feat: update php 7.0.33 Dockerfile

Author: zhengkunwang223

.github/workflows/php7-release.yml

@@ -19,10 +19,6 @@ on:
         description: 'PHP 7.1 Version'
         default: '7.1.33'
         required: true
-      php70Version:
-        description: 'PHP 7.0 Version'
-        default: '7.0.33'
-        required: true
 
 jobs:
   docker:
@@ -98,17 +94,3 @@ jobs:
             1panel/php:${{ github.event.inputs.php71Version }}-fpm
           cache-from: type=gha
           cache-to: type=gha,mode=max
-          
-      - name: Build PHP-7.0 and Push
-        uses: docker/build-push-action@v5
-        with:
-          context: php/7
-          file: php/7/Dockerfile
-          platforms: linux/amd64,linux/arm/v7,linux/arm64/v8
-          push: true
-          build-args:
-            PHP_VERSION=${{ github.event.inputs.php70Version }}
-          tags: |
-            1panel/php:${{ github.event.inputs.php70Version }}-fpm
-          cache-from: type=gha
-          cache-to: type=gha,mode=max

.github/workflows/php7.0.33-release.yml

@@ -0,0 +1,42 @@
+name: Build PHP 7.0.33 Image
+
+on:
+  workflow_dispatch:
+    inputs:
+      php70Version:
+        description: 'PHP 7.0 Version'
+        default: '7.0.33'
+        required: true
+
+jobs:
+  docker:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v3
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Login to Docker Hub
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_PASSWORD }}
+
+      - name: Build PHP-7.0 and Push
+        uses: docker/build-push-action@v5
+        with:
+          context: php/7.0.33
+          file: php/7.0.33/Dockerfile
+          platforms: linux/amd64,linux/arm/v7,linux/arm64/v8
+          push: true
+          build-args:
+            PHP_VERSION=${{ github.event.inputs.php70Version }}
+          tags: |
+            1panel/php:${{ github.event.inputs.php70Version }}-fpm
+          cache-from: type=gha
+          cache-to: type=gha,mode=max

php/7.0.33/Dockerfile

@@ -0,0 +1,274 @@
+#
+# NOTE: THIS DOCKERFILE IS GENERATED VIA "update.sh"
+#
+# PLEASE DO NOT EDIT IT DIRECTLY.
+#
+
+FROM php:7.0.33-fpm AS php-source
+
+
+FROM debian:bullseye-slim
+
+# prevent Debian's PHP packages from being installed
+# https://github.com/docker-library/php/pull/542
+RUN set -eux; \
+	{ \
+		echo 'Package: php*'; \
+		echo 'Pin: release *'; \
+		echo 'Pin-Priority: -1'; \
+	} > /etc/apt/preferences.d/no-debian-php
+
+# dependencies required for running "phpize"
+# (see persistent deps below)
+ENV PHPIZE_DEPS  \
+		autoconf \
+		dpkg-dev \
+		file \
+		g++ \
+		gcc \
+		libc-dev \
+		make \
+		pkg-config \
+		re2c
+
+# persistent / runtime deps
+RUN apt-get update && apt-get install -y \
+		$PHPIZE_DEPS \
+		ca-certificates \
+		curl \
+		xz-utils \
+	--no-install-recommends && rm -r /var/lib/apt/lists/*
+
+ENV PHP_INI_DIR=/usr/local/etc/php
+RUN mkdir -p $PHP_INI_DIR/conf.d
+
+##<autogenerated>##
+ENV PHP_EXTRA_CONFIGURE_ARGS="--enable-fpm --with-fpm-user=www-data --with-fpm-group=www-data --disable-cgi"
+##</autogenerated>##
+
+# Apply stack smash protection to functions using local buffers and alloca()
+# Make PHP's main executable position-independent (improves ASLR security mechanism, and has no performance impact on x86_64)
+# Enable optimization (-O2)
+# Enable linker optimization (this sorts the hash buckets to improve cache locality, and is non-default)
+# Adds GNU HASH segments to generated executables (this is used if present, and is much faster than sysv hash; in this configuration, sysv hash is also generated)
+# https://github.com/docker-library/php/issues/272
+ENV PHP_CFLAGS="-fstack-protector-strong -fpic -fpie -O2"
+ENV PHP_CPPFLAGS="$PHP_CFLAGS"
+ENV PHP_LDFLAGS="-Wl,-O1 -Wl,--hash-style=both -pie"
+
+#ENV GPG_KEYS 1A4E8B7277C42E53DBA9C7B9BCAA30EA9C0D5763 6E4F6AB321FDC07F2C332E3AC2BF0BC433CFC8B3
+
+ENV PHP_VERSION=7.0.33
+ENV PHP_URL="https://secure.php.net/get/php-7.0.33.tar.xz/from/this/mirror" PHP_ASC_URL="https://secure.php.net/get/php-7.0.33.tar.xz.asc/from/this/mirror"
+#ENV PHP_SHA256="ff6f62afeb32c71b3b89ecbd42950ef6c5e0c329cc6e1c58ffac47e6f1f883c4" PHP_MD5=""
+
+RUN set -xe; \
+	\
+	fetchDeps=' \
+		wget \
+	'; \
+	if ! command -v gpg > /dev/null; then \
+		fetchDeps="$fetchDeps \
+			dirmngr \
+			gnupg \
+		"; \
+	fi; \
+	apt-get update; \
+	apt-get install -y --no-install-recommends $fetchDeps; \
+	rm -rf /var/lib/apt/lists/*; \
+	\
+	mkdir -p /usr/src; \
+	cd /usr/src; \
+	\
+	wget -O php.tar.xz "$PHP_URL"; \
+	\
+#	if [ -n "$PHP_SHA256" ]; then \
+#		echo "$PHP_SHA256 *php.tar.xz" | sha256sum -c -; \
+#	fi; \
+#	if [ -n "$PHP_MD5" ]; then \
+#		echo "$PHP_MD5 *php.tar.xz" | md5sum -c -; \
+#	fi; \
+#	\
+#	if [ -n "$PHP_ASC_URL" ]; then \
+#		wget -O php.tar.xz.asc "$PHP_ASC_URL"; \
+#		export GNUPGHOME="$(mktemp -d)"; \
+#		for key in $GPG_KEYS; do \
+#			gpg --batch --keyserver ha.pool.sks-keyservers.net --recv-keys "$key"; \
+#		done; \
+#		gpg --batch --verify php.tar.xz.asc php.tar.xz; \
+#		command -v gpgconf > /dev/null && gpgconf --kill all; \
+#		rm -rf "$GNUPGHOME"; \
+#	fi; \
+#	\
+	apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false $fetchDeps
+
+#COPY docker-php-source /usr/local/bin/
+
+COPY --from=php-source /usr/local/bin/docker-php-source /usr/local/bin/
+
+RUN set -eux; \
+	\
+	savedAptMark="$(apt-mark showmanual)"; \
+	apt-get update; \
+	apt-get install -y --no-install-recommends \
+		libcurl4-openssl-dev \
+		libedit-dev \
+		libsqlite3-dev \
+		libssl-dev \
+		libxml2-dev \
+		zlib1g-dev \
+		${PHP_EXTRA_BUILD_DEPS:-} \
+	; \
+	rm -rf /var/lib/apt/lists/*; \
+	\
+	export \
+		CFLAGS="$PHP_CFLAGS" \
+		CPPFLAGS="$PHP_CPPFLAGS" \
+		LDFLAGS="$PHP_LDFLAGS" \
+	; \
+	docker-php-source extract; \
+	cd /usr/src/php; \
+	gnuArch="$(dpkg-architecture --query DEB_BUILD_GNU_TYPE)"; \
+	debMultiarch="$(dpkg-architecture --query DEB_BUILD_MULTIARCH)"; \
+# https://bugs.php.net/bug.php?id=74125
+	if [ ! -d /usr/include/curl ]; then \
+		ln -sT "/usr/include/$debMultiarch/curl" /usr/local/include/curl; \
+	fi; \
+	./configure \
+		--build="$gnuArch" \
+		--with-config-file-path="$PHP_INI_DIR" \
+		--with-config-file-scan-dir="$PHP_INI_DIR/conf.d" \
+		\
+# make sure invalid --configure-flags are fatal errors intead of just warnings
+		--enable-option-checking=fatal \
+		\
+# https://github.com/docker-library/php/issues/439
+		--with-mhash \
+		\
+# --enable-ftp is included here because ftp_ssl_connect() needs ftp to be compiled statically (see https://github.com/docker-library/php/issues/236)
+		--enable-ftp \
+# --enable-mbstring is included here because otherwise there's no way to get pecl to use it properly (see https://github.com/docker-library/php/issues/195)
+		--enable-mbstring \
+# --enable-mysqlnd is included here because it's harder to compile after the fact than extensions are (since it's a plugin for several extensions, not an extension in itself)
+		--enable-mysqlnd \
+		\
+		--with-curl \
+		--with-libedit \
+		--with-openssl \
+		--with-zlib \
+		\
+# bundled pcre does not support JIT on s390x
+# https://manpages.debian.org/stretch/libpcre3-dev/pcrejit.3.en.html#AVAILABILITY_OF_JIT_SUPPORT
+		$(test "$gnuArch" = 's390x-linux-gnu' && echo '--without-pcre-jit') \
+		--with-libdir="lib/$debMultiarch" \
+		\
+		${PHP_EXTRA_CONFIGURE_ARGS:-} \
+	; \
+	make -j "$(nproc)"; \
+	make install; \
+	find /usr/local/bin /usr/local/sbin -type f -executable -exec strip --strip-all '{}' + || true; \
+	make clean; \
+	\
+# https://github.com/docker-library/php/issues/692 (copy default example "php.ini" files somewhere easily discoverable)
+	cp -v php.ini-* "$PHP_INI_DIR/"; \
+	\
+	cd /; \
+	docker-php-source delete; \
+	\
+# reset apt-mark's "manual" list so that "purge --auto-remove" will remove all build dependencies
+	apt-mark auto '.*' > /dev/null; \
+	[ -z "$savedAptMark" ] || apt-mark manual $savedAptMark; \
+	find /usr/local -type f -executable -exec ldd '{}' ';' \
+		| awk '/=>/ { print $(NF-1) }' \
+		| sort -u \
+		| xargs -r dpkg-query --search \
+		| cut -d: -f1 \
+		| sort -u \
+		| xargs -r apt-mark manual \
+	; \
+	apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \
+	\
+	php --version; \
+	\
+# https://github.com/docker-library/php/issues/443
+	pecl update-channels; \
+	rm -rf /tmp/pear ~/.pearrc
+
+#COPY docker-php-ext-* docker-php-entrypoint /usr/local/bin/
+
+COPY --from=php-source /usr/local/bin/docker-php-ext-* /usr/local/bin/
+COPY --from=php-source /usr/local/bin/docker-php-entrypoint /usr/local/bin/
+
+ENTRYPOINT ["docker-php-entrypoint"]
+##<autogenerated>##
+WORKDIR /var/www/html
+
+RUN set -ex \
+	&& cd /usr/local/etc \
+	&& if [ -d php-fpm.d ]; then \
+		# for some reason, upstream's php-fpm.conf.default has "include=NONE/etc/php-fpm.d/*.conf"
+		sed 's!=NONE/!=!g' php-fpm.conf.default | tee php-fpm.conf > /dev/null; \
+		cp php-fpm.d/www.conf.default php-fpm.d/www.conf; \
+	else \
+		# PHP 5.x doesn't use "include=" by default, so we'll create our own simple config that mimics PHP 7+ for consistency
+		mkdir php-fpm.d; \
+		cp php-fpm.conf.default php-fpm.d/www.conf; \
+		{ \
+			echo '[global]'; \
+			echo 'include=etc/php-fpm.d/*.conf'; \
+		} | tee php-fpm.conf; \
+	fi \
+	&& { \
+		echo '[global]'; \
+		echo 'error_log = /proc/self/fd/2'; \
+		echo; \
+		echo '[www]'; \
+		echo '; if we send this to /proc/self/fd/1, it never appears'; \
+		echo 'access.log = /proc/self/fd/2'; \
+		echo; \
+		echo 'clear_env = no'; \
+		echo; \
+		echo '; Ensure worker stdout and stderr are sent to the main error log.'; \
+		echo 'catch_workers_output = yes'; \
+	} | tee php-fpm.d/docker.conf \
+	&& { \
+		echo '[global]'; \
+		echo 'daemonize = no'; \
+		echo; \
+		echo '[www]'; \
+		echo 'listen = 9000'; \
+	} | tee php-fpm.d/zz-docker.conf
+
+COPY ./data/supervisor-4.2.5.tar.gz /tmp/
+COPY ./data/php-fpm.ini /etc/supervisor.d/php-fpm.ini
+COPY ./data/supervisord.conf /etc/supervisord.conf
+COPY ./data/install-php-extensions  /usr/local/bin/
+COPY ./data/composer /usr/bin/composer
+
+RUN apt-get update && \
+    apt-get install -y python3 python3-pip git wget&& \
+    rm -rf /var/lib/apt/lists/*     
+    
+RUN cd /tmp && \
+    tar -xzvf supervisor-4.2.5.tar.gz && \
+    cd supervisor-4.2.5 && \
+    python3 setup.py install && \
+    mkdir -p /var/log/supervisor /etc/supervisor/conf.d  
+
+RUN curl -o /tmp/composer-setup.php https://getcomposer.org/installer \
+    && php /tmp/composer-setup.php --install-dir=/tmp \
+    && mv /tmp/composer.phar /usr/bin/composer \
+    && chmod +x /usr/bin/composer \
+    && rm -rf /tmp/composer-setup.php
+
+
+RUN chmod uga+x /usr/local/bin/install-php-extensions 
+
+ENV COMPOSER_HOME=/tmp/.composer
+
+RUN usermod -u 1000 www-data && groupmod -g 1000 www-data
+
+ENTRYPOINT ["supervisord", "--nodaemon", "--configuration", "/etc/supervisord.conf"]
+
+EXPOSE 9000
+WORKDIR /www