php/update.sh

207 lines
6.0 KiB
Bash
Raw Normal View History

#!/bin/bash
set -e
# https://secure.php.net/gpg-keys.php
2016-08-12 01:18:33 +02:00
declare -A gpgKeys=(
# https://wiki.php.net/todo/php72
# pollita & remi
# https://secure.php.net/downloads.php#gpg-7.2
# https://secure.php.net/gpg-keys.php#gpg-7.2
[7.2]='1729F83938DA44E27BA0F4D3DBDB397470D12172 B1B44D8F021E4E2D6021E995DC9FF8D3EE5AF27F'
2016-09-06 21:31:18 +02:00
# https://wiki.php.net/todo/php71
2017-01-20 04:39:30 +01:00
# davey & krakjoe
# https://secure.php.net/downloads.php#gpg-7.1
# https://secure.php.net/gpg-keys.php#gpg-7.1
2017-01-20 04:39:30 +01:00
[7.1]='A917B1ECDA84AEC2B568FED6F50ABC807BD5DCD0 528995BFEDFBA7191D46839EF9BA0ADA31CBD89E'
2016-09-06 21:31:18 +02:00
# https://wiki.php.net/todo/php70
2017-01-20 04:39:30 +01:00
# ab & tyrael
# https://secure.php.net/downloads.php#gpg-7.0
# https://secure.php.net/gpg-keys.php#gpg-7.0
2017-01-20 04:39:30 +01:00
[7.0]='1A4E8B7277C42E53DBA9C7B9BCAA30EA9C0D5763 6E4F6AB321FDC07F2C332E3AC2BF0BC433CFC8B3'
# https://wiki.php.net/todo/php56
# jpauli & tyrael
2017-01-20 04:39:30 +01:00
# https://secure.php.net/downloads.php#gpg-5.6
# https://secure.php.net/gpg-keys.php#gpg-5.6
[5.6]='0BD78B5F97500D450838F95DFE857D9A90D90EC1 6E4F6AB321FDC07F2C332E3AC2BF0BC433CFC8B3'
)
# see https://secure.php.net/downloads.php
cd "$(dirname "$(readlink -f "$BASH_SOURCE")")"
versions=( "$@" )
if [ ${#versions[@]} -eq 0 ]; then
versions=( */ )
fi
versions=( "${versions[@]%/}" )
generated_warning() {
cat <<-EOH
#
# NOTE: THIS DOCKERFILE IS GENERATED VIA "update.sh"
#
# PLEASE DO NOT EDIT IT DIRECTLY.
#
EOH
}
2016-03-18 21:26:18 +01:00
travisEnv=
for version in "${versions[@]}"; do
rcVersion="${version%-rc}"
# "7", "5", etc
majorVersion="${rcVersion%%.*}"
# "2", "1", "6", etc
minorVersion="${rcVersion#$majorVersion.}"
minorVersion="${minorVersion%%.*}"
# scrape the relevant API based on whether we're looking for pre-releases
apiUrl="https://secure.php.net/releases/index.php?json&max=100&version=${rcVersion%%.*}"
apiJqExpr='
(keys[] | select(startswith("'"$rcVersion"'."))) as $version
| [ $version, (
.[$version].source[]
| select(.filename | endswith(".xz"))
|
"https://secure.php.net/get/" + .filename + "/from/this/mirror",
"https://secure.php.net/get/" + .filename + ".asc/from/this/mirror",
.sha256 // "",
.md5 // ""
) ]
'
if [ "$rcVersion" != "$version" ]; then
apiUrl='https://qa.php.net/api.php?type=qa-releases&format=json'
apiJqExpr='
.releases[]
| select(.version | startswith("'"$rcVersion"'."))
| [
.version,
.files.xz.path // "",
"",
.files.xz.sha256 // "",
.files.xz.md5 // ""
]
'
fi
IFS=$'\n'
possibles=( $(
curl -fsSL "$apiUrl" \
| jq --raw-output "$apiJqExpr | @sh" \
| sort -rV
) )
unset IFS
if [ "${#possibles[@]}" -eq 0 ]; then
echo >&2
echo >&2 "error: unable to determine available releases of $version"
echo >&2
exit 1
2015-12-09 01:10:11 +01:00
fi
# format of "possibles" array entries is "VERSION URL.TAR.XZ URL.TAR.XZ.ASC SHA256 MD5" (each value shell quoted)
# see the "apiJqExpr" values above for more details
eval "possi=( ${possibles[0]} )"
fullVersion="${possi[0]}"
url="${possi[1]}"
ascUrl="${possi[2]}"
sha256="${possi[3]}"
md5="${possi[4]}"
gpgKey="${gpgKeys[$rcVersion]}"
if [ -z "$gpgKey" ]; then
echo >&2 "ERROR: missing GPG key fingerprint for $version"
echo >&2 " try looking on https://secure.php.net/downloads.php#gpg-$version"
exit 1
fi
# if we don't have a .asc URL, let's see if we can figure one out :)
if [ -z "$ascUrl" ] && wget -q --spider "$url.asc"; then
ascUrl="$url.asc"
fi
dockerfiles=()
for suite in stretch jessie alpine3.6 alpine3.4; do
[ -d "$version/$suite" ] || continue
alpineVer="${suite#alpine}"
baseDockerfile=Dockerfile-debian.template
if [ "${suite#alpine}" != "$suite" ]; then
baseDockerfile=Dockerfile-alpine.template
fi
for variant in cli apache fpm zts; do
[ -d "$version/$suite/$variant" ] || continue
{ generated_warning; cat "$baseDockerfile"; } > "$version/$suite/$variant/Dockerfile"
if [ -f "$variant-Dockerfile-block-1" ]; then
echo "Generating $version/$suite/$variant/Dockerfile from $baseDockerfile + $variant-Dockerfile-block-*"
gawk -i inplace '
$1 == "##</autogenerated>##" { ia = 0 }
!ia { print }
$1 == "##<autogenerated>##" { ia = 1; ab++; ac = 0 }
ia { ac++ }
ia && ac == 1 { system("cat '$variant'-Dockerfile-block-" ab) }
' "$version/$suite/$variant/Dockerfile"
fi
cp \
docker-php-entrypoint \
docker-php-ext-* \
docker-php-source \
"$version/$suite/$variant/"
if [ "$alpineVer" = '3.4' ]; then
sed -ri 's!libressl!openssl!g' "$version/$suite/$variant/Dockerfile"
fi
if [ "$majorVersion" = '5' ] || [ "$majorVersion" = '7' -a "$minorVersion" -lt '2' ] || [ "$suite" = 'jessie' ]; then
# argon2 password hashing is only supported in 7.2+ and stretch+
sed -ri '/argon2/d' "$version/$suite/$variant/Dockerfile"
# Alpine 3.7+ _should_ include an "argon2-dev" package, but we should cross that bridge when we come to it
fi
# automatic `-slim` for stretch
# TODO always add slim once jessie is removed
sed -ri \
-e 's!%%DEBIAN_SUITE%%!'"${suite/stretch/stretch-slim}"'!' \
-e 's!%%ALPINE_VERSION%%!'"$alpineVer"'!' \
"$version/$suite/$variant/Dockerfile"
dockerfiles+=( "$version/$suite/$variant/Dockerfile" )
done
done
(
set -x
sed -ri \
-e 's!%%PHP_VERSION%%!'"$fullVersion"'!' \
-e 's!%%GPG_KEYS%%!'"$gpgKey"'!' \
-e 's!%%PHP_URL%%!'"$url"'!' \
-e 's!%%PHP_ASC_URL%%!'"$ascUrl"'!' \
-e 's!%%PHP_SHA256%%!'"$sha256"'!' \
-e 's!%%PHP_MD5%%!'"$md5"'!' \
"${dockerfiles[@]}"
)
# update entrypoint commands
for dockerfile in "${dockerfiles[@]}"; do
cmd="$(awk '$1 == "CMD" { $1 = ""; print }' "$dockerfile" | tail -1 | jq --raw-output '.[0]')"
entrypoint="$(dirname "$dockerfile")/docker-php-entrypoint"
sed -i 's! php ! '"$cmd"' !g' "$entrypoint"
done
2016-03-18 21:26:18 +01:00
newTravisEnv=
for dockerfile in "${dockerfiles[@]}"; do
dir="${dockerfile%Dockerfile}"
dir="${dir%/}"
variant="${dir#$version}"
variant="${variant#/}"
newTravisEnv+='\n - VERSION='"$version VARIANT=$variant"
done
travisEnv="$newTravisEnv$travisEnv"
done
2016-03-18 21:26:18 +01:00
travis="$(awk -v 'RS=\n\n' '$1 == "env:" { $0 = "env:'"$travisEnv"'" } { printf "%s%s", $0, RS }' .travis.yml)"
echo "$travis" > .travis.yml