bucde
/
docker_php_apache
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 2 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
34 KiB
Tree: 851db18195
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '851db18195'
${ noResults }
docker_php_apache/Dockerfile

286 lines
8.7 KiB
Raw Normal View History

feat: add files from https://github.com/docker-library/php/tree/15ddd64eb28016277ff2da21a13282b745277f9e/7.4/buster/apache
3 years ago
 
  1. #

  2. # NOTE: THIS DOCKERFILE IS GENERATED VIA "apply-templates.sh"

  3. #

  4. # PLEASE DO NOT EDIT IT DIRECTLY.

  5. #

  6. 

  7. FROM debian:buster-slim

  8. 

  9. # prevent Debian's PHP packages from being installed

  10. # https://github.com/docker-library/php/pull/542

  11. RUN set -eux; \

  12. 	{ \

  13. 		echo 'Package: php*'; \

  14. 		echo 'Pin: release *'; \

  15. 		echo 'Pin-Priority: -1'; \

  16. 	} > /etc/apt/preferences.d/no-debian-php

  17. 

  18. # dependencies required for running "phpize"

  19. # (see persistent deps below)

  20. ENV PHPIZE_DEPS \

  21. 		autoconf \

  22. 		dpkg-dev \

  23. 		file \

  24. 		g++ \

  25. 		gcc \

  26. 		libc-dev \

  27. 		make \

  28. 		pkg-config \

  29. 		re2c

  30. 

  31. # persistent / runtime deps

  32. RUN set -eux; \

  33. 	apt-get update; \

  34. 	apt-get install -y --no-install-recommends \

  35. 		$PHPIZE_DEPS \

  36. 		ca-certificates \

  37. 		curl \

  38. 		xz-utils \

  39. 	; \

  40. 	rm -rf /var/lib/apt/lists/*

  41. 

  42. ENV PHP_INI_DIR /usr/local/etc/php

  43. RUN set -eux; \

  44. 	mkdir -p "$PHP_INI_DIR/conf.d"; \

  45. # allow running as an arbitrary user (https://github.com/docker-library/php/issues/743)

  46. 	[ ! -d /var/www/html ]; \

  47. 	mkdir -p /var/www/html; \

  48. 	chown www-data:www-data /var/www/html; \

  49. 	chmod 777 /var/www/html

  50. 

  51. ENV APACHE_CONFDIR /etc/apache2

  52. ENV APACHE_ENVVARS $APACHE_CONFDIR/envvars

  53. 

  54. RUN set -eux; \

  55. 	apt-get update; \

  56. 	apt-get install -y --no-install-recommends apache2; \

  57. 	rm -rf /var/lib/apt/lists/*; \

  58. 	\

  59. # generically convert lines like

  60. #   export APACHE_RUN_USER=www-data

  61. # into

  62. #   : ${APACHE_RUN_USER:=www-data}

  63. #   export APACHE_RUN_USER

  64. # so that they can be overridden at runtime ("-e APACHE_RUN_USER=...")

  65. 	sed -ri 's/^export ([^=]+)=(.*)$/: ${\1:=\2}\nexport \1/' "$APACHE_ENVVARS"; \

  66. 	\

  67. # setup directories and permissions

  68. 	. "$APACHE_ENVVARS"; \

  69. 	for dir in \

  70. 		"$APACHE_LOCK_DIR" \

  71. 		"$APACHE_RUN_DIR" \

  72. 		"$APACHE_LOG_DIR" \

  73. 	; do \

  74. 		rm -rvf "$dir"; \

  75. 		mkdir -p "$dir"; \

  76. 		chown "$APACHE_RUN_USER:$APACHE_RUN_GROUP" "$dir"; \

  77. # allow running as an arbitrary user (https://github.com/docker-library/php/issues/743)

  78. 		chmod 777 "$dir"; \

  79. 	done; \

  80. 	\

  81. # delete the "index.html" that installing Apache drops in here

  82. 	rm -rvf /var/www/html/*; \

  83. 	\

  84. # logs should go to stdout / stderr

  85. 	ln -sfT /dev/stderr "$APACHE_LOG_DIR/error.log"; \

  86. 	ln -sfT /dev/stdout "$APACHE_LOG_DIR/access.log"; \

  87. 	ln -sfT /dev/stdout "$APACHE_LOG_DIR/other_vhosts_access.log"; \

  88. 	chown -R --no-dereference "$APACHE_RUN_USER:$APACHE_RUN_GROUP" "$APACHE_LOG_DIR"

  89. 

  90. # Apache + PHP requires preforking Apache for best results

  91. RUN a2dismod mpm_event && a2enmod mpm_prefork

  92. 

  93. # PHP files should be handled by PHP, and should be preferred over any other file type

  94. RUN { \

  95. 		echo '<FilesMatch \.php$>'; \

  96. 		echo '\tSetHandler application/x-httpd-php'; \

  97. 		echo '</FilesMatch>'; \

  98. 		echo; \

  99. 		echo 'DirectoryIndex disabled'; \

  100. 		echo 'DirectoryIndex index.php index.html'; \

  101. 		echo; \

  102. 		echo '<Directory /var/www/>'; \

  103. 		echo '\tOptions -Indexes'; \

  104. 		echo '\tAllowOverride All'; \

  105. 		echo '</Directory>'; \

  106. 	} | tee "$APACHE_CONFDIR/conf-available/docker-php.conf" \

  107. 	&& a2enconf docker-php

  108. 

  109. # Apply stack smash protection to functions using local buffers and alloca()

  110. # Make PHP's main executable position-independent (improves ASLR security mechanism, and has no performance impact on x86_64)

  111. # Enable optimization (-O2)

  112. # Enable linker optimization (this sorts the hash buckets to improve cache locality, and is non-default)

  113. # https://github.com/docker-library/php/issues/272

  114. # -D_LARGEFILE_SOURCE and -D_FILE_OFFSET_BITS=64 (https://www.php.net/manual/en/intro.filesystem.php)

  115. ENV PHP_CFLAGS="-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64"

  116. ENV PHP_CPPFLAGS="$PHP_CFLAGS"

  117. ENV PHP_LDFLAGS="-Wl,-O1 -pie"

  118. 

  119. ENV GPG_KEYS 42670A7FE4D0441C8E4632349E4FDC074A4EF02D 5A52880781F755608BF815FC910DEB46F53EA312

  120. 

  121. ENV PHP_VERSION 7.4.24

  122. ENV PHP_URL="https://www.php.net/distributions/php-7.4.24.tar.xz" PHP_ASC_URL="https://www.php.net/distributions/php-7.4.24.tar.xz.asc"

  123. ENV PHP_SHA256="ff7658ee2f6d8af05b48c21146af5f502e121def4e76e862df5ec9fa06e98734"

  124. 

  125. RUN set -eux; \

  126. 	\

  127. 	savedAptMark="$(apt-mark showmanual)"; \

  128. 	apt-get update; \

  129. 	apt-get install -y --no-install-recommends gnupg dirmngr; \

  130. 	rm -rf /var/lib/apt/lists/*; \

  131. 	\

  132. 	mkdir -p /usr/src; \

  133. 	cd /usr/src; \

  134. 	\

  135. 	curl -fsSL -o php.tar.xz "$PHP_URL"; \

  136. 	\

  137. 	if [ -n "$PHP_SHA256" ]; then \

  138. 		echo "$PHP_SHA256 *php.tar.xz" | sha256sum -c -; \

  139. 	fi; \

  140. 	\

  141. 	if [ -n "$PHP_ASC_URL" ]; then \

  142. 		curl -fsSL -o php.tar.xz.asc "$PHP_ASC_URL"; \

  143. 		export GNUPGHOME="$(mktemp -d)"; \

  144. 		for key in $GPG_KEYS; do \

  145. 			gpg --batch --keyserver keyserver.ubuntu.com --recv-keys "$key"; \

  146. 		done; \

  147. 		gpg --batch --verify php.tar.xz.asc php.tar.xz; \

  148. 		gpgconf --kill all; \

  149. 		rm -rf "$GNUPGHOME"; \

  150. 	fi; \

  151. 	\

  152. 	apt-mark auto '.*' > /dev/null; \

  153. 	apt-mark manual $savedAptMark > /dev/null; \

  154. 	apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false

  155. 

  156. COPY docker-php-source /usr/local/bin/

  157. 

  158. RUN set -eux; \

  159. 	\

  160. 	savedAptMark="$(apt-mark showmanual)"; \

  161. 	apt-get update; \

  162. 	apt-get install -y --no-install-recommends \

  163. 		apache2-dev \

  164. 		libargon2-dev \

  165. 		libcurl4-openssl-dev \

  166. 		libonig-dev \

  167. 		libreadline-dev \

  168. 		libsodium-dev \

  169. 		libsqlite3-dev \

  170. 		libssl-dev \

  171. 		libxml2-dev \

  172. 		zlib1g-dev \

  173. 	; \

  174. 	\

  175. 	export \

  176. 		CFLAGS="$PHP_CFLAGS" \

  177. 		CPPFLAGS="$PHP_CPPFLAGS" \

  178. 		LDFLAGS="$PHP_LDFLAGS" \

  179. 	; \

  180. 	docker-php-source extract; \

  181. 	cd /usr/src/php; \

  182. 	gnuArch="$(dpkg-architecture --query DEB_BUILD_GNU_TYPE)"; \

  183. 	debMultiarch="$(dpkg-architecture --query DEB_BUILD_MULTIARCH)"; \

  184. # https://bugs.php.net/bug.php?id=74125

  185. 	if [ ! -d /usr/include/curl ]; then \

  186. 		ln -sT "/usr/include/$debMultiarch/curl" /usr/local/include/curl; \

  187. 	fi; \

  188. 	./configure \

  189. 		--build="$gnuArch" \

  190. 		--with-config-file-path="$PHP_INI_DIR" \

  191. 		--with-config-file-scan-dir="$PHP_INI_DIR/conf.d" \

  192. 		\

  193. # make sure invalid --configure-flags are fatal errors instead of just warnings

  194. 		--enable-option-checking=fatal \

  195. 		\

  196. # https://github.com/docker-library/php/issues/439

  197. 		--with-mhash \

  198. 		\

  199. # https://github.com/docker-library/php/issues/822

  200. 		--with-pic \

  201. 		\

  202. # --enable-ftp is included here because ftp_ssl_connect() needs ftp to be compiled statically (see https://github.com/docker-library/php/issues/236)

  203. 		--enable-ftp \

  204. # --enable-mbstring is included here because otherwise there's no way to get pecl to use it properly (see https://github.com/docker-library/php/issues/195)

  205. 		--enable-mbstring \

  206. # --enable-mysqlnd is included here because it's harder to compile after the fact than extensions are (since it's a plugin for several extensions, not an extension in itself)

  207. 		--enable-mysqlnd \

  208. # https://wiki.php.net/rfc/argon2_password_hash

  209. 		--with-password-argon2 \

  210. # https://wiki.php.net/rfc/libsodium

  211. 		--with-sodium=shared \

  212. # always build against system sqlite3 (https://github.com/php/php-src/commit/6083a387a81dbbd66d6316a3a12a63f06d5f7109)

  213. 		--with-pdo-sqlite=/usr \

  214. 		--with-sqlite3=/usr \

  215. 		\

  216. 		--with-curl \

  217. 		--with-openssl \

  218. 		--with-readline \

  219. 		--with-zlib \

  220. 		\

  221. # in PHP 7.4+, the pecl/pear installers are officially deprecated (requiring an explicit "--with-pear")

  222. 		--with-pear \

  223. 		\

  224. # bundled pcre does not support JIT on s390x

  225. # https://manpages.debian.org/bullseye/libpcre3-dev/pcrejit.3.en.html#AVAILABILITY_OF_JIT_SUPPORT

  226. 		$(test "$gnuArch" = 's390x-linux-gnu' && echo '--without-pcre-jit') \

  227. 		--with-libdir="lib/$debMultiarch" \

  228. 		\

  229. 		--disable-cgi \

  230. 		\

  231. 		--with-apxs2 \

  232. 	; \

  233. 	make -j "$(nproc)"; \

  234. 	find -type f -name '*.a' -delete; \

  235. 	make install; \

  236. 	find \

  237. 		/usr/local \

  238. 		-type f \

  239. 		-perm '/0111' \

  240. 		-exec sh -euxc ' \

  241. 			strip --strip-all "$@" || : \

  242. 		' -- '{}' + \

  243. 	; \

  244. 	make clean; \

  245. 	\

  246. # https://github.com/docker-library/php/issues/692 (copy default example "php.ini" files somewhere easily discoverable)

  247. 	cp -v php.ini-* "$PHP_INI_DIR/"; \

  248. 	\

  249. 	cd /; \

  250. 	docker-php-source delete; \

  251. 	\

  252. # reset apt-mark's "manual" list so that "purge --auto-remove" will remove all build dependencies

  253. 	apt-mark auto '.*' > /dev/null; \

  254. 	[ -z "$savedAptMark" ] || apt-mark manual $savedAptMark; \

  255. 	find /usr/local -type f -executable -exec ldd '{}' ';' \

  256. 		| awk '/=>/ { print $(NF-1) }' \

  257. 		| sort -u \

  258. 		| xargs -r dpkg-query --search \

  259. 		| cut -d: -f1 \

  260. 		| sort -u \

  261. 		| xargs -r apt-mark manual \

  262. 	; \

  263. 	apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \

  264. 	rm -rf /var/lib/apt/lists/*; \

  265. 	\

  266. # update pecl channel definitions https://github.com/docker-library/php/issues/443

  267. 	pecl update-channels; \

  268. 	rm -rf /tmp/pear ~/.pearrc; \

  269. 	\

  270. # smoke test

  271. 	php --version

  272. 

  273. COPY docker-php-ext-* docker-php-entrypoint /usr/local/bin/

  274. 

  275. # sodium was built as a shared module (so that it can be replaced later if so desired), so let's enable it too (https://github.com/docker-library/php/issues/598)

  276. RUN docker-php-ext-enable sodium

  277. 

  278. ENTRYPOINT ["docker-php-entrypoint"]

  279. # https://httpd.apache.org/docs/2.4/stopping.html#gracefulstop

  280. STOPSIGNAL SIGWINCH

  281. 

  282. COPY apache2-foreground /usr/local/bin/

  283. WORKDIR /var/www/html

  284. 

  285. EXPOSE 80

  286. CMD ["apache2-foreground"]