RootShell-coder · RootShell-coder · Jan 30, 2023 · Jan 25, 2023 · Jan 25, 2023 · Jan 26, 2023
diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
@@ -0,0 +1,37 @@
+name: powerdns
+
+on:
+  push:
+    branches:
+    -
+      "master"
+
+env:
+  IMAGE_NAME: "powerdns"
+  VERSION: "latest"
+jobs:
+  push:
+    name: Build and push to Docker Hub
+    runs-on: ubuntu-latest
+    steps:
+      -
+        name: Checkout repository
+        uses: actions/checkout@v3
+      -
+        name: Build image
+        run: DOCKER_BUILDKIT=1 docker build . --file Dockerfile -t ${{ secrets.DOCKERHUB_USERNAME }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}
+      -
+        name: Login to Docker Hub
+        uses: docker/login-action@v2
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+      -
+        name: Push Image to Docker Hub
+        run: docker push ${{ secrets.DOCKERHUB_USERNAME }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}
+      -
+        name: Tag image
+        run: docker tag ${{ secrets.DOCKERHUB_USERNAME }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }} ${{ secrets.DOCKERHUB_USERNAME }}/${{ env.IMAGE_NAME }}:$(date +%Y%m%d)
+      -
+        name: Push tag Image to Docker Hub
+        run: docker push ${{ secrets.DOCKERHUB_USERNAME }}/${{ env.IMAGE_NAME }}:$(date +%Y%m%d)
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1 @@
+mysqldb
diff --git a/Dockerfile b/Dockerfile
@@ -0,0 +1,175 @@
+FROM alpine:3.17.1 as builder
+
+ENV POWERDNS_VER=4.7.3
+
+RUN set -eux; \
+	apk add --no-cache \
+	build-base \
+	\
+	boost-dev curl curl-dev geoip-dev krb5-dev openssl-dev \
+	libsodium-dev lua-dev mariadb-connector-c-dev \
+	protobuf-dev yaml-cpp-dev zeromq-dev mariadb-dev luajit-dev \
+	libmaxminddb-dev
+
+RUN set -eux; \
+	mkdir -p build; \
+	cd build; \
+	wget "https://downloads.powerdns.com/releases/pdns-${POWERDNS_VER}.tar.bz2"; \
+	tar -jxf "pdns-${POWERDNS_VER}.tar.bz2"
+
+RUN set -eux; \
+	cd build; \
+	cd "pdns-${POWERDNS_VER}"; \
+	export CFLAGS="-march=x86-64 -mtune=generic -Os -pipe -fno-plt -fexceptions -Wp,-D_FORTIFY_SOURCE=2 -Wformat -Werror=format-security -fstack-clash-protection -fcf-protection -flto=auto"; \
+	export CXXFLAGS="-Wp,-D_GLIBCXX_ASSERTIONS"; \
+	export LDFLAGS="-Wl,-Os,--sort-common,--as-needed,-z,relro,-z,now -flto=auto"; \
+	\
+	./configure \
+	--prefix=/usr \
+	--sysconfdir="/etc/powerdns" \
+	--sbindir=/usr/sbin \
+	--mandir=/usr/share/man \
+	--infodir=/usr/share/info \
+	--localstatedir=/var \
+	--libdir="/usr/lib/powerdns" \
+	--disable-static \
+	--with-modules="" \
+	--with-dynmodules="bind geoip gmysql lua2 pipe remote" \
+	--with-libsodium \
+	--enable-tools \
+	--enable-ixfrdist \
+	--enable-dns-over-tls \
+	--disable-dependency-tracking \
+	--disable-silent-rules \
+	--enable-reproducible \
+	--enable-unit-tests \
+	--with-service-user=powerdns \
+	--with-service-group=powerdns \
+	--enable-remotebackend-zeromq; \
+	make V=1 -j$(nproc) -l8 CFLAGS="$CFLAGS" CXXFLAGS="$CXXFLAGS" LDFLAGS="$LDFLAGS"; \
+	\
+	pkgdir=/build/powerdns-root; \
+	make DESTDIR="$pkgdir" install; \
+	\
+	mv "$pkgdir"/etc/powerdns/pdns.conf-dist "$pkgdir"/etc/powerdns/pdns.conf; \
+	mv "$pkgdir"/etc/powerdns/ixfrdist.example.yml "$pkgdir"/usr/share/doc/pdns/; \
+	find "$pkgdir" -type f -name "*.a" -o -name "*.la" | xargs rm -fv; \
+	rm -rfv \
+	"$pkgdir"/usr/include \
+	"$pkgdir"/usr/share/man
+
+RUN set -eux; \
+	cd build/powerdns-root; \
+	scanelf --recursive --nobanner --osabi --etype "ET_DYN,ET_EXEC" .  | awk '{print $3}' | xargs \
+	strip \
+	--remove-section=.comment \
+	--remove-section=.note \
+	-R .gnu.lto_* -R .gnu.debuglto_* \
+	-N __gnu_lto_slim -N __gnu_lto_v1 \
+	--strip-unneeded
+
+
+
+FROM alpine:3.17.1
+
+ENV POWERADMIN_VER=3.4.2
+
+ENV TZ=Europe/Moscow
+ENV LANG ru_RU.UTF-8
+ENV LANGUAGE ru_RU.UTF-8
+ENV LC_ALL ru_RU.UTF-8
+ENV MUSL_LOCPATH /usr/share/i18n/locales/musl
+
+RUN set -eux; \
+	apk add --no-cache \
+	boost-libs \
+	geoip \
+	libcurl \
+	libmaxminddb-libs \
+	luajit \
+	mariadb-client \
+	mariadb-connector-c \
+	yaml-cpp \
+	zeromq \
+	openssl \
+	\
+	pwgen \
+	supervisor \
+	nginx \
+	php81 \
+	php81-fpm \
+	php81-intl \
+	php81-iconv \
+	php81-mysqlnd \
+	php81-pdo \
+	php81-pdo_mysql \
+	php81-gettext \
+	php81-openssl \
+	php81-session \
+	php81-tokenizer \
+	php81-mbstring \
+	php81-xml \
+	\
+	composer musl musl-utils musl-locales tzdata patch bind-tools; \
+	rm -f /var/cache/apk/*
+
+RUN set -eux; \
+	mkdir -p /var/www/html; \
+	cd /var/www/html; \
+	wget https://github.com/poweradmin/poweradmin/archive/refs/tags/v${POWERADMIN_VER}.tar.gz; \
+	tar -xf v${POWERADMIN_VER}.tar.gz && rm -f v${POWERADMIN_VER}.tar.gz; \
+	mv poweradmin-${POWERADMIN_VER} poweradmin; \
+	rm -rf /var/www/html/poweradmin/install/
+
+COPY --from=builder /build/powerdns-root /
+COPY supervisor /etc/supervisor
+COPY powerdns /etc/powerdns
+COPY entrypoint /usr/bin
+COPY nginx /etc/nginx
+COPY php81 /etc/php81
+COPY poweradmin /var/www/html/poweradmin/inc
+COPY sql /sql
+
+RUN set -eux; \
+	addgroup -S powerdns 2>/dev/null; \
+	adduser -S -D -h /var/lib/powerdns -s /sbin/nologin -G powerdns -g powerdns powerdns 2>/dev/null; \
+	cp /usr/share/zoneinfo/${TZ} /etc/localtime; \
+	chmod +x /usr/bin/entrypoint; \
+	mkdir -p /run/powerdns; \
+	chmod 0750 /etc/powerdns; \
+	chmod 0640 /etc/powerdns/pdns.conf; \
+	chmod 0755 /run/powerdns; \
+	chown -R root:powerdns /etc/powerdns; \
+	chown -R nginx:nginx /var/www/html; \
+	chown -R powerdns:powerdns /run/powerdns
+
+#bug source correction
+RUN set -eux; \
+	sed -i "s!latin1!utf8mb4!g" /sql/pdns_schema.sql; \
+	sed -i "s!latin1!utf8mb4!g" /sql/poweradmin.sql; \
+	# ERROR 1074 (42000) Column length too big (max = 21844); use BLOB or TEXT instead
+	sed -i "s!VARCHAR(64000) DEFAULT NULL!TEXT(64000) DEFAULT NULL!g" /sql/pdns_schema.sql; \
+	# BUGs Undefined constant id,error
+	patch /var/www/html/poweradmin/dnssec_add_key.php /var/www/html/poweradmin/inc/dnssec_add_key.diff; \
+	patch /var/www/html/poweradmin/dnssec_edit_key.php /var/www/html/poweradmin/inc/dnssec_edit_key.diff; \
+	rm -r /var/www/html/poweradmin/inc/dnssec_add_key.diff /var/www/html/poweradmin/inc/dnssec_edit_key.diff
+
+#clear source
+RUN set -eux; \
+	rm -rf /var/www/html/poweradmin/.git; \
+	rm -rf /var/www/html/poweradmin/migrations; \
+	rm -rf /var/www/html/poweradmin/sql; \
+	rm -rf /var/www/html/poweradmin/tests; \
+	rm -rf /var/www/html/poweradmin/vagrant; \
+	rm -r /var/www/html/poweradmin/.gitignore; \
+	rm -r /var/www/html/poweradmin/README.md; \
+	rm -r /var/www/html/poweradmin/VAGRANT.md; \
+	rm -r /var/www/html/poweradmin/Vagrantfile; \
+	rm -r /var/www/html/poweradmin/Dockerfile
+
+
+EXPOSE 53
+EXPOSE 53/UDP
+
+ENTRYPOINT [ "entrypoint" ]
+CMD ["/usr/bin/supervisord", "-n", "-c", "/etc/supervisor/supervisord.conf"]
diff --git a/README.md b/README.md
@@ -1 +1 @@
-# powerdns
+# powerdns
diff --git a/docker-compose.yml b/docker-compose.yml
@@ -0,0 +1,69 @@
+version: '3.9'
+
+networks:
+  powerdns:
+    name: powerdns
+    driver: bridge
+#    driver_opts:
+#     com.docker.network.enable_ipv6: "true"
+#    ipam:
+#      driver: default
+#      config:
+#        - subnet: 172.16.238.0/24
+#          gateway: 172.16.238.1
+#        - subnet: "2001:3984:3989::/64"
+#          gateway: "2001:3984:3989::1"
+
+services:
+
+  mariadb:
+    image: mariadb
+    volumes:
+      - ./mysqldb:/var/lib/mysql
+    networks:
+      - powerdns
+    environment:
+      - MYSQL_ROOT_PASSWORD=root_pass
+      - MYSQL_DATABASE=pdns_db
+      - MYSQL_USER=pdns_user
+      - MYSQL_PASSWORD=pdns_pass
+
+  powerdns:
+    image: powerdns:latest
+    networks:
+      - powerdns
+    environment:
+      - TZ=Europe/Moscow
+
+      - MYSQL_HOST=mariadb
+      - MYSQL_DATABASE=pdns_db
+      - MYSQL_USER=pdns_user
+      - MYSQL_PASSWORD=pdns_pass
+
+      - PDNS_ALLOW_AXFR_IPS=127.0.0.1/32, 172.17.0.1/32
+      - PDNS_MASTER=yes
+      - PDNS_SLAVE=yes
+      - PDNS_CACHE_TTL=20
+      - PDNS_DISTRIBUTOR_THREADS=3
+      - PDNS_ALLOW_DNSUPDATE_FROM=127.0.0.1/32, 172.17.0.33/23
+
+      - PDNS_WEBSERVER_ENABLE=yes
+      - PDNS_WEBSERVER_IP=0.0.0.0
+      - PDNS_WEBSERVER_ALLOW_FROM=127.0.0.1/32, 172.17.0.1/32
+      - PDNS_WEBSERVER_PASSWORD=adminpass
+      - PDNS_WEBSERVER_PORT=8080
+      - PDNS_WEBSERVER_API_ENABLE=no
+      - PDNS_WEBSERVER_API_KEY=adminapikey
+
+      - POWERADMIN_HOSTMASTER=email.admmin.soa
+      - POWERADMIN_IFACE_STYLE=spark
+      - POWERADMIN_IFACE_LANG=ru_RU
+      - POWERADMIN_NS1=ns1.example.com
+      - POWERADMIN_NS2=ns2.example.com
+    depends_on:
+      - mariadb
+    ports:
+      - 80:80/TCP
+      - 8080:8080/TCP
+      - 53:53/TCP
+      - 53:53/UDP