  168. 		apache2-dev \

  169. 		libargon2-dev \

  170. 		libcurl4-openssl-dev \

  171. 		libonig-dev \

  172. 		libreadline-dev \

  173. 		libsodium-dev \

  174. 		libsqlite3-dev \

  175. 		libssl-dev \

  176. 		libxml2-dev \

  177. 		zlib1g-dev \

  178. 	; \

  179. 	\

  180. 	export \

  181. 		CFLAGS="$PHP_CFLAGS" \

  182. 		CPPFLAGS="$PHP_CPPFLAGS" \

  183. 		LDFLAGS="$PHP_LDFLAGS" \

  184. 	; \

  185. 	docker-php-source extract; \

  186. 	cd /usr/src/php; \

  187. 	gnuArch="$(dpkg-architecture --query DEB_BUILD_GNU_TYPE)"; \

  188. 	debMultiarch="$(dpkg-architecture --query DEB_BUILD_MULTIARCH)"; \

  189. # https://bugs.php.net/bug.php?id=74125

  190. 	if [ ! -d /usr/include/curl ]; then \

  191. 		ln -sT "/usr/include/$debMultiarch/curl" /usr/local/include/curl; \

  192. 	fi; \

  193. 	./configure \

  194. 		--build="$gnuArch" \

  195. 		--with-config-file-path="$PHP_INI_DIR" \

  196. 		--with-config-file-scan-dir="$PHP_INI_DIR/conf.d" \

  197. 		\

  198. # make sure invalid --configure-flags are fatal errors instead of just warnings

  199. 		--enable-option-checking=fatal \

  200. 		\

  201. # https://github.com/docker-library/php/issues/439

  202. 		--with-mhash \

  203. 		\

  204. # https://github.com/docker-library/php/issues/822

  205. 		--with-pic \

  206. 		\

  207. # --enable-ftp is included here because ftp_ssl_connect() needs ftp to be compiled statically (see https://github.com/docker-library/php/issues/236)

  208. 		--enable-ftp \

  209. # --enable-mbstring is included here because otherwise there's no way to get pecl to use it properly (see https://github.com/docker-library/php/issues/195)

  210. 		--enable-mbstring \

  211. # --enable-mysqlnd is included here because it's harder to compile after the fact than extensions are (since it's a plugin for several extensions, not an extension in itself)

  212. 		--enable-mysqlnd \

  213. # https://wiki.php.net/rfc/argon2_password_hash

  214. 		--with-password-argon2 \

  215. # https://wiki.php.net/rfc/libsodium

  216. 		--with-sodium=shared \

  217. # always build against system sqlite3 (https://github.com/php/php-src/commit/6083a387a81dbbd66d6316a3a12a63f06d5f7109)

  218. 		--with-pdo-sqlite=/usr \

  219. 		--with-sqlite3=/usr \

  220. 		\

  221. 		--with-curl \

  222. 		--with-openssl \

  223. 		--with-readline \

  224. 		--with-zlib \

  225. 		\

  226. # in PHP 7.4+, the pecl/pear installers are officially deprecated (requiring an explicit "--with-pear")

  227. 		--with-pear \

  228. 		\

  229. # bundled pcre does not support JIT on s390x

  230. # https://manpages.debian.org/bullseye/libpcre3-dev/pcrejit.3.en.html#AVAILABILITY_OF_JIT_SUPPORT

  231. 		$(test "$gnuArch" = 's390x-linux-gnu' && echo '--without-pcre-jit') \

  232. 		--with-libdir="lib/$debMultiarch" \

  233. 		\

  234. 		--disable-cgi \

  235. 		\

  236. 		--with-apxs2 \

  237. 	; \

  238. 	make -j "$(nproc)"; \

  239. 	find -type f -name '*.a' -delete; \

  240. 	make install; \

  241. 	find \

  242. 		/usr/local \

  243. 		-type f \

  244. 		-perm '/0111' \

  245. 		-exec sh -euxc ' \

  246. 			strip --strip-all "$@" || : \

  247. 		' -- '{}' + \

  248. 	; \

  249. 	make clean; \

  250. 	\

  251. # https://github.com/docker-library/php/issues/692 (copy default example "php.ini" files somewhere easily discoverable)

  252. 	cp -v php.ini-* "$PHP_INI_DIR/"; \

  253. 	\

  254. 	cd /; \

  255. 	docker-php-source delete; \

  256. 	\

  257. # reset apt-mark's "manual" list so that "purge --auto-remove" will remove all build dependencies

  258. 	apt-mark auto '.*' > /dev/null; \

  259. 	[ -z "$savedAptMark" ] || apt-mark manual $savedAptMark; \

  260. 	find /usr/local -type f -executable -exec ldd '{}' ';' \

  261. 		| awk '/=>/ { print $(NF-1) }' \

  262. 		| sort -u \

  263. 		| xargs -r dpkg-query --search \

  264. 		| cut -d: -f1 \

  265. 		| sort -u \

  266. 		| xargs -r apt-mark manual \

  267. 	; \

  268. 	apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \

  269. 	rm -rf /var/lib/apt/lists/*; \

  270. 	\

  271. # update pecl channel definitions https://github.com/docker-library/php/issues/443

  272. 	pecl update-channels; \

  273. 	rm -rf /tmp/pear ~/.pearrc; \

  274. 	\

  275. # smoke test

  276. 	php --version

  277. 

  278. COPY docker-php-ext-* docker-php-entrypoint /usr/local/bin/

  279. 

  280. # sodium was built as a shared module (so that it can be replaced later if so desired), so let's enable it too (https://github.com/docker-library/php/issues/598)

  281. RUN docker-php-ext-enable sodium

  282. 

  283. ENTRYPOINT ["docker-php-entrypoint"]

  284. # https://httpd.apache.org/docs/2.4/stopping.html#gracefulstop

  285. STOPSIGNAL SIGWINCH

  286. 

  287. COPY apache2-foreground /usr/local/bin/

  288. WORKDIR /var/www/html

  289. 

  290. EXPOSE 80

  291. CMD ["apache2-foreground"]