aboutsummaryrefslogtreecommitdiff
path: root/docker
AgeCommit message (Collapse)Author
2024-12-06Update Alpine to version 3.21 (#5256)Daniel
2024-12-05Update Rust and crates (#5248)Mathijs van Veluw
* Update Rust and crates - Updated Rust to v1.83.0 - Updated MSRV to v1.82.0 (Needed for html5gum crate) - Updated icon fetching code to match new html5gum version - Updated workflows - Enabled edition 2024 clippy lints Nightly reports some clippy hints, but that would be too much to change in this PR i think. Signed-off-by: BlackDex <[email protected]> * Some additional updates - Patch fern to allow syslog-7 feature - Fixed diesel logger which was broken because of the sqlite backup feature Refactored the sqlite backup because of this - Added a build workflow test to include the query_logger feature Signed-off-by: BlackDex <[email protected]> * Also patch yubico-rs and latest updates Signed-off-by: BlackDex <[email protected]> --------- Signed-off-by: BlackDex <[email protected]>
2024-11-25chore: fix some comments (#5224)chuangjinglu
Signed-off-by: chuangjinglu <[email protected]>
2024-10-18Update Rust to 1.82.0 (#5099)Daniel
- raise MSRV to 1.80.0 - also update the crates
2024-09-07Update Rust version & crates (#4928)Daniel
2024-09-01Update web-vault, crates and gha (#4909)Mathijs van Veluw
- Updated the web-vault to fix an issue with personal export. Thanks to @stefan0xC for patching this. Fixes #4875 - Updated crates to there latest version - Updated the GitHub Actions - Updated the xx image to the latest version Signed-off-by: BlackDex <[email protected]>
2024-08-27Allow custom umask setting (#4896)Mathijs van Veluw
To provide a way to add more security regarding file/folder permissions this PR adds a way to allow setting a custom `UMASK` variable. This allows people to set a more secure default like only allowing the owner the the process/container to read/write files and folders. Examples: - `UMASK=022` File: 644 | Folder: 755 (Default of the containers) This means Owner read/write and group/world read-only - `UMASK=027` File: 640 | Folder: 750 This means Owner read/write, group read-only, world no access - `UMASK=077` File: 600 | Folder: 700 This measn Owner read/write and group/world no access resolves #4571 Signed-off-by: BlackDex <[email protected]>
2024-08-09Update Rust to 1.80.1 (#4831)Daniel
2024-08-08Updated web-vault to v2024.6.2b (#4826)Mathijs van Veluw
2024-08-07Update crates, web-vault and fixes (#4823)Mathijs van Veluw
* Update crates, web-vault and fixes - Updated crates - Updated web-vault to v2024.6.2 This version is currently the latest version compatible with our API implementation. For newer versions we need more code updates to make it compatible. Thanks to @stefan0xC this version fixes #4628 - Added a small fix to prevent errors in the Vaultwarden and Client logs. The v2024.6.2 web-vault calls an endpoint with invalid arguments. If this happens we ignore the call and just return an Ok. - Added the bulk-collection endpoint (Though not yet available in v2024.6.2) Fixes #4628 * Prevent bulk remove collections to work
2024-07-25Update Rust, Crates and GHA (#4783)Mathijs van Veluw
- Update Rust to v1.80.0 - Updated GitHub Actions - Updated crates
2024-07-24Fix Dockerfile linter warnings (#4763)Daniel
- they seem to have started appearing with buildx v0.16.0 - skip lint check for FromPlatformFlagConstDisallowed and RedundantTargetPlatform
2024-07-10chore: Dockerfile to Remove port 3012 (#4725)Calvin Li
2024-07-08Update crates and web-vault (#4714)Mathijs van Veluw
- Updated the crates Removed the patch for mimalloc - Updated the web-vault to v2024.5.1b The reason for not updating to v2024.6.x is that there are several items not working correctly or need some more research.
2024-06-24Remove mimalloc workaround (#4606)Daniel
- libatomic linking for armv6 has been fixed in https://github.com/purpleprotocol/mimalloc_rust/commit/992c9da4c5afba7fbf4c5815c43c8f0fbd2a8da6
2024-06-19Update crates, web-vault and GHA (#4648)Mathijs van Veluw
- Updated all crates including Diesel and the new mysqlclient-sys - Updated the MSRV to v1.78 as that is what Diesel mandates - Added the mimalloc crate as a patch for now to fix armv6 static builds This probably makes #4606 possible - Updated web-vault to v2024.5.1 - Updated GitHub Actions Fixed an issue with the localhost images for extracting the musl binaries.
2024-06-16Update rust and remove unused header values (#4645)Daniel García
* Update rust and remove unused header values * Missed one unused var
2024-05-25Update Alpine to version 3.20 (#4583)Daniel
- needed to add double quotes, otherwise it was parsed as 3.2 instead of 3.20
2024-05-25Fix web-vault version in Docker(files/Settings) (#4575)Daniel
2024-05-19Optimize Dockerfiles (#4532)Daniel
Move some ARGs closer to the build stage (potentially improving caching) Remove redundant COPY commands Remove redundant RUN command Move CARGO_HOME's "&&" operator to the first line (improves consistency)
2024-05-19Update Rust, crates and web-vault (#4558)Mathijs van Veluw
* Update Rust and crates - Updated Rust to v1.78.0 - Updated crates * Update web-vault to v2024.5.0
2024-04-27Add extra (unsupported) container build arch's (#4524)Mathijs van Veluw
There was a PR (#4370) to add i686/i386 support for Vaultwarden. That specific PR was not a viable way of adding this. This PR adds extra architectures for Debian based containers which we will not support by default. Those images will not be build and pushed to our container registries. Added the following architectures: - linux/386 - linux/ppc64le - linux/s390x Again, there will be no major support for these architectures, but it will allow people who use these architectures to build a Debian based binary more easily
2024-04-27Update Crate and Rust (#4522)Mathijs van Veluw
* Update Crate and Rust - Updated all crates - Updated Rust to the latest patch version * Updated GitHub Actions
2024-04-06update web-vault to v2024.3.1 (new vertical layout) (#4468)Stefan Melmuk
* update web-vault to v2024.3.0 * update web-vault to v2024.3.1
2024-03-23Update Rust and crates (#4445)Mathijs van Veluw
- Updated Rust to v1.77.0 - Updated several crates The `reqwest` update included `trust-dns` > `hickory-dns` changes. Also, `reqwest` v0.12 is not working correctly for us, that is something to investigate. - Fixed a new clippy warning
2024-02-08Update Rust, crates and web-vault (#4328)Mathijs van Veluw
- Updated Rust to v1.76.0 - Updated crates - Updated web-vault to v2024.1.2b - Fixed some Clippy lints - Moved lint check configuration Cargo.toml - Fixed issue with Reset Password Enrollment when logged-in via device
2024-01-31Fix healthcheck when using .env file (#4299)1.30.3Mathijs van Veluw
It seems Debian based images see the `.env` file in the `pwd` path, but sourcing it via `. .env` breaks. It does work if you provide the full path `/.env`. Changed the default to `/.env`. Alpine does not have an issue with both ways.
2024-01-26Update crates, web-vault and GHA (#4275)Mathijs van Veluw
- Update GitHub Actions - Updated crates - Updated web-vault to v2024.1.2
2024-01-01Update Rust and Crates (#4211)Mathijs van Veluw
- Updated Rust to v1.75.0 - Updated all the crates - Fixed warning generated by latest version of Rust
2023-12-24Update web-vault to v2023.12.0 (#4201)Mathijs van Veluw
2023-12-09Fix the version string (#4153)Mathijs van Veluw
For some reason still not known, the `.git` directory was not copied into the container. I think buildkit (buildx) did this by default before, and stopped this with newer versions. This PR fixes this by also touching `build.rs` besides `src/main.rs`. This PR also updates Rust to v1.74.1 and some crates, including the latest version of Alpine 3.19. Fixes #4150
2023-12-09Several small fixes for open issues (#4143)Mathijs van Veluw
* Fix BWDC when re-run with cleared cache Using the BWDC with a cleared cache caused invited users to be converted to accepted users. The problem was a wrong check for the `restore` function. Fixes #4114 * Remove useless variable During some refactoring this seems to be overlooked. This variable gets filled but isn't used at all afterwards. Fixes #4105 * Check some `.git` paths to force a rebuild When a checked-out repo switches to a specific tag, and that tag does not have anything else changed in the files except the tag, it could happen that the build process doesn't see any changes, while it could be that the version string needs to be different. This commit ensures that if some specific paths are changed within the .git directory, cargo will be triggered to rebuild. Fixes #4087 * Do not delete dir on file delete Previously during a `delete_file` check we also tried to delete the parent directory and ignored all errors, like not being empty for example. Since this function is called `delete_file` and does not mention anything in regards to a directory i have removed that code and it will now only delete the file and leave the rest as-is. If this somehow is still needed or wanted, which i do not think we want, then we should create a new function. Fixes #4081 * Fix healthcheck when using an ENV file If someone is using a `.env` file or configured the `ENV_FILE` variable to use that as it's configuration, this was missed by the healthcheck. So, `DOMAIN` and `ROCKET_TLS` were not seen, and not used in these cases. This commit fixes this by checking for this file and if it exists, then it will load those variables first. Fixes #4112 * Add missing route While there was a function and a derive, this endpoint wasn't part of the routes. Since Bitwarden does have this endpoint ill add the route instead of deleting it. Fixes #4076 Fixes #4144 * Update crates to update the openssl crate Because of a bug in the openssl-sys crate we pinned the version to an older version. This issue has been fixed and was released 2 days ago. This commit updates the openssl crates including others. This should also fix the issues with building Vaultwarden using newer versions of LibreSSL. Fixes #4051
2023-12-04Update Rust, Crates, Profile and Actions (#4126)Mathijs van Veluw
- Updated Rust to v1.74.0 - Updated all crates (where possible) - Changed release profile to use * fat lto * 1 codegen-unit This should optimize a bit for speed and a lot for size ~15MB smaller - Updated Github actions to use caching for the bake process - Added a schedule to clean the cache every week to prevent stale Debian/Alpine base images - During the release action, the Alpine/static binaries are added as artifects. Later we could also automatically add them to the releases maybe. - Added CODEWONERS to prevent unchecked changes to github actions workflows
2023-11-15Update crates (#4074)1.30.1Mathijs van Veluw
* Remove another header for websocket connections * Fix small bake issue * Update crates Updated crates and adjusted code where needed. One major update is Rocket rc4, no need anymore (again) for crates.io patching. The only item still pending is openssl/openssl-sys for which we need to wait if https://github.com/sfackler/rust-openssl/pull/2094 will be merged. If, then we can remove the pinned versions for the openssl crate.
2023-11-07Fix missing alpine tag during buildx bake (#4043)Mathijs van Veluw
The bake recipt was missing the single `:alpine` tag for the alpine builds when we were releasing a `stable/latest` version of Vaultwarden. This PR fixes this by checking for those conditions and add the `:alpine` tag too. We will keep the `:latest-alpine` also, which i find even nicer then just `:alpine` Fixes #4035
2023-11-04Update web vault to 2023.10.0Daniel García
2023-10-23Container building changes (#3958)Mathijs van Veluw
* WIP: Container building changes * Small updates - Updated to rust 1.73.0 - Updated crates - Updated documentation - Added a bake.sh script to make baking easier * Update GitHub Actions Workflow - Updated workflow to use qemu and buildx bake In the future i would like to extract the alpine based binaries and add them as artifacts to the release. * Address review remarks and small updates - Addressed review remarks - Added `podman-bake.sh` script to build Vaultwarden with podman - Updated README - Updated crates - Added `VW_VERSION` support - Added annotations - Updated web-vault to v2023.9.1
2023-09-22Fix arm buildsBlackDex
Because of some changes in the packages of Debian we need to add an extra package to request it also to install
2023-09-01update web-vault to v2023.8.2Stefan Melmuk
2023-09-01Fix reference to rust-toolchain.toml in DockerDaniel García
2023-08-31Update Rust and CratesBlackDex
- Updated Rust to v1.72.0 - Updated all the crates Including a CVE https://github.com/dani-garcia/vaultwarden/security/dependabot/21 - Updated GitHub Workflows - Run `cargo fmt` which has some new fmt's - Moved from `rust-toolchain` to `rust-toolchain.toml`
2023-08-13build (deps): Bump Rust version and sync lockfileGeekCornerGH
2023-08-13feat (web vault): Bump web vault to v2023.7.1GeekCorner
2023-08-12Update images to Bookworm and PQ15BlackDex
This PR updates the base images to use Debian Bookworm as base image. Also the MUSL/Alpine builds now use OpenSSLv3 and PostgreSQL v15. The GHA Workflows are updated to use Ubuntu 22.04 to better match the versions of Debian Bookworm. Also: - Enabled spares crate registry - Updated workflow actions - Updated Rust to v1.71.0 - The rust-musl images now use musl v1.2.3 for the 32bit arch's if the Rust version is v1.71.0 or higher. The 64bit arch's already used musl v1.2.3. - Updated crates. Improves / Closes #3434
2023-06-04update web-vault to v2023.5.0Helmut K. C. Tessarek
2023-06-03Update Rust and CratesHelmut K. C. Tessarek
2023-05-12update web-vault to v2023.4.2Stefan Melmuk
2023-05-03Use fully qualified image names in DockerfileGitouche
2023-05-01Update web vault to v2023.4.0Daniel García
2023-04-24Update Rust and CratesBlackDex
- Updated Rust to v1.69.0 - Updated MSRV to v1.67.1 - Updated crates - Updated GitHub Actions