Skip to content

Commit 24c5e9f

Browse files
committed
use lsio wheel index, use ffdhe4096 per rfc7919
1 parent b1ae121 commit 24c5e9f

File tree

5 files changed

+17
-17
lines changed

5 files changed

+17
-17
lines changed

Dockerfile

Lines changed: 1 addition & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -96,7 +96,7 @@ RUN \
9696
fi && \
9797
pip3 install -U \
9898
pip && \
99-
pip3 install -U \
99+
pip3 install -U --find-links https://wheel-index.linuxserver.io/alpine/ \
100100
${CERTBOT} \
101101
certbot-dns-aliyun \
102102
certbot-dns-cloudflare \
@@ -140,9 +140,6 @@ RUN \
140140
/defaults/proxy-confs --strip-components=1 --exclude=linux*/.gitattributes --exclude=linux*/.github --exclude=linux*/.gitignore --exclude=linux*/LICENSE && \
141141
echo "**** configure nginx ****" && \
142142
rm -f /etc/nginx/conf.d/default.conf && \
143-
curl -o \
144-
/defaults/dhparams.pem -L \
145-
"https://lsio.ams3.digitaloceanspaces.com/dhparams.pem" && \
146143
echo "**** cleanup ****" && \
147144
apk del --purge \
148145
build-dependencies && \

Dockerfile.aarch64

Lines changed: 1 addition & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -96,7 +96,7 @@ RUN \
9696
fi && \
9797
pip3 install -U \
9898
pip && \
99-
pip3 install -U \
99+
pip3 install -U --find-links https://wheel-index.linuxserver.io/alpine/ \
100100
${CERTBOT} \
101101
certbot-dns-aliyun \
102102
certbot-dns-cloudflare \
@@ -140,9 +140,6 @@ RUN \
140140
/defaults/proxy-confs --strip-components=1 --exclude=linux*/.gitattributes --exclude=linux*/.github --exclude=linux*/.gitignore --exclude=linux*/LICENSE && \
141141
echo "**** configure nginx ****" && \
142142
rm -f /etc/nginx/conf.d/default.conf && \
143-
curl -o \
144-
/defaults/dhparams.pem -L \
145-
"https://lsio.ams3.digitaloceanspaces.com/dhparams.pem" && \
146143
echo "**** cleanup ****" && \
147144
apk del --purge \
148145
build-dependencies && \

Dockerfile.armhf

Lines changed: 1 addition & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -96,7 +96,7 @@ RUN \
9696
fi && \
9797
pip3 install -U \
9898
pip && \
99-
pip3 install -U \
99+
pip3 install -U --find-links https://wheel-index.linuxserver.io/alpine/ \
100100
${CERTBOT} \
101101
certbot-dns-aliyun \
102102
certbot-dns-cloudflare \
@@ -140,9 +140,6 @@ RUN \
140140
/defaults/proxy-confs --strip-components=1 --exclude=linux*/.gitattributes --exclude=linux*/.github --exclude=linux*/.gitignore --exclude=linux*/LICENSE && \
141141
echo "**** configure nginx ****" && \
142142
rm -f /etc/nginx/conf.d/default.conf && \
143-
curl -o \
144-
/defaults/dhparams.pem -L \
145-
"https://lsio.ams3.digitaloceanspaces.com/dhparams.pem" && \
146143
echo "**** cleanup ****" && \
147144
apk del --purge \
148145
build-dependencies && \

root/defaults/dhparams.pem

Lines changed: 13 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,13 @@
1+
-----BEGIN DH PARAMETERS-----
2+
MIICCAKCAgEA//////////+t+FRYortKmq/cViAnPTzx2LnFg84tNpWp4TZBFGQz
3+
+8yTnc4kmz75fS/jY2MMddj2gbICrsRhetPfHtXV/WVhJDP1H18GbtCFY2VVPe0a
4+
87VXE15/V8k1mE8McODmi3fipona8+/och3xWKE2rec1MKzKT0g6eXq8CrGCsyT7
5+
YdEIqUuyyOP7uWrat2DX9GgdT0Kj3jlN9K5W7edjcrsZCwenyO4KbXCeAvzhzffi
6+
7MA0BM0oNC9hkXL+nOmFg/+OTxIy7vKBg8P+OxtMb61zO7X8vC7CIAXFjvGDfRaD
7+
ssbzSibBsu/6iGtCOGEfz9zeNVs7ZRkDW7w09N75nAI4YbRvydbmyQd62R0mkff3
8+
7lmMsPrBhtkcrv4TCYUTknC0EwyTvEN5RPT9RFLi103TZPLiHnH1S/9croKrnJ32
9+
nuhtK8UiNjoNq8Uhl5sN6todv5pC1cRITgq80Gv6U93vPBsg7j/VnXwl5B0rZp4e
10+
8W5vUsMWTfT7eTDp5OWIV7asfV9C1p9tGHdjzx1VA0AEh/VbpX4xzHpxNciG77Qx
11+
iu1qHgEtnmgyqQdgCpGBMMRtx3j5ca0AOAkpmaMzy4t6Gh25PXFAADwqTs6p+Y0K
12+
zAqCkc3OyX3Pjsm1Wn+IpGtNtahR9EGC4caKAH5eZV9q//////////8CAQI=
13+
-----END DH PARAMETERS-----

root/etc/cont-init.d/50-config

Lines changed: 1 addition & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -105,11 +105,7 @@ fi
105105
[[ ! -f /config/nginx/dhparams.pem ]] && \
106106
cp /defaults/dhparams.pem /config/nginx/dhparams.pem
107107
if ! grep -q 'PARAMETERS' "/config/nginx/dhparams.pem"; then
108-
curl -o /config/nginx/dhparams.pem -L "https://lsio.ams3.digitaloceanspaces.com/dhparams.pem"
109-
fi
110-
if ! grep -q 'PARAMETERS' "/config/nginx/dhparams.pem"; then
111-
echo "Generating dhparams.pem. This will take a long time. Do not stop the container until this process is completed."
112-
openssl dhparam -out /config/nginx/dhparams.pem 4096
108+
curl -o /config/nginx/dhparams.pem -L "https://ssl-config.mozilla.org/ffdhe4096.txt"
113109
fi
114110

115111
# check to make sure DNSPLUGIN is selected if dns validation is used

0 commit comments

Comments
 (0)