-
Notifications
You must be signed in to change notification settings - Fork 444
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
4e20774
commit 7dabf47
Showing
9 changed files
with
1,213 additions
and
7 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,106 @@ | ||
FROM redhat/ubi9-minimal | ||
|
||
# user 999/ group 999, that we want to use for compatibility with the ubuntu image. | ||
RUN groupadd --gid 999 -r mysql && \ | ||
useradd -r -g mysql mysql --home-dir /var/lib/mysql --uid 999 | ||
|
||
ENV GOSU_VERSION 1.17 | ||
RUN set -eux; \ | ||
rpmArch="$(rpm --query --queryformat='%{ARCH}' rpm)"; \ | ||
case "$rpmArch" in \ | ||
aarch64) dpkgArch='arm64' ;; \ | ||
armv7*) dpkgArch='armhf' ;; \ | ||
i686) dpkgArch='i386' ;; \ | ||
ppc64le) dpkgArch='ppc64el' ;; \ | ||
s390x|riscv64) dpkgArch=$rpmArch ;; \ | ||
x86_64) dpkgArch='amd64' ;; \ | ||
*) echo >&2 "error: unknown/unsupported architecture '$rpmArch'"; exit 1 ;; \ | ||
esac; \ | ||
curl --fail --location --output /usr/local/bin/gosu https://github.com/tianon/gosu/releases/download/${GOSU_VERSION}/gosu-${dpkgArch} ; \ | ||
curl --fail --location --output /usr/local/bin/gosu.asc https://github.com/tianon/gosu/releases/download/${GOSU_VERSION}/gosu-${dpkgArch}.asc; \ | ||
GNUPGHOME="$(mktemp -d)"; \ | ||
export GNUPGHOME; \ | ||
gpg --batch --keyserver hkps://keys.openpgp.org --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4; \ | ||
chmod a+x /usr/local/bin/gosu; \ | ||
gpg --batch --verify /usr/local/bin/gosu.asc /usr/local/bin/gosu; \ | ||
gpgconf --kill all; \ | ||
rm -rf "$GNUPGHOME" /usr/local/bin/gosu.asc; \ | ||
gosu --version; \ | ||
gosu nobody true | ||
|
||
COPY docker.cnf /etc/my.cnf.d/ | ||
|
||
COPY MariaDB.repo /etc/yum.repos.d/ | ||
|
||
# HasRequiredLabel requirement from Red Hat OpenShift Software Certification | ||
# https://access.redhat.com/documentation/en-us/red_hat_software_certification/2024/html/red_hat_openshift_software_certification_policy_guide/assembly-requirements-for-container-images_openshift-sw-cert-policy-introduction#con-image-metadata-requirements_openshift-sw-cert-policy-container-images | ||
LABEL name="MariaDB Server" \ | ||
vendor="MariaDB Community" \ | ||
version="11.5.1" \ | ||
release="Refer to Annotations org.opencontainers.image.{revision,source}" \ | ||
summary="MariaDB Database" \ | ||
description="MariaDB Database for relational SQL" | ||
|
||
# OCI annotations to image | ||
LABEL org.opencontainers.image.authors="MariaDB Community" \ | ||
org.opencontainers.image.title="MariaDB Database" \ | ||
org.opencontainers.image.description="MariaDB Database for relational SQL" \ | ||
org.opencontainers.image.documentation="https://hub.docker.com/_/mariadb/" \ | ||
org.opencontainers.image.base.name="docker.io/redhat/ubi9-minimal" \ | ||
org.opencontainers.image.licenses="GPL-2.0" \ | ||
org.opencontainers.image.source="https://github.com/MariaDB/mariadb-docker" \ | ||
org.opencontainers.image.vendor="MariaDB Community" \ | ||
org.opencontainers.image.version="11.5.1" \ | ||
org.opencontainers.image.url="https://github.com/MariaDB/mariadb-docker" | ||
|
||
# bashbrew-architectures: amd64 arm64v8 ppc64le s390x | ||
ARG MARIADB_VERSION=11.5.1 | ||
# release-status:RC | ||
# release-support-type:Short Term Support | ||
# (https://downloads.mariadb.org/rest-api/mariadb/) | ||
|
||
# missing pwgen(epel), jemalloc(epel) (as entrypoint/user extensions) | ||
# procps, pv(epel) - missing dependencies of galera sst script | ||
# tzdata re-installed as only a fake version is part of the ubi-minimal base image. | ||
# FF8AD1344597106ECE813B918A3872BF3228467C is the Fedora RPM key | ||
RUN set -eux ; \ | ||
curl --fail https://pagure.io/fedora-web/websites/raw/master/f/sites/getfedora.org/static/keys/FF8AD1344597106ECE813B918A3872BF3228467C.txt --output /tmp/epelkey.txt ; \ | ||
gpg --import-options show-only --import --with-colons /tmp/epelkey.txt | grep '^pub:-:4096:1:8A3872BF3228467C:1631033579:::-:' ; \ | ||
rpmkeys --import /tmp/epelkey.txt ; \ | ||
curl --fail https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm --output /tmp/epel-release-latest-9.noarch.rpm ; \ | ||
rpm -K /tmp/epel-release-latest-9.noarch.rpm ; \ | ||
rpm -ivh /tmp/epel-release-latest-9.noarch.rpm ; \ | ||
rm /tmp/epelkey.txt /tmp/epel-release-latest-9.noarch.rpm ; \ | ||
curl --fail https://supplychain.mariadb.com/MariaDB-Server-GPG-KEY --output /tmp/MariaDB-Server-GPG-KEY ; \ | ||
gpg --import-options show-only --import --with-colons /tmp/MariaDB-Server-GPG-KEY | grep '^pub:-:1024:17:CBCB082A1BB943DB:1265140880:::-:::scESC::::::::0:' ; \ | ||
rpmkeys --import /tmp/MariaDB-Server-GPG-KEY ; \ | ||
rm /tmp/MariaDB-Server-GPG-KEY ; \ | ||
microdnf update -y ; \ | ||
microdnf reinstall -y tzdata ; \ | ||
microdnf install -y procps-ng zstd xz jemalloc pwgen pv ; \ | ||
mkdir -p /etc/mysql/conf.d /etc/mysql/mariadb.conf.d/ /var/lib/mysql/mysql /run/mariadb /usr/lib64/galera ; \ | ||
chmod ugo+rwx,o+t /run/mariadb ; \ | ||
microdnf install -y MariaDB-backup-11.5.1 MariaDB-server-11.5.1 ; \ | ||
# compatibility with DEB Galera packaging | ||
ln -s /usr/lib64/galera-4/libgalera_smm.so /usr/lib/libgalera_smm.so ; \ | ||
# compatibility with RPM Galera packaging | ||
ln -s /usr/lib64/galera-4/libgalera_smm.so /usr/lib64/galera/libgalera_smm.so ; \ | ||
microdnf clean all ; \ | ||
rmdir /var/lib/mysql/mysql ; \ | ||
chown -R mysql:mysql /var/lib/mysql /run/mariadb ; \ | ||
mkdir /licenses ; \ | ||
ln -s /usr/share/doc/MariaDB-server-11.5.1/COPYING /licenses/GPL-2 ; \ | ||
ln -s /usr/share/licenses /licenses/package-licenses ; \ | ||
ln -s Apache-2.0-license /licenses/gosu | ||
|
||
VOLUME /var/lib/mysql | ||
|
||
RUN mkdir /docker-entrypoint-initdb.d | ||
|
||
COPY healthcheck.sh /usr/local/bin/healthcheck.sh | ||
COPY docker-entrypoint.sh /usr/local/bin/ | ||
|
||
ENTRYPOINT ["docker-entrypoint.sh"] | ||
|
||
EXPOSE 3306 | ||
CMD ["mariadbd"] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
[mariadb] | ||
name = MariaDB | ||
#baseurl = https://rpm.mariadb.org/11.5/rhel/$releasever/$basearch | ||
baseurl = https://archive.mariadb.org/mariadb-11.5/yum/rhel/$releasever/$basearch | ||
#microdnf cannot read to the second key here. | ||
#gpgkey=https://archive.mariadb.org/PublicKey | ||
gpgcheck=1 |
Oops, something went wrong.