jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
17,850 Commits 33 Branches 583 Tags
9eee7b2582d16914c234c3343a5fc4555f9d81e2
Commit Graph

153 Commits

Author SHA1 Message Date
Johannes Zellner cb3dffc7fc Use docker 28.1.1 since that is the highest on ubuntu 20 focal 2025-06-30 22:30:54 +02:00
Girish Ramakrishnan 27c4069187 Update node to 22.7.0 2025-06-25 11:17:57 +02:00
Girish Ramakrishnan 4b2c0b0771 Update docker to 28.3.0 2025-06-25 11:16:42 +02:00
Girish Ramakrishnan 1ba9513a4e installer: directly stop box code 
the idea (previously) was that the box code knew how to stop itself.
this is why stop.sh of the _old_ code was invoked. we can just inline
the code needed to stop the old version into installer.sh itself.
 2025-06-15 17:40:45 +02:00
Girish Ramakrishnan 1095e47e6f installer: better variable name 2025-06-15 17:38:39 +02:00
Girish Ramakrishnan 085ed59334 installer: remove old untagging logic 2025-02-28 23:30:02 +01:00
Girish Ramakrishnan 46620e2da5 update the PSL on box code update 
I tried replacing the module but it's complicated since there is a
lot of rules - https://github.com/publicsuffix/list/wiki/Format#format
 2025-02-10 17:42:56 +01:00
Girish Ramakrishnan 42f493b2c3 docker: update to 27.5.1 2025-02-05 14:48:13 +01:00
Girish Ramakrishnan 5a766c583c node: update to 22.13.1 2025-02-05 14:48:13 +01:00
Girish Ramakrishnan bd107e849b infra: no more images.base 2024-12-14 20:18:07 +01:00
Girish Ramakrishnan 5ae29eabaa docker: try ipv4 and then ipv6 explicitly 
To get the ratelimits:
TOKEN=$(curl "https://auth.docker.io/token?service=registry.docker.io&scope=repository:ratelimitpreview/test:pull" | jq -r .token)
curl --head -H "Authorization: Bearer $TOKEN" https://registry-1.docker.io/v2/ratelimitpreview/test/manifests/latest

docker appears to have some simple approach to track ipv6 limits.
 2024-12-14 17:05:13 +01:00
Girish Ramakrishnan d9e4aeb518 docker: replace pull with tag to not hit rate limits 2024-12-14 16:16:33 +01:00
Girish Ramakrishnan 878caff378 improve the comment 2024-12-14 14:01:38 +01:00
Girish Ramakrishnan 948efbaa76 docker: upgrade docker to 27.3.1 2024-11-23 20:31:44 +05:30
Girish Ramakrishnan 0f3ab11532 Update node to 20.18.0 
We need https://nodejs.org/dist/latest-v20.x/docs/api/cli.html#--network-family-autoselection-attempt-timeout

The happy eyeballs implementation in node is buggy - https://github.com/nodejs/node/issues/54359
 2024-10-28 09:55:54 +01:00
Girish Ramakrishnan 6681f2e5c8 netcup: dns fixes 2024-05-04 18:37:40 +02:00
Girish Ramakrishnan 67c1b2cb71 installer: remove custom nginx upgrade logic 2024-04-29 14:23:19 +02:00
Girish Ramakrishnan 6c0e84a31d installer: remove verbose extract 2024-04-29 14:14:36 +02:00
Girish Ramakrishnan caedf6a8e7 remove resolvconf and enable systemd-resolved 2024-04-29 13:19:52 +02:00
Girish Ramakrishnan 8df97de8c6 Ubuntu 24.04 
* update docker to 26.0.1
* cloudron-syslog needs to have correct perms for fifo socket
 2024-04-29 11:07:10 +02:00
Girish Ramakrishnan cd5cae33ce dns: switch over to systemd for the host 
this changes unbound to listen to 127.0.0.150 (150 is roman CL)

we cannot only bind on docker bridge because unbound is relied
upon for the initial domain setup. docker itself is only initialized
when the platform initializes
 2024-04-29 11:06:03 +02:00
Girish Ramakrishnan a756fa9e9b remove dead code 2024-04-28 10:52:30 +02:00
Girish Ramakrishnan eeae8c92d0 nodejs: update to 20.12.2 2024-04-19 17:40:42 +02:00
Girish Ramakrishnan c6db1c70c0 docker: fix image prune 
it seems docker images --digests cloudron/sftp --format "{{.ID}} {{.Repository}}:{{.Tag}}@{{.Digest}}
broke at some point
 2023-08-08 21:21:00 +05:30
Girish Ramakrishnan 78877f3731 Show upgrade fail message that ubuntu 18.04 is now required 2023-07-09 12:53:59 +05:30
Girish Ramakrishnan 39d45b71d7 installer: remove user creation, already in init-ubuntu script 2023-05-15 21:10:29 +02:00
Girish Ramakrishnan c55152c0e1 node: update to 18.16.0 2023-05-11 08:32:31 +02:00
Girish Ramakrishnan e83bb0c639 docker: update to 23.0.6 2023-05-11 08:32:31 +02:00
Girish Ramakrishnan 5274e1c454 docker: registry finally has ipv6 support 
https://github.com/docker/roadmap/issues/89
 2023-05-10 10:14:25 +02:00
Johannes Zellner f4e4bb97b1 Give setup more time to fail on docker ipv4 vs ipv6 detection 2023-04-24 15:31:05 +02:00
Girish Ramakrishnan 4c475818bc syslog: restructure code 2023-04-14 20:06:28 +02:00
Girish Ramakrishnan 489b598cd6 curl|pipe makes retrying pointless 
save to a temporary file so that curl retry logic can work
 2023-03-16 12:04:17 +01:00
Girish Ramakrishnan 7be0739141 registry log message 2022-12-23 17:19:52 +01:00
Girish Ramakrishnan ce00165e41 Update containterd 
this possible fixes stuck containers - https://github.com/containerd/containerd/issues/6772
 2022-11-24 14:49:12 +01:00
Girish Ramakrishnan 1d56bcb2e0 Update node to 16.18.1 2022-11-22 19:29:54 +01:00
Girish Ramakrishnan c639559a6d Update docker 20.10.21 
many users reporting hangs in docker, maybe this solves it
 2022-11-21 13:20:49 +01:00
Girish Ramakrishnan f355403412 npm: make it work with ipv6 only servers 2022-08-01 14:15:09 +02:00
Girish Ramakrishnan 985320d355 switch registry url based on ipv6 availability 2022-08-01 14:15:09 +02:00
Girish Ramakrishnan 64243425ce installer: suppress VERSION not found error 2022-07-27 06:16:27 +02:00
Girish Ramakrishnan 32153ed47d nginx: switch to ubuntu's repo package 
ubuntu 18.04 has nginx 1.14
ubuntu 20.04, 22.04 has nginx 1.18

We used a custom nginx for TLSv1.3 support (ssl_protocols TLSv1.3).

OpenSSL itself has TLS 1.3 only from Ubuntu 18.10. This is why we
installed custom packages on Ubuntu 18.04
 2022-04-27 10:59:27 -07:00
Girish Ramakrishnan 4306e20a8e Update docker to 20.10.14 2022-04-21 12:30:14 -07:00
Girish Ramakrishnan 635dd5f10d Update nodejs 2022-04-21 12:28:55 -07:00
Girish Ramakrishnan 185d5d66ad even more constness 2022-04-14 20:30:00 -05:00
Girish Ramakrishnan 7ec1594428 create a separate support user 
This creates a separate user named 'cloudron-support' using which we
can provide remote support. The hyphen username convention follows the
systemd sytem username convention.

With a separate user, we don't need to ask users to keep changing PermitRootLogin
(and remind them to change it back).

Using a sudo user has various advantages:

* https://askubuntu.com/questions/687249/why-does-ubuntu-have-a-disabled-root-account
* https://wiki.debian.org/sudo
* https://askubuntu.com/questions/16178/why-is-it-bad-to-log-in-as-root

The yellowtent user is also locked down further - no password and no shell login.
 2022-03-30 15:08:20 -07:00
Girish Ramakrishnan bfb233eca1 installer.sh: move installation of docker/node/nginx etc 
no need to dup the code in two places. i think this will also
fix the unbound/resolvconf DNS resolution issue. this way unbound is configured
and is what gets used when docker is installed.

https://forum.cloudron.io/topic/6660/help-please-failing-setup-of-cloudron
https://forum.cloudron.io/topic/6632/help-me-please-got-error-while-installing-the-cloudron-on-a-fresh-ubuntu-20-04-x64-server
https://forum.cloudron.io/topic/6561/that-install-script-fails-74-times-out-of-75
 2022-03-29 22:34:03 -07:00
Girish Ramakrishnan 5b27eb9c54 initializeBaseUbuntuImage: create yellowtent user 2022-03-29 21:41:46 -07:00
Girish Ramakrishnan faf91d4d00 sshfs and mount.nfs are in base image now 2022-03-29 21:32:48 -07:00
Girish Ramakrishnan 6933ccefe2 Update nginx to 1.20.0-1 2022-03-28 13:25:05 -07:00
Girish Ramakrishnan 7bfa237d26 Update docker to 20.10.12 2022-02-08 10:57:24 -08:00
Girish Ramakrishnan e9945d8010 Update cloudron-syslog 2022-01-13 16:29:50 -08:00