Bot Updating Package Versions

Bot Updating Templated Files
Merge pull request #431 from linuxserver/root-certbot
2026-03-04 01:13:35 +09:00 · 2023-11-28 19:55:58 +00:00 · 2023-11-28 19:50:37 +00:00 · 2023-11-28 13:49:03 -06:00 · 2023-11-25 03:18:43 +00:00 · 2023-11-23 07:50:53 -06:00
13 changed files with 49 additions and 87 deletions
--- a/README.md
+++ b/README.md
@@ -401,6 +401,7 @@ Once registered you can define the dockerfile to use with `-f Dockerfile.aarch64

 ## Versions

+* **23.11.23:** - Run certbot as root to allow fix http validation.
 * **01.10.23:** - Fix "unrecognized arguments" issue in DirectAdmin DNS plugin.
 * **28.08.23:** - Add Namecheap DNS plugin.
 * **12.08.23:** - Add FreeDNS plugin. Detect certbot DNS authenticators using CLI.
--- a/package_versions.txt
+++ b/package_versions.txt
@@ -23,8 +23,8 @@ azure-mgmt-core                 1.4.0                   python
 azure-mgmt-dns                  8.1.0                   python  
 bash                            5.2.15-r5               apk     
 beautifulsoup4                  4.12.2                  python  
-boto3                           1.29.3                  python  
-botocore                        1.32.3                  python  
+boto3                           1.33.1                  python  
+botocore                        1.33.1                  python  
 brotli-libs                     1.0.9-r14               apk     
 bs4                             0.0.1                   python  
 busybox                         1.36.1-r5               apk     
@@ -65,7 +65,7 @@ certbot-dns-linode              2.6.0                   python
 certbot-dns-loopia              1.0.1                   python  
 certbot-dns-luadns              2.6.0                   python  
 certbot-dns-namecheap           1.0.0                   python  
-certbot-dns-netcup              1.4.2                   python  
+certbot-dns-netcup              1.4.3                   python  
 certbot-dns-njalla              1.0.0                   python  
 certbot-dns-nsone               2.6.0                   python  
 certbot-dns-ovh                 2.6.0                   python  
@@ -80,10 +80,10 @@ certbot-plugin-gandi            1.5.0                   python
 certifi                         2023.11.17              python  
 cffi                            1.16.0                  python  
 charset-normalizer              3.3.2                   python  
-cloudflare                      2.12.4                  python  
+cloudflare                      2.14.2                  python  
 configobj                       5.0.8                   python  
 coreutils                       9.3-r1                  apk     
-cryptography                    41.0.5                  python  
+cryptography                    41.0.7                  python  
 curl                            8.4.0-r0                apk     
 dataclasses-json                0.5.14                  python  
 distro                          1.8.0                   python  
@@ -122,7 +122,7 @@ gpgv                            2.4.3-r0                apk
 httplib2                        0.22.0                  python  
 icu-data-en                     73.2-r2                 apk     
 icu-libs                        73.2-r2                 apk     
-idna                            3.4                     python  
+idna                            3.6                     python  
 importlib-metadata              6.8.0                   python  
 ip6tables                       1.8.9-r2                apk     
 iptables                        1.8.9-r2                apk     
@@ -182,7 +182,7 @@ libxau                          1.0.11-r2               apk
 libxcb                          1.15-r1                 apk     
 libxdmcp                        1.1.4-r2                apk     
 libxext                         1.3.5-r2                apk     
-libxml2                         2.11.4-r0               apk     
+libxml2                         2.11.6-r0               apk     
 libxpm                          3.5.16-r1               apk     
 libxslt                         1.1.38-r0               apk     
 libxt                           1.3.0-r2                apk     
@@ -233,57 +233,57 @@ packaging                       23.2                    python
 parsedatetime                   2.6                     python  
 pcre                            8.45-r3                 apk     
 pcre2                           10.42-r1                apk     
-perl                            5.36.1-r2               apk     
+perl                            5.36.2-r0               apk     
 perl-error                      0.17029-r1              apk     
 perl-git                        2.40.1-r0               apk     
 php82                           8.2.12-r0               apk     
-php82-bcmath                    8.2.12-r0               apk     
-php82-bz2                       8.2.12-r0               apk     
+php82-bcmath                    8.2.13-r0               apk     
+php82-bz2                       8.2.13-r0               apk     
 php82-common                    8.2.12-r0               apk     
 php82-ctype                     8.2.12-r0               apk     
 php82-curl                      8.2.12-r0               apk     
-php82-dom                       8.2.12-r0               apk     
-php82-exif                      8.2.12-r0               apk     
+php82-dom                       8.2.13-r0               apk     
+php82-exif                      8.2.13-r0               apk     
 php82-fileinfo                  8.2.12-r0               apk     
 php82-fpm                       8.2.12-r0               apk     
-php82-ftp                       8.2.12-r0               apk     
-php82-gd                        8.2.12-r0               apk     
-php82-gmp                       8.2.12-r0               apk     
+php82-ftp                       8.2.13-r0               apk     
+php82-gd                        8.2.13-r0               apk     
+php82-gmp                       8.2.13-r0               apk     
 php82-iconv                     8.2.12-r0               apk     
-php82-imap                      8.2.12-r0               apk     
-php82-intl                      8.2.12-r0               apk     
-php82-ldap                      8.2.12-r0               apk     
+php82-imap                      8.2.13-r0               apk     
+php82-intl                      8.2.13-r0               apk     
+php82-ldap                      8.2.13-r0               apk     
 php82-mbstring                  8.2.12-r0               apk     
-php82-mysqli                    8.2.12-r0               apk     
-php82-mysqlnd                   8.2.12-r0               apk     
-php82-opcache                   8.2.12-r0               apk     
+php82-mysqli                    8.2.13-r0               apk     
+php82-mysqlnd                   8.2.13-r0               apk     
+php82-opcache                   8.2.13-r0               apk     
 php82-openssl                   8.2.12-r0               apk     
-php82-pdo                       8.2.12-r0               apk     
-php82-pdo_mysql                 8.2.12-r0               apk     
-php82-pdo_odbc                  8.2.12-r0               apk     
-php82-pdo_pgsql                 8.2.12-r0               apk     
-php82-pdo_sqlite                8.2.12-r0               apk     
-php82-pear                      8.2.12-r0               apk     
+php82-pdo                       8.2.13-r0               apk     
+php82-pdo_mysql                 8.2.13-r0               apk     
+php82-pdo_odbc                  8.2.13-r0               apk     
+php82-pdo_pgsql                 8.2.13-r0               apk     
+php82-pdo_sqlite                8.2.13-r0               apk     
+php82-pear                      8.2.13-r0               apk     
 php82-pecl-apcu                 5.1.22-r0               apk     
 php82-pecl-igbinary             3.2.14-r0               apk     
 php82-pecl-mcrypt               1.0.6-r0                apk     
 php82-pecl-memcached            3.2.0-r1                apk     
 php82-pecl-msgpack              2.2.0-r0                apk     
 php82-pecl-redis                6.0.2-r0                apk     
-php82-pgsql                     8.2.12-r0               apk     
+php82-pgsql                     8.2.13-r0               apk     
 php82-phar                      8.2.12-r0               apk     
-php82-posix                     8.2.12-r0               apk     
+php82-posix                     8.2.13-r0               apk     
 php82-session                   8.2.12-r0               apk     
 php82-simplexml                 8.2.12-r0               apk     
-php82-soap                      8.2.12-r0               apk     
-php82-sockets                   8.2.12-r0               apk     
-php82-sodium                    8.2.12-r0               apk     
-php82-sqlite3                   8.2.12-r0               apk     
-php82-tokenizer                 8.2.12-r0               apk     
+php82-soap                      8.2.13-r0               apk     
+php82-sockets                   8.2.13-r0               apk     
+php82-sodium                    8.2.13-r0               apk     
+php82-sqlite3                   8.2.13-r0               apk     
+php82-tokenizer                 8.2.13-r0               apk     
 php82-xml                       8.2.12-r0               apk     
-php82-xmlreader                 8.2.12-r0               apk     
+php82-xmlreader                 8.2.13-r0               apk     
 php82-xmlwriter                 8.2.12-r0               apk     
-php82-xsl                       8.2.12-r0               apk     
+php82-xsl                       8.2.13-r0               apk     
 php82-zip                       8.2.12-r0               apk     
 pinentry                        1.2.1-r1                apk     
 pip                             23.3.1                  python  
@@ -296,7 +296,7 @@ publicsuffixlist                0.9.4                   python
 pyOpenSSL                       23.3.0                  python  
 pyRFC3339                       1.1                     python  
 pyacmedns                       0.4                     python  
-pyasn1                          0.5.0                   python  
+pyasn1                          0.5.1                   python  
 pyasn1-modules                  0.3.0                   python  
 pyc                             0.1-r0                  apk     
 pycparser                       2.21                    python  
@@ -313,7 +313,7 @@ requests                        2.31.0                  python
 requests-file                   1.5.1                   python  
 requests-mock                   1.11.0                  python  
 rsa                             4.9                     python  
-s3transfer                      0.7.0                   python  
+s3transfer                      0.8.0                   python  
 scanelf                         1.3.7-r1                apk     
 setuptools                      65.5.0                  python  
 shadow                          4.13-r4                 apk     
@@ -331,7 +331,7 @@ unixodbc                        2.3.11-r2               apk
 uritemplate                     4.1.1                   python  
 urllib3                         1.26.18                 python  
 utmps-libs                      0.1.2.1-r1              apk     
-wheel                           0.41.3                  python  
+wheel                           0.42.0                  python  
 whois                           5.5.17-r0               apk     
 xz-libs                         5.4.3-r0                apk     
 zipp                            3.17.0                  python  
--- a/readme-vars.yml
+++ b/readme-vars.yml
@@ -153,6 +153,7 @@ app_setup_block: |

 # changelog
 changelogs:
+  - { date: "23.11.23:", desc: "Run certbot as root to allow fix http validation." }
  - { date: "01.10.23:", desc: "Fix \"unrecognized arguments\" issue in DirectAdmin DNS plugin." }
  - { date: "28.08.23:", desc: "Add Namecheap DNS plugin." }
  - { date: "12.08.23:", desc: "Add FreeDNS plugin. Detect certbot DNS authenticators using CLI." }
--- a/root/etc/crontabs/abc
+++ b/root/etc/crontabs/abc
--- a/root/etc/crontabs/root
+++ b/root/etc/crontabs/root
@@ -1,9 +1,2 @@
-# do daily/weekly/monthly maintenance
 # min   hour    day     month   weekday command
-*/15    *       *       *       *       run-parts /etc/periodic/15min
-0       *       *       *       *       run-parts /etc/periodic/hourly
-0       2       *       *       *       run-parts /etc/periodic/daily
-0       3       *       *       6       run-parts /etc/periodic/weekly
-0       5       1       *       *       run-parts /etc/periodic/monthly
-# renew letsencrypt certs
 8       2       *       *       *       /app/le-renew.sh >> /config/log/letsencrypt/letsencrypt.log 2>&1
--- a/root/etc/s6-overlay/s6-rc.d/init-certbot-config/run
+++ b/root/etc/s6-overlay/s6-rc.d/init-certbot-config/run
@@ -31,6 +31,12 @@ if [[ "${VALIDATION}" = "dns" ]] && ! echo "${CERTBOT_DNS_AUTHENTICATORS}" | gre
    sleep infinity
 fi

+# set owner of certbot's CONFIG_DIR, WORK_DIR, and LOGS_DIR to abc
+lsiown -R abc:abc \
+    /etc/letsencrypt \
+    /var/lib/letsencrypt \
+    /var/log/letsencrypt
+
 # set_ini_value logic:
 # - if the name is not found in the file, append the name=value to the end of the file
 # - if the name is found in the file, replace the value
@@ -46,6 +52,7 @@ function set_ini_value() {

 # ensure config files exist and has at least one value set (set_ini_value does not work on empty files)
 touch /config/etc/letsencrypt/cli.ini
+lsiown abc:abc /config/etc/letsencrypt/cli.ini
 grep -qF 'agree-tos' /config/etc/letsencrypt/cli.ini || echo 'agree-tos=true' >>/config/etc/letsencrypt/cli.ini

 # copy dns default configs
--- a/root/etc/s6-overlay/s6-rc.d/init-crontabs-config/run
+++ b/root/etc/s6-overlay/s6-rc.d/init-crontabs-config/run
@@ -1,38 +0,0 @@
-#!/usr/bin/with-contenv bash
-# shellcheck shell=bash
-
-# make folders
-mkdir -p \
-    /config/crontabs
-
-## root
-# if crontabs do not exist in config
-if [[ ! -f /config/crontabs/root ]]; then
-    # copy crontab from system
-    if crontab -l -u root; then
-        crontab -l -u root >/config/crontabs/root
-    fi
-
-    # if crontabs still do not exist in config (were not copied from system)
-    # copy crontab from included defaults (using -n, do not overwrite an existing file)
-    cp -n /etc/crontabs/root /config/crontabs/ 2> >(grep -v 'cp: not replacing')
-fi
-# set permissions and import user crontabs
-lsiown root:root /config/crontabs/root
-crontab -u root /config/crontabs/root
-
-## abc
-# if crontabs do not exist in config
-if [[ ! -f /config/crontabs/abc ]]; then
-    # copy crontab from system
-    if crontab -l -u abc; then
-        crontab -l -u abc >/config/crontabs/abc
-    fi
-
-    # if crontabs still do not exist in config (were not copied from system)
-    # copy crontab from included defaults (using -n, do not overwrite an existing file)
-    cp -n /etc/crontabs/abc /config/crontabs/ 2> >(grep -v 'cp: not replacing')
-fi
-# set permissions and import user crontabs
-lsiown abc:abc /config/crontabs/abc
-crontab -u abc /config/crontabs/abc
--- a/root/etc/s6-overlay/s6-rc.d/init-crontabs-config/type
+++ b/root/etc/s6-overlay/s6-rc.d/init-crontabs-config/type
@@ -1 +0,0 @@
-oneshot
--- a/root/etc/s6-overlay/s6-rc.d/init-crontabs-config/up
+++ b/root/etc/s6-overlay/s6-rc.d/init-crontabs-config/up
@@ -1 +0,0 @@
-/etc/s6-overlay/s6-rc.d/init-crontabs-config/run
--- a/root/etc/s6-overlay/s6-rc.d/init-folders-config/run
+++ b/root/etc/s6-overlay/s6-rc.d/init-folders-config/run
@@ -3,7 +3,7 @@

 # make our folders and links
 mkdir -p \
-    /config/{fail2ban,crontabs,dns-conf} \
+    /config/{fail2ban,dns-conf} \
    /config/etc/letsencrypt/renewal-hooks \
    /config/log/{fail2ban,letsencrypt,nginx} \
    /config/nginx/proxy-confs \
--- a/root/etc/s6-overlay/s6-rc.d/init-nginx-config/dependencies.d/init-crontabs-config
+++ b/root/etc/s6-overlay/s6-rc.d/init-nginx-config/dependencies.d/init-crontabs-config
--- a/root/etc/s6-overlay/s6-rc.d/init-crontabs-config/dependencies.d/init-fail2ban-config
+++ b/root/etc/s6-overlay/s6-rc.d/init-crontabs-config/dependencies.d/init-fail2ban-config
--- a/root/etc/s6-overlay/s6-rc.d/user/contents.d/init-crontabs-config
+++ b/root/etc/s6-overlay/s6-rc.d/user/contents.d/init-crontabs-config
Author	SHA1	Message	Date
LinuxServer-CI	eba3c341fa	Bot Updating Package Versions	2023-11-28 19:55:58 +00:00
LinuxServer-CI	5fc5825afd	Bot Updating Templated Files	2023-11-28 19:50:37 +00:00
Eric Nemchik	de18e4ef24	Merge pull request #431 from linuxserver/root-certbot Run certbot as root to allow fix http validation	2023-11-28 13:49:03 -06:00
LinuxServer-CI	2ca6807b64	Bot Updating Package Versions	2023-11-25 03:18:43 +00:00
Eric Nemchik	e3560414dc	Run certbot as root to allow fix http validation Fixes regression from https://github.com/linuxserver/docker-swag/pull/399 Signed-off-by: Eric Nemchik <eric@nemchik.com>	2023-11-23 07:50:53 -06:00
Eric Nemchik	2f4162578f	Merge pull request #399 from linuxserver/standard-cron standard cron	2023-11-18 19:11:17 -06:00
Eric Nemchik	82e85d22c1	Merge branch 'master' into standard-cron	2023-11-04 18:37:38 -05:00
Eric Nemchik	8b49f2b0d4	fix chown for group Signed-off-by: Eric Nemchik <eric@nemchik.com>	2023-11-04 18:36:31 -05:00
Eric Nemchik	8fdb472564	Merge branch 'master' into standard-cron	2023-11-01 17:48:15 -05:00
Eric Nemchik	23728cba0b	Move crontabs to etc Signed-off-by: Eric Nemchik <eric@nemchik.com>	2023-08-19 10:17:40 -05:00
Eric Nemchik	7e1db9c562	Crontabs folder created in base Signed-off-by: Eric Nemchik <eric@nemchik.com>	2023-08-19 08:42:48 -05:00
Eric Nemchik	919b8ac152	cron in base Signed-off-by: Eric Nemchik <eric@nemchik.com>	2023-08-18 23:38:31 -05:00
Eric Nemchik	0b738d9ee0	set owner of certbot folders to abc Signed-off-by: Eric Nemchik <eric@nemchik.com>	2023-07-31 15:13:43 -05:00
Eric Nemchik	269e9cdd3f	Fix perms Signed-off-by: Eric Nemchik <eric@nemchik.com>	2023-07-30 09:50:18 -05:00
Eric Nemchik	17387674b8	standard cron Signed-off-by: Eric Nemchik <eric@nemchik.com>	2023-07-30 01:17:57 -05:00
				`@@ -1 +0,0 @@`
				`/etc/s6-overlay/s6-rc.d/init-crontabs-config/run`