Merge pull request #42 from cybertec-postgresql/updateExtensions

updated extensions & add public-beta

Author: Schmaetz

Makefile

@@ -18,6 +18,10 @@ ARCH ?= amd64
 IMAGE_TAG ?= $(BASEOS)-$(PGVERSION_FULL)-$(BUILD)
 POSTGIS_IMAGE_TAG ?= $(BASEOS)-$(PGVERSION_FULL)-$(POSTGIS_VERSION)-$(BUILD)
 
+# Public-Beta
+PUBLICBETA ?= 2
+BETAVERSION ?= 17
+
 # Settings for the Build-Process
 BUILDWITH ?= docker
 ROOTPATH ?= $(GOPATH)/src/github.com/cybertec/cybertec-pg-container
@@ -33,9 +37,10 @@ postgres-gis: base postgres-gis
 postgres-oracle: base postgres-oracle
 pgbouncer: pgbouncer
 exporter: exporter
+publicbeta: publicbeta
 
 base-build:
-		docker build $(ROOTPATH) 								\
+		docker build $(ROOTPATH) --no-cache								\
 			--file $(ROOTPATH)/docker/base/Dockerfile 		 	\
 			--tag cybertec-pg-container/base:$(BASEOS)-$(BUILD) \
 			--build-arg BASE_IMAGE=$(BASE_IMAGE)				\
@@ -78,7 +83,7 @@ postgres-build:
 			--build-arg PATRONI_VERSION=$(PATRONI_VERSION) 						\
 			--build-arg OLD_PG_VERSIONS="$(OLD_PG_VERSIONS)"					\
 			--build-arg PGVERSION=$(PGVERSION)									\
-			--build-arg ARCH=$(ARCH)						
+			--build-arg ARCH=$(ARCH)			
 
 postgres: postgres-build
 
@@ -168,3 +173,22 @@ exporter-build:
 			--build-arg PGVERSION=$(PGVERSION)
 
 exporter: exporter-build
+
+publicbeta-build:
+		docker build $(ROOTPATH)													\
+			--file $(ROOTPATH)/docker/pg-public-beta/Dockerfile 					\
+			--tag cybertec-pg-container/postgres:$(IMAGE_TAG)-beta${PUBLICBETA}		\
+			--build-arg BASE_IMAGE=$(BASE_IMAGE)									\
+			--build-arg CONTAINERIMAGE=${CONTAINERIMAGE} 							\
+			--build-arg IMAGE_REPOSITORY=$(IMAGE_REPOSITORY)						\
+			--build-arg BASEOS=$(BASEOS) 											\
+			--build-arg PACKAGER=$(PACKAGER) 										\
+			--build-arg CONTAINERSUITE=$(CONTAINERSUITE) 							\
+			--build-arg BUILD=$(BUILD) 												\
+			--build-arg PGBACKREST_VERSION=$(PGBACKREST_VERSION) 					\
+			--build-arg PATRONI_VERSION=$(PATRONI_VERSION) 							\
+			--build-arg OLD_PG_VERSIONS="$(OLD_PG_VERSIONS)"						\
+			--build-arg PGVERSION=$(BETAVERSION)									\
+			--build-arg ARCH=$(ARCH)	
+
+publicbeta: publicbeta-build

docker/pg-public-beta/Dockerfile

@@ -0,0 +1,169 @@
+ARG CONTAINERSUITE
+ARG BUILD
+ARG BASEOS
+ARG PGVERSION
+ 
+FROM ${CONTAINERSUITE}/base:${BASEOS}-${BUILD} as builder
+
+# Dockerfile specific informations
+ARG PACKAGER
+ARG PGBACKREST_VERSION
+ARG PATRONI_VERSION
+ARG PGVERSION
+ARG OLD_PG_VERSIONS
+ARG PG_SUPPORTED_VERSIONS="$PGVERSION"
+ARG PG_SUPPORTED_VERSIONS="$OLD_PG_VERSIONS $PGVERSION"
+ARG ARCH
+
+# Enable Beta-Repo
+RUN ${PACKAGER} config-manager --set-enabled pgdg${PGVERSION}-updates-testing \
+    && ${PACKAGER} config-manager --set-enabled pgdg${PGVERSION}-source-updates-testing;
+
+# Get some Standard-Stuff
+RUN ${PACKAGER} -y update && ${PACKAGER} -y install --nodocs --noplugins --setopt=install_weak_deps=0 \
+		--setopt=skip_missing_names_on_install=False \
+        openssh-clients \
+        openssh-server \
+        shadow-utils \
+        tar \
+        bzip2 \
+        lz4 \
+        python3 \
+        python3-pip \
+        python3-psycopg2 \
+        git \
+        patchutils \
+        binutils \
+        make \
+        cmake \
+        gcc \
+        pam-devel \
+        wget \
+        mlocate \
+        git-clang-format \
+        openssl-devel \
+        ccache \
+        redhat-rpm-config \
+        krb5-devel \
+        busybox \
+        jq \
+        rsync \
+        dumb-init \ 
+        libicu \
+        pgbackrest-${PGBACKREST_VERSION} \
+		&& ${PACKAGER} -y clean all;
+
+# install etcdctl
+RUN ETCDVERSION=3.5.1 \
+    && curl -L https://github.com/coreos/etcd/releases/download/v${ETCDVERSION}/etcd-v${ETCDVERSION}-linux-${ARCH}.tar.gz | tar xz -C /bin --strip=1 --wildcards --no-anchored --no-same-owner etcdctl etcd;
+
+ENV PATHBACKUP = $PATH
+
+RUN wget https://smarden.org/runit/runit-2.1.2.tar.gz -P /package/
+
+RUN pip3 install 'PyYAML<6.0' setuptools pystache loader kazoo meld3 boto python-etcd psutil requests cdiff ydiff --upgrade \
+    && pip3 install patroni[kubernetes$EXTRAS]==$PATRONI_VERSION --upgrade \
+    && mkdir /usr/lib/postgresql \
+    && ${PACKAGER} -y install --nodocs --noplugins --setopt=install_weak_deps=0 postgresql${PGVERSION} libevent-devel brotli-devel libbrotli \
+    && ${PACKAGER} -y clean all \
+\
+# Install PostgreSQL
+    && for version in $PG_SUPPORTED_VERSIONS; do \
+        ${PACKAGER} -y update && \
+        ${PACKAGER} -y install postgresql${version}-pltcl \
+        # Install PostgreSQL binaries, contrib, plproxy and multiple pl's
+            && ${PACKAGER} -y install -y postgresql${version}-contrib \
+                    postgresql${version}-devel \
+                     \
+            # Modify for using origial-spilo scripts
+            && ln -s /usr/pgsql-${version} /usr/lib/postgresql/${version} \
+            && export PATH=$PATHBACKUP:/usr/pgsql-${version}/bin; \           
+    done \
+    && ${PACKAGER} -y install --nodocs --noplugins --setopt=install_weak_deps=0 glibc-static \
+    && ${PACKAGER} -y clean all;
+    
+    RUN cd /package && tar -xvzf runit-2.1.2.tar.gz && rm runit-2.1.2.tar.gz \
+    && cd admin/runit-2.1.2 && package/install \
+    && ln -s /usr/local/bin/runsvdir /usr/bin/runsvdir \
+    && rm -rf /pg_permissions* /pgextwlist /pg_stat_kcache /pgnodemx /timescaledb /set_user /pam-oauth2 \
+    && rm /etc/pgbackrest.conf && rm -rf /var/spool/pgbackrest \
+    && ${PACKAGER} -y remove $(rpm -qa "*devel*") python3-pip python3-wheel python3-dev python3-setuptools git patchutils flatpak glibc-static gcc glibc-devel \
+    && ${PACKAGER} -y autoremove \
+    && ${PACKAGER} -y clean dbcache \
+    && ${PACKAGER} -y clean all;
+
+FROM scratch 
+
+ARG PGVERSION
+
+COPY --from=builder / /
+
+EXPOSE 5432 8008 8080
+ENV LC_ALL=en_US.utf-8 \
+    PATH=$PATH:/usr/pgsql-$PGVERSION/bin \
+    PGHOME=/home/postgres \
+    RW_DIR=/run \
+    TIMESCALEDB=$TIMESCALEDB \
+    DEMO=$DEMO
+
+ENV LOG_ENV_DIR=$RW_DIR/etc/log.d/env \
+    PGROOT=$PGHOME/pgdata/pgroot
+
+ENV PGDATA=$PGROOT/data \
+    PGLOG=$PGROOT/pg_log
+
+WORKDIR $PGHOME
+
+COPY motd /etc/
+#COPY runit /etc/service/
+
+COPY runit /etc/runit/runsvdir/default/
+COPY pgq_ticker.ini $PGHOME/
+RUN rm -rf /etc/service && mkdir /home/postgres/pgdata && chown -R postgres:postgres /home/postgres/pgdata &&  chmod -R g=u /home/postgres/pgdata \
+    && sed -i "s|/var/lib/pgsql.*|$PGHOME:/bin/bash|" /etc/passwd \
+    && chown -R postgres:postgres $PGHOME $PGHOME/pgdata $RW_DIR \
+    && rm -fr /var/spool/cron /var/tmp \
+    && mkdir -p /var/spool \
+    && ln -s $RW_DIR/cron /var/spool/cron \
+    && ln -s $RW_DIR/tmp /var/tmp \
+    && for d in /etc/runit/runsvdir/default/*; do \
+        chmod 755 $d/* \
+        && ln -s /run/supervise/$(basename $d) $d/supervise; \
+    done \
+    && ln -snf $RW_DIR/service /etc/service \
+    #&& ln -s $RW_DIR/pam.d-postgresql /etc/pam.d/postgresql \
+    && ln -s $RW_DIR/postgres.yml $PGHOME/postgres.yml \
+    && ln -s $RW_DIR/.bash_history /root/.bash_history \
+    && ln -s $RW_DIR/postgresql/.bash_history $PGHOME/.bash_history \
+    && ln -s $RW_DIR/postgresql/.psql_history $PGHOME/.psql_history \
+    && ln -s $RW_DIR/etc $PGHOME/etc \
+    && for d in $PGHOME /root; do \
+        d=$d/.config/patroni \
+        && mkdir -p $d \
+        && ln -s $PGHOME/postgres.yml $d/patronictl.yaml; \
+    done \
+    && sed -i 's/set compatible/set nocompatible/' /etc/vimrc \
+    && echo "PATH=\"$PATH\"" > /etc/environment \
+    && for e in TERM=linux LC_ALL=C.UTF-8 LANG=C.UTF-8 EDITOR=editor; \
+        do echo "export $e" >> /etc/bash.bashrc; \
+    done \
+    && ln -s /etc/skel/.bashrc $PGHOME/.bashrc \
+    && echo "source /etc/motd" >> /root/.bashrc \
+    # Allow users in the root group to access the following files and dirs
+    && if [ "$COMPRESS" != "true" ]; then \
+        chmod 664 /etc/passwd \
+        && chmod o+r /etc/shadow \
+        && chgrp -R 0 $PGHOME $RW_DIR \
+        && chmod -R g=u $PGHOME $RW_DIR \
+        && usermod -a -G root postgres; \
+    fi
+        
+
+COPY scripts bootstrap major_upgrade /scripts/
+COPY launcher/postgres/launch.sh /
+
+ENTRYPOINT ["/scripts/nss_wrapper/nss_wrapper.sh"]
+
+USER 26
+
+CMD ["/bin/sh", "/launch.sh", "init"]

docker/postgres/Dockerfile

@@ -17,12 +17,10 @@ ARG TIMESCALEDB="1.7.5 2.3.1 2.13.0"
 ARG ARCH
 
 # Spilo-specific
-ENV SET_USER=REL3_0_0 \
-    PLPROFILER=REL4_1 \
-    PG_PROFILE=0.3.6 \
+ENV SET_USER=REL4_0_1 \
     PAM_OAUTH2=v1.0.1 \
+    PG_PERMISSIONS=REL_1_3 \
     PLANTUNER_COMMIT=800d81bc85da64ff3ef66e12aed1d4e1e54fc006 \
-    PG_PERMISSIONS_COMMIT=314b9359e3d77c0b2ef7dbbde97fa4be80e31925 \
     PG_TM_AUX_COMMIT=6c012d38a4c1b0ba4a36952d60b0ce3a22ac9c3d
 
 # Get some Standard-Stuff
@@ -76,15 +74,11 @@ RUN wget https://smarden.org/runit/runit-2.1.2.tar.gz -P /package/
 RUN pip3 install 'PyYAML<6.0' setuptools pystache loader kazoo meld3 boto python-etcd psutil requests cdiff ydiff --upgrade \
     && pip3 install patroni[kubernetes$EXTRAS]==$PATRONI_VERSION --upgrade \
     && mkdir /usr/lib/postgresql \
-    && curl -sL https://github.com/cybertec-postgresql/pg_permissions/archive/$PG_PERMISSIONS_COMMIT.tar.gz | tar xz \
-    #&& curl -sL https://github.com/x4m/pg_tm_aux/archive/$PG_TM_AUX_COMMIT.tar.gz | tar xz \
-    #&& curl -sL https://github.com/zubkov-andrei/pg_profile/archive/$PG_PROFILE.tar.gz | tar xz \
+    && git clone -b $PG_PERMISSIONS https://github.com/cybertec-postgresql/pg_permissions.git \
     && git clone -b $SET_USER https://github.com/pgaudit/set_user.git \
     && git clone https://github.com/timescale/timescaledb.git \
     #&& git clone https://github.com/dimitri/pgextwlist.git \
-    #&& git clone https://github.com/powa-team/pg_stat_kcache.git \
     && git clone https://github.com/crunchydata/pgnodemx \
-    #&& git clone https://github.com/pgq/pgqd.git \
 \    
     && ${PACKAGER} -y install --nodocs --noplugins --setopt=install_weak_deps=0 postgresql${PGVERSION} libevent-devel brotli-devel libbrotli \
     && ${PACKAGER} -y clean all \
@@ -121,7 +115,7 @@ RUN pip3 install 'PyYAML<6.0' setuptools pystache loader kazoo meld3 boto python
                     && git clean -f -d; \
                 done \
             && cd .. \
-            && for n in set_user pg_permissions-${PG_PERMISSIONS_COMMIT} $EXTRA_EXTENSIONS; do \ 
+            && for n in set_user pg_permissions $EXTRA_EXTENSIONS; do \ 
                 #pg_profile-${PG_PROFILE} pg_tm_aux-${PG_TM_AUX_COMMIT} bg_mon-${BG_MON_COMMIT} pg_auth_mon-${PG_AUTH_MON_COMMIT}
                 make -C $n USE_PGXS=1 clean install-strip; \ 
             done \
@@ -136,7 +130,7 @@ RUN pip3 install 'PyYAML<6.0' setuptools pystache loader kazoo meld3 boto python
     RUN cd /package && tar -xvzf runit-2.1.2.tar.gz && rm runit-2.1.2.tar.gz \
     && cd admin/runit-2.1.2 && package/install \
     && ln -s /usr/local/bin/runsvdir /usr/bin/runsvdir \
-    && rm -rf /pg_permissions* /pgextwlist /pg_stat_kcache /pgnodemx /timescaledb /set_user /pam-oauth2 \
+    && rm -rf /pg_permissions /pgextwlist /pg_stat_kcache /pgnodemx /timescaledb /set_user /pam-oauth2 \
     && rm /etc/pgbackrest.conf && rm -rf /var/spool/pgbackrest \
     && ${PACKAGER} -y remove $(rpm -qa "*devel*") python3-pip python3-wheel python3-dev python3-setuptools git patchutils flatpak glibc-static gcc glibc-devel \
     && ${PACKAGER} -y autoremove \

scripts/configure_spilo.py

@@ -309,7 +309,7 @@ def deep_update(a, b):
     {{/SSL_CRL_FILE}}
     ssl_cert_file: {{SSL_CERTIFICATE_FILE}}
     ssl_key_file: {{SSL_PRIVATE_KEY_FILE}}
-    shared_preload_libraries: 'pg_stat_statements,set_user'
+    shared_preload_libraries: 'pg_stat_statements'
     pg_stat_statements.track_utility: 'off'
     extwlist.extensions: 'btree_gin,btree_gist,citext,extra_window_functions,first_last_agg,hll,\
 hstore,hypopg,intarray,ltree,pgcrypto,pgq,pgq_node,pg_trgm,postgres_fdw,tablefunc,uuid-ossp'