[DOCKER][MAIL] Substituted supervisord for s6

2020-11-22 19:14:59 +00:00 · 2020-11-22 19:14:59 +00:00 · 0518bc2c6b
commit 0518bc2c6b
parent def5e06a28
16 changed files with 65 additions and 77 deletions
--- a/docker-compose.yaml
+++ b/docker-compose.yaml
@ -90,6 +90,7 @@ services:
      - ./docker/mail/mail.env
    ports:
      - 25:25
      - 110:110
      - 143:143
      - 587:587
      - 993:993
--- a/docker/mail/.gitignore
+++ b/docker/mail/.gitignore
@ -0,0 +1,2 @@
 mail.env
 config/*
--- a/docker/mail/Dockerfile
+++ b/docker/mail/Dockerfile
@ -15,9 +15,9 @@ RUN \
 		opendkim-tools \
 		openssl \
 		postfix \
 		procps \
 		rsyslog \
-		supervisor \
+		s6 \
 		telnet \
 	&& apt-get autoclean \
 	&& apt-get autoremove
@ -35,8 +35,18 @@ RUN \
 # Copy config files
 COPY rootfs/ /
 RUN \
 	touch /etc/mail/aliases /etc/mail/domains /etc/mail/mailboxes /etc/mail/passwd \
 	&& postmap /etc/mail/aliases && postmap /etc/mail/domains && postmap /etc/mail/mailboxes
 RUN \
 	chmod +x /etc/service/postfix/run \
 	&& chmod +x /etc/service/dovecot/run \
 	&& chmod +x /etc/service/opendkim/run \
 	&& chmod +x /etc/service/rsyslog/run
 # Expose ports
-EXPOSE 110 143 587 993 995
+EXPOSE 25 110 143 587 993 995
 # Run start script
 ENTRYPOINT /usr/bin/start.sh
--- a/docker/mail/README
+++ b/docker/mail/README
--- a/docker/mail/config/aliases.db
+++ b/docker/mail/config/aliases.db
--- a/docker/mail/config/domains.db
+++ b/docker/mail/config/domains.db
--- a/docker/mail/config/dovecot/dovecot.conf
+++ b/docker/mail/config/dovecot/dovecot.conf
@ -1,8 +1,8 @@
 protocols = imap pop3 lmtp
 ssl = yes
-ssl_cert = </etc/letsencrypt/live/social.org/fullchain.pem
+ssl_cert = 
-ssl_key = </etc/letsencrypt/live/social.org/privkey.pem
+ssl_key = 
 ssl_cipher_list = ALL:!LOW:!SSLv2:!EXP:!aNULL
 listen = *, ::
--- a/docker/mail/config/opendkim/TrustedHosts
+++ b/docker/mail/config/opendkim/TrustedHosts
@ -7,7 +7,5 @@
 ::1
 172.17.0.0/16
 fe80::/64
-social.org
+#HOSTNAME
 #host.example.com
 #192.168.1.0/24
--- a/docker/mail/config/postfix/main.cf
+++ b/docker/mail/config/postfix/main.cf
@ -5,8 +5,8 @@ command_directory = /usr/sbin
 daemon_directory = /usr/lib/postfix/sbin
 data_directory = /var/lib/postfix
 mail_owner = postfix
-myhostname = %MAIL_HOSTNAME%
+myhostname = 
-mydomain = %MAIL_HOSTNAME_FQDN%
+mydomain = 
 myorigin = $myhostname
 inet_interfaces = all
 inet_protocols = all
@ -63,8 +63,8 @@ smtpd_sasl_local_domain = $mydomain
 broken_sasl_auth_clients = yes
 smtpd_tls_security_level = may
-smtpd_tls_key_file = /etc/ssl/mail.key
+smtpd_tls_key_file = 
-smtpd_tls_cert_file = /etc/ssl/mail.crt
+smtpd_tls_cert_file = 
 smtpd_tls_loglevel = 1
 smtpd_tls_session_cache_timeout = 3600s
 smtpd_tls_session_cache_database = btree:/var/lib/postfix/smtpd_tls_cache
--- a/docker/mail/rootfs/etc/mail/supervisord/supervisord.conf
+++ b/docker/mail/rootfs/etc/mail/supervisord/supervisord.conf
@ -1,46 +0,0 @@
 [unix_http_server]
 file=/tmp/supervisor.sock
 [supervisord]
 nodaemon=true
 user=root
 loglevel=warn
 [supervisorctl]
 serverurl=unix:///tmp/supervisor.sock
 user=root
 [rpcinterface:supervisor]
 supervisor.rpcinterface_factory = supervisor.rpcinterface:make_main_rpcinterface
 [program:opendkim]
 autostart=false
 autorestart=true
 stdout_logfile=/dev/fd/1
 stdout_logfile_maxbytes=0
 redirect_stderr=true
 command=/usr/sbin/opendkim -x /etc/mail/opendkim/opendkim.conf
 [program:postfix]
 autostart=false
 autorestart=true
 stdout_logfile=/dev/fd/1
 stdout_logfile_maxbytes=0
 redirect_stderr=true
 command=postfix -c /etc/mail/postfix/postfix.conf
 [program:dovecot]
 autostart=false
 autorestart=true
 stdout_logfile=/dev/fd/1
 stdout_logfile_maxbytes=0
 redirect_stderr=true
 command=dovecot -c /etc/mail/dovecot/dovecot.conf
 [program:rsyslog]
 autostart=false
 autorestart=true
 stdout_logfile=/dev/fd/1
 stdout_logfile_maxbytes=0
 redirect_stderr=true
 command=rsyslog -f /etc/mail/rsyslogd/rsyslog.conf
--- a/docker/mail/rootfs/etc/service/dovecot/run
+++ b/docker/mail/rootfs/etc/service/dovecot/run
@ -0,0 +1,6 @@
 #!/bin/sh
 PID=$(pgrep dovecot)
 if [ -z $PID ]
 then
    exec /usr/sbin/dovecot -c /etc/mail/dovecot/dovecot.conf
 fi
--- a/docker/mail/rootfs/etc/service/opendkim/run
+++ b/docker/mail/rootfs/etc/service/opendkim/run
@ -0,0 +1,6 @@
 #!/bin/sh
 PID=$(pgrep opendkim)
 if [ -z $PID ]
 then
    exec /usr/sbin/opendkim -x /etc/mail/opendkim/opendkim.conf
 fi
--- a/docker/mail/rootfs/etc/service/postfix/run
+++ b/docker/mail/rootfs/etc/service/postfix/run
@ -0,0 +1,6 @@
 #!/bin/sh
 PID=$(pgrep master)
 if [ -z $PID ]
 then
    exec /usr/sbin/postfix start -c /etc/mail/postfix
 fi
--- a/docker/mail/rootfs/etc/service/rsyslog/run
+++ b/docker/mail/rootfs/etc/service/rsyslog/run
@ -0,0 +1,6 @@
 #!/bin/sh
 PID=$(pgrep rsyslog)
 if [ -z $PID ]
 then
    exec /usr/sbin/rsyslogd -f /etc/mail/rsyslogd/rsyslog.conf
 fi
--- a/docker/mail/rootfs/usr/bin/start.sh
+++ b/docker/mail/rootfs/usr/bin/start.sh
@ -17,15 +17,8 @@ fi
 # Prepare postfix
 if [ ! -d "/var/mail/$DOMAINNAME" ]
 then
 	touch /etc/mail/aliases /etc/mail/domains /etc/mail/mailboxes /etc/mail/passwd
 	postmap /etc/mail/aliases && postmap /etc/mail/domains && postmap /etc/mail/mailboxes
 	/usr/bin/new-domain.sh "$DOMAINNAME"
 fi
-
+# Run services
-# Start services
+s6-svscan /etc/service
 rsyslogd 				-f /etc/mail/rsyslogd/rsyslog.conf
 /usr/sbin/opendkim 		-x /etc/mail/opendkim/opendkim.conf
 /usr/sbin/dovecot 		-c /etc/mail/dovecot/dovecot.conf
 /usr/sbin/postfix start	-c /etc/mail/postfix
 supervisord 			-c /etc/mail/supervisord/supervisord.conf
--- a/docker/mail/setup.sh
+++ b/docker/mail/setup.sh
@ -12,7 +12,7 @@ else
  domain="${sub_domain}.${domain_root}"
 fi
-cat > mail.env <<EOF
+cat > ./docker/mail/mail.env <<EOF
 #!/bin/sh
 DOMAINNAME=${domain_root}
 MAILNAME=${domain}
@ -20,18 +20,24 @@ SSL_CERT=/etc/letsencrypt/live/${domain_root}/fullchain.pem
 SSL_KEY=/etc/letsencrypt/live/${domain_root}/privkey.pem
 EOF
 DOMAINNAME="${domain_root}"
 MAILNAME="${domain}"
 SSL_CERT="/etc/letsencrypt/live/${domain_root}/fullchain.pem"
 SSL_KEY="/etc/letsencrypt/live/${domain_root}/privkey.pem"
 # Config postfix
-sed -i -e "s#^\s*myhostname\s*=.*#myhostname = $MAILNAME#" rootfs/etc/mail/postfix/main.cf
+sed -i -e "s#^\s*myhostname\s*=.*#myhostname = $MAILNAME#" ./docker/mail/config/postfix/main.cf
-sed -i -e "s#^\s*mydomain\s*=.*#mydomain = $DOMAINNAME#" rootfs/etc/mail/postfix/main.cf
+sed -i -e "s#^\s*mydomain\s*=.*#mydomain = $DOMAINNAME#" ./docker/mail/config/postfix/main.cf
-sed -i -e "s#^\s*smtpd_tls_cert_file\s*=.*#smtpd_tls_cert_file = $SSL_CERT#" rootfs/etc/mail/postfix/main.cf
+sed -i -e "s#^\s*smtpd_tls_cert_file\s*=.*#smtpd_tls_cert_file = $SSL_CERT#" ./docker/mail/config/postfix/main.cf
-sed -i -e "s#^\s*smtpd_tls_key_file\s*=.*#smtpd_tls_key_file = $SSL_KEY#" rootfs/etc/mail/postfix/main.cf
+sed -i -e "s#^\s*smtpd_tls_key_file\s*=.*#smtpd_tls_key_file = $SSL_KEY#" ./docker/mail/config/postfix/main.cf
 # Config dovecot
-sed -i -e "s#^\s*ssl_cert\s*=.*#ssl_cert = <$SSL_CERT#" rootfs/etc/mail/dovecot/dovecot.conf
+sed -i -e "s#^\s*ssl_cert\s*=.*#ssl_cert = <$SSL_CERT#" ./docker/mail/config/dovecot/dovecot.conf
-sed -i -e "s#^\s*ssl_key\s*=.*#ssl_key = <$SSL_KEY#" rootfs/etc/mail/dovecot/dovecot.conf
+sed -i -e "s#^\s*ssl_key\s*=.*#ssl_key = <$SSL_KEY#" ./docker/mail/config/dovecot/dovecot.conf
-sed -i -e "s#^\s*hostname\s*=.*#hostname = $MAILNAME#" rootfs/etc/mail/dovecot/dovecot.conf
+sed -i -e "s#^\s*postmaster_address\s*=.*#postmaster_address = postmaster@$DOMAINNAME#" ./docker/mail/config/dovecot/dovecot.conf
 sed -i -e "s#^\s*postmaster_address\s*=.*#postmaster_address = $POSTMASTER#" rootfs/etc/mail/dovecot/dovecot.conf
 # Config dkim
-sed -i -e "s/#HOSTNAME/$MAILNAME/" rootfs/etc/mail/opendkim/TrustedHosts
+sed -i -e "s/^.*#HOSTNAME/$MAILNAME#HOSTNAME/" ./docker/mail/config/opendkim/TrustedHosts
 # Prepare mail user
 touch /etc/mail/aliases /etc/mail/domains /etc/mail/mailboxes /etc/mail/passwd