├── .rspec
├── .dockerignore
├── .gitignore
├── image
    ├── runit
    │   ├── nginx-term
    │   ├── memcached
    │   ├── nginx
    │   ├── nginx-log-forwarder
    │   └── redis
    ├── ruby_support
    │   ├── system-rvm-exec.sh
    │   ├── dpkg-control
    │   ├── install_ruby_utils.sh
    │   ├── finalize.sh
    │   ├── prepare.sh
    │   ├── pkuczynski-pubkey.asc
    │   ├── rvm-install.sh
    │   └── mpapis-pubkey.asc
    ├── config
    │   ├── memcached.conf
    │   ├── dpkg-only-english-locale.conf
    │   ├── 30_presetup_nginx.sh
    │   ├── 40_presetup_env.sh
    │   ├── nginx_main_d_default.conf
    │   ├── dpkg-nodocs.conf
    │   └── nginx.conf
    ├── update_baseimage.sh
    ├── install_base.sh
    ├── Dockerfile
    ├── Dockerfile.base
    ├── memcached.sh
    ├── redis.sh
    ├── insecure_key.pub
    ├── finalize.sh
    ├── python.sh
    ├── utilities.sh
    ├── jruby-9.4.14.0.sh
    ├── jruby-10.0.2.0.sh
    ├── enable_repos.sh
    ├── prepare.sh
    ├── nodejs.sh
    ├── ruby-3.3.10.sh
    ├── ruby-3.4.8.sh
    ├── ruby-3.2.9.sh
    ├── install_image.sh
    ├── buildconfig
    ├── insecure_key
    └── nginx-passenger.sh
├── Gemfile
├── .editorconfig
├── test
    ├── shared
    │   ├── nodejs_image_spec.rb
    │   ├── base_system_spec.rb
    │   └── ruby_image_spec.rb
    ├── nodejs_image_spec.rb
    ├── customizable_image_spec.rb
    ├── full_image_spec.rb
    ├── spec_helper.rb
    └── single_ruby_images_spec.rb
├── Gemfile.lock
├── LICENSE.txt
├── Vagrantfile
├── CONTRIBUTING.md
├── CODE_OF_CONDUCT.md
├── .github
    └── workflows
    │   └── main.yml
├── Makefile
├── CHANGELOG.md
└── README.md


/.rspec:
--------------------------------------------------------------------------------
1 | --format d
2 | --color
3 | 


--------------------------------------------------------------------------------
/.dockerignore:
--------------------------------------------------------------------------------
1 | Dockerfile
2 | Dockerfile.base
3 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | .DS_Store
2 | .vagrant
3 | *_image
4 | 


--------------------------------------------------------------------------------
/image/runit/nginx-term:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | set -e
3 | 
4 | sv q nginx
5 | 


--------------------------------------------------------------------------------
/image/ruby_support/system-rvm-exec.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | exec /usr/local/rvm/bin/rvm-exec "$@"
3 | 


--------------------------------------------------------------------------------
/Gemfile:
--------------------------------------------------------------------------------
1 | source 'https://rubygems.org'
2 | 
3 | gem 'rake'
4 | gem 'rspec-core'
5 | gem 'rspec-expectations'
6 | 


--------------------------------------------------------------------------------
/image/config/memcached.conf:
--------------------------------------------------------------------------------
1 | # These arguments are passed to the memcached daemon.
2 | MEMCACHED_OPTS="-l 127.0.0.1"
3 | 


--------------------------------------------------------------------------------
/image/config/dpkg-only-english-locale.conf:
--------------------------------------------------------------------------------
1 | path-exclude /usr/share/locale/*
2 | path-include /usr/share/locale/locale.alias
3 | path-include /usr/share/locale/en*
4 | 


--------------------------------------------------------------------------------
/image/config/30_presetup_nginx.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | if [[ "$PASSENGER_APP_ENV" != "" ]]; then
3 | 	echo "passenger_app_env '$PASSENGER_APP_ENV';" > /etc/nginx/conf.d/00_app_env.conf
4 | fi
5 | 


--------------------------------------------------------------------------------
/image/runit/memcached:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | set -e
3 | . /etc/memcached.conf
4 | echo "*** Running /usr/bin/memcached $MEMCACHED_OPTS"
5 | exec chpst -u memcache /usr/bin/memcached $MEMCACHED_OPTS >>/var/log/memcached.log 2>&1
6 | 


--------------------------------------------------------------------------------
/image/update_baseimage.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | set -e
3 | source /pd_build/buildconfig
4 | 
5 | header "Installing baseimage updates"
6 | 
7 | run apt-get -y -o Dpkg::Options::="--force-confdef" -o Dpkg::Options::="--force-confold" upgrade
8 | 


--------------------------------------------------------------------------------
/image/runit/nginx:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | set -e
3 | # We ensure nginx-log-forwarder is running first so it catches the first log-lines
4 | sv restart /etc/service/nginx-log-forwarder
5 | echo "*** Running /usr/sbin/nginx"
6 | exec /usr/sbin/nginx
7 | 


--------------------------------------------------------------------------------
/image/install_base.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | run /pd_build/enable_repos.sh
 6 | run /pd_build/update_baseimage.sh
 7 | run /pd_build/prepare.sh
 8 | run /pd_build/utilities.sh
 9 | run /pd_build/ruby_support/prepare.sh
10 | 
11 | cleanup_apt
12 | 


--------------------------------------------------------------------------------
/image/runit/nginx-log-forwarder:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | # Forwards the Nginx error.log to the Docker logs.
3 | set -e
4 | if [[ ! -e /var/log/nginx/error.log ]]; then
5 | 	touch /var/log/nginx/error.log
6 | fi
7 | echo "*** Running tail -F /var/log/nginx/error.log"
8 | exec tail -F /var/log/nginx/error.log
9 | 


--------------------------------------------------------------------------------
/image/config/40_presetup_env.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | SETUP_ENV="RAILS_ENV RACK_ENV WSGI_ENV NODE_ENV"
 4 | SETUP_VALUE=${PASSENGER_APP_ENV:-production}
 5 | 
 6 | for VAR in ${SETUP_ENV}; do
 7 |   if [ -z ${!VAR:+x} ]; then
 8 |     echo ${SETUP_VALUE} > /etc/container_environment/${VAR}
 9 |   fi
10 | done
11 | 


--------------------------------------------------------------------------------
/image/config/nginx_main_d_default.conf:
--------------------------------------------------------------------------------
1 | # By default, Nginx removes all environment variables inherited from its
2 | # parent process, except for the TZ variable. This is documented at
3 | # http://nginx.org/en/docs/ngx_core_module.html#env
4 | # Because users usually want to inherit PATH, we allow it here
5 | # explicitly.
6 | env PATH;
7 | 


--------------------------------------------------------------------------------
/.editorconfig:
--------------------------------------------------------------------------------
 1 | # http://EditorConfig.org
 2 | 
 3 | root = true
 4 | 
 5 | [Gemfile]
 6 | indent_style = space
 7 | indent_size = 2
 8 | trim_trailing_whitespace = true
 9 | 
10 | [*.rb]
11 | indent_style = space
12 | indent_size = 2
13 | trim_trailing_whitespace = true
14 | 
15 | [*.sh]
16 | indent_style = tab
17 | trim_trailing_whitespace = true
18 | 


--------------------------------------------------------------------------------
/image/runit/redis:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | set -e
 3 | 
 4 | RUNDIR=/var/run/redis
 5 | PIDFILE=$RUNDIR/redis.pid
 6 | 
 7 | mkdir -p $RUNDIR
 8 | touch $PIDFILE
 9 | chown redis:redis $RUNDIR $PIDFILE
10 | chmod 755 $RUNDIR
11 | 
12 | echo "*** Running /usr/bin/redis-server /etc/redis/redis.conf"
13 | exec chpst -u redis /usr/bin/redis-server /etc/redis/redis.conf
14 | 


--------------------------------------------------------------------------------
/image/Dockerfile:
--------------------------------------------------------------------------------
 1 | # syntax=docker/dockerfile:1.4
 2 | ARG ARCH
 3 | ARG NAME
 4 | FROM $NAME-base:latest-$ARCH
 5 | MAINTAINER Phusion <info@phusion.nl>
 6 | 
 7 | ADD . /pd_build
 8 | 
 9 | ARG ARCH
10 | ARG http_proxy
11 | RUN --mount=type=cache,target=/build_cache \
12 |     /usr/bin/nice /pd_build/install_image.sh
13 | 
14 | CMD ["/sbin/my_init"]
15 | EXPOSE 80 443
16 | 


--------------------------------------------------------------------------------
/test/shared/nodejs_image_spec.rb:
--------------------------------------------------------------------------------
 1 | require_relative '../spec_helper'
 2 | 
 3 | shared_examples_for 'a Node.js image' do
 4 |   it 'includes Node.js' do
 5 |     expect { capture_command_in_container('node -v') }.not_to raise_error
 6 |   end
 7 | 
 8 |   it 'includes NPM' do
 9 |     expect { capture_command_in_container('npm -v') }.not_to raise_error
10 |   end
11 | end
12 | 


--------------------------------------------------------------------------------
/image/Dockerfile.base:
--------------------------------------------------------------------------------
 1 | # syntax=docker/dockerfile:1.2
 2 | FROM phusion/baseimage:noble-1.0.2
 3 | MAINTAINER Phusion <info@phusion.nl>
 4 | 
 5 | ADD . /pd_build
 6 | 
 7 | ARG ARCH
 8 | ARG http_proxy
 9 | RUN --mount=type=cache,target=/build_cache \
10 |     rm -rf "/build_cache/${ARCH}" && \
11 |     /usr/bin/nice /pd_build/install_base.sh && \
12 |     rm -rf /pd_build
13 | 


--------------------------------------------------------------------------------
/image/config/dpkg-nodocs.conf:
--------------------------------------------------------------------------------
 1 | path-exclude /usr/share/doc/*
 2 | # we need to keep copyright files for legal reasons
 3 | path-include /usr/share/doc/*/copyright
 4 | path-exclude /usr/share/man/*
 5 | path-exclude /usr/share/groff/*
 6 | path-exclude /usr/share/info/*
 7 | # lintian stuff is small, but really unnecessary
 8 | path-exclude /usr/share/lintian/*
 9 | path-exclude /usr/share/linda/*
10 | 


--------------------------------------------------------------------------------
/image/memcached.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | header "Installing memcached..."
 6 | 
 7 | run apt-get update
 8 | run apt-get install -y memcached
 9 | run mkdir /etc/service/memcached
10 | run cp /pd_build/runit/memcached /etc/service/memcached/run
11 | run touch /etc/service/memcached/down
12 | run cp /pd_build/config/memcached.conf /etc/memcached.conf
13 | 


--------------------------------------------------------------------------------
/image/redis.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | header "Installing Redis..."
 6 | 
 7 | ## Install Redis.
 8 | run apt-get update
 9 | run apt-get install -y redis-server libhiredis-dev
10 | run mkdir /etc/service/redis
11 | run cp /pd_build/runit/redis /etc/service/redis/run
12 | run cp /pd_build/config/redis.conf /etc/redis/redis.conf
13 | run touch /etc/service/redis/down
14 | 


--------------------------------------------------------------------------------
/image/insecure_key.pub:
--------------------------------------------------------------------------------
1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDVmzBG5v7cO9IScGLIzlhGlHNFhXzy87VfaPzru7qnIIdQ1e9FEKvtqEws8hVixnCUdviwX5lvcMk4Ef4Tbrmj3dyF0zFtYbjiTSyl/XQlF68DQlc2sTAdHy96wJHvh7ky511tKJzzyWwSqeef4WjeVK28TqcGnq1up0S7saFO0dJh6OfDAg2cDmhyweR3VgT0vZJyrDV7hte95MBCdK+Gp7fdCyEZcWm3S1DBFaeBqHzzt/Y/njAVKbYL9TIVPum8iMg0rMiLi9ShfP+dT5Xud5Oa3dcN2OWhiDfJw5pfhFJWd44cJ/uGRwQpvNs/PNKsYABhgLlTMUH4iawhu1Xb baseimage-docker-insecure-key
2 | 


--------------------------------------------------------------------------------
/Gemfile.lock:
--------------------------------------------------------------------------------
 1 | GEM
 2 |   remote: https://rubygems.org/
 3 |   specs:
 4 |     diff-lcs (1.4.4)
 5 |     rake (13.0.6)
 6 |     rspec-core (3.10.1)
 7 |       rspec-support (~> 3.10.0)
 8 |     rspec-expectations (3.10.1)
 9 |       diff-lcs (>= 1.2.0, < 2.0)
10 |       rspec-support (~> 3.10.0)
11 |     rspec-support (3.10.2)
12 | 
13 | PLATFORMS
14 |   ruby
15 | 
16 | DEPENDENCIES
17 |   rake
18 |   rspec-core
19 |   rspec-expectations
20 | 
21 | BUNDLED WITH
22 |    1.17.3
23 | 


--------------------------------------------------------------------------------
/test/nodejs_image_spec.rb:
--------------------------------------------------------------------------------
 1 | require_relative 'spec_helper'
 2 | require_relative 'shared/base_system_spec'
 3 | require_relative 'shared/nodejs_image_spec'
 4 | 
 5 | RSpec.describe 'passenger-nodejs image' do
 6 |   before(:all) do
 7 |     @container_id = capture_command(
 8 |       "docker run -d phusion/passenger-nodejs:#{VERSION} sleep 99999").strip
 9 |   end
10 | 
11 |   after(:all) do
12 |     run("docker rm -f #{@container_id} >/dev/null")
13 |   end
14 | 
15 |   let(:jruby_dev_arg) { nil }
16 | 
17 |   include_examples 'a base system'
18 |   include_examples 'a Node.js image'
19 | end
20 | 


--------------------------------------------------------------------------------
/image/finalize.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | header "Finalizing..."
 6 | 
 7 | if [[ -e /usr/local/rvm ]]; then
 8 | 	run /usr/local/rvm/bin/rvm cleanup all
 9 | fi
10 | 
11 | run apt-get remove -y autoconf automake rustc
12 | run apt-get autoremove -y
13 | 
14 | if [[ "$final" = 1 ]]; then
15 | 	run rm -rf /pd_build
16 | else
17 | 	run rm -f /pd_build/{install,enable_repos,prepare,nginx-passenger,finalize,install_base,install_image,update_baseimage,utilities}.sh
18 | 	run rm -f /pd_build/{Dockerfile,Dockerfile.base,insecure_key*}
19 | fi
20 | rm -rf /bd_build
21 | 


--------------------------------------------------------------------------------
/image/ruby_support/dpkg-control:
--------------------------------------------------------------------------------
 1 | Source: ruby-fake
 2 | Section: ruby
 3 | Priority: optional
 4 | Maintainer: Unmaintained <noreply@debian.org>
 5 | Build-Depends: debhelper (>= 9~)
 6 | Standards-Version: 3.9.6
 7 | Homepage: https://github.com/phusion/passenger-docker
 8 | Package: ruby-fake
 9 | Version: 1.0.0
10 | Architecture: all
11 | Replaces: jruby1.0, jruby1.1, jruby1.2
12 | Provides: ruby-interpreter, rubygems, rubygems-integration, librack-ruby, ruby-rack
13 | Description: Ruby interpreter (fake package)
14 |  This is a fake package that does not contain any files; it exists just to
15 |  satisfy dependencies.
16 | 


--------------------------------------------------------------------------------
/image/python.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | VERSION=${1:-3.12}
 6 | 
 7 | header "Installing Python ${VERSION}...."
 8 | 
 9 | ## Install Python.
10 | rm -f /usr/bin/python
11 | if [[ ${VERSION} == "3.12" ]]; then
12 | 	# baseimage already has 3.12, so just install dev support
13 | 	minimal_apt_get_install python3-venv python3-dev
14 | else
15 | 	# otherwise install the deadsnakes PPA and install from there
16 | 	apt_add_ppa ppa:deadsnakes/ppa
17 | 	minimal_apt_get_install "python${VERSION}" "python${VERSION}-dev" "python${VERSION}-venv"
18 | fi
19 | ln -s "/usr/bin/python${VERSION}" /usr/bin/python
20 | 


--------------------------------------------------------------------------------
/image/utilities.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | ## Many Ruby gems and NPM packages contain native extensions and require a compiler.
 6 | run minimal_apt_get_install build-essential
 7 | ## Bundler has to be able to pull dependencies from git.
 8 | run minimal_apt_get_install git
 9 | ## JRuby94 at least requires netbase, and other client stuff must.
10 | run minimal_apt_get_install netbase
11 | ## utilities needed to add apt ppas
12 | run minimal_apt_get_install curl gnupg ca-certificates
13 | ## almost everyone needs file, and it sort of randomly gets pulled in during
14 | ## the build process anyway
15 | run minimal_apt_get_install file
16 | 


--------------------------------------------------------------------------------
/image/jruby-9.4.14.0.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | RVM_ID=$(basename "$0" | sed 's/.sh$//')
 6 | 
 7 | run minimal_apt_get_install openjdk-17-jre-headless
 8 | run dpkg-reconfigure ca-certificates-java
 9 | 
10 | header "Installing $RVM_ID"
11 | run /usr/local/rvm/bin/rvm install $RVM_ID
12 | run /usr/local/rvm/bin/rvm-exec $RVM_ID@global gem install $DEFAULT_RUBY_GEMS --no-document
13 | run create_rvm_wrapper_script jruby9.4 $RVM_ID ruby
14 | run create_rvm_wrapper_script jruby $RVM_ID ruby
15 | # Make passenger_system_ruby work.
16 | run create_rvm_wrapper_script ruby3.1 $RVM_ID ruby
17 | run /pd_build/ruby_support/install_ruby_utils.sh
18 | run /pd_build/ruby_support/finalize.sh
19 | 


--------------------------------------------------------------------------------
/image/jruby-10.0.2.0.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | RVM_ID=$(basename "$0" | sed 's/.sh$//')
 6 | 
 7 | run minimal_apt_get_install openjdk-21-jre-headless
 8 | run dpkg-reconfigure ca-certificates-java
 9 | 
10 | header "Installing $RVM_ID"
11 | run /usr/local/rvm/bin/rvm install $RVM_ID
12 | run /usr/local/rvm/bin/rvm-exec $RVM_ID@global gem install $DEFAULT_RUBY_GEMS --no-document
13 | run create_rvm_wrapper_script jruby10.0 $RVM_ID ruby
14 | run create_rvm_wrapper_script jruby $RVM_ID ruby
15 | # Make passenger_system_ruby work.
16 | run create_rvm_wrapper_script ruby3.4 $RVM_ID ruby
17 | run /pd_build/ruby_support/install_ruby_utils.sh
18 | run /pd_build/ruby_support/finalize.sh
19 | 


--------------------------------------------------------------------------------
/image/enable_repos.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | header "Preparing APT repositories"
 6 | 
 7 | ## Phusion Passenger
 8 | run apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 561F9B9CAC40B2F7
 9 | if [[ "$PASSENGER_ENTERPRISE" ]]; then
10 | 	echo "+ Enabling Passenger Enterprise APT repo"
11 | 	echo deb https://download:$PASSENGER_ENTERPRISE_DOWNLOAD_TOKEN@www.phusionpassenger.com/enterprise_apt $(lsb_release -cs) main > /etc/apt/sources.list.d/passenger.list
12 | else
13 | 	echo "+ Enabling Passenger APT repo"
14 | 	echo deb https://oss-binaries.phusionpassenger.com/apt/passenger $(lsb_release -cs) main > /etc/apt/sources.list.d/passenger.list
15 | fi
16 | 
17 | run apt-get update
18 | 


--------------------------------------------------------------------------------
/image/prepare.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | header "Performing miscellaneous preparation"
 6 | 
 7 | ## Ensure that docs and non-English locales are not installed.
 8 | run cp /pd_build/config/dpkg-nodocs.conf /etc/dpkg/dpkg.cfg.d/01_nodoc
 9 | run cp /pd_build/config/dpkg-only-english-locale.conf /etc/dpkg/dpkg.cfg.d/01_only_english_locale
10 | 
11 | ## Create a user for the web app.
12 | run addgroup --gid 9999 app
13 | run adduser --uid 9999 --gid 9999 --disabled-password --gecos "Application" app
14 | run usermod -L app
15 | run mkdir -p /home/app/.ssh
16 | run chmod 700 /home/app/.ssh
17 | run chown app:app /home/app/.ssh
18 | 
19 | ## Fix home dir permissions so nginx can enter it by default
20 | run chmod 755 /home/app
21 | 
22 | ## Create a /usr/bin/python for safety
23 | ln -s /usr/bin/python3.12 /usr/bin/python
24 | 


--------------------------------------------------------------------------------
/test/shared/base_system_spec.rb:
--------------------------------------------------------------------------------
 1 | require_relative '../spec_helper'
 2 | 
 3 | shared_examples_for 'a base system' do
 4 |   it 'includes Passenger' do
 5 |     expect(capture_command_in_container('passenger -v')).to match(/Phusion Passenger/)
 6 |   end
 7 | 
 8 |   it 'includes Nginx' do
 9 |     expect(capture_command_in_container('nginx -v')).to match(/nginx version/)
10 |   end
11 | 
12 |   specify 'passenger_system_ruby works' do
13 |     expect(capture_command_in_container("passenger_system_ruby #{jruby_dev_arg} -v")).to match(/ruby/)
14 |   end
15 | 
16 |   specify 'passenger_free_ruby works' do
17 |     expect(capture_command_in_container("passenger_free_ruby #{jruby_dev_arg} -v")).to match(/ruby/)
18 |   end
19 | 
20 |   specify 'passenger-config validate-install succeeds' do
21 |     expect(test_command_in_container('passenger-config validate-install --auto')).to be_truthy
22 |   end
23 | end
24 | 


--------------------------------------------------------------------------------
/image/ruby_support/install_ruby_utils.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | ## The Rails asset compiler requires a Javascript runtime.
 6 | if [[ ! -e /usr/bin/node ]]; then
 7 | 	/pd_build/nodejs.sh
 8 | fi
 9 | 
10 | ## Ruby pretty much requires tzinfo
11 | if [[ ! -e /usr/sbin/tzconfig ]]; then
12 | 	run minimal_apt_get_install tzdata
13 | fi
14 | 
15 | ## Install development headers for native libraries that tend to be used often by Ruby gems.
16 | if ! [[ -e /tmp/ruby_native_libs_installed ]]; then
17 | 	## For nokogiri.
18 | 	run minimal_apt_get_install libxml2-dev libxslt1-dev
19 | 	## For mysql and mysql2.
20 | 	run minimal_apt_get_install libmysqlclient-dev
21 | 	## For sqlite3.
22 | 	run minimal_apt_get_install libsqlite3-dev
23 | 	## For postgres and pg.
24 | 	run minimal_apt_get_install libpq-dev
25 | 	## For all kinds of stuff.
26 | 	run minimal_apt_get_install zlib1g-dev
27 | 
28 | 	touch /tmp/ruby_native_libs_installed
29 | fi
30 | 


--------------------------------------------------------------------------------
/test/shared/ruby_image_spec.rb:
--------------------------------------------------------------------------------
 1 | require_relative '../spec_helper'
 2 | 
 3 | shared_examples_for 'a Ruby image' do
 4 |   it 'includes the generic Ruby command' do
 5 |     expect(capture_command_in_container("ruby #{jruby_dev_arg} -v")).to match(/ruby/)
 6 |   end
 7 | 
 8 |   it 'includes Node.js' do
 9 |     expect { capture_command_in_container('node -v') }.not_to raise_error
10 |   end
11 | 
12 |   it 'includes RubyGems' do
13 |     expect { capture_command_in_container('gem -v') }.not_to raise_error
14 |   end
15 | 
16 |   it 'includes Bundler' do
17 |     expect(capture_command_in_container('bundle -v')).to match(/Bundler/)
18 |   end
19 | 
20 |   it 'includes Rake' do
21 |     expect(capture_command_in_container('rake -V')).to match(/rake/)
22 |   end
23 | end
24 | 
25 | shared_examples_for 'a Ruby image containing JRuby' do
26 |   it 'includes the generic JRuby command' do
27 |     expect(capture_command_in_container('jruby --dev -v')).to match(/jruby/)
28 |   end
29 | end
30 | 


--------------------------------------------------------------------------------
/image/nodejs.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | set -x
 5 | 
 6 | VERSION=${1:-22}
 7 | if ( ! egrep -q nodesource.gpg /etc/apt/sources.list.d/nodesource.list ); then
 8 | 	## Install Node.js (also needed for Rails asset compilation)
 9 | 
10 | 	header "Installing NodeJS ${VERSION}"
11 | 
12 | 	mkdir -p /etc/apt/keyrings
13 | 	curl -fsSL https://deb.nodesource.com/gpgkey/nodesource-repo.gpg.key | gpg --batch --dearmor -o /etc/apt/keyrings/nodesource.gpg
14 | 	echo "deb [signed-by=/etc/apt/keyrings/nodesource.gpg] https://deb.nodesource.com/node_$VERSION.x nodistro main" | tee /etc/apt/sources.list.d/nodesource.list
15 | 	apt-get update
16 | 
17 | 	minimal_apt_get_install nodejs
18 | 
19 | 	echo "+ Updating npm"
20 | 	run npm update npm -g || ( cat /root/.npm/_logs/*-debug.log && false )
21 | 	if [[ ! -e /usr/bin/node ]]; then
22 | 		ln -s /usr/bin/nodejs /usr/bin/node
23 | 	fi
24 | 
25 | 	## create corepack command symlinks (yarn, etc)
26 | 	corepack enable
27 | fi
28 | 


--------------------------------------------------------------------------------
/image/ruby-3.3.10.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | RVM_ID=$(basename "$0" | sed 's/.sh$//')
 6 | 
 7 | header "Installing $RVM_ID"
 8 | 
 9 | run mkdir -p "/build_cache/${ARCH}"
10 | if [[ -e "/build_cache/${ARCH}/${RVM_ID}.tar.bz2" ]]; then
11 | 	# use cached ruby if present
12 | 	run /usr/local/rvm/bin/rvm mount "/build_cache/${ARCH}/${RVM_ID}.tar.bz2"
13 | else
14 | 	# otherwise build one
15 | 	run minimal_apt_get_install rustc # For compiling Ruby with YJIT
16 | 	MAKEFLAGS=-j$(nproc) run /usr/local/rvm/bin/rvm install $RVM_ID --disable-cache || ( cat /usr/local/rvm/log/*${RVM_ID}*/*.log && false )
17 | 	run cd "/build_cache/${ARCH}"
18 | 	run /usr/local/rvm/bin/rvm prepare "${RVM_ID}"
19 | 	run cd /
20 | fi
21 | 
22 | run /usr/local/rvm/bin/rvm-exec $RVM_ID@global gem install $DEFAULT_RUBY_GEMS --no-document
23 | # Make passenger_system_ruby work.
24 | run create_rvm_wrapper_script ruby3.3 $RVM_ID ruby
25 | run /pd_build/ruby_support/install_ruby_utils.sh
26 | run /pd_build/ruby_support/finalize.sh
27 | 


--------------------------------------------------------------------------------
/image/ruby-3.4.8.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | RVM_ID=$(basename "$0" | sed 's/.sh$//')
 6 | 
 7 | header "Installing $RVM_ID"
 8 | 
 9 | run mkdir -p "/build_cache/${ARCH}"
10 | if [[ -e "/build_cache/${ARCH}/${RVM_ID}.tar.bz2" ]]; then
11 | 	# use cached ruby if present
12 | 	run /usr/local/rvm/bin/rvm mount "/build_cache/${ARCH}/${RVM_ID}.tar.bz2"
13 | else
14 | 	# otherwise build one
15 | 	run minimal_apt_get_install rustc # For compiling Ruby with YJIT
16 | 	MAKEFLAGS=-j$(nproc) run /usr/local/rvm/bin/rvm install $RVM_ID --disable-cache || ( cat /usr/local/rvm/log/*${RVM_ID}*/*.log && false )
17 | 	run cd "/build_cache/${ARCH}"
18 | 	run /usr/local/rvm/bin/rvm prepare "${RVM_ID}"
19 | 	run cd /
20 | fi
21 | 
22 | run /usr/local/rvm/bin/rvm-exec $RVM_ID@global gem install $DEFAULT_RUBY_GEMS --no-document
23 | # Make passenger_system_ruby work.
24 | run create_rvm_wrapper_script ruby3.4 $RVM_ID ruby
25 | run /pd_build/ruby_support/install_ruby_utils.sh
26 | run /pd_build/ruby_support/finalize.sh
27 | 


--------------------------------------------------------------------------------
/LICENSE.txt:
--------------------------------------------------------------------------------
 1 | Copyright (c) 2013-2015 Phusion Holding B.V.
 2 | 
 3 | Permission is hereby granted, free of charge, to any person obtaining a copy
 4 | of this software and associated documentation files (the "Software"), to deal
 5 | in the Software without restriction, including without limitation the rights
 6 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 7 | copies of the Software, and to permit persons to whom the Software is
 8 | furnished to do so, subject to the following conditions:
 9 | 
10 | The above copyright notice and this permission notice shall be included in
11 | all copies or substantial portions of the Software.
12 | 
13 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
14 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
15 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
16 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
17 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
18 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
19 | THE SOFTWARE.


--------------------------------------------------------------------------------
/image/ruby-3.2.9.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | RVM_ID=$(basename "$0" | sed 's/.sh$//')
 6 | 
 7 | ## For readline (rvm doesn't always get current package names)
 8 | run minimal_apt_get_install libncurses6 libncursesw6 ncurses-base libncurses-dev
 9 | 
10 | header "Installing $RVM_ID"
11 | 
12 | run mkdir -p "/build_cache/${ARCH}"
13 | if [[ -e "/build_cache/${ARCH}/${RVM_ID}.tar.bz2" ]]; then
14 | 	# use cached ruby if present
15 | 	run /usr/local/rvm/bin/rvm mount "/build_cache/${ARCH}/${RVM_ID}.tar.bz2"
16 | else
17 | 	# otherwise build one
18 | 	run minimal_apt_get_install rustc # For compiling Ruby with YJIT
19 | 	MAKEFLAGS=-j$(nproc) run /usr/local/rvm/bin/rvm install $RVM_ID --disable-cache || ( cat /usr/local/rvm/log/*${RVM_ID}*/*.log && false )
20 | 	run cd "/build_cache/${ARCH}"
21 | 	run /usr/local/rvm/bin/rvm prepare "${RVM_ID}"
22 | 	run cd /
23 | fi
24 | 
25 | run /usr/local/rvm/bin/rvm-exec $RVM_ID@global gem install $DEFAULT_RUBY_GEMS --no-document
26 | # Make passenger_system_ruby work.
27 | run create_rvm_wrapper_script ruby3.2 $RVM_ID ruby
28 | run /pd_build/ruby_support/install_ruby_utils.sh
29 | run /pd_build/ruby_support/finalize.sh
30 | 


--------------------------------------------------------------------------------
/image/install_image.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | # base cleans up apt before here now
 6 | run apt-get update
 7 | 
 8 | if [[ "$ruby32"		= 1 ]]; then run /pd_build/ruby-3.2.*.sh;	fi
 9 | if [[ "$ruby33"		= 1 ]]; then run /pd_build/ruby-3.3.*.sh;	fi
10 | if [[ "$ruby34"		= 1 ]]; then run /pd_build/ruby-3.4.*.sh;	fi
11 | if [[ "$ruby35"		= 1 ]]; then run /pd_build/ruby-3.5.*.sh;	fi
12 | if [[ "$jruby94"	= 1 ]]; then run /pd_build/jruby-9.4.*.sh;	fi
13 | if [[ "$jruby100"	= 1 ]]; then run /pd_build/jruby-10.0.*.sh;	fi
14 | if [[ "$nodejs"		= 1 ]]; then run /pd_build/nodejs.sh;		fi
15 | if [[ "$redis"		= 1 ]]; then run /pd_build/redis.sh;		fi
16 | if [[ "$memcached"	= 1 ]]; then run /pd_build/memcached.sh;	fi
17 | if [[ "$python310"	= 1 ]]; then run /pd_build/python.sh 3.10;	fi
18 | if [[ "$python311"	= 1 ]]; then run /pd_build/python.sh 3.11;	fi
19 | if [[ "$python312"	= 1 ]]; then run /pd_build/python.sh 3.12;	fi
20 | if [[ "$python313"	= 1 ]]; then run /pd_build/python.sh 3.13;	fi
21 | if [[ "$python314"	= 1 ]]; then run /pd_build/python.sh 3.14;	fi
22 | 
23 | # Must be installed after Ruby, so that we don't end up with two Ruby versions.
24 | run /pd_build/nginx-passenger.sh
25 | 
26 | run /pd_build/finalize.sh
27 | 
28 | cleanup_apt
29 | 


--------------------------------------------------------------------------------
/image/ruby_support/finalize.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | ## Remove useless files.
 6 | rm -f /usr/local/rvm/rubies/*/lib/libruby-static.a
 7 | 
 8 | known_rubies=`/usr/local/rvm/bin/rvm list strings`
 9 | 
10 | ## Fix https://github.com/rvm/rvm/issues/5449
11 | for ver in $known_rubies; do
12 | 	sed -e 's/require/load/g' -i'' "/usr/local/rvm/rubies/$ver/.irbrc"
13 | done
14 | 
15 | ## Set the latest available Ruby as the default.
16 | function set_rvm_default()
17 | {
18 | 	local regex="$1"
19 | 	local match
20 | 
21 | 	match=$(grep "$regex" <<< $known_rubies | head -n 1)
22 | 	echo "+ Setting $match as default RVM Ruby"
23 | 	bash -lc "rvm use $match --default"
24 | }
25 | 
26 | # descending order is important, with jruby last
27 | if [[ "$known_rubies" =~ ruby-3\.4 ]]; then
28 | 	set_rvm_default ruby-3\.4
29 | elif [[ "$known_rubies" =~ ruby-3\.3 ]]; then
30 | 	set_rvm_default ruby-3\.3
31 | elif [[ "$known_rubies" =~ ruby-3\.2 ]]; then
32 | 	set_rvm_default ruby-3\.2
33 | elif [[ "$known_rubies" =~ jruby ]]; then
34 | 	set_rvm_default jruby
35 | fi
36 | 
37 | create_rvm_wrapper_script ruby default ruby
38 | create_rvm_wrapper_script gem default gem
39 | create_rvm_wrapper_script rake default rake
40 | create_rvm_wrapper_script bundle default bundle
41 | create_rvm_wrapper_script bundler default bundler
42 | 


--------------------------------------------------------------------------------
/test/customizable_image_spec.rb:
--------------------------------------------------------------------------------
 1 | require_relative 'spec_helper'
 2 | require_relative 'shared/base_system_spec'
 3 | require_relative 'shared/ruby_image_spec'
 4 | 
 5 | RSpec.describe 'passenger-customizable image' do
 6 |   before(:all) do
 7 |     @container_id = capture_command(
 8 |       "docker run -d phusion/passenger-customizable:#{VERSION} sleep 99999").strip
 9 |   end
10 | 
11 |   after(:all) do
12 |     run("docker rm -f #{@container_id} >/dev/null")
13 |   end
14 | 
15 |   let(:jruby_dev_arg) { nil }
16 | 
17 |   include_examples 'a base system'
18 | 
19 |   it "includes #{latest_mri_spec[:rvm_id]} as the default Ruby" do
20 |     about_regex =
21 |       /^#{Regexp.escape latest_mri_spec[:engine]}
22 |         [[:blank:]]
23 |         #{Regexp.escape latest_mri_spec[:version]} /x
24 |     expect(capture_command_in_container('ruby -v')).to match(about_regex)
25 |   end
26 | 
27 |   specify "#{latest_mri_spec[:rvm_id]} is installed through RVM" do
28 |     expect(capture_command_in_container('dpkg-query -S /usr/bin/ruby || true')).to match(/no path found/)
29 |     expect(test_command_in_container('grep "exec /usr/local/rvm" /usr/bin/ruby')).to be_truthy
30 |     expect(test_command_in_container('dpkg-query -L ruby-fake')).to be_truthy
31 |   end
32 | 
33 |   it 'includes exactly one Ruby' do
34 |     rubies = capture_command_in_container('/usr/local/rvm/bin/rvm list strings').split("\n")
35 |     expect(rubies.size).to eq(1)
36 |   end
37 | 
38 |   it 'does not include Node.js' do
39 |     expect(test_command_in_container('which node')).to be_falsey
40 |   end
41 | end
42 | 


--------------------------------------------------------------------------------
/image/ruby_support/prepare.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | 
 5 | if [[ -e /tmp/ruby_prepared ]]; then
 6 | 	exit
 7 | fi
 8 | 
 9 | echo "+ Updating /etc/gemrc"
10 | echo "gem: --no-document" > /etc/gemrc
11 | 
12 | ## Install RVM.
13 | export HOME=/root
14 | run gpg --import /pd_build/ruby_support/mpapis-pubkey.asc
15 | run gpg --import /pd_build/ruby_support/pkuczynski-pubkey.asc
16 | run bash /pd_build/ruby_support/rvm-install.sh stable
17 | echo "+ Updating /etc/profile.d/rvm_secure_path.sh"
18 | echo export rvmsudo_secure_path=1 > /etc/profile.d/rvm_secure_path.sh
19 | echo export rvm_silence_path_mismatch_check_flag=1 >> /etc/profile.d/rvm_silence_path_warning.sh
20 | run chmod +x /etc/profile.d/rvm_secure_path.sh
21 | run chmod +x /etc/profile.d/rvm_silence_path_warning.sh
22 | run usermod -a -G rvm app
23 | 
24 | # Note: we cannot install an 'rvm' script to /usr/bin because
25 | # then RVM will try to remove /usr/bin from PATH.
26 | run install -o root /pd_build/ruby_support/system-rvm-exec.sh /usr/bin/rvm-exec
27 | 
28 | # Ensure bash always loads the RVM environment.
29 | echo 'if [[ "$rvm_prefix" = "" ]]; then for file in /etc/profile.d/*rvm*; do source $file; done; fi' >> /etc/bash.bashrc
30 | 
31 | ## Install fake DPKG entry so that Passenger doesn't install Ruby from APT.
32 | echo "+ In /tmp:"
33 | cd /tmp
34 | run mkdir -p ruby-fake/DEBIAN
35 | run cp /pd_build/ruby_support/dpkg-control ruby-fake/DEBIAN/control
36 | run dpkg-deb -b ruby-fake .
37 | run dpkg -i ruby-fake_1.0.0_all.deb
38 | 
39 | ## Ensure that this script isn't run more than once.
40 | touch /tmp/ruby_prepared
41 | 


--------------------------------------------------------------------------------
/test/full_image_spec.rb:
--------------------------------------------------------------------------------
 1 | require_relative 'spec_helper'
 2 | require_relative 'shared/base_system_spec'
 3 | require_relative 'shared/ruby_image_spec'
 4 | require_relative 'shared/nodejs_image_spec'
 5 | 
 6 | RSpec.describe 'passenger-full image' do
 7 |   before(:all) do
 8 |     @container_id = capture_command(
 9 |       "docker run -d phusion/passenger-full:#{VERSION} sleep 99999").strip
10 |   end
11 | 
12 |   after(:all) do
13 |     run("docker rm -f #{@container_id} >/dev/null")
14 |   end
15 | 
16 |   let(:jruby_dev_arg) { nil }
17 | 
18 |   include_examples 'a base system'
19 |   include_examples 'a Ruby image'
20 |   include_examples 'a Ruby image containing JRuby'
21 |   include_examples 'a Node.js image'
22 | 
23 |   supported_rubies.each do |ruby_spec|
24 |     context "#{ruby_spec[:rvm_id]} support" do
25 |       let(:ruby_spec) { ruby_spec }
26 | 
27 |       it 'includes this Ruby' do
28 |         ruby_command = "rvm-exec #{ruby_spec[:rvm_id]} ruby #{jruby_dev_arg} -v"
29 |         expect(capture_command_in_container(ruby_command)).to \
30 |           match(/^#{Regexp.escape ruby_spec[:engine]}
31 |             [[:blank:]]
32 |             #{Regexp.escape ruby_spec[:major_minor_version]}[\. ]/x)
33 |       end
34 | 
35 |       it "includes the #{ruby_spec[:engine]}#{ruby_spec[:major_minor_version]} wrapper script" do
36 |         ruby_command = "#{ruby_spec[:engine]}#{ruby_spec[:major_minor_version]} #{jruby_dev_arg} -v"
37 |         expect(capture_command_in_container(ruby_command)).to \
38 |           match(/^#{Regexp.escape ruby_spec[:engine]}
39 |             [[:blank:]]
40 |             #{Regexp.escape ruby_spec[:major_minor_version]}[\. ]/x)
41 |       end
42 |     end
43 |   end
44 | end
45 | 


--------------------------------------------------------------------------------
/image/buildconfig:
--------------------------------------------------------------------------------
 1 | export LC_ALL=C
 2 | export DEBIAN_FRONTEND=noninteractive
 3 | 
 4 | DEFAULT_RUBY_GEMS='rake rack'
 5 | 
 6 | if perl -v >/dev/null 2>/dev/null; then
 7 | 	RESET=`perl -e 'print("\e[0m")'`
 8 | 	BOLD=`perl -e 'print("\e[1m")'`
 9 | 	YELLOW=`perl -e 'print("\e[33m")'`
10 | 	BLUE_BG=`perl -e 'print("\e[44m")'`
11 | elif python -V >/dev/null 2>/dev/null; then
12 | 	RESET=`echo 'import sys; sys.stdout.write("\033[0m")' | python`
13 | 	BOLD=`echo 'import sys; sys.stdout.write("\033[1m")' | python`
14 | 	YELLOW=`echo 'import sys; sys.stdout.write("\033[33m")' | python`
15 | 	BLUE_BG=`echo 'import sys; sys.stdout.write("\033[44m")' | python`
16 | else
17 | 	RESET=
18 | 	BOLD=
19 | 	YELLOW=
20 | 	BLUE_BG=
21 | fi
22 | 
23 | function minimal_apt_get_install()
24 | {
25 | 	if [[ ! -e /var/lib/apt/lists/lock ]]; then
26 | 		apt-get update
27 | 	fi
28 | 	apt-get install -y --no-install-recommends "$@"
29 | }
30 | 
31 | function apt_add_ppa()
32 | {
33 |     add-apt-repository -y $1
34 |     apt-get update
35 | }
36 | 
37 | function cleanup_apt()
38 | {
39 | 	run apt-get -y clean
40 | 	run rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/* /var/log/dpkg.log /var/log/apt/*
41 | }
42 | 
43 | function header()
44 | {
45 | 	local title="$1"
46 | 	echo "${BLUE_BG}${YELLOW}${BOLD}${title}${RESET}"
47 | 	echo "------------------------------------------"
48 | }
49 | 
50 | function run()
51 | {
52 | 	echo "+ $@"
53 | 	"$@"
54 | }
55 | 
56 | function create_rvm_wrapper_script()
57 | {
58 | 	local name="$1"
59 | 	local rvm_id="$2"
60 | 	local command="$3"
61 | 
62 |         rm -f "/usr/bin/$name"
63 | 
64 | 	echo "+ Creating /usr/bin/$name"
65 | 	echo '#!/bin/sh' >> "/usr/bin/$name"
66 | 	echo exec "/usr/local/rvm/wrappers/$rvm_id/$command" '"$@"' >> "/usr/bin/$name"
67 | 	chmod +x "/usr/bin/$name"
68 | }
69 | 


--------------------------------------------------------------------------------
/image/insecure_key:
--------------------------------------------------------------------------------
 1 | -----BEGIN RSA PRIVATE KEY-----
 2 | MIIEpQIBAAKCAQEA1ZswRub+3DvSEnBiyM5YRpRzRYV88vO1X2j867u6pyCHUNXv
 3 | RRCr7ahMLPIVYsZwlHb4sF+Zb3DJOBH+E265o93chdMxbWG44k0spf10JRevA0JX
 4 | NrEwHR8vesCR74e5MuddbSic88lsEqnnn+Fo3lStvE6nBp6tbqdEu7GhTtHSYejn
 5 | wwINnA5ocsHkd1YE9L2Scqw1e4bXveTAQnSvhqe33QshGXFpt0tQwRWngah887f2
 6 | P54wFSm2C/UyFT7pvIjINKzIi4vUoXz/nU+V7neTmt3XDdjloYg3ycOaX4RSVneO
 7 | HCf7hkcEKbzbPzzSrGAAYYC5UzFB+ImsIbtV2wIDAQABAoIBAQCjROxgtX2Gft7y
 8 | Ix8Ol9IXmK6HLCI2XZt7ovb3hFWGGzHy0qMBql2P2Tzoed1o038Hq+woe9n+uTnE
 9 | dtQ6rD6PByzgyW2VSsWTjCOdeJ5HH9Qw7ItXDZZWHBkhfYHOkXI4e2oI3qshGAtY
10 | NLALn7KVhioJriCyyaSM2KOLx5khcY+EJ1inQfwQJKqPGsdKc72liz07T8ifRj+m
11 | NLKtwrxlK3IXYfIdgLp/1pCKdrC80DhprMsD4xvNgq4pCR9jd4FoqM9t/Up5ppTm
12 | +p6A/bDwdIPh6cFFeyMP+G3+bTlW1Gg7RLoNCc6qh53WWVgEOQqdLHcQ8Ge4RLmb
13 | wLUmnRuRAoGBAPfXYfjpPZi8rPIQpux13Bs7xaS1/Fa9WqrEfrPptFdUVHeFCGY8
14 | qOUVewPviHdbs0nB71Ynk9/e96agFYijQdqTQzVnpYI4i8GiGk5gPMiB2UYeJ/HZ
15 | mIB3jtWyf6Z/GO0hJ1a6mX0XD3zJGNqFaiwqaYgdO1Fwh9gcH3O2lHyjAoGBANyj
16 | TGDBYHpxPu6uKcGreLd0SgO61PEj7aOSNfrBB2PK83A+zjZCFZRIWqjfrkxGG6+a
17 | 2WuHbEHuCGvu2V5juHYxbAD/38iV/lQl/2xyvN1eR/baE3US06qn6idxjnmeNZDy
18 | DelAx1RGuEvLX1TNAzDTxBwYyzH3W2RpKAUAD11pAoGAN38YJhd8Pn5JL68A4cQG
19 | dGau/BHwHjAqZEC5qmmzgzaT72tvlQ0SOLHVqOzzHt7+x45QnHciSqfvxnTkPYNp
20 | FJuTGhtKWV12FfbJczFjivZgg63u/d3eoy2iY0GkCdE98KNS3r3L7tHCGwwgr5Xe
21 | T2Nz3BHHnZXYJVEuzcddeocCgYEAnhDjPAHtw2p0Inxlb9kPb6aBC/ECcwtBSUkL
22 | IOy/BZA1HPnxs89eNFAtmwQ8k2o6lXDDSJTJSuZj5CdGVKfuU8aOUJz/Tm2eudxL
23 | A/+jLJhJyCBthhcJyx3m04E4CAr+5ytyKeP9qXPMvoghcNg66/UabuKYV+CU+feX
24 | 8xUa7NkCgYEAlX8HGvWMmiG+ZRFB//3Loy87bBxGlN0pUtCEScabZxdB2HkI9Vp7
25 | Yr67QIZ3y7T88Mhkwam54JCjiV+3TZbSyRMOjkqf7UhTCZC6hHNqdUnlpv4bJWeW
26 | i5Eun8ltYxBnemNc2QGxA4r+KCspi+pRvWNGzL3PFVBGXiLsmOMul78=
27 | -----END RSA PRIVATE KEY-----
28 | 


--------------------------------------------------------------------------------
/image/config/nginx.conf:
--------------------------------------------------------------------------------
 1 | user www-data;
 2 | worker_processes auto;
 3 | pid /run/nginx.pid;
 4 | daemon off;
 5 | 
 6 | ##
 7 | # Error logs
 8 | ##
 9 | 
10 | error_log /var/log/nginx/error.log;
11 | 
12 | include /etc/nginx/main.d/*.conf;
13 | include /etc/nginx/modules-enabled/*.conf;
14 | 
15 | events {
16 | 	worker_connections 768;
17 | 	# multi_accept on;
18 | }
19 | 
20 | http {
21 | 
22 | 	##
23 | 	# Basic Settings
24 | 	##
25 | 
26 | 	sendfile on;
27 | 	tcp_nopush on;
28 | 	tcp_nodelay on;
29 | 	keepalive_timeout 65;
30 | 	types_hash_max_size 2048;
31 | 	# server_tokens off;
32 | 
33 | 	# server_names_hash_bucket_size 64;
34 | 	# server_name_in_redirect off;
35 | 
36 | 	include /etc/nginx/mime.types;
37 | 	default_type application/octet-stream;
38 | 
39 | 	##
40 | 	# SSL Settings
41 | 	##
42 | 
43 | 	ssl_protocols TLSv1.2 TLSv1.3;
44 | 	ssl_prefer_server_ciphers on;
45 | 
46 | 	##
47 | 	# Access logs
48 | 	##
49 | 
50 | 	access_log /var/log/nginx/access.log;
51 | 
52 | 	##
53 | 	# Gzip Settings
54 | 	##
55 | 
56 | 	gzip on;
57 | 
58 | 	# gzip_vary on;
59 | 	# gzip_proxied any;
60 | 	# gzip_comp_level 6;
61 | 	# gzip_buffers 16 8k;
62 | 	# gzip_http_version 1.1;
63 | 	# gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
64 | 
65 | 	##
66 | 	# Virtual Host Configs
67 | 	##
68 | 
69 | 	include /etc/nginx/conf.d/*.conf;
70 | 	include /etc/nginx/sites-enabled/*;
71 | }
72 | 
73 | 
74 | #mail {
75 | #	# See sample authentication script at:
76 | #	# http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript
77 | #
78 | #	# auth_http localhost/auth.php;
79 | #	# pop3_capabilities "TOP" "USER";
80 | #	# imap_capabilities "IMAP4rev1" "UIDPLUS";
81 | #
82 | #	server {
83 | #		listen     localhost:110;
84 | #		protocol   pop3;
85 | #		proxy      on;
86 | #	}
87 | #
88 | #	server {
89 | #		listen     localhost:143;
90 | #		protocol   imap;
91 | #		proxy      on;
92 | #	}
93 | #}
94 | 


--------------------------------------------------------------------------------
/Vagrantfile:
--------------------------------------------------------------------------------
 1 | # -*- mode: ruby -*-
 2 | # vi: set ft=ruby :
 3 | ROOT = File.dirname(File.expand_path(__FILE__))
 4 | 
 5 | # Vagrantfile API/syntax version. Don't touch unless you know what you're doing!
 6 | VAGRANTFILE_API_VERSION = '2'
 7 | 
 8 | # Default env properties which can be overridden
 9 | # Example overrides:
10 | #   echo "ENV['BASEIMAGE_PATH'] ||= '../../phusion/baseimage-docker'   " >> ~/.vagrant.d/Vagrantfile
11 | #   echo "ENV['BASE_BOX_URL']   ||= 'd\:/dev/vm/vagrant/boxes/phusion/'" >> ~/.vagrant.d/Vagrantfile
12 | BASE_BOX_URL          = ENV['BASE_BOX_URL']          || 'https://oss-binaries.phusionpassenger.com/vagrant/boxes/latest/'
13 | VAGRANT_BOX_URL       = ENV['VAGRANT_BOX_URL']       || BASE_BOX_URL + 'ubuntu-14.04-amd64-vbox.box'
14 | VMWARE_BOX_URL        = ENV['VMWARE_BOX_URL']        || BASE_BOX_URL + 'ubuntu-14.04-amd64-vmwarefusion.box'
15 | PASSENGER_DOCKER_PATH = ENV['PASSENGER_DOCKER_PATH'] || '.'
16 | BASEIMAGE_PATH        = ENV['BASEIMAGE_PATH']        || '../baseimage-docker'
17 | DOCKERIZER_PATH       = ENV['DOCKERIZER_PATH']       || '../dockerizer'
18 | 
19 | $script = <<SCRIPT
20 | set -ex
21 | wget -q -O - https://get.docker.io/gpg | apt-key add -
22 | echo deb http://get.docker.io/ubuntu docker main > /etc/apt/sources.list.d/docker.list
23 | apt-get update -qq
24 | apt-get install -q -y --force-yes lxc-docker
25 | usermod -a -G docker vagrant
26 | docker version
27 | su - vagrant -c 'echo alias d=docker >> ~/.bash_aliases'
28 | SCRIPT
29 | 
30 | Vagrant.configure(VAGRANTFILE_API_VERSION) do |config|
31 |   config.vm.box = 'phusion-open-ubuntu-14.04-amd64'
32 |   config.vm.box_url = VAGRANT_BOX_URL
33 |   config.ssh.forward_agent = true
34 |   passenger_docker_path = File.absolute_path(PASSENGER_DOCKER_PATH, ROOT)
35 |   if File.directory?(passenger_docker_path)
36 |     config.vm.synced_folder passenger_docker_path, '/vagrant/passenger-docker'
37 |   end
38 |   baseimage_path = File.absolute_path(BASEIMAGE_PATH, ROOT)
39 |   if File.directory?(baseimage_path)
40 |     config.vm.synced_folder File.expand_path(baseimage_path), '/vagrant/baseimage-docker'
41 |   end
42 |   dockerizer_path = File.absolute_path(DOCKERIZER_PATH, ROOT)
43 |   if File.directory?(dockerizer_path)
44 |     config.vm.synced_folder File.expand_path(dockerizer_path), '/vagrant/dockerizer'
45 |   end
46 | 
47 |   config.vm.provider :vmware_fusion do |f, override|
48 |     override.vm.box_url = VMWARE_BOX_URL
49 |     f.vmx['displayName'] = 'passenger-docker'
50 |   end
51 | 
52 |   config.vm.provision :shell, :inline => $script
53 | end
54 | 


--------------------------------------------------------------------------------
/test/spec_helper.rb:
--------------------------------------------------------------------------------
 1 | require 'shellwords'
 2 | 
 3 | ROOT = File.absolute_path(File.dirname(File.dirname(__FILE__)))
 4 | VERSION = begin
 5 |   File.read("#{ROOT}/Makefile") =~ /VERSION = (.+)/
 6 |   $1
 7 | end
 8 | 
 9 | def supported_rubies
10 |   $supported_rubies ||= begin
11 |     paths = Dir["#{ROOT}/image/*ruby-*.sh"].grep(/\d/)
12 |     result = paths.map do |path|
13 |       rvm_id = File.basename(path, '.sh')
14 |       ruby_engine, ruby_version = rvm_id.split('-', 2)
15 |       major_minor_version = ruby_version.split('.')[0..1].join('.')
16 |       makefile_id = docker_id = "#{ruby_engine}#{major_minor_version.gsub('.', '')}"
17 |       {
18 |         rvm_id: rvm_id,
19 |         engine: ruby_engine,
20 |         version: ruby_version,
21 |         major_minor_version: major_minor_version,
22 |         makefile_target: "build_#{makefile_id}",
23 |         makefile_id: makefile_id,
24 |         docker_image_id: docker_id,
25 |         docker_image_name: "phusion/passenger-#{docker_id}"
26 |       }
27 |     end
28 |   end
29 | end
30 | 
31 | def latest_mri_spec
32 |   $latest_mri_spec ||= begin
33 |     result = nil
34 | 
35 |     supported_rubies.each do |ruby_spec|
36 |       next if ruby_spec[:engine] != 'ruby'
37 |       if result.nil? || compare_ruby_spec_version(ruby_spec, result) > 0
38 |         result = ruby_spec
39 |       end
40 |     end
41 | 
42 |     result
43 |   end
44 | end
45 | 
46 | def compare_ruby_spec_version(a, b)
47 |   a_version = a[:version].split('.').map { |x| x.to_i }
48 |   b_version = b[:version].split('.').map { |x| x.to_i }
49 |   a_version <=> b_version
50 | end
51 | 
52 | module TestUtils
53 |   def run(command)
54 |     if !system(command)
55 |       fail "Command failed: #{command}"
56 |     end
57 |   end
58 | 
59 |   def capture_command(command)
60 |     output = `#{command} 2>&1`
61 |     if $?.nil? || !$?.success?
62 |       fail "Command failed: #{command}\n" \
63 |         "Output:\n" \
64 |         "#{output}"
65 |     else
66 |       output
67 |     end
68 |   end
69 | 
70 |   def capture_command_in_container(command)
71 |     if @container_id.nil?
72 |       raise "No container ID set"
73 |     else
74 |       real_command = "bash -c #{Shellwords.escape(command)}"
75 |       capture_command("docker exec #{@container_id} #{real_command}")
76 |     end
77 |   end
78 | 
79 |   def test_command_in_container(command)
80 |     if @container_id.nil?
81 |       raise "No container ID set"
82 |     else
83 |       output = capture_command_in_container("#{command}; CODE=$?; echo; echo $CODE")
84 |       output.split("\n").last == '0'
85 |     end
86 |   end
87 | end
88 | 
89 | RSpec.configure do |config|
90 |   config.include TestUtils
91 | end
92 | 


--------------------------------------------------------------------------------
/test/single_ruby_images_spec.rb:
--------------------------------------------------------------------------------
 1 | require_relative 'spec_helper'
 2 | require_relative 'shared/base_system_spec'
 3 | require_relative 'shared/ruby_image_spec'
 4 | 
 5 | supported_rubies.each do |ruby_spec|
 6 |   RSpec.describe("#{ruby_spec[:docker_image_id]} image") do
 7 |     before(:all) do
 8 |       @container_id = capture_command(
 9 |         "docker run -d #{ruby_spec[:docker_image_name]}:#{VERSION} sleep 99999").strip
10 |     end
11 | 
12 |     after(:all) do
13 |       run("docker rm -f #{@container_id} >/dev/null")
14 |     end
15 | 
16 |     let(:ruby_spec) { ruby_spec }
17 | 
18 |     def jruby_dev_arg
19 |       if ruby_spec[:rvm_id] =~ /jruby/
20 |         '--dev'
21 |       else
22 |         nil
23 |       end
24 |     end
25 | 
26 |     include_examples 'a base system'
27 |     include_examples 'a Ruby image'
28 |     if ruby_spec[:rvm_id] =~ /jruby/
29 |       include_examples 'a Ruby image containing JRuby'
30 |     end
31 | 
32 |     it 'includes the version-specific Ruby command' do
33 |       version_specific_cmd = "rvm-exec #{ruby_spec[:rvm_id]} ruby #{jruby_dev_arg} -v"
34 |       about_regex =
35 |         /^#{Regexp.escape ruby_spec[:engine]}
36 |           [[:blank:]]
37 |           #{Regexp.escape ruby_spec[:major_minor_version]}[\. ]/x
38 | 
39 |       expect(capture_command_in_container(version_specific_cmd)).to \
40 |         match(about_regex)
41 |     end
42 | 
43 |     it 'includes exactly one Ruby' do
44 |       rubies = capture_command_in_container('/usr/local/rvm/bin/rvm list strings').split("\n")
45 |       expect(rubies.size).to eq(1)
46 |     end
47 | 
48 |     it 'is included in the Makefile' do
49 |       makefile = File.read("#{ROOT}/Makefile")
50 |       # Ignore everything before the 'all' target
51 |       makefile.sub!(/.*?^all:/m, '')
52 | 
53 |       reference_ruby_spec = supported_rubies.first
54 |       reference_lines = makefile.split("\n").grep(/#{Regexp.escape(reference_ruby_spec[:makefile_id])}/)
55 |       reference_lines.each do |reference_line|
56 |         supported_rubies.each do |test_ruby_spec|
57 |           expected_line = reference_line.
58 |             gsub(reference_ruby_spec[:docker_image_name],
59 |               test_ruby_spec[:docker_image_name]).
60 |             gsub(reference_ruby_spec[:makefile_id],
61 |               test_ruby_spec[:makefile_id])
62 |           if makefile !~ /^#{Regexp.escape(expected_line)}$/
63 |             fail "Expected the Makefile to include this line: #{expected_line}"
64 |           end
65 |         end
66 |       end
67 |     end
68 | 
69 |     specify 'the generic Ruby command executes the version-specific Ruby' do
70 |       version_specific_cmd = "rvm-exec #{ruby_spec[:rvm_id]} ruby #{jruby_dev_arg} -v"
71 |       expect(capture_command_in_container(version_specific_cmd)).to end_with(
72 |         capture_command_in_container("ruby #{jruby_dev_arg} -v"))
73 |     end
74 |   end
75 | end
76 | 


--------------------------------------------------------------------------------
/CONTRIBUTING.md:
--------------------------------------------------------------------------------
 1 | # Contributing to passenger-docker
 2 | 
 3 | First off, thank you for considering contributing to passenger-docker. It's people like you that make Open Source a great place to be. Now let's make sure your contribution gets merged!
 4 | 
 5 | ### Contributions we happily welcome
 6 | We look for contributions improving documentation, bug triaging, or writing tutorials, as well as bug reports and patches.
 7 | 
 8 | ### Contributions we are not looking for
 9 | Please, don't use the issue tracker for support questions. Instead [consider Stack Overflow](https://stackoverflow.com/search?tab=newest&q=passenger%20docker).
10 | 
11 | ## Ground Rules
12 | 
13 | ### Your first contribution
14 | Not sure what you can help us out with? Check our [list of issues and feature requests](https://github.com/phusion/passenger-docker/issues) first.
15 | 
16 | #### Is this your first contribution to Open Source?
17 | 
18 | Working on your first Pull Request? You can learn how from this *free* series, [How to Contribute to an Open Source Project on GitHub](https://app.egghead.io/playlists/how-to-contribute-to-an-open-source-project-on-github).
19 | 
20 | At this point, you're ready to make your changes! Feel free to ask for help; everyone is a beginner at first :smile_cat:
21 | 
22 | If a maintainer asks you to "rebase" your PR, they're saying that a lot of code has changed, and that you need to update your branch so it's easier to merge.
23 | 
24 | ### How to submit a contribution
25 | Please follow the steps below to make your contribution to passenger-docker.
26 | 
27 | 1. Fork the repository
28 | 2. Clone or download the repository
29 | 3. Write your code
30 | 4. Push your code and create a Pull Request
31 | 5. Wait patiently while we review your changes
32 | 6. Party :tada:
33 | 
34 | ### Found a security flaw?
35 | If you find a security vulnerability, do NOT open an issue. Please send an email to info@phusion.nl instead.
36 | 
37 | In order to determine whether you are dealing with a security issue, ask yourself these two questions:
38 |   * Can I access something that's not mine, or something I shouldn't have access to?
39 |   * Can I disable something for other people?
40 | 
41 | If the answer to either of those two questions are "yes", then you're probably dealing with a security issue.
42 | 
43 | ### How to file a bug report
44 | When filing an issue, make sure to answer these five questions:
45 | 
46 | 1. What does your software stack look like?
47 | 2. What operating system and processor architecture are you using?
48 | 3. What did you do? :scream:
49 | 4. What did you expect to see?
50 | 5. What did you see instead?
51 | 
52 | ## Code review process
53 | passenger-docker is semi-regularly released, often in conjunction with a [Passenger](https://github.com/phusion/passenger/) release.
54 | 
55 | ## Community
56 | passenger-docker is a Phusion Passenger project. [Theaxiom](https://github.com/Theaxiom) took over the role of core maintainer.
57 | 


--------------------------------------------------------------------------------
/image/ruby_support/pkuczynski-pubkey.asc:
--------------------------------------------------------------------------------
 1 | -----BEGIN PGP PUBLIC KEY BLOCK-----
 2 | 
 3 | mQINBFglzSYBEADfGIe+NZMt2ymkKz6QvgG7Kwu54s5E/rikRNRKviysO7O3NWC8
 4 | P6FQ80kf4s1OhMF+//xnQTXiqFyjCFqftbEM2ApK9YHTUoVFF8I6Ed3uRxP9H3fO
 5 | dkn3nkvWjSUNo35DkBpGtV6XcMRqHbjGWtjahfrYuqa4oh4ZbY3i3kxUIWTKar+U
 6 | k7FEigw2znfRjgDT1aX9gLfq2z7GzBwO73HcX4oDJ2Q+T2g/IJ5SusUF2SoEUEUE
 7 | +phi9h3JGJ/AxX9/rRPJHWeluPKOdkhmFe/Qb+gote82LUlZx5R6XwfifByVqeNf
 8 | CQY9vQlRa/pNZ23QFmDFc35M6HLI3YwFkSlsJ9BWWuHe+y+/SVg6c85U0Hg4f1nY
 9 | +a4l7W1BeXlroritweWGZ2kvaAfDYXvjMRFe9v+sOn/eJ585glGHMhcGVAa00AR0
10 | 5qPHOaz6FURwnlVOXBswTD6c0foLcxPcB/sUqCCB0T1/kxtDZUDHgnNQofeisTYN
11 | vpVN/aXAACzkVthvG1E84IQD5mVh69fedNhdYzvyF1Zd54XZC2fr3ZNbL/1vpA+7
12 | nl+mf4ZcaGToTwEuovAzdR8eVymu5+yCBmpojWgn+VNzRodmdd7WzCgZeHd8/bib
13 | sX0Aiyw0TvQFGVz9iM3QHbFGFcMqddHXJJaPU//u9szkiNlpcGniFPaJTwARAQAB
14 | tCtQaW90ciBLdWN6eW5za2kgPHBpb3RyLmt1Y3p5bnNraUBnbWFpbC5jb20+iQI5
15 | BBMBCAAjBQJYJc0mAhsDBwsJCAcDAgEGFQgCCQoLBBYCAwECHgECF4AACgkQEFvQ
16 | 5zlJm9so2RAArbNBzj1H2dRWSLdBvWjnMPzUuDA6odyb+TCF+1W5SG3+lY6V2Ve1
17 | hRViQVm8VyJ5qi4SqRPSqP8KeM0/REpfYIsIlFUOVLKzsBlgW6QchDfAOF0041Ew
18 | 2CnF1JLu86j3QhJh66jemtm96sk/bKTR5yETsL3Rch8NDyuBdo5j3rl+fP2O7TME
19 | Ffu9xUZx5PE3QBF12pZPA5llt+FVryd4DeJSKwQbpyerZ0/aTAKZb8bftwrtxRGI
20 | hNpSIUcsYezbCnJ77E6YzFCgizXbQkt/Uyndnc/4vUw8YdCdXUduQ6GPR8cLsikZ
21 | 84E7b2Nk+VhNbjJI+buckZyhdFaEHTpgFBKy32p9YczPcItWX71fAVoKvyiopULs
22 | SU/hayhf9NlgqchISJ9HKIyvsF8nkpgCOSDEjrL/F3GRdtb6BAg9ZtDQ7jbG+cHL
23 | m1wqyMn1DDpvoa+Jo7Y8V77ofI7A24AGcb7O6MK+MaBCPVTegaYsPfGyGOa3raKD
24 | cv/ysiwZbo+qHzuPo6s2bGP3PPaWUItmPZ0tZ3vAuA9K34bStVDTvnFfHpNUnbcA
25 | Eh1SmJXF6cLZV1QLXP8LpaDOAMPompfKmWnjCjwnBtJPBza+uVTpfHX7APmesDFR
26 | ZBczjOLrCNSgPTHW7LqYD361X28KfZ5brC8VrQBc8eZmyLlxwtBMr/W5Ag0EWCXN
27 | JgEQAOT7ie/rtkGdQdjwuW80wEaE84CNUpUuuCj/VGaDJO4qDF7sYG1KrO2ZFre8
28 | jViKk72CNVDypZkL/3W0Zc9CPaPyiAP4EJ+cKirv6789u8lPJg6bBzlPQ9+wQIIY
29 | eVc9VMNWprSFfe8420Qd65USbjT6H2lJ/VDVTQ2+tX/v3SCuzrnx+dslJdkxEENB
30 | AbeUhvENhBu2GRlQvRAeZScB5PzYXwFH4R6H6j2F39U6C1KCk6Vd590pp24ZunvI
31 | mAsgxlXO2RfPKYNfwqbtv5lLBZPi4mqgZXvw753ig/naj9h/9k95AoLxX6IgBCfn
32 | E5VSNFn1vNVBvjOQOmklE/8gdoM/+Q+z5xBC4k+Ul8Yrrp441hg+NfT6UtV8qdQo
33 | 0ZFwbK6MnWSJLl0q6BLh676TqUYRAC6OKQPC/MsRuueOrm4LON65JTauNpDmu5Wb
34 | GYTxzkyLcTtcNigeij/ruLfZvao9TmrXQXcwmsv5AiUNw+KM6psSiVoVDlw4J1X9
35 | 9c/XazfaiPnGuc0TLvdyrJUx59er69M5UdShVm7ZYsP77Mdw4B8Dx7PrPTv3XweQ
36 | RY8egEQbBFad6fkJUAz4ui/uXhqasyKlnE4sDKVMkCJLOFthx2Qoj90tED7o+PUg
37 | rRf9hZxYbX4PKTurxuOxUpNyDPIQamDHBqP7xDmWFjpEPjODABEBAAGJAh8EGAEI
38 | AAkFAlglzSYCGwwACgkQEFvQ5zlJm9u9KQ/8CdFgMkqI75CXLuKwPJoqGZ8MOMvr
39 | AiD8zJxEHqYE7QnreiDS1/WTHh7nLkA/+ISmVWiLRa3qhmMqi35Z/4Ev2nPBZ4M2
40 | ToDdydSnuEhSC3rlyJ9Du724UsKBBoH/LiRp4yMv6Y7b4lH4orONriEjjb1X3Ln3
41 | Dcp83Zho3ANvhjWz2lL4XRzCLnUdYwV56872vH3AeSAvjfgbf5oYlLhXgMUXsNF/
42 | 2YBn1UOcqwKgmOGl8capSPz2+q/sGjYLIMQ6pA5XKHrI8FjdON2AYxrSRb8RBBAW
43 | hFvJNrAwzAqorolYtNkAfXgU0kayY9SXElQBsNnU/9EcW6/eqfZPWzHgTRXV6yvC
44 | OAygYHVwad62iQMzFGSamQYcinnwZccRuRNRCYHzIjB9tCOMe2qa5pjPeYMTk8vK
45 | 9yrYeRzBeQFMQXQgRZV8GcN8E/qBBc85qGZWRw8XeXpqBo08teH81jnjbbw+uZrl
46 | ItFD89SDex93x3lKKaBo31AAqmYx5hOEG4q2cOh33kB9WOozqLf0UjUQOyBpN+Cu
47 | /PK2WJKMqBfFjpef34eIMVOzhxp/oQ4xVQD+H27ExayutgIvExrFBeRU1RxhwRAW
48 | fiC0aDWzK4QuWnmZG1oSv7hLIMChvUM39Oo/Jz1BYTVfCRWMQZeX/ncaZCSBM/MM
49 | iWTuv7mXY0bNG+s=
50 | =X3ZS
51 | -----END PGP PUBLIC KEY BLOCK-----
52 | 


--------------------------------------------------------------------------------
/image/nginx-passenger.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | set -e
 3 | source /pd_build/buildconfig
 4 | source /etc/environment
 5 | 
 6 | header "Installing Phusion Passenger..."
 7 | 
 8 | ## Phusion Passenger requires Ruby. Install if this image does not already have one.
 9 | ## Install it through RVM, not APT, so that the -customizable variant cannot end up
10 | ## having Ruby installed from both APT and RVM.
11 | if [[ ! -e /usr/bin/ruby ]]; then
12 | 	RVM_ID="ruby-3.4.8"
13 | 
14 | 	run mkdir -p "/build_cache/${ARCH}"
15 | 	if [[ -e "/build_cache/${ARCH}/${RVM_ID}.tar.bz2" ]]; then
16 | 		# use cached ruby if present
17 | 		run /usr/local/rvm/bin/rvm mount "/build_cache/${ARCH}/${RVM_ID}.tar.bz2"
18 | 	else
19 | 		# otherwise build one
20 | 		run minimal_apt_get_install rustc # For compiling Ruby with YJIT
21 | 		MAKEFLAGS=-j$(nproc) run /usr/local/rvm/bin/rvm install $RVM_ID --disable-cache || ( cat /usr/local/rvm/log/*${RVM_ID}*/*.log && false )
22 | 		run cd "/build_cache/${ARCH}"
23 | 		run /usr/local/rvm/bin/rvm prepare "${RVM_ID}"
24 | 		run cd /
25 | 	fi
26 | 
27 | 	# Make passenger_system_ruby work.
28 | 	run create_rvm_wrapper_script $(sed -e 's/-//' -e 's/\.[0-9]$//' <<< $RVM_ID) "$RVM_ID" ruby
29 | 	run /pd_build/ruby_support/finalize.sh
30 | fi
31 | 
32 | ## Install Phusion Passenger.
33 | if [[ "$PASSENGER_ENTERPRISE" ]]; then
34 | 	run apt-get install -y nginx passenger-enterprise libnginx-mod-http-passenger-enterprise
35 | else
36 | 	run apt-get install -y nginx passenger libnginx-mod-http-passenger
37 | fi
38 | run cp /pd_build/config/30_presetup_nginx.sh /etc/my_init.d/
39 | run cp /pd_build/config/nginx.conf /etc/nginx/nginx.conf
40 | run mkdir -p /etc/nginx/main.d
41 | run cp /pd_build/config/nginx_main_d_default.conf /etc/nginx/main.d/default.conf
42 | 
43 | ## Install Nginx runit service.
44 | run mkdir /etc/service/nginx
45 | run cp /pd_build/runit/nginx /etc/service/nginx/run
46 | run touch /etc/service/nginx/down
47 | 
48 | run mkdir /etc/service/nginx-log-forwarder
49 | run cp /pd_build/runit/nginx-log-forwarder /etc/service/nginx-log-forwarder/run
50 | 
51 | ## Use SIGQUIT instead of SIGTERM to shutdown nginx
52 | run mkdir -p /etc/service/nginx/control/
53 | run cp /pd_build/runit/nginx-term /etc/service/nginx/control/t
54 | 
55 | run mkdir -p /var/run/passenger-instreg
56 | 
57 | run sed -i 's|invoke-rc.d nginx rotate|sv 1 nginx|' /etc/logrotate.d/nginx
58 | run sed -i -e '/sv 1 nginx.*/a\' -e '		passenger-config reopen-logs >/dev/null 2>&1' /etc/logrotate.d/nginx
59 | run rm -f /var/log/nginx/error.log
60 | 
61 | ## Precompile Ruby extensions.
62 | if [[ -e /usr/bin/ruby3.4 ]]; then
63 | 	run ruby3.4 -S passenger-config build-native-support
64 | 	run setuser app ruby3.4 -S passenger-config build-native-support
65 | fi
66 | if [[ -e /usr/bin/ruby3.3 ]]; then
67 | 	run ruby3.3 -S passenger-config build-native-support
68 | 	run setuser app ruby3.3 -S passenger-config build-native-support
69 | fi
70 | if [[ -e /usr/bin/ruby3.2 ]]; then
71 | 	run ruby3.2 -S passenger-config build-native-support
72 | 	run setuser app ruby3.2 -S passenger-config build-native-support
73 | fi
74 | if [[ -e /usr/bin/jruby10.0 ]]; then
75 | 	run jruby10.0 --dev -S passenger-config build-native-support
76 | 	run setuser app jruby10.0 -S passenger-config build-native-support
77 | fi
78 | if [[ -e /usr/bin/jruby9.4 ]]; then
79 | 	run jruby9.4 --dev -S passenger-config build-native-support
80 | 	run setuser app jruby9.4 -S passenger-config build-native-support
81 | fi
82 | 


--------------------------------------------------------------------------------
/CODE_OF_CONDUCT.md:
--------------------------------------------------------------------------------
 1 | # Contributor Covenant Code of Conduct
 2 | 
 3 | ## Our Pledge
 4 | 
 5 | In the interest of fostering an open and welcoming environment, we as contributors and maintainers pledge to making participation in our project and our community a harassment-free experience for everyone, regardless of age, body size, disability, ethnicity, gender identity and expression, level of experience, nationality, personal appearance, race, religion, or sexual identity and orientation.
 6 | 
 7 | ## Our Standards
 8 | 
 9 | Examples of behavior that contributes to creating a positive environment include:
10 | 
11 | * Using welcoming and inclusive language
12 | * Being respectful of differing viewpoints and experiences
13 | * Gracefully accepting constructive criticism
14 | * Focusing on what is best for the community
15 | * Showing empathy towards other community members
16 | 
17 | Examples of unacceptable behavior by participants include:
18 | 
19 | * The use of sexualized language or imagery and unwelcome sexual attention or advances
20 | * Trolling, insulting/derogatory comments, and personal or political attacks
21 | * Public or private harassment
22 | * Publishing others' private information, such as a physical or electronic address, without explicit permission
23 | * Other conduct which could reasonably be considered inappropriate in a professional setting
24 | 
25 | ## Our Responsibilities
26 | 
27 | Project maintainers are responsible for clarifying the standards of acceptable behavior and are expected to take appropriate and fair corrective action in response to any instances of unacceptable behavior.
28 | 
29 | Project maintainers have the right and responsibility to remove, edit, or reject comments, commits, code, wiki edits, issues, and other contributions that are not aligned to this Code of Conduct, or to ban temporarily or permanently any contributor for other behaviors that they deem inappropriate, threatening, offensive, or harmful.
30 | 
31 | ## Scope
32 | 
33 | This Code of Conduct applies both within project spaces and in public spaces when an individual is representing the project or its community. Examples of representing a project or community include using an official project e-mail address, posting via an official social media account, or acting as an appointed representative at an online or offline event. Representation of a project may be further defined and clarified by project maintainers.
34 | 
35 | ## Enforcement
36 | 
37 | Instances of abusive, harassing, or otherwise unacceptable behavior may be reported by contacting the project team at Phusion:
38 | 
39 | [FloorD](https://github.com/floord) (she/her), floor@phusion.nl, English / Dutch / German
40 | 
41 | [Scarhand](https://github.com/scarhand) (he/his), niels@phusion.nl, English / Dutch
42 | 
43 | The project team will review and investigate all complaints, and will respond in a way that it deems appropriate to the circumstances. The project team is obligated to maintain confidentiality with regard to the reporter of an incident. Further details of specific enforcement policies may be posted separately.
44 | 
45 | Project maintainers who do not follow or enforce the Code of Conduct in good faith may face temporary or permanent repercussions as determined by other members of the project's leadership.
46 | 
47 | ## Attribution
48 | 
49 | This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4, available at [http://contributor-covenant.org/version/1/4][version]
50 | 
51 | [homepage]: http://contributor-covenant.org
52 | [version]: http://contributor-covenant.org/version/1/4/
53 | 


--------------------------------------------------------------------------------
/.github/workflows/main.yml:
--------------------------------------------------------------------------------
  1 | name: Build all images
  2 | 
  3 | on:
  4 |   push:
  5 |     branches: [ master ]
  6 |   pull_request:
  7 |     branches: [ master ]
  8 | 
  9 | defaults:
 10 |   run:
 11 |     shell: bash
 12 | 
 13 | jobs:
 14 |   pre_build:
 15 |     name: build base_image ${{ matrix.arch.name }}
 16 |     strategy:
 17 |       fail-fast: true
 18 |       matrix:
 19 |         arch:
 20 |           - name: amd64
 21 |             runner: ubuntu-24.04
 22 |           - name: arm64
 23 |             runner: ubuntu-24.04-arm
 24 |     runs-on: ${{ matrix.arch.runner }}
 25 |     steps:
 26 |       - name: Checkout code
 27 |         uses: actions/checkout@v6
 28 |       - name: Purge containers
 29 |         run: 'docker kill $(docker ps -q) || exit 0'
 30 |       - name: Enable docker multiarch
 31 |         uses: docker/setup-qemu-action@v3
 32 |       - name: Set up Docker Buildx
 33 |         uses: docker/setup-buildx-action@v3
 34 |       - name: Run make build_base
 35 |         run: make build_base
 36 |         env:
 37 |           BUILD_AMD64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'amd64'] }}
 38 |           BUILD_ARM64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'arm64'] }}
 39 |       - name: Export
 40 |         run: make export_base
 41 |         env:
 42 |           BUILD_AMD64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'amd64'] }}
 43 |           BUILD_ARM64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'arm64'] }}
 44 |       - name: Log in to the Container registry
 45 |         if: ${{ github.event.pull_request.merged || github.actor == 'CamJN' }}
 46 |         uses: docker/login-action@v3
 47 |         id: login
 48 |         with:
 49 |           registry: ghcr.io
 50 |           username: ${{ github.actor }}
 51 |           password: ${{ secrets.GITHUB_TOKEN }}
 52 |       - name: Push to github container registry
 53 |         if: ${{ success() && steps.login.conclusion != 'skipped' }}
 54 |         run: make push_base
 55 |         env:
 56 |           BUILD_AMD64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'amd64'] }}
 57 |           BUILD_ARM64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'arm64'] }}
 58 | 
 59 | 
 60 |   build:
 61 |     needs: pre_build
 62 |     name: build ${{ matrix.img }} ${{ matrix.arch.name }}
 63 |     strategy:
 64 |       fail-fast: true
 65 |       matrix:
 66 |         img:
 67 |          - full
 68 |          - customizable
 69 |          - nodejs
 70 |          - jruby100
 71 |          - jruby94
 72 |          # - ruby35 # REL: 2025-12-25
 73 |          - ruby34 # EOL: 2028-03-31
 74 |          - ruby33 # EOL: 2027-03-31
 75 |          - ruby32 # EOL: 2026-03-31
 76 |          # https://www.ruby-lang.org/en/downloads/branches/
 77 |          - python314 # REL: 2030-10-31
 78 |          - python313 # EOL: 2029-10-07
 79 |          - python312 # EOL: 2028-10-02
 80 |          - python311 # EOL: 2027-10-24
 81 |          - python310 # EOL: 2026-10-04
 82 |          - python39  # EOL: 2025-10-05
 83 |          # https://devguide.python.org/versions/
 84 |         arch:
 85 |           - name: amd64
 86 |             runner: ubuntu-24.04
 87 |           - name: arm64
 88 |             runner: ubuntu-24.04-arm
 89 |     runs-on: ${{ matrix.arch.runner }}
 90 |     steps:
 91 |       - name: Checkout code
 92 |         uses: actions/checkout@v6
 93 |       - name: Purge containers
 94 |         run: 'docker kill $(docker ps -q) || exit 0'
 95 |       - name: Enable docker multiarch
 96 |         uses: docker/setup-qemu-action@v3
 97 |       - name: Set up Docker Buildx
 98 |         uses: docker/setup-buildx-action@v3
 99 |       - name: "Run make build_${{ matrix.img }}"
100 |         run: "make build_${{ matrix.img }}"
101 |         env:
102 |           BUILD_AMD64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'amd64'] }}
103 |           BUILD_ARM64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'arm64'] }}
104 |       - name: Log in to the Container registry
105 |         if: ${{ github.event.pull_request.merged || github.actor == 'CamJN' }}
106 |         uses: docker/login-action@v3
107 |         id: login
108 |         with:
109 |           registry: ghcr.io
110 |           username: ${{ github.actor }}
111 |           password: ${{ secrets.GITHUB_TOKEN }}
112 |       - name: Tag as latest
113 |         if: ${{ success() && steps.login.conclusion != 'skipped' }}
114 |         run: "make tag_latest_${{ matrix.img }}"
115 |         env:
116 |           BUILD_AMD64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'amd64'] }}
117 |           BUILD_ARM64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'arm64'] }}
118 |       - name: Push to github container registry
119 |         if: ${{ success() && steps.login.conclusion != 'skipped' }}
120 |         run: "make push_${{ matrix.img }}"
121 |         env:
122 |           BUILD_AMD64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'amd64'] }}
123 |           BUILD_ARM64: ${{ fromJSON('[0, 1]')[matrix.arch.name == 'arm64'] }}
124 | 


--------------------------------------------------------------------------------
/Makefile:
--------------------------------------------------------------------------------
  1 | SHELL := /bin/bash
  2 | 
  3 | ifeq ($(GITHUB_ACTIONS),true)
  4 | REGISTRY = ghcr.io
  5 | else
  6 | REGISTRY = docker.io
  7 | endif
  8 | 
  9 | NAME ?= $(REGISTRY)/phusion/passenger
 10 | VERSION ?= 3.1.6
 11 | 
 12 | # NAME and/or VERSION can be overriden during build if you are building locally to push to your own repository
 13 | # example:
 14 | #   login to your ECR repo, then
 15 | #   NAME="YOURID.dkr.ecr.us-west-2.amazonaws.com/passenger" VERSION=2.5.1.4 BUILD_ARM64=0 make -j1 build_ruby32 push_ruby32
 16 | #     This will build and push YOURID.dkr.ecr.us-west-2.amazonaws.com/passenger-ruby32:2.5.1.4-amd64
 17 | #     and YOURID.dkr.ecr.us-west-2.amazonaws.com/passenger-ruby32:2.5.1.4:latest-amd64
 18 | 
 19 | # Extra flags for docker build, usable via environment variable.
 20 | # Example: `export EXTRA_BUILD_FLAGS=--no-cache; make build_all`
 21 | EXTRA_BUILD_FLAGS?=
 22 | 
 23 | # Allow conditionally building multiple architectures
 24 | # example: BUILD_ARM64=0 make build_customizable ; only builds amd64 image
 25 | # defaults to building all specified images for both amd64 and arm64
 26 | ifeq ($(BUILD_AMD64),0)
 27 | _build_amd64 := 0
 28 | else
 29 | _build_amd64 := 1
 30 | endif
 31 | 
 32 | ifeq ($(BUILD_ARM64),0)
 33 | _build_arm64 := 0
 34 | else
 35 | _build_arm64 := 1
 36 | endif
 37 | 
 38 | # test if we're running in an interactive shell (vs gh actions)
 39 | INTERACTIVE:=$(shell [ -t 0 ] && echo 1)
 40 | 
 41 | .PHONY: all build_base build_all tag_latest push release labels clean clean_images
 42 | 
 43 | FORCE:
 44 | 
 45 | # when adding a cRuby image, also update image/nginx-passenger.sh and image/ruby-support/finalize.sh
 46 | SPECIAL_IMAGES := customizable full
 47 | CRUBY_IMAGES := ruby32 ruby33 ruby34
 48 | PYTHON_IMAGES := python310 python311 python312 python313 python314
 49 | MISC_IMAGES := jruby94 jruby100 nodejs
 50 | 
 51 | ALL_IMAGES := $(SPECIAL_IMAGES) $(MISC_IMAGES) $(CRUBY_IMAGES) $(PYTHON_IMAGES)
 52 | 
 53 | all: build_all
 54 | 
 55 | # waits are to ensure that we only compile each version of ruby once per arch even if running in parallel
 56 | build_all: \
 57 | 	build_customizable \
 58 | 	.WAIT \
 59 | 	$(foreach image, $(CRUBY_IMAGES), build_${image}) \
 60 | 	.WAIT \
 61 | 	$(foreach image, $(MISC_IMAGES), build_${image}) \
 62 | 	.WAIT \
 63 | 	$(foreach image, $(PYTHON_IMAGES), build_${image}) \
 64 | 	build_full
 65 | 
 66 | build_base:
 67 | 	rm -rf base_image
 68 | 	cp -pR image base_image
 69 | ifeq ($(_build_amd64),1)
 70 | 	docker rmi $(NAME)-base:latest-amd64 || true
 71 | 	docker buildx build --progress=plain --platform linux/amd64 $(EXTRA_BUILD_FLAGS) --build-arg ARCH=amd64 -t $(NAME)-base:latest-amd64 -f image/Dockerfile.base base_image --no-cache --load
 72 | endif
 73 | ifeq ($(_build_arm64),1)
 74 | 	docker rmi $(NAME)-base:latest-arm64 || true
 75 | 	docker buildx build --progress=plain --platform linux/arm64 $(EXTRA_BUILD_FLAGS) --build-arg ARCH=arm64 -t $(NAME)-base:latest-arm64 -f image/Dockerfile.base base_image --no-cache --load
 76 | endif
 77 | 	rm -rf base_image
 78 | 
 79 | export_base:
 80 | ifeq ($(_build_amd64),1)
 81 | 	docker save $(NAME)-base:latest-amd64 | gzip > passenger-base-amd64.tar.gz
 82 | endif
 83 | ifeq ($(_build_arm64),1)
 84 | 	docker save $(NAME)-base:latest-arm64 | gzip > passenger-base-arm64.tar.gz
 85 | endif
 86 | 
 87 | build_%:
 88 | ifeq ($(INTERACTIVE),1)
 89 | build_%: build_base
 90 | endif
 91 | 	rm -rf $*_image
 92 | 	cp -pR image $*_image
 93 | 	@if [ "${*}" != "full" ] && [ "${*}" != "customizable" ]; then \
 94 | 	    echo "${*}=1" >> ${*}_image/buildconfig; \
 95 | 	fi
 96 | 	@if [ "${*}" == "full" ]; then \
 97 | 	    for i in ${CRUBY_IMAGES}; do echo "$${i}=1" >> ${*}_image/buildconfig; done; \
 98 | 	    for i in ${MISC_IMAGES}; do echo "$${i}=1" >> ${*}_image/buildconfig; done; \
 99 | 	    echo python312=1 >> ${*}_image/buildconfig; \
100 | 	    echo redis=1 >> ${*}_image/buildconfig; \
101 | 	    echo memcached=1 >> ${*}_image/buildconfig; \
102 | 	fi
103 | 	@if [ "${*}" != "customizable" ]; then \
104 | 	    echo final=1 >> ${*}_image/buildconfig; \
105 | 	fi
106 | ifeq ($(_build_amd64),1)
107 | 	docker buildx build --progress=plain --platform linux/amd64 $(EXTRA_BUILD_FLAGS) --build-arg NAME=$(NAME) --build-arg ARCH=amd64 -t $(NAME)-$*:$(VERSION)-amd64 --rm $*_image --load
108 | endif
109 | ifeq ($(_build_arm64),1)
110 | 	docker buildx build --progress=plain --platform linux/arm64 $(EXTRA_BUILD_FLAGS) --build-arg NAME=$(NAME) --build-arg ARCH=arm64 -t $(NAME)-$*:$(VERSION)-arm64 --rm $*_image --load
111 | endif
112 | 
113 | labels: $(foreach image, $(ALL_IMAGES), label_${image})
114 | 
115 | label_%: FORCE
116 | ifeq ($(_build_amd64),1)
117 | 	@echo $(NAME)-$*:$(VERSION)-amd64 $(NAME)-$*:latest-amd64
118 | endif
119 | ifeq ($(_build_arm64),1)
120 | 	@echo $(NAME)-$*:$(VERSION)-arm64 $(NAME)-$*:latest-arm64
121 | endif
122 | 
123 | pull: $(foreach image, $(ALL_IMAGES), pull_${image})
124 | 
125 | pull_%: FORCE
126 | ifeq ($(_build_amd64),1)
127 | 	docker pull ghcr.io/phusion/passenger-$*:$(VERSION)-amd64
128 | 	docker tag  ghcr.io/phusion/passenger-$*:$(VERSION)-amd64 $(NAME)-$*:$(VERSION)-amd64
129 | endif
130 | ifeq ($(_build_arm64),1)
131 | 	docker pull ghcr.io/phusion/passenger-$*:$(VERSION)-arm64
132 | 	docker tag  ghcr.io/phusion/passenger-$*:$(VERSION)-arm64 $(NAME)-$*:$(VERSION)-arm64
133 | endif
134 | 
135 | tag_latest: $(foreach image, $(ALL_IMAGES), tag_latest_${image})
136 | 
137 | tag_latest_%: FORCE
138 | ifeq ($(_build_amd64),1)
139 | 	docker tag $(NAME)-$*:$(VERSION)-amd64 $(NAME)-$*:latest-amd64
140 | endif
141 | ifeq ($(_build_arm64),1)
142 | 	docker tag $(NAME)-$*:$(VERSION)-arm64 $(NAME)-$*:latest-arm64
143 | endif
144 | 
145 | push: $(foreach image, $(ALL_IMAGES), push_${image})
146 | 
147 | push_%: FORCE
148 | ifeq ($(_build_amd64),1)
149 | 	docker push $(NAME)-$*:latest-amd64
150 | 	if [ base != $* ]; then docker push $(NAME)-$*:$(VERSION)-amd64; fi
151 | endif
152 | ifeq ($(_build_arm64),1)
153 | 	docker push $(NAME)-$*:latest-arm64
154 | 	if [ base != $* ]; then docker push $(NAME)-$*:$(VERSION)-arm64; fi
155 | endif
156 | 
157 | release: $(foreach image, $(ALL_IMAGES), release_${image})
158 | 	test -z "$$(git status --porcelain)" || git commit -am "$(VERSION)" && git tag "rel-$(VERSION)" && git push origin "rel-$(VERSION)"
159 | 
160 | release_%: push_%
161 | 	docker buildx imagetools create --tag $(NAME)-$*:$(VERSION) $(NAME)-$*:$(VERSION)-amd64 $(NAME)-$*:$(VERSION)-arm64
162 | 	docker buildx imagetools create --tag $(NAME)-$*:latest     $(NAME)-$*:latest-amd64     $(NAME)-$*:latest-arm64
163 | 
164 | clean:
165 | 	rm -rf *_image
166 | 
167 | clean_images: $(foreach image, $(ALL_IMAGES), clean_image_${image}) FORCE
168 | 	docker rmi $(NAME)-base:latest-amd64 phusion/passenger-base:latest-amd64 || true
169 | 	docker rmi $(NAME)-base:latest-arm64 phusion/passenger-base:latest-arm64 || true
170 | 
171 | clean_image_%: FORCE
172 | 	docker rmi $(NAME)-$*:latest-amd64 $(NAME)-$*:$(VERSION)-amd64 || true
173 | 	docker rmi $(NAME)-$*:latest-arm64 $(NAME)-$*:$(VERSION)-arm64 || true
174 | 


--------------------------------------------------------------------------------
/CHANGELOG.md:
--------------------------------------------------------------------------------
  1 | ## 3.1.6 (not yet released)
  2 |  * 
  3 | 
  4 | ## 3.1.5 (release date: 2025-12-23)
  5 |  * Upgraded to Phusion Passenger 6.1.1 (was 6.1.0)
  6 |  * Dropped Python 3.9 image (EOL: 2025-10)
  7 |  * Added a Python 3.14 image
  8 |  * Upgraded to Ruby 3.4.8 (from 3.4.6)
  9 |  * Upgraded to Ruby 3.3.10 (from 3.3.9)
 10 |  * Upgraded to JRuby 9.4.14 (from 9.4.12)
 11 |  * Upgraded to JRuby 10.0.2 (from 10.0.0)
 12 | 
 13 | ## 3.1.4 (release date: 2025-09-25)
 14 |  * Upgraded to Phusion Passenger 6.1.0 (was 6.0.27)
 15 |  * Removed JRuby 9.3 (EOL: 2023-12-31)
 16 |  * Removed Ruby 3.1 (EOL: 2024-03-26)
 17 |  * Added a JRuby 10.0.0.0 image
 18 |  * Upgraded Node 20 LTS -> 22 LTS
 19 |  * Updated baseimage to noble-1.0.2
 20 |  * Upgraded image base to phusion/baseimage:noble-1.0.1
 21 |  * Upgraded to Ruby 3.2.9 (from 3.2.8)
 22 |  * Upgraded to Ruby 3.3.9 (from 3.3.7)
 23 |  * Upgraded to Ruby 3.4.6 (from 3.4.2)
 24 | 
 25 | ## 3.1.3 (release date: 2025-04-04)
 26 |  * Upgraded to Ruby 3.1.7 (from 3.1.6).
 27 |  * Upgraded to Ruby 3.2.8 (from 3.2.7).
 28 |  * Upgraded to Phusion Passenger 6.0.27 (from 6.0.26).
 29 | 
 30 | ## 3.1.2 (release date: 2025-02-19)
 31 |  * Upgraded to Ruby 3.4.2 (from 3.4.1).
 32 |  * Upgraded to Phusion Passenger 6.0.26 (from 6.0.25).
 33 | 
 34 | ## 3.1.1 (release date: 2025-02-12)
 35 |  * Added a Ruby 3.4 image (Ruby 3.4.1)
 36 |  * Default Ruby version is now 3.4.1
 37 |  * Upgraded to JRuby 9.4.9.0 (from 9.4.8.0).
 38 |  * Upgraded to Ruby 3.3.7 (from 3.3.6).
 39 |  * Upgraded to Ruby 3.2.7 (from 3.2.6).
 40 |  * Upgraded to Phusion Passenger 6.0.25 (from 6.0.24).
 41 | 
 42 | ## 3.1.0 (release date: 2024-12-09)
 43 |  * Upgraded image base to phusion/baseimage:noble-1.0.0
 44 |    * Upgraded to Ubuntu 24.04 LTS (Noble)
 45 |        - note updated compiler chain and all tools; please test your apps thoroughly
 46 |    * Default Python version is now 3.12 (from 3.10)
 47 |    * Python 2.7 and 3.7 are no longer available from the Deadsnakes PPA; we weren't providing images for either previously
 48 |    * Nginx version is now 1.24 (from 1.18)
 49 |        - changelog can be found at https://nginx.org/en/CHANGES-1.24
 50 |        - if you provide your own nginx.conf, please define error_log at the root scope, not the http scope; see https://github.com/phusion/passenger/issues/2541
 51 |        - a number of modules are no longer installed and enabled by default (mod-http-geoip2, mod-http-image-filter, mod-http-xslt-filter, mod-mail, mod-stream, mod-stream-geoip2)
 52 |     * Redis version is now 7.0.15 (from 6.0.16)
 53 |  * Added a Python 3.13 image
 54 |  * Dropped Python 3.8 image
 55 |  * Upgraded to Ruby 3.2.6
 56 |  * Upgraded to Ruby 3.3.6
 57 |  * Upgraded to Phusion Passenger 6.0.24 (from 6.0.23).
 58 | 
 59 | ## 3.0.7 (release date: 2024-07-30)
 60 |  * Upgraded to Ruby 3.3.4
 61 |  * Upgraded to Phusion Passenger 6.0.23 (from 6.0.22).
 62 |  * Upgraded to Ruby 3.2.5
 63 |  * Upgraded to JRuby 9.4.8.0 (from 9.4.7.0).
 64 |  * Upgraded to JRuby 9.3.15.0 (from 9.3.14.0).
 65 | 
 66 | ## 3.0.6 (release date: 2024-06-13)
 67 |  * Upgraded to Ruby 3.1.6
 68 |  * Upgraded to Ruby 3.3.3
 69 | 
 70 | ## 3.0.5 (release date: 2024-05-18)
 71 |  * Removed Ruby 3.0 (EOL: 2024-04-23)
 72 |  * Upgraded to Phusion Passenger 6.0.22 (from 6.0.21).
 73 | 
 74 | ## 3.0.4 (release date: 2024-05-17)
 75 |  * Upgraded to Phusion Passenger 6.0.21 (from 6.0.20).
 76 |  * Upgraded to JRuby 9.4.7.0 (from 9.4.6.0).
 77 | 
 78 | ## 3.0.3 (release date: 2024-04-26)
 79 |  * Upgraded to JRuby 9.3.14.0 (from 9.3.13.0)
 80 |  * Upgraded to JRuby 9.4.6.0 (from 9.4.5.0)
 81 |  * Upgraded Node 18 LTS -> 20 LTS.
 82 |  * Fix https://github.com/rvm/rvm/issues/5449
 83 |  * Upgraded to Ruby 3.0.7
 84 |  * Upgraded to Ruby 3.1.5
 85 |  * Upgraded to Ruby 3.2.4
 86 |  * Upgraded to Ruby 3.3.1
 87 |  * Updated image base to phusion/baseimage:jammy-1.0.4
 88 | 
 89 | ## 3.0.2 (release date: 2024-02-23)
 90 |  * Fixes an issue with passenger-full not having ruby 3.3 as default
 91 |  * Bumps fallback ruby to 3.3.
 92 | 
 93 | ## 3.0.1 (release date: 2024-01-22)
 94 |  * Upgraded to Phusion Passenger 6.0.20 (from 6.0.19).
 95 | 
 96 | ## 3.0.0 (release date: 2024-01-18)
 97 |  * Added a Ruby 3.3.0 image
 98 |  * Upgraded to JRuby 9.3.13.0 (from 9.3.11.0)
 99 |  * Upgraded to JRuby 9.4.5.0 (from 9.4.3.0)
100 |  * Added versioned Python images for Python versions 3.8 to 3.12
101 |  * Upgraded to Ruby 3.2.3
102 | 
103 | ## 2.6.0 (release date: 2023-11-20)
104 |  * Upgraded to Phusion Passenger 6.0.19 (from 6.0.18).
105 |  * Switched image base to phusion/baseimage:jammy-1.0.1
106 |    * Upgraded to Ubuntu 22.04 LTS (Jammy)
107 |    * Default Python version is now 3.10, and Python 2.7 is no longer installed by default
108 |  * Updated Python install script to be able to install any supported version from base or the Deadsnakes PPA
109 |  * Updated Node.js install script to be able to install any supported version from Nodesource; default version is still 18
110 |  * Created yarn and related executables whenever installing Node.js
111 |  * Removed Ruby 2.7 (EOL 2023-03-31)
112 |  * Compile all CRuby versions from source to ensure uniformity and YJIT capability in versions 3.1+
113 |  * Use Ruby 3.2.x by default
114 |  * Upgraded to JRuby 9.3.11.0 (from 9.3.9.0)
115 |  * Upgraded to JRuby 9.4.3.0 (from 9.4.0.0)
116 | 
117 | ## 2.5.1 (release date: 2023-06-14)
118 |  * Upgraded to Phusion Passenger 6.0.18 (from 6.0.17).
119 |  * Upgraded to Ruby 2.7.8
120 |  * Upgraded to Ruby 3.0.6
121 |  * Upgraded to Ruby 3.1.4
122 |  * Upgraded to Ruby 3.2.2
123 |  * Upgraded Node 16 LTS -> 18 LTS.
124 | 
125 | ## 2.5.0 (release date: 2023-01-26)
126 |  * Upgraded to Phusion Passenger 6.0.17 (from 6.0.16).
127 |  * Added a Ruby 3.2.0 image
128 |  * Added a JRuby 9.4.0.0 image
129 |  * Change to installing Node via Node Source (in Ruby images) instead of using outdated distro version, Node images already did this.
130 | 
131 | ## 2.4.1 (release date: 2022-12-20)
132 |  * Fixed tmpdir issue with Passenger 6.0.16
133 | 
134 | ## 2.4.0 (release date: 2022-12-19)
135 |  * Removed Ruby 2.6 (end of life was March 31, 2022)
136 |  * Upgraded to Ruby 2.7.7
137 |  * Upgraded to Ruby 3.0.5
138 |  * Upgraded to Ruby 3.1.3
139 |  * Upgraded to JRuby 9.3.9.0 (from 9.3.4.0)
140 | 
141 | ## 2.3.1 (release date: 2022-09-19)
142 |  * Upgraded to Phusion Passenger 6.0.15 (from 6.0.14).
143 | 
144 | ## 2.3.0 (release date: 2022-05-10)
145 |  * Upgraded to Phusion Passenger 6.0.14 (from 6.0.13).
146 |  * Upgraded to Ruby 2.6.10
147 |  * Upgraded to Ruby 2.7.6
148 |  * Upgraded to Ruby 3.0.4
149 |  * Upgraded to Ruby 3.1.2
150 | 
151 | ## 2.2.0 (release date: 2022-03-29)
152 |  * Upgraded to JRuby 9.3.4.0 (from 9.3.0.0).
153 |  * Upgraded to Phusion Passenger 6.0.13 (from 6.0.12).
154 |  * Added Ruby 3.1.1 image.
155 | 
156 | ## 2.1.0 (release date: 2021-12-07)
157 |  * Upgraded to Ruby 2.6.9
158 |  * Upgraded to Ruby 2.7.5
159 |  * Upgraded to Ruby 3.0.3
160 |  * Switched the ruby shims to use rvm wrappers, to hopefully address some ruby-environment instability.
161 | 
162 | ## 2.0.1 (release date: 2021-11-05)
163 |  * Added tzdata for Ruby convienience.
164 |  * Upgraded to Phusion Passenger 6.0.12 (from 6.0.11).
165 |  * Upgraded Node 14 LTS -> 16 LTS.
166 | 
167 | ## 2.0.0 (release date: 2021-10-01)
168 |  * Upgraded to Phusion Passenger 6.0.11 (from 6.0.10).
169 |  * Upgraded to latest baseimage.
170 |  * Inlcude fix for expired Let's Encrypt root certificate.
171 |  * Upgraded to JRuby 9.3.0.0 with openjdk-17.
172 |  * Dropped ruby 2.4 and 2.5 images, they're EOL.
173 | 
174 | ## 1.0.19 (release date: 2021-07-19)
175 |  * Fixed wrong Ruby 3 being deleted (3.0.2 instead of 3.0.1 was deleted, 3.0.2 now restored and 3.0.1 removed).
176 | 
177 | ## 1.0.18 (release date: 2021-07-19)
178 |  * Fixed additional unwanted Rubies being present.
179 | 
180 | ## 1.0.17 (release date: 2021-07-19)
181 |  * Upgraded to Ruby 2.6.8
182 |  * Upgraded to Ruby 2.7.4
183 |  * Upgraded to Ruby 3.0.2
184 | 
185 | ## 1.0.16 (release date: 2021-07-14)
186 |  * Upgraded to Phusion Passenger 6.0.10 (from 6.0.9).
187 | 
188 | ## 1.0.15 (release date: 2021-06-02)
189 |  * Upgraded to Phusion Passenger 6.0.9 (from 6.0.8).
190 |  * This version includes a workaround for issue #313, which will be fixed properly with Passsenger 6.0.10.
191 | 
192 | ## 1.0.14 (release date: 2021-05-06)
193 |  * Upgraded to Ruby 2.5.9
194 |  * Upgraded to Ruby 2.6.7
195 |  * Upgraded to Ruby 2.7.3
196 |  * Upgraded to Ruby 3.0.1
197 | 
198 | ## 1.0.13 (release date: 2021-04-01)
199 |  * Upgraded to Phusion Passenger 6.0.8 (from 6.0.7).
200 |  * Added support for Ruby 3.0.0.
201 | 
202 | ## 1.0.12 (release date: 2020-11-18)
203 |  * Upgraded to Phusion Passenger 6.0.7 (from 6.0.6).
204 |  * Upgraded to Ruby 2.7.2 (from 2.7.1).
205 |  * Default Ruby set to 2.7.2.
206 |  * Upgraded to JRuby 9.2.13.0 with openjdk-14.
207 |  * Upgraded to Node.js 14 LTS (from 10).
208 |  * Switched image base to the baseimage-docker master tag.
209 |  * Upgraded to Ubuntu 20.04.
210 |  * Dropped support for Ruby 2.3.
211 |  * Upgraded to Nginx 1.18.0.
212 | 
213 | ## 1.0.11 (release date: 2020-07-14)
214 |  * Upgraded to Phusion Passenger 6.0.6 (from 6.0.5).
215 | 
216 | ## 1.0.10 (release date: 2020-05-29)
217 |  * Upgraded to Ruby 2.4.10.
218 |  * Upgraded to Ruby 2.5.8.
219 |  * Upgraded to Ruby 2.6.6.
220 |  * Upgraded to JRuby 9.2.11.1.
221 |  * Added support for Ruby 2.7.1.
222 |  * Default ruby set to 2.7.1.
223 |  * Upgraded to Phusion Passenger 6.0.5 (from 6.0.4).
224 | 
225 | ## 1.0.9 (release date: 2019-11-25)
226 |  * Upgraded to Ruby 2.4.9.
227 |  * Upgraded to Ruby 2.5.7.
228 |  * Upgraded to Ruby 2.6.5.
229 |  * Default ruby set to 2.6.5.
230 | 
231 | ## 1.0.8 (release date: 2019-09-17)
232 | 
233 |  * Upgraded to Phusion Passenger 6.0.4 (from 6.0.3).
234 | 
235 | ## 1.0.7 (release date: 2019-09-12)
236 | 
237 |  * Upgraded to Phusion Passenger 6.0.3 (from 6.0.2).
238 | 
239 | ## 1.0.6 (release date: 2019-07-02)
240 |  * Upgraded to Ruby 2.4.6.
241 |  * Upgraded to Ruby 2.6.3.
242 |  * reopen passenger logs in logrotate script. Closes GH-255.
243 |  * Defers installing bundler to rvm. Closes GH-260.
244 | 
245 | ## 1.0.5 (release date: 2019-03-15)
246 |  * Upgraded to Ruby 2.5.5.
247 | 
248 | ## 1.0.4 (release date: 2019-03-14)
249 |  * Upgraded to Ruby 2.5.4.
250 |  * Upgraded to Ruby 2.6.2.
251 |  * Upgraded to JRuby 9.2.5.0.
252 | 
253 | ## 1.0.3 (release date: 2019-02-25)
254 | 
255 |  * Upgraded to Phusion Passenger 6.0.2 (from 6.0.1).
256 | 
257 | ## 1.0.2 (release date: 2019-02-06)
258 | 
259 |  * Update signing keys from rvm.io. Closes GH-234.
260 |  * Upgraded to Phusion Passenger 6.0.1 (from 6.0.0).
261 | 
262 | ## 1.0.1 (release date: 2018-11-30)
263 | 
264 |  * Upgraded to Phusion Passenger 6.0.0 (from 5.3.6).
265 | 
266 | ## 1.0.0 (release date: 2018-11-06)
267 | 
268 |  * Upgraded to baseimage-docker 0.11.
269 |  * Upgraded to Ubuntu 18.04.
270 |  * Upgraded to Phusion Passenger 5.3.6.
271 |  * Upgraded to Nginx 1.14.0.
272 |  * Upgraded to Ruby 2.5.3.
273 |  * Upgraded to Ruby 2.4.5.
274 |  * Upgraded to Ruby 2.3.8.
275 |  * Upgraded to JRuby 9.2.0.0.
276 |  * Upgraded to Redis 4.0.
277 |  * Dropped Ruby 2.0, 2.1 and 2.2.
278 | 
279 | ## 0.9.35 (release date: 2018-08-01)
280 | 
281 |  * Upgraded to Phusion Passenger 5.3.4 (from 5.3.3).
282 | 
283 | ## 0.9.34 (release date: 2018-06-26)
284 | 
285 |  * Upgraded to Phusion Passenger 5.3.3 (from 5.3.2).
286 | 
287 | ## 0.9.33 (release date: 2018-06-12)
288 | 
289 |  * Upgraded to Phusion Passenger 5.3.2 (from 5.3.1).
290 |  * Upgraded to baseimage-docker 0.10.1 (from 0.9.22).
291 | 
292 | ## 0.9.32 (release date: 2018-05-14)
293 | 
294 |  * Upgraded to Phusion Passenger 5.3.1 (from 5.3.0).
295 | 
296 | ## 0.9.31 (release date: 2018-05-09)
297 | 
298 |  * Upgraded to Phusion Passenger 5.3.0 (from 5.2.3).
299 | 
300 | ## 0.9.30 (release date: 2018-04-06)
301 | 
302 |  * Upgraded to Phusion Passenger 5.2.3 (from 5.2.1).
303 |  * Upgraded to Node.js 8.11.1 LTS Carbon (from 8.9.4).
304 |  * Thanks to contribution by ledermann (PR 214):
305 |    - Upgraded to Ruby 2.5.1 (from 2.5.0).
306 |    - Upgraded to Ruby 2.4.4 (from 2.4.2).
307 |    - Upgraded to Ruby 2.3.7 (from 2.3.6).
308 |    - Upgraded to Ruby 2.2.10 (from 2.2.9).
309 | 
310 | 
311 | ## 0.9.29 (release date: 2018-02-27)
312 | 
313 |  * Upgraded to Phusion Passenger 5.2.1 (from 5.2.0).
314 |  * Hints about app permission in container. Thanks to contribution by skunkworker (PR 206)
315 |  * Thanks to contribution by ledermann (PR 204):
316 |    - Added build for Ruby 2.5 (2.5.0).
317 |    - Upgraded to Ruby 2.4.3 (from 2.4.2).
318 |    - Upgraded to Ruby 2.3.6 (from 2.3.5).
319 |    - Upgraded to Ruby 2.2.9 (from 2.2.8).
320 |  * Upgraded to Node.js 8.9.4 LTS (from 7.10.0, sticking to LTS releases from now).
321 |  * Updated Makefile to also push latest tag. Closes GH-197.
322 | 
323 | ## 0.9.28 (release date: 2018-01-29)
324 | 
325 |  * Upgraded to Phusion Passenger 5.2.0 (from 5.1.12).
326 | 
327 | ## 0.9.27 (release date: 2017-11-23)
328 | 
329 |  * Upgraded to Phusion Passenger 5.1.12 (from 5.1.11).
330 | 
331 | ## 0.9.26 (release date: 2017-10-16)
332 | 
333 |  * Upgraded to Phusion Passenger 5.1.11 (from 5.1.8).
334 |  * Upgraded to Ruby 2.4.2 (from 2.4.1).
335 |  * Upgraded to Ruby 2.3.5 (from 2.3.3).
336 |  * Upgraded to Ruby 2.2.8 (from 2.2.5).
337 | 
338 | ## 0.9.25 (release date: 2017-08-23)
339 | 
340 |  * Upgraded to Phusion Passenger 5.1.8 (from 5.1.7).
341 | 
342 | ## 0.9.24 (release date: 2017-08-01)
343 | 
344 |  * Upgraded to Phusion Passenger 5.1.7 (from 5.1.6).
345 | 
346 | ## 0.9.23 (release date: 2017-07-24)
347 | 
348 |  * Upgraded to Phusion Passenger 5.1.6 (from 5.1.5).
349 | 
350 | ## 0.9.22 (release date: 2017-06-19)
351 | 
352 |  * Upgraded to Phusion Passenger 5.1.5 (from 5.1.4).
353 |  * Upgraded to Ruby 2.4.1 (from 2.4.0).
354 |  * Upgraded to baseimage-docker 0.9.22 (from 0.9.21).
355 | 
356 | ## 0.9.21 (release date: 2017-05-18)
357 | 
358 |  * Upgraded to Phusion Passenger 5.1.4.
359 |  * Upgraded to baseimage-docker 0.9.21.
360 |  * Upgraded to Node.js 7.10.0.
361 |  * Fixed RVM warning about the PATH unnecessarily. Closes GH-150 and GH-178.
362 |  * Fixed a race condition in nginx-log-forwarder. Closes GH-183 and GH-182.
363 | 
364 | ## 0.9.20 (release date: 2017-01-10)
365 | 
366 |  * Upgraded to Phusion Passenger 5.1.1.
367 |  * Upgraded to Ruby 2.3.3.
368 |  * Added support for Ruby 2.4.0.
369 | 
370 | ## 0.9.19 (release date: 2016-07-11)
371 | 
372 |  * Upgraded to baseimage-docker 0.9.19.
373 |  * Upgraded to Ubuntu 16.04 with security updates as of July 11, 2016.
374 |  * Upgraded to Phusion Passenger 5.0.29.
375 |  * Upgraded Redis to 3.0.
376 |  * We now use RVM to manage Ruby interpreters, instead of the Brightbox APT repository. Please see the README for rationale.
377 |  * Removed support for Ruby 1.9.
378 |  * Added support for Ruby 2.3.1.
379 |  * Upgraded to Ruby 2.1.9 and 2.2.5.
380 |  * Upgraded to JRuby 9.1.2.0. We are still on OpenJDK 8 because there is a problem with JRuby and OpenJDK 9.
381 |  * Upgraded to Node.js 4.2.6.
382 |  * ImageMagick is no longer included (needed by rmagick and minimagick). This shaves around 120 MB. If you need it you should install it yourself.
383 |  * Man pages, documentation and non-English locales are now removed. This shaves around 64 MB.
384 |  * Gzip support in Nginx is now correctly enabled by default. Closes GH-115.
385 |  * Nginx log rotation has now been fixed. Closes GH-113.
386 | 
387 | ## 0.9.18 (release date: 2015-12-08)
388 | 
389 |  * Upgraded to Phusion Passenger 5.0.22.
390 |  * Upgraded to baseimage-docker 0.9.17.
391 |  * Upgraded to Ruby 2.1.7 and 2.2.3.
392 |  * Upgraded to JRuby 9.0.4.0.
393 |  * Upgraded to Node.js 0.12.9.
394 | 
395 | ## 0.9.17 (release date: 2015-08-04)
396 | 
397 |  * Upgraded to Phusion Passenger 5.0.15.
398 |  * Upgraded to JRuby 9.0.0.0. Closes GH-99.
399 |  * Fixed passenger-full containing Node.js 0.12 instead of 0.10. Closes GH-96.
400 | 
401 | ## 0.9.16 (release date: 2015-07-15)
402 | 
403 |  * The latest OpenSSL updates have been pulled in. This fixes [CVE-2015-1793](http://openssl.org/news/secadv_20150709.txt). Upgrading is strongly recommended.
404 |  * Upgraded to baseimage-docker 0.9.17.
405 |  * Upgraded to Phusion Passenger 5.0.14.
406 |  * Upgraded to Ruby 2.1.6 and 2.2.2.
407 |  * Upgraded to JRuby 1.7.21.
408 |  * Upgraded to Node.js 0.12.7.
409 |  * Fixed Ruby tool shebang lines in the passenger-full image variant. Closes GH-78.
410 | 
411 | ## 0.9.15 (release date: 2015-01-23)
412 | 
413 |  * Upgraded to baseimage-docker 0.9.16.
414 |  * Upgraded to Phusion Passenger 4.0.58.
415 |  * Support for Ruby 2.2. Closes GH-64.
416 |  * Support for JRuby 1.7.18. Thanks to Per Lundberg. Closes GH-65.
417 |  * It is now possible to allow users to override the value of `RAILS_ENV`, `NODE_ENV` etc at runtime. Please refer to the documentation for details ("Application environment name (`RAILS_ENV`, `NODE_ENV`, etc)").
418 |  * In order to work around [an AUFS bug](https://github.com/docker/docker/issues/783), the `/build` directory has been renamed to `/pd_build`.
419 |  * Pups has been removed.
420 |  * Non-Ruby 1.9 images no longer contain Ruby 1.9. This is because a bug in the Phusion Passenger Debian packages has been fixed.
421 |  * Qt has been removed from the Ruby images because it's not used by a lot of Ruby apps. This reduces the image size by ~150 MB. Closes GH-52.
422 |  * Documentation updates, some of which are contributed by Olle Jonsson. Closes GH-33. Closes GH-62.
423 | 
424 | ## 0.9.14 (release date: 2014-10-03)
425 | 
426 |  * Upgraded to baseimage-docker 0.9.15, which fixes the setuid bit on /usr/bin/sudo. This problem was caused by Docker bug #6828.
427 | 
428 | ## 0.9.13 (release date: 2014-10-01)
429 | 
430 |  * Upgraded to baseimage-docker 0.9.14. This applies all the latest Ubuntu security updates, and patches Shellshock among other things.
431 |  * Upgraded to Phusion Passenger 4.0.53 and Nginx 1.6.2.
432 |  * Some documentation updates by Martijn Heemels.
433 | 
434 | ## 0.9.12 (release date: 2014-08-22)
435 | 
436 |  * Upgraded to baseimage-docker 0.9.13.
437 |  * Upgraded to Phusion Passenger 4.0.49 and Nginx 1.6.1.
438 |  * Fixed some bugs in ruby-switch. Thanks to John C Banks. Closes GH-47.
439 |  * Code cleanups thanks to Aris Pikeas. Closes GH-43.
440 |  * Fixed passenger-customizable build scripts from failing due to absence of `ruby_switch`. Closes GH-34.
441 |  * The build scripts in passenger-customizable now automatically run `apt-get update` when necessary.
442 |  * Development headers are now included by default in all Ruby images. Closes GH-44.
443 | 
444 | ## 0.9.11 (release date: 2014-06-25)
445 | 
446 |  * Upgraded to baseimage-docker 0.9.11.
447 |  * Upgraded to Phusion Passenger 4.0.45.
448 |  * The baseimage-docker insecure key was erroneously still installed by default for the 'app' user. It has now been removed.
449 |  * The 'full' image didn't properly include Python 2.7. This has been fixed.
450 |  * Nginx error logs are now forwarded to the Docker logs.
451 | 
452 | ## 0.9.10 (release date: 2014-05-13)
453 | 
454 |  * Upgraded to baseimage-docker 0.9.10 and Ubuntu 14.04.
455 |  * Upgraded to Nginx 1.6.0.
456 |  * Upgraded to Phusion Passenger 4.0.42.
457 |  * Ruby 1.8 support has been removed because it is no longer available on Ubuntu 14.04.
458 |  * It is now possible to put additional Nginx configuration in the directory /etc/nginx/main.d. This works like /etc/nginx/conf.d, but config files are included in the main context, not in the http context. It is ideal for adding things like `env` directives. Thanks to javereec for documentation contribution.
459 |  * The Phusion Passenger native extension is now precompiled for for all Ruby interpreters.
460 | 
461 | ## 0.9.9 (release date: 2014-03-25)
462 | 
463 |  * Upgraded to baseimage-docker 0.9.9.
464 |  * Upgraded to Phusion Passenger 4.0.40.
465 |  * Upgraded to Nginx 1.4.7. This also fixes several Nginx vulnerabilities.
466 |  * Ports 80 and 443 are now by default made available for Docker linking.
467 |  * Redis and Memcached have been reintroduced, but only in the `passenger-customizable` and `passenger-full` images.
468 |  * Various minor improvements. (Amir Gur)
469 | 
470 | ## 0.9.8 (release date: 2014-02-26)
471 | 
472 |  * Upgraded to baseimage-docker 0.9.8.
473 | 
474 | ## 0.9.7 (release date: 2014-02-25)
475 | 
476 |  * Upgraded to baseimage-docker 0.9.7.
477 | 
478 | ## 0.9.6 (release date 2013-02-06)
479 | 
480 |  * Upgraded to baseimage-docker 0.9.5.
481 | 
482 | ## 0.9.5 (release date 2013-02-03)
483 | 
484 |  * Upgraded to baseimage-docker 0.9.4, which fixes a syslog-ng startup problem.
485 | 
486 | ## 0.9.4 (release date 2013-02-01)
487 | 
488 |  * Upgraded to Phusion Passenger 4.0.37, which improves Node.js and Meteor support and fixes many bugs.
489 |  * Upgraded to baseimage-docker 0.9.3.
490 |  * Added support for Ruby 2.1. This is available in the phusion/passenger-ruby21 image.
491 |  * Reintroduced the phusion/passenger-full image.
492 | 
493 | ## 0.9.3 (release date 2013-12-12)
494 | 
495 |  * Upgraded to Phusion Passenger 4.0.28.
496 |  * Upgraded to baseimage-docker 0.9.2.
497 |  * passenger-docker has been split into multiple versions, each one targeted at only a single programming language. The following images are now available on the Docker index: phusion/passenger-ruby18, phusion/passenger-ruby19, phusion/passenger-ruby20, phusion/passenger-python, phusion/passenger-nodejs. There is also a phusion/passenger-customizable image which allows you to easily have multiple languages in a single container.
498 | 
499 | ## 0.9.2 (release date 2013-11-13)
500 | 
501 |  * Fixed the pups wrapper script.
502 | 
503 | ## 0.9.1 (release date 2013-11-12)
504 | 
505 |  * Upgraded to baseimage-docker 0.9.1.
506 | 
507 | ## 0.9.0 (release date 2013-11-12)
508 | 
509 |  * Initial release.
510 | 


--------------------------------------------------------------------------------
/image/ruby_support/rvm-install.sh:
--------------------------------------------------------------------------------
  1 | #!/usr/bin/env bash
  2 | 
  3 | shopt -s extglob
  4 | set -o errtrace
  5 | set -o errexit
  6 | set -o pipefail
  7 | 
  8 | rvm_install_initialize()
  9 | {
 10 |   DEFAULT_SOURCES=(github.com/rvm/rvm bitbucket.org/mpapis/rvm)
 11 | 
 12 |   BASH_MIN_VERSION="3.2.25"
 13 |   if
 14 |     [[ -n "${BASH_VERSION:-}" &&
 15 |       "$(\printf "%b" "${BASH_VERSION:-}\n${BASH_MIN_VERSION}\n" | LC_ALL=C \sort -t"." -k1,1n -k2,2n -k3,3n | \head -n1)" != "${BASH_MIN_VERSION}"
 16 |     ]]
 17 |   then
 18 |     echo "BASH ${BASH_MIN_VERSION} required (you have $BASH_VERSION)"
 19 |     exit 1
 20 |   fi
 21 | 
 22 |   export HOME PS4
 23 |   export rvm_trace_flag rvm_debug_flag rvm_user_install_flag rvm_ignore_rvmrc rvm_prefix rvm_path
 24 | 
 25 |   PS4="+ \${BASH_SOURCE##\${rvm_path:-}} : \${FUNCNAME[0]:+\${FUNCNAME[0]}()}  \${LINENO} > "
 26 | }
 27 | 
 28 | log()  { printf "%b\n" "$*"; }
 29 | debug(){ [[ ${rvm_debug_flag:-0} -eq 0 ]] || printf "%b\n" "$*" >&2; }
 30 | warn() { log "WARN: $*" >&2 ; }
 31 | fail() { fail_with_code 1 "$*" ; }
 32 | fail_with_code() { code="$1" ; shift ; log "\nERROR: $*\n" >&2 ; exit "$code" ; }
 33 | 
 34 | rvm_install_commands_setup()
 35 | {
 36 |   \which which >/dev/null 2>&1 || fail "Could not find 'which' command, make sure it's available first before continuing installation."
 37 |   \which grep >/dev/null 2>&1 || fail "Could not find 'grep' command, make sure it's available first before continuing installation."
 38 |   if
 39 |     [[ -z "${rvm_tar_command:-}" ]] && builtin command -v gtar >/dev/null
 40 |   then
 41 |     rvm_tar_command=gtar
 42 |   elif
 43 |     ${rvm_tar_command:-tar} --help 2>&1 | GREP_OPTIONS="" \grep -- --strip-components >/dev/null
 44 |   then
 45 |     rvm_tar_command="${rvm_tar_command:-tar}"
 46 |   else
 47 |     case "$(uname)" in
 48 |       (OpenBSD)
 49 |         log "Trying to install GNU version of tar, might require sudo password"
 50 |         if (( UID ))
 51 |         then sudo pkg_add -z gtar-1
 52 |         else pkg_add -z gtar-1
 53 |         fi
 54 |         rvm_tar_command=gtar
 55 |         ;;
 56 |       (Darwin|FreeBSD|DragonFly) # it's not possible to autodetect on OSX, the help/man does not mention all flags
 57 |         rvm_tar_command=tar
 58 |         ;;
 59 |       (SunOS)
 60 |         case "$(uname -r)" in
 61 |           (5.10)
 62 |             log "Trying to install GNU version of tar, might require sudo password"
 63 |             if (( UID ))
 64 |             then
 65 |               if \which sudo >/dev/null 2>&1
 66 |               then sudo_10=sudo
 67 |               elif \which /opt/csw/bin/sudo >/dev/null 2>&1
 68 |               then sudo_10=/opt/csw/bin/sudo
 69 |               else fail "sudo is required but not found. You may install sudo from OpenCSW repository (https://www.opencsw.org/about)"
 70 |               fi
 71 |               pkginfo -q CSWpkgutil || $sudo_10 pkgadd -a $rvm_path/config/solaris/noask -d https://get.opencsw.org/now CSWpkgutil
 72 |               sudo /opt/csw/bin/pkgutil -iy CSWgtar -t https://mirror.opencsw.org/opencsw/unstable
 73 |             else
 74 |               pkginfo -q CSWpkgutil || pkgadd -a $rvm_path/config/solaris/noask -d https://get.opencsw.org/now CSWpkgutil
 75 |               /opt/csw/bin/pkgutil -iy CSWgtar -t https://mirror.opencsw.org/opencsw/unstable
 76 |             fi
 77 |             rvm_tar_command=/opt/csw/bin/gtar
 78 |             ;;
 79 |           (*)
 80 |             rvm_tar_command=tar
 81 |             ;;
 82 |         esac
 83 |     esac
 84 |     builtin command -v ${rvm_tar_command:-gtar} >/dev/null ||
 85 |     fail "Could not find GNU compatible version of 'tar' command, make sure it's available first before continuing installation."
 86 |   fi
 87 |   if
 88 |     [[ " ${rvm_tar_options:-} " != *" --no-same-owner "*  ]] &&
 89 |     $rvm_tar_command --help 2>&1 | GREP_OPTIONS="" \grep -- --no-same-owner >/dev/null
 90 |   then
 91 |     rvm_tar_options="${rvm_tar_options:-}${rvm_tar_options:+ }--no-same-owner"
 92 |   fi
 93 | }
 94 | 
 95 | usage()
 96 | {
 97 |   printf "%b" "
 98 | 
 99 | Usage
100 | 
101 |   rvm-installer [options] [action]
102 | 
103 | Options
104 | 
105 |   [[--]version] <version>
106 | 
107 |     The version or tag to install. Valid values are:
108 | 
109 |       latest         - The latest tagged version.
110 |       latest-minor   - The latest minor version of the current major version.
111 |       latest-<x>     - The latest minor version of version x.
112 |       latest-<x>.<y> - The latest patch version of version x.y.
113 |       <x>.<y>.<z>    - Major version x, minor version y and patch z.
114 | 
115 |   [--]branch <branch>
116 | 
117 |     The name of the branch from which RVM is installed. This option can be used
118 |     with the following formats for <branch>:
119 | 
120 |       <account>/
121 | 
122 |         If account is rvm or mpapis, installs from one of the following:
123 | 
124 |           https://github.com/rvm/rvm/archive/master.tar.gz
125 |           https://bitbucket.org/mpapis/rvm/get/master.tar.gz
126 | 
127 |        Otherwise, installs from:
128 | 
129 |          https://github.com/<account>/rvm/archive/master.tar.gz
130 | 
131 |       <account>/<branch>
132 | 
133 |         If account is rvm or mpapis, installs from one of the following:
134 | 
135 |           https://github.com/rvm/rvm/archive/<branch>.tar.gz
136 |           https://bitbucket.org/mpapis/rvm/get/<branch>.tar.gz
137 | 
138 |         Otherwise, installs from:
139 | 
140 |           https://github.com/<account>/rvm/archive/<branch>.tar.gz
141 | 
142 |       [/]<branch>
143 | 
144 |         Installs the branch from one of the following:
145 | 
146 |           https://github.com/rvm/rvm/archive/<branch>.tar.gz
147 |           https://bitbucket.org/mpapis/rvm/get/<branch>.tar.gz
148 | 
149 |       [--]source <source>
150 | 
151 |         Defines the repository from which RVM is retrieved and installed in the format:
152 | 
153 |           <domain>/<account>/<repo>
154 | 
155 |         Where:
156 | 
157 |           <domain>  - Is bitbucket.org, github.com or a github enterprise site serving
158 |                       an RVM repository.
159 |           <account> - Is the user account in which the RVM repository resides.
160 |           <repo>    - Is the name of the RVM repository.
161 | 
162 |         Note that when using the [--]source option, one should only use the [/]branch format
163 |         with the [--]branch option. Failure to do so will result in undefined behavior.
164 | 
165 |       --trace
166 | 
167 |         Provides debug logging for the installation script.
168 | Actions
169 | 
170 |   master - Installs RVM from the master branch at rvm/rvm on github or mpapis/rvm
171 |            on bitbucket.org.
172 |   stable - Installs RVM from the stable branch a rvm/rvm on github or mpapis/rvm
173 |            on bitbucket.org.
174 |   help   - Displays this output.
175 | 
176 | "
177 | }
178 | 
179 | ## duplication marker 32fosjfjsznkjneuera48jae
180 | __rvm_curl_output_control()
181 | {
182 |   if
183 |     (( ${rvm_quiet_curl_flag:-0} == 1 ))
184 |   then
185 |     __flags+=( "--silent" "--show-error" )
186 |   elif
187 |     [[ " $*" == *" -s"* || " $*" == *" --silent"* ]]
188 |   then
189 |     # make sure --show-error is used with --silent
190 |     [[ " $*" == *" -S"* || " $*" == *" -sS"* || " $*" == *" --show-error"* ]] ||
191 |     {
192 |       __flags+=( "--show-error" )
193 |     }
194 |   fi
195 | }
196 | 
197 | ## duplication marker 32fosjfjsznkjneuera48jae
198 | # -S is automatically added to -s
199 | __rvm_curl()
200 | (
201 |   __rvm_which curl >/dev/null ||
202 |   {
203 |     rvm_error "RVM requires 'curl'. Install 'curl' first and try again."
204 |     return 200
205 |   }
206 | 
207 |   typeset -a __flags
208 |   __flags=( --fail --location --max-redirs 10 )
209 | 
210 |   [[ "$*" == *"--max-time"* ]] ||
211 |   [[ "$*" == *"--connect-timeout"* ]] ||
212 |     __flags+=( --connect-timeout 30 --retry-delay 2 --retry 3 )
213 | 
214 |   if [[ -n "${rvm_proxy:-}" ]]
215 |   then __flags+=( --proxy "${rvm_proxy:-}" )
216 |   fi
217 | 
218 |   __rvm_curl_output_control
219 | 
220 |   unset curl
221 |   __rvm_debug_command \curl "${__flags[@]}" "$@" || return $?
222 | )
223 | 
224 | rvm_error()  { printf "ERROR: %b\n" "$*"; }
225 | __rvm_which(){   which "$@" || return $?; true; }
226 | __rvm_debug_command()
227 | {
228 |   debug "Running($#): $*"
229 |   "$@" || return $?
230 |   true
231 | }
232 | rvm_is_a_shell_function()
233 | {
234 |   [[ -t 0 && -t 1 ]] || return $?
235 |   return ${rvm_is_not_a_shell_function:-0}
236 | }
237 | 
238 | # Searches the tags for the highest available version matching a given pattern.
239 | # fetch_version (github.com/rvm/rvm bitbucket.org/mpapis/rvm) 1.10. -> 1.10.3
240 | # fetch_version (github.com/rvm/rvm bitbucket.org/mpapis/rvm) 1.10. -> 1.10.3
241 | # fetch_version (github.com/rvm/rvm bitbucket.org/mpapis/rvm) 1.    -> 1.11.0
242 | # fetch_version (github.com/rvm/rvm bitbucket.org/mpapis/rvm) ""    -> 2.0.1
243 | fetch_version()
244 | {
245 |   typeset _account _domain _pattern _repo _sources _values _version
246 |   _sources=(${!1})
247 |   _pattern=$2
248 |   for _source in "${_sources[@]}"
249 |   do
250 |     IFS='/' read -r _domain _account _repo <<< "${_source}"
251 |     _version="$(
252 |       fetch_versions ${_domain} ${_account} ${_repo} |
253 |       GREP_OPTIONS="" \grep "^${_pattern:-}" | tail -n 1
254 |     )"
255 |     if
256 |       [[ -n ${_version} ]]
257 |     then
258 |       echo "${_version}"
259 |       return 0
260 |     fi
261 |   done
262 |   fail_with_code 4 "Exhausted all sources trying to fetch version '$version' of RVM!"
263 | }
264 | 
265 | # Returns a sorted list of most recent tags from a repository
266 | fetch_versions()
267 | {
268 |   typeset _account _domain _repo _url
269 |   _domain=$1
270 |   _account=$2
271 |   _repo=$3
272 |   case ${_domain} in
273 |     (bitbucket.org)
274 |       _url="https://api.${_domain}/2.0/repositories/${_account}/${_repo}/refs/tags?sort=-name&pagelen=20"
275 |       ;;
276 |     (github.com)
277 |       _url=https://api.${_domain}/repos/${_account}/${_repo}/tags
278 |       ;;
279 | 
280 |     (*)
281 |       _url=https://${_domain}/api/v3/repos/${_account}/${_repo}/tags
282 |       ;;
283 |   esac
284 | 
285 |   { __rvm_curl -sS "${_url}" || warn "...the preceeding error with code $? occurred while fetching $_url" ; } |
286 |     \awk -v RS=',|values":' -v FS='"' '$2=="name"&&$4!="rvm"{print $4}' |
287 |     sort -t. -k 1,1n -k 2,2n -k 3,3n -k 4,4n -k 5,5n
288 | }
289 | 
290 | install_release()
291 | {
292 |   typeset _source _sources _url _version _verify_pgp
293 |   _sources=(${!1})
294 |   _version=$2
295 |   debug "Downloading RVM version ${_version}"
296 |   for _source in "${_sources[@]}"
297 |   do
298 |     case ${_source} in
299 |       (bitbucket.org*)
300 |         _url="https://${_source}/get/${_version}.tar.gz"
301 |         _verify_pgp="https://${_source}/downloads/${_version}.tar.gz.asc"
302 |         ;;
303 |       (*)
304 |         _url="https://${_source}/archive/${_version}.tar.gz"
305 |         _verify_pgp="https://${_source}/releases/download/${_version}/${_version}.tar.gz.asc"
306 |         ;;
307 |     esac
308 |     get_and_unpack "${_url}" "rvm-${_version}.tgz" "$_verify_pgp" && return
309 |   done
310 |   return $?
311 | }
312 | 
313 | install_head()
314 | {
315 |   typeset _branch _source _sources _url
316 |   _sources=(${!1})
317 |   _branch=$2
318 |   debug "Selected RVM branch ${_branch}"
319 |   for _source in "${_sources[@]}"
320 |   do
321 |     case ${_source} in
322 |       (bitbucket.org*)
323 |         _url=https://${_source}/get/${_branch}.tar.gz
324 |         ;;
325 |       (*)
326 |         _url=https://${_source}/archive/${_branch}.tar.gz
327 |         ;;
328 |     esac
329 |     get_and_unpack "${_url}" "rvm-${_branch//\//_}.tgz" && return
330 |   done
331 |   return $?
332 | }
333 | 
334 | # duplication marker dfkjdjngdfjngjcszncv
335 | # Drop in cd which _doesn't_ respect cdpath
336 | __rvm_cd()
337 | {
338 |   typeset old_cdpath ret
339 |   ret=0
340 |   old_cdpath="${CDPATH}"
341 |   CDPATH="."
342 |   chpwd_functions="" builtin cd "$@" || ret=$?
343 |   CDPATH="${old_cdpath}"
344 |   return $ret
345 | }
346 | 
347 | get_package()
348 | {
349 |   typeset _url _file
350 |   _url="$1"
351 |   _file="$2"
352 |   log "Downloading ${_url}"
353 |   __rvm_curl -sS ${_url} > ${rvm_archives_path}/${_file} ||
354 |   {
355 |     _return=$?
356 |     case $_return in
357 |       # duplication marker lfdgzkngdkjvnfjknkjvcnbjkncvjxbn
358 |       (60)
359 |         log "
360 | Could not download '${_url}', you can read more about it here:
361 | https://rvm.io/support/fixing-broken-ssl-certificates/
362 | To continue in insecure mode run 'echo insecure >> ~/.curlrc'.
363 | "
364 |         ;;
365 |       # duplication marker lfdgzkngdkjvnfjknkjvcnbjkncvjxbn
366 |       (77)
367 |         log "
368 | It looks like you have old certificates, you can read more about it here:
369 | https://rvm.io/support/fixing-broken-ssl-certificates/
370 | "
371 |         ;;
372 |       # duplication marker lfdgzkngdkjvnfjknkjvcnbjkncvjxbn
373 |       (141)
374 |         log "
375 | Curl returned 141 - it is result of a segfault which means it's Curls fault.
376 | Try again and if it crashes more than a couple of times you either need to
377 | reinstall Curl or consult with your distribution manual and contact support.
378 | "
379 |         ;;
380 |       (*)
381 |         log "
382 | Could not download '${_url}'.
383 |   curl returned status '$_return'.
384 | "
385 |         ;;
386 |     esac
387 |     return $_return
388 |   }
389 | }
390 | 
391 | # duplication marker flnglfdjkngjndkfjhsbdjgfghdsgfklgg
392 | rvm_install_gpg_setup()
393 | {
394 |   export rvm_gpg_command
395 |   {
396 |     rvm_gpg_command="$( \which gpg2 2>/dev/null )" &&
397 |     [[ ${rvm_gpg_command} != "/cygdrive/"* ]]
398 |   } || {
399 |     rvm_gpg_command="$( \which gpg 2>/dev/null )" &&
400 |     [[ ${rvm_gpg_command} != "/cygdrive/"* ]]
401 |   } || rvm_gpg_command=""
402 | 
403 |   debug "Detected GPG program: '$rvm_gpg_command'"
404 | 
405 |   [[ -n "$rvm_gpg_command" ]] || return $?
406 | }
407 | 
408 | # duplication marker rdjgndfnghdfnhgfdhbghdbfhgbfdhbn
409 | verify_package_pgp()
410 | {
411 |   if
412 |     "${rvm_gpg_command}" --verify "$2" "$1"
413 |   then
414 |     log "GPG verified '$1'"
415 |   else
416 |     typeset _return=$?
417 | 
418 |     log "\
419 | GPG signature verification failed for '$1' - '$3'! Try to install GPG v2 and then fetch the public key:
420 | 
421 |     ${SUDO_USER:+sudo }${rvm_gpg_command##*/} --keyserver hkp://keyserver.ubuntu.com --recv-keys 409B6B1796C275462A1703113804BB82D39DC0E3 7D2BAF1CF37B13E2069D6956105BD0E739499BDB
422 | 
423 | or if it fails:
424 | 
425 |     command curl -sSL https://rvm.io/mpapis.asc | ${SUDO_USER:+sudo }${rvm_gpg_command##*/} --import -
426 |     command curl -sSL https://rvm.io/pkuczynski.asc | ${SUDO_USER:+sudo }${rvm_gpg_command##*/} --import -
427 | 
428 | In case of further problems with validation please refer to https://rvm.io/rvm/security
429 | "
430 | 
431 |     exit ${_return}
432 |   fi
433 | }
434 | 
435 | verify_pgp()
436 | {
437 |   [[ -n "${1:-}" ]] ||
438 |   {
439 |     debug "No PGP url given, skipping."
440 |     return 0
441 |   }
442 | 
443 |   get_package "$1" "$2.asc" ||
444 |   {
445 |     debug "PGP url given but does not exist: '$1'"
446 |     return 0
447 |   }
448 | 
449 |   rvm_install_gpg_setup ||
450 |   {
451 |     log "Found PGP signature at: '$1',
452 | but no GPG software exists to validate it, skipping."
453 |     return 0
454 |   }
455 | 
456 |   verify_package_pgp "${rvm_archives_path}/$2" "${rvm_archives_path}/$2.asc" "$1"
457 | }
458 | 
459 | get_and_unpack()
460 | {
461 |   typeset _url _file _patern _return _verify_pgp
462 |   _url="$1"
463 |   _file="$2"
464 |   _verify_pgp="$3"
465 | 
466 |   get_package "$_url" "$_file" || return $?
467 |   verify_pgp "$_verify_pgp" "$_file" || return $?
468 | 
469 |   [[ -d "${rvm_src_path}/rvm" ]] || \mkdir -p "${rvm_src_path}/rvm"
470 |   __rvm_cd "${rvm_src_path}/rvm" ||
471 |   {
472 |     _return=$?
473 |     log "Could not change directory '${rvm_src_path}/rvm'."
474 |     return $_return
475 |   }
476 | 
477 |   # Remove existing installation
478 |   typeset _cleanup_cmd
479 |   _cleanup_cmd="rm -rf ${rvm_src_path}/rvm/{,.[!.],..?}*"
480 | 
481 |   $_cleanup_cmd || {
482 |     _return=$?
483 |       log "Could not remove old RVM sources. Try:\n\n\tsudo $_cleanup_cmd\n\nThen retry your task again."
484 |       return $_return
485 |   }
486 | 
487 |   # Unpack sources
488 |   __rvm_debug_command $rvm_tar_command xzf ${rvm_archives_path}/${_file} ${rvm_tar_options:-} --strip-components 1 ||
489 |   {
490 |     _return=$?
491 |     log "Could not extract RVM sources."
492 |     return $_return
493 |   }
494 | }
495 | 
496 | rvm_install_default_settings()
497 | {
498 |   # Tracing, if asked for.
499 |   if
500 |     [[ "$*" == *--trace* ]] || (( ${rvm_trace_flag:-0} > 0 ))
501 |   then
502 |     set -o xtrace
503 |     rvm_trace_flag=1
504 |   fi
505 | 
506 |   # Variable initialization, remove trailing slashes if they exist on HOME
507 |   true \
508 |     ${rvm_trace_flag:=0} ${rvm_debug_flag:=0}\
509 |     ${rvm_ignore_rvmrc:=0} HOME="${HOME%%+(\/)}"
510 | 
511 |   if
512 |     (( rvm_ignore_rvmrc == 0 ))
513 |   then
514 |     for rvmrc in /etc/rvmrc "$HOME/.rvmrc"
515 |     do
516 |       if
517 |         [[ -s "$rvmrc" ]]
518 |       then
519 |         if
520 |           GREP_OPTIONS="" \grep '^\s*rvm .*$' "$rvmrc" >/dev/null 2>&1
521 |         then
522 |           printf "%b" "
523 |   Error: $rvmrc is for rvm settings only.
524 |   rvm CLI may NOT be called from within $rvmrc.
525 |   Skipping the loading of $rvmrc
526 |   "
527 |           exit 1
528 |         else
529 |           source "$rvmrc"
530 |         fi
531 |       fi
532 |     done
533 |   fi
534 | 
535 |   if
536 |     [[ -z "${rvm_path:-}" ]]
537 |   then
538 |     if
539 |       (( UID == 0 ))
540 |     then
541 |       rvm_user_install_flag=0
542 |       rvm_prefix="/usr/local"
543 |       rvm_path="${rvm_prefix}/rvm"
544 |     else
545 |       rvm_user_install_flag=1
546 |       rvm_prefix="$HOME"
547 |       rvm_path="${rvm_prefix}/.rvm"
548 |     fi
549 |   fi
550 |   if [[ -z "${rvm_prefix}" ]]
551 |   then rvm_prefix=$( dirname $rvm_path )
552 |   fi
553 | 
554 |   # duplication marker kkdfkgnjfndgjkndfjkgnkfjdgn
555 |   [[ -n "${rvm_user_install_flag:-}" ]] ||
556 |   case "$rvm_path" in
557 |     (/usr/local/rvm)         rvm_user_install_flag=0 ;;
558 |     ($HOME/*|/${USER// /_}*) rvm_user_install_flag=1 ;;
559 |     (*)                      rvm_user_install_flag=0 ;;
560 |   esac
561 | }
562 | 
563 | rvm_install_parse_params()
564 | {
565 |   install_rubies=()
566 |   install_gems=()
567 |   flags=( ./scripts/install )
568 |   forwarded_flags=()
569 |   while
570 |     (( $# > 0 ))
571 |   do
572 |     token="$1"
573 |     shift
574 |     case "$token" in
575 | 
576 |       (--trace)
577 |         set -o xtrace
578 |         rvm_trace_flag=1
579 |         flags=( -x "${flags[@]}" "$token" )
580 |         forwarded_flags+=( "$token" )
581 |         ;;
582 | 
583 |       (--debug|--quiet-curl)
584 |         flags+=( "$token" )
585 |         forwarded_flags+=( "$token" )
586 |         token=${token#--}
587 |         token=${token//-/_}
588 |         export "rvm_${token}_flag"=1
589 |         printf "%b" "Turning on ${token/_/ } mode.\n"
590 |         ;;
591 | 
592 |       (--path)
593 |         if [[ -n "${1:-}" ]]
594 |         then
595 |           rvm_path="$1"
596 |           shift
597 |         else
598 |           fail "--path must be followed by a path."
599 |         fi
600 |         ;;
601 | 
602 |       (--branch|branch) # Install RVM from a given branch
603 |         if [[ -n "${1:-}" ]]
604 |         then
605 |           case "$1" in
606 |             (/*)
607 |               branch=${1#/}
608 |               ;;
609 |             (*/)
610 |               branch=master
611 |               if [[ "${1%/}" -ne rvm ]] && [[ "${1%/}" -ne mpapis ]]
612 |               then sources=(github.com/${1%/}/rvm)
613 |               fi
614 |               ;;
615 |             (*/*)
616 |               branch=${1#*/}
617 |               if [[ "${1%%/*}" -ne rvm ]] && [[ "${1%%/*}" -ne mpapis ]]
618 |               then sources=(github.com/${1%%/*}/rvm)
619 |               fi
620 |               ;;
621 |             (*)
622 |               branch="$1"
623 |               ;;
624 |           esac
625 |           shift
626 |         else
627 |           fail "--branch must be followed by a branchname."
628 |         fi
629 |         ;;
630 | 
631 |       (--source|source)
632 |         if [[ -n "${1:-}" ]]
633 |         then
634 |           if [[ "$1" = */*/* ]]
635 |           then
636 |             sources=($1)
637 |             shift
638 |           else
639 |             fail "--source must be in the format <domain>/<account>/<repo>."
640 |           fi
641 |         else
642 |           fail "--source must be followed by a source."
643 |         fi
644 |         ;;
645 | 
646 |       (--user-install|--ignore-dotfiles)
647 |         token=${token#--}
648 |         token=${token//-/_}
649 |         export "rvm_${token}_flag"=1
650 |         printf "%b" "Turning on ${token/_/ } mode.\n"
651 |         ;;
652 | 
653 |       (--auto-dotfiles)
654 |         flags+=( "$token" )
655 |         export "rvm_auto_dotfiles_flag"=1
656 |         printf "%b" "Turning on auto dotfiles mode.\n"
657 |         ;;
658 | 
659 |       (--auto)
660 |         export "rvm_auto_dotfiles_flag"=1
661 |         printf "%b" "Warning, --auto is deprecated in favor of --auto-dotfiles.\n"
662 |         ;;
663 | 
664 |       (--verify-downloads)
665 |         if [[ -n "${1:-}" ]]
666 |         then
667 |           export rvm_verify_downloads_flag="$1"
668 |           forwarded_flags+=( "$token" "$1" )
669 |           shift
670 |         else
671 |           fail "--verify-downloads must be followed by level(0|1|2)."
672 |         fi
673 |         ;;
674 | 
675 |       (--autolibs=*)
676 |         flags+=( "$token" )
677 |         export rvm_autolibs_flag="${token#--autolibs=}"
678 |         forwarded_flags+=( "$token" )
679 |         ;;
680 | 
681 |       (--without-gems=*|--with-gems=*|--with-default-gems=*)
682 |         flags+=( "$token" )
683 |         value="${token#*=}"
684 |         token="${token%%=*}"
685 |         token="${token#--}"
686 |         token="${token//-/_}"
687 |         export "rvm_${token}"="${value}"
688 |         printf "%b" "Installing RVM ${token/_/ }: ${value}.\n"
689 |         ;;
690 | 
691 |       (--version|version)
692 |         version="$1"
693 |         shift
694 |         ;;
695 | 
696 |       (head|master)
697 |         version="head"
698 |         branch="master"
699 |         ;;
700 | 
701 |       (stable)
702 |         version="latest"
703 |         ;;
704 | 
705 |       (latest|latest-*|+([[:digit:]]).+([[:digit:]]).+([[:digit:]]))
706 |         version="$token"
707 |         ;;
708 | 
709 |       (--ruby)
710 |         install_rubies+=( ruby )
711 |         ;;
712 | 
713 |       (--ruby=*)
714 |         token=${token#--ruby=}
715 |         install_rubies+=( ${token//,/ } )
716 |         ;;
717 | 
718 |       (--rails)
719 |         install_gems+=( rails )
720 |         ;;
721 | 
722 |       (--gems=*)
723 |         token=${token#--gems=}
724 |         install_gems+=( ${token//,/ } )
725 |         ;;
726 | 
727 |       (--add-to-rvm-group)
728 |         export rvm_add_users_to_rvm_group="$1"
729 |         shift
730 |         ;;
731 | 
732 |       (help)
733 |         usage
734 |         exit 0
735 |         ;;
736 | 
737 |       (*)
738 |         usage
739 |         exit 1
740 |         ;;
741 | 
742 |     esac
743 |   done
744 | 
745 |   if (( ${#install_gems[@]} > 0 && ${#install_rubies[@]} == 0 ))
746 |   then install_rubies=( ruby )
747 |   fi
748 | 
749 |   true "${version:=head}"
750 |   true "${branch:=master}"
751 | 
752 |   if [[ -z "${sources[@]}" ]]
753 |   then sources=("${DEFAULT_SOURCES[@]}")
754 |   fi
755 | 
756 |   rvm_src_path="$rvm_path/src"
757 |   rvm_archives_path="$rvm_path/archives"
758 |   rvm_releases_url="https://rvm.io/releases"
759 | }
760 | 
761 | rvm_install_validate_rvm_path()
762 | {
763 |   case "$rvm_path" in
764 |     (*[[:space:]]*)
765 |       printf "%b" "
766 | It looks you are one of the happy *space* users (in home dir name),
767 | RVM is not yet fully ready for it, use this trick to fix it:
768 | 
769 |     sudo mkdir -p /${USER// /_}.rvm
770 |     sudo chown -R \"$USER:\" /${USER// /_}.rvm
771 |     echo \"export rvm_path=/${USER// /_}.rvm\" >> \"$HOME/.rvmrc\"
772 | 
773 | and start installing again.
774 | 
775 | "
776 |       exit 2
777 |     ;;
778 |     (/usr/share/ruby-rvm)
779 |       printf "%b" "
780 | It looks you are one of the happy Ubuntu users,
781 | RVM packaged by Ubuntu is old and broken,
782 | follow this link for details how to fix:
783 | 
784 |   https://stackoverflow.com/a/9056395/497756
785 | 
786 | "
787 |       [[ "${rvm_uses_broken_ubuntu_path:-no}" == "yes" ]] || exit 3
788 |     ;;
789 |   esac
790 | 
791 |   if [[ "$rvm_path" != "/"* ]]
792 |   then fail "The rvm install path must be fully qualified. Tried $rvm_path"
793 |   fi
794 | }
795 | 
796 | rvm_install_validate_volume_mount_mode()
797 | {
798 |   \typeset path partition test_exec
799 | 
800 |   path=$rvm_path
801 | 
802 |   # Directory $rvm_path might not exists at this point so we need to traverse the tree upwards
803 |   while [[ -n "$path" ]]
804 |   do
805 |       if [[ -d $path ]]
806 |       then
807 |         partition=`df -P $path | awk 'END{print $1}'`
808 | 
809 |         test_exec=$(mktemp $path/rvm-exec-test.XXXXXX)
810 |         echo '#!/bin/sh' > "$test_exec"
811 |         chmod +x "$test_exec"
812 | 
813 |         if ! "$test_exec"
814 |         then
815 |           rm -f "$test_exec"
816 |           printf "%b" "
817 | It looks that scripts located in ${path}, which would be RVM destination ${rvm_path},
818 | are not executable. One of the reasons might be that partition ${partition} holding this location
819 | is mounted in *noexec* mode, which prevents RVM from working correctly. Please verify your setup
820 | and re-mount partition ${partition} without the noexec option."
821 |           exit 2
822 |         fi
823 | 
824 |         rm -f "$test_exec"
825 |         break
826 |       fi
827 | 
828 |       path=${path%/*}
829 |   done
830 | }
831 | 
832 | rvm_install_select_and_get_version()
833 | {
834 |   typeset dir _version_release _version
835 | 
836 |   for dir in "$rvm_src_path" "$rvm_archives_path"
837 |   do
838 |     [[ -d "$dir" ]] || mkdir -p "$dir"
839 |   done
840 | 
841 |   _version_release="${version}"
842 |   case "${version}" in
843 |     (head)
844 |       _version_release="${branch}"
845 |       install_head sources[@] ${branch:-master}
846 |       ;;
847 | 
848 |     (latest)
849 |       _version=$(fetch_version sources[@])
850 |       install_release sources[@] "$_version"
851 |       ;;
852 | 
853 |     (latest-minor)
854 |       version="$(<"$rvm_path/VERSION")"
855 |       _version=$(fetch_version sources[@] ${version%.*})
856 |       install_release sources[@] "$_version"
857 |       ;;
858 | 
859 |     (latest-*)
860 |       _version=$(fetch_version sources[@] ${version#latest-})
861 |       install_release sources[@] "$_version"
862 |       ;;
863 | 
864 |     (+([[:digit:]]).+([[:digit:]]).+([[:digit:]])) # x.y.z
865 |       install_release sources[@] ${version}
866 |       ;;
867 | 
868 |     (*)
869 |       fail "Something went wrong, unrecognized version '$version'"
870 |       ;;
871 |   esac
872 |   echo "${_version_release}" > "$rvm_path/RELEASE"
873 | }
874 | 
875 | rvm_install_main()
876 | {
877 |   [[ -f ./scripts/install ]] ||
878 |   {
879 |     log "'./scripts/install' can not be found for installation, something went wrong, it usually means your 'tar' is broken, please report it here: https://github.com/rvm/rvm/issues"
880 |     return 127
881 |   }
882 | 
883 |   # required flag - path to install
884 |   flags+=( --path "$rvm_path" )
885 |   \command bash "${flags[@]}"
886 | }
887 | 
888 | rvm_install_ruby_and_gems()
889 | (
890 |   if
891 |     (( ${#install_rubies[@]} > 0 ))
892 |   then
893 |     source ${rvm_scripts_path:-${rvm_path}/scripts}/rvm
894 |     source ${rvm_scripts_path:-${rvm_path}/scripts}/functions/version
895 |     __rvm_print_headline
896 | 
897 |     for _ruby in ${install_rubies[@]}
898 |     do command rvm "${forwarded_flags[@]}" install ${_ruby}
899 |     done
900 |     # set the first one as default, skip rest
901 |     for _ruby in ${install_rubies[@]}
902 |     do
903 |       rvm "${forwarded_flags[@]}" alias create default ${_ruby}
904 |       break
905 |     done
906 | 
907 |     for _gem in ${install_gems[@]}
908 |     do rvm "${forwarded_flags[@]}" all do gem install ${_gem}
909 |     done
910 | 
911 |     printf "%b" "
912 |   * To start using RVM you need to run \`source $rvm_path/scripts/rvm\`
913 |     in all your open shell windows, in rare cases you need to reopen all shell windows.
914 | "
915 | 
916 |     if
917 |       [[ "${install_gems[*]}" == *"rails"* ]]
918 |     then
919 |       printf "%b" "
920 |   * To start using rails you need to run \`rails new <project_dir>\`.
921 | "
922 |     fi
923 |   fi
924 | )
925 | 
926 | rvm_install()
927 | {
928 |   rvm_install_initialize
929 |   rvm_install_commands_setup
930 |   rvm_install_default_settings
931 |   rvm_install_parse_params "$@"
932 |   rvm_install_validate_rvm_path
933 |   rvm_install_validate_volume_mount_mode
934 |   rvm_install_select_and_get_version
935 |   rvm_install_main
936 |   rvm_install_ruby_and_gems
937 | }
938 | 
939 | rvm_install "$@"
940 | 


--------------------------------------------------------------------------------
/image/ruby_support/mpapis-pubkey.asc:
--------------------------------------------------------------------------------
  1 | -----BEGIN PGP PUBLIC KEY BLOCK-----
  2 | Version: GnuPG v2
  3 | 
  4 | mQINBFRQA8EBEADrLHxW4807EJMzDjhrR5+FRy5/3616nyLlbWFTLnS1/i514L7Z
  5 | LVzbho4eZWjErRWqT1mr+E7dr/c8Ei5J8kUMqm5MoSkCoc5Y7Gp0jKhfDF4Megpd
  6 | X2ZKw7VG+4GZU9gxbm+6ymHeDAFRfQjUoHzCZsdsgnhi1C58kMoY39dFidlk24AG
  7 | E7y8WEg42yzSyJFjK5+qdGuKTBK4UmYM3uxHbxZgBLZ1PQ9DhsToauTqQSJEFzC+
  8 | r4qQeO6CeZAUEhgCt3HnmKE8hdARQelNRICrQc/Gpd3c3Wcpi3zj61cRqTCDBtNJ
  9 | h66bN+b6MilfT1S+9YMqLACXIWRcXPPUUWanmleguzGfngRjr/qf2PF6g2HYsp40
 10 | 4M3CE0JX5O5iD4A81b5duuhIzZhJu1LFyn0uPX/zHlEwo36cQF3ElbsKyX6woXpx
 11 | hbHf67y6oQdSivhJvshJamRHxgi+bU6kkiiY0E8L5/8h309TVpd0wXfYfMPeE+V6
 12 | GsLjbxlU2bYrVxocREZpjCzqKBCmbZZxAd9eQPl8dYAs7kpxh8v3N9PEs0TRH2rh
 13 | KYjhKE++G/XuFOc6lm2gE5SnmwcDdJlIQm8YhW2LF/tTmQjAnxu4ILeWHwufhubv
 14 | BWn2UkdkGitrKEUmk9z24BMRKdPy0aALblvLCtri+2mf7ZaP9Stkdr/7yQARAQAB
 15 | tC1NaWNoYWwgUGFwaXMgKFJWTSBzaWduaW5nKSA8bXBhcGlzQGdtYWlsLmNvbT6J
 16 | AjkEEwECACMFAlRQA8ECGwMHCwkIBwMCAQYVCAIJCgsEFgIDAQIeAQIXgAAKCRA4
 17 | BLuC053A43HpD/9jf4DoYEu4adwJXJFSlUZMLZc7yNKwa2zsgBLZAzHuXc1lDDaJ
 18 | H+1hp7huxlq65EwmBJ5I8NgndBf42C0AYDXVVTQp6EW4tfnaW7zZgOcKZYp8Gu2G
 19 | HFIUPX28hm6VFJZCTo66yMVq+2a8GHhN/KgPbCd+eKIAzMWK859IYQgpXXqPgB3V
 20 | ERTGO34pBbz5GZ3BuYZvHo6Dp7Nb1RTaRdqCWXGabWz23+Gdni3K6ohNF87io7EK
 21 | SNcyzn81qG5oiYNwDMXt8T8nIIagUk7accQ6fw75FpFbZaR+nbOD7v88us40f6K9
 22 | WYV6qsOKAXygeTT63jLLLcLqe/uKRmKCO8fitIav8MHEtNOeQeQkG0O9YUCRpZvh
 23 | PlUbOhFO6iShs/AqPxIel33A65LjRpcxYNzbdgfnmdf5KEd3Uc8yafDIdSYrsSsS
 24 | xUW+/8V/dqt8igCcx4oypqmQc1BlYx4luUugqwgSOxPLN88jN4jnBQ3WKFscmhww
 25 | jYD4RqN1fxsPzk/Zh3rrq3zbpW4CtK9E8JWvbYzGUHYwI+2C9BRGPuYdD1wYpO59
 26 | OvX2EJOm3tV2iQwDVAfsVioRgXIkbIhkC2NFcYBfu+BgQNgvLFl5x6ojFo5+xStY
 27 | 6gvnIpjCosNzme83KphH3pDJ5xMG7in+8kn4IZSScbPpMoCyNaSZHt2dQokCOgQT
 28 | AQIAJAIbAwIeAQIXgAULCQgHAwUVCgkICwUWAgMBAAUCWLHkagIZAQAKCRA4BLuC
 29 | 053A4wYhD/92zRC7wYn5hYnAdh18hm8XBa3O0BRqf4u2S9TxB016QnvJltuNi6es
 30 | 52a8jIt4EgpdB48XtrFW441PI9j/36FdXGNUouMc6n3cGkl2OK+OHWhqFS+4hma+
 31 | R7IUml9/eT0Hxr+AnNUpP5WVqzWRFnrk/7y72pcthjQGtkJH/G5xfAfipIqLJFs2
 32 | bD2/AUvPcwo0d7jIcrpF/E2G6A+NvS9M6/7czV+bL9Ir9r3D4grhFq6jHmtmg+RF
 33 | YuNvwXL+lJE2r/dCglhGzmeTSxpJpiLt1bEf+lY0enSt3rcA5LMa4w9VyGVdudnV
 34 | D/v9cosyASau0DjTZix3Y2i2YHuz6+SLYdQXshX6yCwdbLDscO+PK7rcAzflHEsd
 35 | a50E1dvGOI62LHXx9iMZM4cnKizaSH81ABtPjRgxYNszh18ct1luzHGtlle3swI8
 36 | RRh8MZxVPefIlXd6gHZx4ikZtg/TU5vRBS80dXLteQ2phrnL3Kw248SIMW8WJk7U
 37 | 5Hhvad++x+j9B+JG2mgqIuyAk8ggH9o5S5bv/mLLnqbONwpMk4qOCWHDaG4GVtpY
 38 | dA5Mt9NQ45wgm1QR/W17bcsTINDlfztdrQC0WXEm2N8XgmW4N1pEOM6uM18sTw3j
 39 | bw4JmLbLlMMVhGG6zU7/91l7JejBMVoWn/q4dAyRSUkO9p0rOiQpM4hGBBARAgAG
 40 | BQJVgnPQAAoJEHLp2vNurPoaO/IAnjejWuDgkEBSwPyuiUL+PRQaPuubAJ94kw+N
 41 | Yjr6NA6S3sSOtzn5hQwlhohGBBARAgAGBQJWKb/tAAoJEHLQvqdBoXDoNdAAoLDm
 42 | d7hVy0D7vxZEmbhNXwfpOT3eAJ9XAwfmRRi1SpqzZ2q5gR+FUBNmX4heBBARCAAG
 43 | BQJVqS2VAAoJEKy9TW1HdUO+eRsBAJVAyIbv1/pgZiRNPqGj+cD4s8W7v9eI60eX
 44 | EY13RgU9AP9kKzJxTrdAKsr1jM4UZ3Ep0BBE342uWUxKblKvSDhr4IhkBBERCAAM
 45 | BQJVyd5ZBYMHhh+AAAoJEAsh+or6GXlv4MkA/RG2UZNSNNCFlb6w/VSNUfawzE4U
 46 | S2m22dQI7IFgogKhAP93v8Dc+mAZOB9g+Tc2pMaPZO05yaF9METRaUoxOwcIjIhk
 47 | BBERCgAMBQJWLyFOBYMAKjAAAAoJEJ9l+8IS7C34i5QBAIT2K2SIB6dI63RNIb02
 48 | aIJWrAtXy/W0RlIkKzSi1LYxAP0ZgbS28LRPK02O/KeGNJUXyiSbUdZNtiC6Yv8H
 49 | AR12nokBHAQQAQIABgUCVTv5bAAKCRARj8pkUvMtL5XFB/kBtJiiLGUQxkhcFfIJ
 50 | 3F6t3wdkdRIKIDpfn7NWLybiogZZfvZI7DuGGSQFqZVojimQiLkUJNCha+wl/8Js
 51 | VsEeV1uK6snJnLZlFgnVesCcawi6mZdj3s4U9enADWiKY5aDZgM8KhiGjAAUAuU4
 52 | 9OEw0UVG1R1GxQtVC8HRo3/uWuKT+HFKamX/q7dCH4Awpwue4YMbWnb7uA1ybtWJ
 53 | SVos7VphbjWQJ6Cw3jLUcL2OXYMQLu0RS1IO7oVTyrHxWVsM6VFlG8fcRy3OZKo2
 54 | ElHGm+LVIt2yO2uEI0GW1m5saki96XJJl+MEdIfRgwVsJv7UfaPQeLJq77ZxytP1
 55 | H84TiQEiBBABAgAMBQJUbFRzBQMAEnUAAAoJEJcQuJvKV618WroIALXmeFAuF+me
 56 | QdnjHwE2R8V3jNF4FtL8pS5KlmQ+fc+zPnnz7XBEs62aEYCsdDDaSLE3MdxRNcvY
 57 | mS2GfXR9Pez2Be8r3yeZqMRM7X9LTpwcA3OJ4MAJeeqRRoP8CLcJyJpbd55xJsnq
 58 | 3wdzF/uZbIXVVFVqiqu5N9oUQNxe8bGbW2vHEuToLFB1MqTrbYBgpoPKscjoOyks
 59 | CdoCyAkwqkXecc4UxLrfaGD7593a+MHdIxGOX8OLtusm+V3kJPq3qBzwWz1vXG92
 60 | JPS6fm+X0mqtOzrQEnmf1lK28BocJATtdMurjhpyDPA746wADmx5OHXvABl3Vwcw
 61 | DkaktYNHzLGJASIEEAECAAwFAlR+HlwFAwASdQAACgkQlxC4m8pXrXzVCwf/VmLk
 62 | 6cHjgTd142FA5aQNL7N2PMcFOFwRrV3kE9VVRjeBw089GSgp5j1en/EzcTnZTOnT
 63 | MtTq7A0VlzlVoGAGGBC0air18EYHK6/jL1XyfaLR9m339x1IPEmsvT+WmoT7fTku
 64 | CPfUodwuaUggjQ0xK5PCZ43cINAvdfbCfmjq0fKWlEGf658pbu40ylpJ90bNHnEx
 65 | xHV2NqvTvfdFpPQlTpDGRNVEbV/XPluCcuJYi7VQp9Ba6tOPTPnIz3+XxZps1awK
 66 | N/7mwwYTMn5LDtc9u0v/vjztATqRlcm5FmL3oBl/P0ITgb5DXM/C7sI0dQzTPL6n
 67 | 9BRFDN0eEYjS6VvrBIkBIgQQAQIADAUCVLI2pgUDABJ1AAAKCRCXELibyletfHkn
 68 | B/9Lt/DjYop8TLJ+avdD2OUMpSBhPG80GzvW1H2HeDnW9BJwMdWxYOKD/VYnn4+n
 69 | ZM0MDwMA55zeQ0sYzcwAMj7bpLzBPOraB0OZbc+bGi3P6qb0jkQtBFwCMYPI+ZOb
 70 | MR0UPeDiUI/S90ysJkMa+hhhfToQLjlF2RkgNC+GVquOAi5HgpoZYBGGouMxD1aM
 71 | CsMtXS+Ho+w4OtUUGnS4dcK/6MnQ3qnz+sQ3M6mPjlrDfRrscI8YJW1UNpX34Ut8
 72 | fOzaF8NafD1vMDWIIF5pLo/034k0wYt5cFbW7CZbI43pQ+Sq817NVP+qtIgYXf7Y
 73 | GfsZdreZpsZn3pBE9viUfoDPiQEiBBABAgAMBQJU1cz4BQMAEnUAAAoJEJcQuJvK
 74 | V6187hoH/izErvBf7zj/faquV9JxuV25XYLEK58Cy16ahrYClgbwG6V9oToqmryN
 75 | K3yC4jRnC4UR3In1sWD2krhOkytaFQtOi831LWnxQ4ouazvnZSiugckwVWowIycK
 76 | NTPnaBFGIP+3lhN2MCMDGvixUg/gKY//KtltzLEbsHp1kdB1B1Vs1OFK8C+QvUAT
 77 | t3E4/kDW7WMjRF5i2zNLy0TIdDTAqMYT4BqfWQkbK+a8CBOcrlLoVym7kScgwMQE
 78 | zvrwHrjGAOs3crJonciRn0ysnhEL9oi3VJbytG38K5vv6w0G4ItvHFV0v8PAd+pt
 79 | wEgf+TmV0UQslhn63hYUprNj9YZ7T22JASIEEAECAAwFAlTnk1cFAwASdQAACgkQ
 80 | lxC4m8pXrXxm/Qf/fCDOsqHpPtZ8VLiEBob4ZS+i9s4Wsv7HCarW2+/8aPdmnCSx
 81 | xl0QenEIwFmh0GRhf8rcvsB/bmX17fMl5OXj/41HK2duM5L8PqdKwj/CNt0nbTeS
 82 | Ti6+OPWZIQrVftVUW7PBkCQEMADA9vPUYiTZeS6tuCwt6/AxPVtOdSAeQpNrT0cJ
 83 | sw2t0XJqO+Yd6h7po7ZuKE3OCY1A4VgZiSNuuqFZyPxB93GhaBb3gv0ocPNdsOBl
 84 | 0+gq2GSDwXoncHaJNqoJCniOJlKgyBqlcI5vwkONSgSq9uWbiR+//ZJf4D9dAE9E
 85 | 6Fd0ETp5JL3+w1SDyUW1o+UvxFTP9GpNPb/W/IkBIgQQAQIADAUCVPi27gUDABJ1
 86 | AAAKCRCXELibyletfM82CACp9P95WhnkCWM3Fg8Nnhe+sQsUmxQCXL0v1mgI6XBN
 87 | HQbeYiz+5EeWZe1+UnTAJg6K+eYl3jA5wvD5VtIaYiImf111LiFq5oz/t9c1/RM6
 88 | MDW6ezwHE2kUbNtt1HPZz+HwLtXLuPK8mFlrvBOybdHPJKY//nn3mqUkwHfgThgL
 89 | /7NAc3WitJkBoWnjPPXnoWzYJybMmYfwcDVIZASZLmAiCIFCNC31p8xGxh2WFDXs
 90 | GmVf4r9oAItFknK21KX/vSeqkwQBCg0jN8kSaLKpf3WbR/Kj2SHcvUSl39yngdyq
 91 | GdGPKXxmnJhoOOcCDnOWZsdgFbmfKVz+Mjs4x/FcJCXeiQEiBBABAgAMBQJVCnYP
 92 | BQMAEnUAAAoJEJcQuJvKV61861IIAI0+ZyAJ6VPyGUZ7WKdgbVEkT8D1CvFqR9Yn
 93 | vzAIu3mHZ2twswkURT5BxiOh11zWZDT2e92xTtFZyqrG9CRlflID3ZcAL5hB5Ix6
 94 | zhmYL5/mpEANHjk4uKnZ8dnVEoRfoFZq6kss0theCnqwTruz+sDF/54o4FDoWl5c
 95 | WW4EzO2pf1nHTYdTJlnJzs2S+aob9XC0d2a8u/CesM4H1dyRjcfN1h9Q9FMNHHYF
 96 | U8r2ZX+L1pZGOa7ZSN5o74YJrP206EPo6OlcC2eEa7e43vA+KYX2+FoZ/P6n4YtW
 97 | l226fS/KjErQGRHuFXrMmtFPgI45bfNLCwyu+aIRbrtX1NNnnJmJASIEEAECAAwF
 98 | AlUcQXUFAwASdQAACgkQlxC4m8pXrXyOaQf+P/ZTh3f7FFJEZkYUnigeew+6XsXI
 99 | 7I4m2BWo7+Oz+jaSBBgN2FDHMwi6FFCrq3Aoygbvh5u+2gJ1PtWgx8vPlhkXesXr
100 | wJO/385oHk0MnDYVtEDd7PJ9RRyn3GIJ6gnvwqoeDC+siP8qtty04a//7CGNTamk
101 | 3tRIIiunYIFefpdRI8hKsTCN0PNVzB5pMiAizuHcy7I3pB9iCSF4M9CZXE/GFnyz
102 | QnA4fji0xX7qLfQqiLn8Hz6c0X5eEj8uIpQG/ln3gWd4410lxDbbzz0Z05hevsb5
103 | +eZZ6cX0BdNAARzQeSRlyHqawWWEeVfpqG6X5cULF+TM68Tnibz+9884RYkBIgQQ
104 | AQIADAUCVS4N/AUDABJ1AAAKCRCXELibyletfNFRB/9mhyLM3nZA7pSkvbcwedr3
105 | IOLDNgHWzO68ZAbLYtIkR0W/ZYCVtBhy4ZgevxhpDUiec9Po5zmq8syl5CdiOf5l
106 | FD5aZab6pytK9KMQXDbnWfoHm5W8vpgrpDwvrk6TR51LLp4+3ql29dDyzNW684gv
107 | 1FToWCnYBgM64CbX+m0DRZXanAJtERyOkQU2+8/crR2XGK76oaV3a4xa035DKWW5
108 | qSDsEmmDRnVtpVFFp2GlXiqVhhqE4QxU6MrrBjIfIwK3WMlFR8g7/O8/FH0Lbmmy
109 | 8ddBqeK5G54BuFh7kbpEpSmq+DoGJIqKvBlOJDBUMabOdlCPHJMrHB4dIg4GbNim
110 | iQEiBBABAgAMBQJVOK/DBQMAEnUAAAoJEJcQuJvKV618sPQH/1YeEQfDzi0Tb96f
111 | S3fdXLmpGI7VzwoHuw6e3HrwN+5Ohb9PfAgglEvPos0h0pXPfc8vnr0NCppNDtPV
112 | wrj21XgGKmMkBvJc933pv9fIGHKOBpfNRkOMjerA7+bRWzB97jB1wV0BMGhBPdxE
113 | P4CSt4e/zVP3T1BXYw5/q5Tcm4/aPv9SxmlQ46DnayAuGvukZAdb8Uw7DOp+lIkW
114 | OSg0qgcWbplDfD8C8X0LjbRKDqtJPK4HrpttR9k1No9t/tUzapLkCAj/UDTf9CXp
115 | vRzx+a1XjlA7KQl6dGiRf9NFvPvhgRu7coT22pBEYJxbVZxsK+p301HGYzBcE011
116 | 4MVvxDuJASIEEAECAAwFAlVKZgAFAwASdQAACgkQlxC4m8pXrXzdPwf+IuXJq2cr
117 | K4HE4Tc+brD1elE7JKh+YEbDfJxKc/q7HWiEQkvk7A0ZR5vM/o1vSyeJn6vuyvZe
118 | LehVbIGMKUvBZBlCg4iWfGTkdQMPp06SZvK4udq/WQWaiBkK1ITWcs5yEfP0XDSN
119 | rgQOF/ldu4ijSUxiBp/iqPRa79Q/6G3h3epoXvHJYNGFlWH5UefmLA3lNxPT0kMp
120 | xlqFsoO7N/xJPw5n59OjHX/C5mwuEmhjQODs6Kju+vARJZnEIlenFgqKDfTZt+r+
121 | i4nyz/OsGoYo9bseXwf7gOTeUgPWQqE3DYk+1AwHKwI/AevP/QOlGvOEt56vlofH
122 | UtTGuj6G9JT5TYkBIgQQAQIADAUCVVwywgUDABJ1AAAKCRCXELibyletfMNWB/9R
123 | lxa6kg7d7qe3KAuI3rFJPC1DPHMAo6hQnMDcLQywvGbHX4CpFecWFcU6NQf2ZsJ2
124 | sAjjzjhq+C5HdJu4KuO9oG2XuItVmNwCzcXlXRGeFKa32+DgSy/KijnPQy0y37WS
125 | fqhQ7uREkwYjqtfhHLpJcp/CSLusy74FPETtfOqIg1rwTdLFQTp6ktWjzQDWmMlk
126 | 6aZTvLCKn0WxzIMofPhVa8fV6XrK1xb8FHfGBeIGrCAAtrdz4sjVXJNXegvI7dy1
127 | mDYewLST+d2L9/c2IYOCG57hVN0JbwJQ6qc07SwtQaHYrnK0cjcPKjg3+EsHAfYq
128 | U6UHD/ULEBH8FumXe4LoiQEiBBABAgAMBQJVtIZ3BQMAEnUAAAoJEJcQuJvKV618
129 | f34IAJB7bp15KWkzba32ZhR9X1ZyQE27UDhy325CDgBj/Hl2TmmrmXXdLX4ABKUV
130 | jUXnDwvwNX7I06Mjvanj0vyZqqahVlG3H+/0NOQK6HR7fHhsIwmjG1PnVsH8VTVg
131 | uKkrvt9deRAAW+Ou7AyASpm7J3TOsnRhPt/ARPf2UWfgO27KDm4xkSrO2oNDzzY8
132 | mcMuGs7x2oRU7kvD9m09V4yKA2MD1byWDSgpGlsjPUm3HM7pMPPq2nLYRDVTw8qH
133 | VHcG+QFHoFKmdqgaHbjkf5QIMMrkE7nkkHEu2WbiQXWabXGOHhUTjYvZwspwKYo7
134 | lgveMq9zN48mBTAasTAREa43/XCJASIEEAECAAwFAlXGUx0FAwASdQAACgkQlxC4
135 | m8pXrXxQsgf8CQYJ8AOQ5bYQZU2Y8qIhS5wdBknpPG0g0dz+soGdLdJU7ghPlFhn
136 | O3IMTdGY54gkwzIcNx+h7RmvO8LdTtkYJeTr5SQhrzZ/UZ57WW4RP3rfEGrrbvnm
137 | nGX+7E+I/TiVbwGZ/+0thXrOjRzOW1A4W2GHEXpgdqqzFOwi0bccUCqlt0Y8srmP
138 | xtWremTLyhqD2Z1WLEHwmOKO5C8/2eGQhkzemhAoLtVLzFZgr/uGs7czHoupg8NW
139 | UaVjLxRGCVw5YtJqF+0Nm0K588AZxbKBz9mYrEbnTowjXb5uAlkc/Vt/GpQHO7Wc
140 | uQxO5lgy1aa2tzi1MZYvUiCQ3NuUbIf6ZYkBIgQQAQIADAUCVelCvQUDABJ1AAAK
141 | CRCXELibyletfAvgCACeSuI+u19RMTny5XMY/HaX5fcVgaQ/ELIHnBWcDIUkdSfH
142 | jmqubxO0D/0Yr7clmMcX2OTZA/zQXJb15No35nJYHNGEeJMQD4DiEIYSr17CzEkf
143 | fd1lm1p5iMh62io0DmKImgQXTP5/EWR6zb20g8n4WopT8ID0ttbIOjkWodcm/k2L
144 | x8QFjq5lJkLVoOSrtaQM/jCbvPDW192Mz6vF9xnmvi3zoj2q0RJ8/Gm5hOBEAml2
145 | DJJBXMGsnElcEF9ONkL/Ykfep/z+TZlayhkW/4GYrltjRWxO+YQ92h1G1t3FzYTj
146 | R7eh42fWK3mv/eTa75jAm9B0hmUAaqOhrZZWTLdUiQEiBBABAgAMBQJWDNsYBQMA
147 | EnUAAAoJEJcQuJvKV618ucwH/0eXrYJ/9jDlcF0K8SeeRhSmvnExJU2QObdeEO9Q
148 | 1PSg7aawqwT7KtHi4rDDIU5SgrV2voTetVajYFtUZrDVFlfh5tH+U3tTXI+blxL+
149 | kydJqvxS7dHQgA/XoAYTUcqKxqbZdOZLsHMzSPS80Wgo2THSZLGCq3q0Ofb0sMlN
150 | zx/IP1XTKcGP7nTeLKJzDIgG4CZCbvENE833DmSJ/cj6Ub1dg3/CWaGmENBEIuuc
151 | MLy2GTqMwUJ4H4gYKZMDNvq4VqDYOVI5LPRA/ikkUkNBPkVr8pAuYdd0AZIcge5G
152 | ngi9NrEHbp0cGyc50lUJLHhm3TmdXFvx8hnBwVHntqDgZROJAhwEEAECAAYFAlUL
153 | nbQACgkQ38HrN0mTV788ZQ//Tu6uaI7sHBe9Vwwbc32mpCpcY7vLUM71X72qAJg7
154 | tNDw4AHbhzR2jhZGPXnNX1yVZZlqPaTjkjCmlmpXIGTW9U3IjO7sL96dZeL4WxCr
155 | Jiv4Jukv/YApA8eDejEMnnaF2uYAhvuTf5G5OoTe2U65dPsxuOGkIDcfWRfvXQ3m
156 | srz9TakcWhwvQACNwYJKitplkW9nlZGNGGWWrI0SHKYy0GivAEb/ieXJ8m+WqP0A
157 | xJOp9xb8TNsjyYEvw/05Ipuw+D3Hdy79eUNH9Dm0ojEEnOzeImPvNOv1SrnNesR1
158 | 6vcgOcFZvW+bW10Jz7LN3rtkHE2VZg6XO+ApnWWveZJ2typ9jrZIu8W/8/8UE1Ds
159 | NRVEDv50zXwNY5++f8yRrhCqfMHAX06ALqkzuZ9T6cm8/dNp8X2dWnhipLcuT0SG
160 | BzAoinu+ZDWtu/d9aNh24z3PNS942F8pNiJo9sZvWadtmSWQ4oMiWe/i044gSfjz
161 | l5ZTh4atbtN8VRoyW7nt0ID+nIElvfjq9h/PEsPklEzllz8b9M+vnujVmVejzxXe
162 | 07Qfxq5lRGcZ1FLyDusomSWEGX07+Icci0MI7x4HgDl+HkKOrt9pYt9PweHQ0CGA
163 | a4tE/sCQL9C4V2iZCuynBtp8PjiOTS3AkQbhFksrdUA36iY0nTmSjKmwW8O6VaHv
164 | aICJAhwEEAECAAYFAlUzySgACgkQuEPm/Y03/elnKg//SJPD2ZmUO+uZ7zp7ABfX
165 | 5uq34vnNUBTmE/pTxj9XUISD7QfAtTSf0tdWljIR+ZexSPVBSEOIiLhw6fugYpKL
166 | 5bMUFgq4brlJfxNbZQc8jDe3YEQ81RNiZ7rp37g4OyvSAYRiWaEU56CjbUpmJVm2
167 | QbVQ+9St2LsKPawxTvS011PZMklLgbN1PDSUtwgd58YOC2RAZTI/l4YfsVsmggK7
168 | rEkpc4JhH01gYKDfmHn0t1sWL8XRQszv0somOkEQy6fgRltlp+f44e0ctmK84Q9L
169 | 76CSwwXvpGQ7WCXj6O2QcLnmdxxLq26eC32bfEQx91JiOzxVMybzwyRwwJVcJPpu
170 | UPQqI+ttcyzPVJuL4ftRZTE4ZbYJfAYKWn1nR4/W/Mczh8sOUmixff4I9ssBY4oe
171 | 29Dt4gAOUAxSArHkmSqOSuaPlw6+lOWy4hZU8m1VksvvncM0hA8+riq6jdLDcKfu
172 | Va86BZV6RF8T5J9/0s/JsRvYne1rETWC3xwy1G7T+47gYM8Zu+xcQCHzVVDOJKEx
173 | aEpOpWFGJGTqURv0FU6AsPC6Ih8z6C09TrxZp3/wPbwrvY8TYdxxbYznW52+PEoT
174 | 8WJSK5AAC377dup31StDR+fgwqv4l+FxhvDI/XvMPFwnmiQafytndIbZlzCOGw7e
175 | hNBErB6AIASa10DjFRyHRKSJAhwEEAECAAYFAlXpuAoACgkQERlLE5n7/iRK8RAA
176 | oT+WOyX8Rwtdoyhl8lJHuIkWgwiVGexH02arw5e1ruMxi8Oxr5ky/+K+sOF68hD+
177 | +ousYlqhsUkLWRR8e1kb4tTrVIul8Zc5hBuDbMkUJd+edywgQXAKXuEcMJAK4X6K
178 | cS4Vd64bGSOZVIdUwiqA4OaRj/2KbCoCFcBWxbP5wew+A9S4vI17ks23F7xdRnwD
179 | ikvf+t/fd0VnbCo4LiYOOO7WxxRUdL2sotuOXnNKGYBPa1ireKpuqK7dhE0uWjWn
180 | stlK9fDGmSYmNdhQcqglz3F+Y2OynWZ12/Hz0UbaSAvZOabqH2GRymGv4JOBGTB4
181 | /Hp9BhuVcn89JjDXcpuxZ7cZwB9jQ48qa+9YqPWf5Zm+tQcuCuo+3wpDZqM9Pmk/
182 | qeHEfYeJDJrIHmUc7gN8ZhdVDSCHuRJd2KWwgniYJByTCdzSAwMBW3XBQINjZi+r
183 | is6Fb3PiiAE4GP23O76zCnqlcLwIuODiRqu7EPI8BQfbQTuHdgrd0oXJXUhfF5r+
184 | UIBQh4d1c78tYU8AHXZHtxj6wpnw163zfUhcVqzRxo7AEBp0GxIRyNk+S+IFoWhz
185 | XeY4blg41tePiW3UF/i9sGiPUqYEi3F9snH3OAr1pahxeX+iM+6aQFzVdLCN4Z48
186 | Ke8aiBiHqTk8hECuBEEMNxPyB2a6QvEQodW0/KExmiGJAhwEEAECAAYFAlXp1tIA
187 | CgkQERlLE5n7/iSALg/9HwmJYjV2ngboTFIlGc35NtpS9SFmvcVmuvJ6F4fKwZM5
188 | ejtkKHI8BskIxMq7uObK+qK8lBF3gyh+fhc+eoaF7ycyWA7T5H5u87Ox27Lrjp1F
189 | 3lD5EKTO+0pXS99qii9MWGD3B2k2eqM9+aNrWNQjbPjDwdRxFNugI1g10GVwUDm9
190 | f8wbnC3OaKC3sorEoX4iCosFcwLU8sqiKDal9zvuUXB2fOWswt5AOBf57S4+yaY3
191 | lrEsyCJm7wicx2ZCTiaT/dUbkYrma+cYutDVzLwj3ENsMGf0ezDemahcdzWoGOrB
192 | c5waAv2GA3LdihdYM1cj7Pfo10YpFk0Bbg5ot54mAOKu+Ab4ObvM83AdS3Z4oUMn
193 | OHqghsOlO3Xo18I3aDdhOjj4N7BnPHiSWVx+GGqyiptHmqgIAD3rmmA7DCdXpXQO
194 | GtvUltyS/9J3h595c7Wch25hjUP4jDYcsR1yo1qjG0pc2UVRCpRIMJT5A8SQVrH6
195 | eFfKWame+Rq45CHPWUTOE8XgqWPm7LR/p1g2bmjCVfZBv2Rr/eM0M517iR5SlVWl
196 | 2odw/TrBo+DO5dHuBPH6CVSIJhNidN+xX65fm/EZboQbn+5/u3TA7DQEJoB6hAPD
197 | ye/x6ZAb4nEKDRLcQ38nWI1SYNjPH68OgeKBdibPzyXcg4+TKKejA3/pgmUUUNiJ
198 | AhwEEAEIAAYFAlSO8rgACgkQpeSidHXJsFAetxAAyQ3xpH5/DvrT6Po/SF02JvWk
199 | bMJp+DFvshTQYIE5ujIMA8XZuV3Zg1yvSTenh16iFJkhoZPt3NPx+BKxhnbLP7pQ
200 | tmke18GyG+CMjYZ1n1fogzeGilHgFdNNRkeslQlyT/fc0jGlUG0rTSB+s+aTV+y9
201 | szcRYTYQVPveRJ3Q8q5yxFb6wdJZCooK0FjneRF0WNhWAgpP0ijnbCI3KB/iz45g
202 | XEFueuUcPYgXDD7VcMOho7xlHzCHzLYpiZJPjGiA80mWWcOoeNbSYvAm7By7M3Sm
203 | IixumKcJ+9z5N8J9+G5cwHljh8gKqozkXtyZ/rq9rFkCbv91LdRuCSBnthQo1Wq4
204 | y+zL2/TsifSeccRp30xgS1ELly4CSg4a7MIgCzaXfSE65hJV5Bna53BMEJocQDtS
205 | CxPimERg4ftXtjT/4Nzzul6yV00Ap8bQpUKVFNYega3lFF5pi3GxvI3my+TRHFZq
206 | /IrOBvuoErYAMXwZShjQ3+BcBBS1D01ZxMgtWoWhf78aPem6PhlBjPivne5Y2tzj
207 | N3GjlMsCN040W3B0c2Fo3LcVPrYF03V+w799CVFdNaiNBzJqSg71oX8xuXzxshw1
208 | 0877IlRifHTP3OSzYKrz8whkMH/rKfxNKQsXiG1o2QuWzcoN17Ylw8pvPgTyz8lS
209 | QpU0fVbjf8CjZRyL09eJAh8EMAEIAAkFAlVvKjMCHQAACgkQVeoO2yDWPHAqeQ/9
210 | FcNNQirxpyGpoBxSM05XMeX+hqPcfWIEp23qrG+PRbNmcv6isrlA2T+l36PniU2e
211 | vlSUksByJUnC7VKWZebIg9TFHmy7MjzCHB89/LyCXc4uLl7E5BYXAP23Npf7GR8G
212 | Wwxp9uz66qDzW65RK1EQ4PlLPxOtLOmfvsN2BUCmXXZO+Iz/SAB3DqZqtCCsokUf
213 | mkOGtLTXZAoAXDkwatiOWBIEU+6pgGXUNmO0CpYB5iVQKM2d9ovCVommJUs4VXFH
214 | SxrQv4Qj0MsmfoPGdeU9w2Zysm6ejosUYJIQm0OcppI/qmVoEQHfWJ0rgKlS73xC
215 | 1nweiMAkFxRpB+bA/ls+X9InUDOiZmuamsu9QKsMaG5fimskvncTjONol0c1vhJQ
216 | Obf9hGr8+COFSOlHQ19T2j3L/56Duxckglx/CET0GgpSy0i8cSEGkA4kFsIVOZ34
217 | 2UwkVlO9vgzPUZUWouw29psqmaFNlJloSFACBR0ekI8DyocspSd+vFbyd+kI+pcn
218 | 3iH+lxgO/TYyFEhpC3kJMB3wqe7U1zaeGvUf+TYGjZ8DOqUnODoNbx+p+IpIh/E0
219 | Xn+9IOWXTRgFltttzVJZbdg2rzjH9q5KhIzu6vNXKyzVWJ5+qARxS++kaWDPkbQ+
220 | XvleatsNXS5oO5qthwyGvoLHp3cXNlS+DvvkX075VZqJAiIEEgEIAAwFAlVuEEIF
221 | gweGH4AACgkQVeoO2yDWPHARyg/7B0tg+QLCUQfVczQ8p8LmCi9B/clzq0yNM00S
222 | dpxQ6QYMNM8+ap1MbvxhYhde5fLTx+vadQtpgJVbLJ3ITxnEwTyuT93RjdIzizKB
223 | WWxjaaKx1z16edLvutNUcU1XJO86Hli8kYpTlRYHN5Ev3B2K9M4yz9dNZdcGtYy7
224 | xotSqe6ZA/SdgjrIDIADhdyx9kqvKkaH6vGD+MkfcRwMo2y+kPrWwKKPlf5ZMoYz
225 | b/ssCsslCSommChbia1AFm6nol3otYtZKhCtAGdI6X1nt5whZHPdjbM3N0Kbz24B
226 | fw28ZTXtz1Xssfi/8S3RMXRj0iE9Vh0rMGLojG6dV1jn47st7o6PRjFiPWzO8F5J
227 | GzR/jmgTD21AxP354+Ee44gu4BEFzJoec/j+gOncJBH2poBGhNacY5np/hqhfOE6
228 | F4utovGtewNpKwgtfJoSOda75mcHYLpQ/+Vwfioz4ybV6FxeRLLv8rnxa5bvf3AR
229 | WKri6Wgpbxvt227RMM/2Q1x4b5svdsnMe1r1SQgxDjjgBkZHBXlFMlhOKWBXh5LM
230 | ucOHcPKsySIEsGCbTmgMRfTEelwsIrm5cnXmu5Y49tH4RFaR4hFrtm2SGj3ij6Y1
231 | Ckus8IEUIZy5UTxdT8/1DS0xqE8Mpgknr+QMGGU6lkRmI5S1vryr0h7/xKILpPWe
232 | 7Kgt/NaJAiIEEgEKAAwFAlX8s64FgweGH4AACgkQZiPr6cFZ3iOy0w/+ID8JeMyN
233 | frbhLv6Jz2G8GaDrw2mnXtVoQpyJGbNsJKSVRowAsX+qC0Ksgr68whGi3xZ3yVLb
234 | Wz//1QhtEhyDlzNLB+DARigeze9hjLxQc6B2Ad6YTJMqo/VMswjCYh17hLjAoTrL
235 | Fmu4/7k8M8Gs4J7O7YF9uhRVZVeoNKg3cUNwKLC6ITjjEoUruTeQdxIl/HKs+QXQ
236 | RzNlXMdlnCkX5brdNv9zlnjfVJNojVWXpHx7Rk5R0FDZdPcbvW0ytUaIvt5GkmSN
237 | RRk0KP6uezXSIezeuTZNgiopq5I5IMolIb4gAp5uoZD90OLE7AutEzpOfn4PSbyI
238 | GpirCoBFdz4Xp1mD4QAfXDBO9HIUMXyuaARJh5NzBCveorYgeYo1U2tBxCrQ8tAZ
239 | 9ppWVX2jkgbanoRx0Gys/CzZu4pjeWjWIO74SmvEDfn5q5wpMcsFsD0HqMQKUDWF
240 | lGjS6vVHQlalARCxYn4AAKokd4MhWmEuH9k1RnXd9spMRuOiF/SLeimBfUB0t/bM
241 | zgST1UATVEQfys1npr4Ei7EsjUhDsgezpHjeDCxPHs7pFuRXBE7ZJoVrbSUddLH0
242 | 6wF/7PtO8yEea/i4lWHcol7bUgqeSF1vdscqnEAGt0n95gZBkUYy1ZU1O1s/F+oV
243 | ZGYZGQntosrWNwjbvLomu4oeDOXSvdeto2WJAlwEMAEIAEYFAlVvKrU/HSBzaWdu
244 | ZWQgYWNjaWRlbnRseSAtIHRob3VnaHQgSSB3YXMgb24gYSBkaWZmZXJlbnQga2V5
245 | IC0gbXkgYmFkAAoJEFXqDtsg1jxw+JcQALGUBRfuTnlTk6nRhrrIoHqobRpghzAH
246 | yYe5jaIasMtRDcDbpNk8CFdZTdLKlTjPtn66vA4DALe1MXmJg1jQIorl7caEzNRW
247 | aBLnqpKRfm8YNkfWty9i3TXOVdIeAmp1/5tHtCxkR5Q5QhFR/YBns8BncmSKT9P4
248 | cjvGkPU/UKhJdAKGgseJviXwmPmq28cXdxPymaZisRvGr0dbwJuIUMvXWj8n8ahA
249 | 5l3D3hfllI+PyQ4jteGR5gtITIRBoN4sAftngqtpioYDuglv+d1WkvyEprZ+247G
250 | IBofa9RMB6wfxRT6ydpkrtEF7WAB/x+pij8GEizcpc5bNJiQ6xFQ8jZFDFYG/0hz
251 | cxC3s6xAoMkOP9FhcmKxBAEJbf4OF0KPRPh5A8mPcH3XvnZ8PfvZ4dMtduOO+h8f
252 | Tx29n5aA4sdlo5QXqyR3j+jtv+ZOOpArHN0oEyknEz65q+AzwaRkFRU9tC6obbvM
253 | L+J99D9Hk58lQzZfeWTXk1Fq9K3E5ZLY5nSUdZrBudKbDWGFCCnV1HmC1ScMrIu9
254 | nUn+p4Fia3ZBAp6f6EcqG2czHAgpZnupVVe2O/wYFhIJ5FD64oZfzP+axovHLTnJ
255 | rDdyCbLUCgDSSEQqh6bxaEn7Jk+uzxCh6+eVpVvjY+29vunJ3LM2C1t6XXvU42dH
256 | J1JW3+ekNs3wiQEcBBEBCAAGBQJWQhaFAAoJEGwCgZ5DT1NrW0oH/j7UWA9qUuXJ
257 | evMnN+KqEA64m8ZUQKmR2OCrR0HN41m1Y/IRG4uXSRgGsOyhrBFZf6tXd70oSx5u
258 | Vq9/VL35CknLXGkgI3B6j8zJeaTR2PaH+cabIBJGBlcIg2J4J2SDYJ0FHQg9RMvq
259 | EJxTAVfOSr94q/kuKYpQnvAX4PaBTxM/630mhPqmpa9oWF7EVlngy7d+X9gvnhoj
260 | 2rcFYMUnsmmSinMDxmO6x1/4FbTlyl7debjyyCpk3sHdMlpJPeuAN8bq7ZbSdO9R
261 | 1nh2aQBakUGNoeKB0/y26PYzC/z2nuQRXS+fg1StD/qweoveaSObBwd+iqlc40YE
262 | 0tn6MPy+vmeJASIEEAECAAwFAlXYHrQFAwASdQAACgkQlxC4m8pXrXy9MQf/Yjig
263 | vy7vkRc7st7k4Yh/mSBrgrkH3TmHrOkRs7WiOz39H+3JykyUC9o8Wi3CUrJSAM6t
264 | lcXaC1nLhEXgzq10hvkLEEAoIqFrGFC9FMchQDHJtSkCnX10CVvGsNMQhSRFx/By
265 | DZvruS76Okf2fsLn0wtsmdEOczFNJgmc5T5X0sPnCc+ld1lUwCz5avvbaAwZOAFY
266 | sF5WB4ZfUiuSHJt8e7iuT1f/Up7s/Nb7QqhnrTJNQlMUeX3oQOeznXoJgrPODVdm
267 | zrMlNFa7pqZ/ghaAImqoI+4mwE1GaELQax9UGax6z7kpWZoZcf5aavsqOdvEN87f
268 | mnEcfGKhokEsZGNDaIkCIAQQAQIACgUCVsyvjgMFAXgACgkQBlr6EMH+SczwZw//
269 | QLERibCOZYYE+vvi9ADUbH4eQWvfEAz0af0kSmSQkGYCEHv46zvtkKocTGR0f766
270 | xpkaAfYT8N5AZiw6S9bpzMtgpbFbf4cS2g2smzfSOL2qbrCUEh0djaCXqfFNF0XU
271 | fLAAqooDpSu087/eShojGO/JaN3gFAW059d0wAyNl+DRaHeSop3rjtx3q7jHonoZ
272 | LFfYawcSHBrSZ59RE2HeXW0mCqiHVEyhi2Zk77PFo8Qf1CWQMJv2dMlhleXbYqZ7
273 | 7/uHBt7QKlr7yrNU2iLF3V86SrJQd223jMikGBqEr/qRyS3gwZSTDYgiwC0pM/LV
274 | Pv5nD3qsMtpUEuVLwgwIDtwM0Ni3bY0HXc55KbqdkXQcIacygloJOut//aV8HfPM
275 | asexX4hDREUVQzLwF1Ti8n2FZQE0dBe9x22CfFkNUON9cPNC2/MsT9MrEHURqYle
276 | xymLDpSrl1V29mJsQSXJTuWBP+tk7RSoVcF0WRNc501TODc7k4M8ZxAH6IeJ0x0n
277 | Er9Y4aM/YUkuQcg1J0TNhNqwCDe4W+zKCRFzd7H+8ZESWAx3eNR2JJcYznyGWi6A
278 | azuD85hpS4VZ2KNtSNmOzwTiMLyy0Yn2FCLvxvNLog1LZQT0yY0YRGRa8K2tbakz
279 | tkfDG5iDL3b9SA2CjcqzofjttHmckZWbm3Tt7H/wnJWIXgQQEQgABgUCVz7gagAK
280 | CRCWzmRGHmPOqbtiAQCuBB4bWZKcylbG3Oezok/hbc1DpdMCnTyZsyxwybHvJAEA
281 | xQre9ibXTO5jf/kjZhPZMTQPo46eQ90WzYkMH2ARcxKJAhwEEAECAAYFAldVQooA
282 | CgkQpdgo0PxUF3mjSxAAnjxRvDVLkEKNZS5UekKLuiWjOuT9RnkXwbj63mQgTFVF
283 | qFhwhWa+QswuTk/8517JNXvDO9K3c1QRYskc69riffuNq0TYTNlKhYX7E7UolIzV
284 | fqWgS9QuoWJ68TJ79pmEhy5oVQncCmqw8HAHFEUeXdBGExfAioTvYTQwXEck60nm
285 | sLVKaAGWs3oOkqyWS0rgrDox1gxEsRY+C+Dhxznbsq6v8rO7A3mN9Sw5KRFgw+kT
286 | fC9XF6/sjw9qXPDKQk4PUd2GjXB4Bkl4CWeNPc2uXk6AKDYH9HMPWAmY2nURqt5h
287 | D2I3YenweiPhhkwkuhnXpiXvgYmS/68c1v+OSsp8pUcDulHKyAzFc4s4S5G/1YzJ
288 | C8f8EVwYaFGV0hxqUM935pm0p1ByBQLStgaIXlmtOpb9L4Dfwa2l4O8eQ7BZTiqF
289 | g4lsy+j4ik9GNxZxCJluJMTkj6cUDiZxSqEKdoc5nc/QGdW5chR2H5frLrMNHB8v
290 | tfO/Y97oV86vRXTv+7wcPPau1PNIkbuUOpwaKUHeIPtaeb8EWQQFRbO774z8zmuZ
291 | xmhmAe0bQCnMCZ+RUgWsUYKt0JK2Sw7kcn+OHsPes0/XxjKHEryMFQfjQxW25fTP
292 | K6Z4UdrlWz+a6vPCo9F9hLs6sLuhRHkXr9knjyeLVA+2b1ct5XVbByt3KDGcf9mJ
293 | ARwEEAEIAAYFAlfS2UQACgkQcFcHTyG0wyb5Fgf/SL4ICw3ZbIzMIBlxi+cs0S/o
294 | +NA1wfs6tEf9jANafjUWVI21I1U2TpYzvPPKtePb+0eU+7y54MTtv5JgzhYPhm6U
295 | CW8LqlxPTQkNMYQ96a9e658RvTDX2zygn5Z/NFkOtllkK8QkjhQoLayYna/sWSxb
296 | xGFXLFBK49/bXKuaTuxDKr07yUvI2F6k9Y5Myus6kCJ4NYic1TM92d/axlmEczXl
297 | AviyHDZfpDBn80t/Ny/kCQitzsqZd99mIyOxdNGQccVmvdrWFTr1sxzqeCrdEv/P
298 | m6BssAEgCSeMuAisOKvxb7bSdp11Jn1QAtel+CCauUppe8PwaTeCb6j9Uvh3kIkC
299 | HAQQAQgABgUCV9id/AAKCRAiH2Cqv58MHjvjD/wPlf0hf8zFrU0VSR7yTaXMF4Hx
300 | In45lNfaOfvcMad4NvoWIoYfKKiebypxndjuVGPFO8beuODJPCYMhYt21LO4k1AZ
301 | WBGSHTRFRnCdZKa7FOpBUpXHLTPtn2DiHLBaFm8KcYtGMTy/0zrNds2qN1Cr3AjH
302 | vnW42u14Q6TNpLIExpClfPOkGL2LOkB9p6TFPZdhRLQOcwvZtgvmc6dvQRxvBMWF
303 | 0BkkeJProlg/J0mNvLou44YlSwc5xE4nf/3V+eru3immWOgK1Tzcf+glBZ1kpzWJ
304 | fRncjVFspyMPy9uijhrfy6G76ff3yh8rJGTu7hYB/Qcb486kcNyeqVqUyTCTSSmL
305 | 9qktm/cCcn+3wOcyf7Mu8TV+HkTe2B3d+Xse/9k4ShtcLem8rBEZPNS48vJvqjyR
306 | G/2a9Vn53/Uzz84dzZuBg2PVtJsHTDWUy8intHYufH3w/U6yAw0Lwi98MTHVua+B
307 | Q6dT1jmOEonoISig/my+xHBYTvhgxLHovUDCusbHZ2oMfCaqJhYqAbFfHnA6frpy
308 | 1fVavy46B8Xn0ML6T4SD/YiLTdx7Tmc9b/cFWh/XS8oHS7FYy/JoYxvnCowwZYfO
309 | TEO23QQ10iXVC4nsUGFKw3R3mTA45BSpdaLR9FCzalqO1rdXHNaEOX4y1N0PsbYz
310 | DhiB9hjEnHMQ7qlfD4kCIgQTAQgADAUCWAEMcQWDB4YfgAAKCRCtlLoWnbtb8i1d
311 | D/9+laY2r549Hhv+Q+TJbdhKjzXTj5132/3KqM0LO4fOZDfse3eXUL3rqArqdbjy
312 | zfifbk6EQzblt3qFKYNYKwGokLPxYtG8GV4npDSmDreREKKd4bdbY2aty8NTLnCM
313 | ynqpBd8pgq8KIxG1t6PA4asj1r0rupaKf7HLhJrY6YzcdGk7BN6epzMcdPViTgV2
314 | BTVXZw47PcKSdgzGttE8D6YAV/P+XZtNYpzAlROgPPwS28p8cTqpba5A+ulp2ECf
315 | OW4hR4Evq8FswbnHo8DGkpmt38SgttKtbF4Lgp247bUTKuzl3H1xgOisIQrjQtdF
316 | NQ1kuRbNO3iyLema1laO9ULjfWIuoDkryGx/d51GGD+v7mnASKU+Aylawzx3UkXd
317 | fuDJvvaqskYjovPWDUOpmyekKjzOCGgUDrPV2IVCAyioEnLNK71kNdKhvcS636Yq
318 | eFGpjcXAn+tgA3WbjohFIQLzLDh1wNPMJgu6/bacP9jXmB1VgtbZLhQcnootaRYr
319 | o0BFzimmw+KIqK3uFVtGvsWhSfpalPiOtr1fle0COM0jB/8fkt7xnENWSGndw5L4
320 | oeu2G0eYLw1npHhrh44PeMlrT/7+Gp5USezfD+C20h/EFMb2XB9Vur1mGzwOkEF6
321 | mvRvykeGRtDznV0AzoAmgwRo01iqcLMzGuj++O6O7YRv1YkBHAQQAQgABgUCV9su
322 | PQAKCRCqB1RMY1VuQN9kCADHlRsbDiopA+SW2s25Hm3ffxxXGtBqMR3Q1p2jiVuB
323 | YRfrGjDufRl+j+Ftfzx9/0xvp9wY7N/hQjiWtu/afSC1jRflKo73bLLtCcOUVHuI
324 | z8ic/z5ijVM37vOinbWSJySgadIgx8EKfsc6i/Djdqr6Jok1GemGgTAXaVVd1Klx
325 | Mqb5GEoay7a2t1HStQXeefF4EyYgDa4WZ7/N/xUyo+u/TxmhYinuDrmEIQg+W/xw
326 | PAWLfS4ZWzmNVOGqjhaI3zFLBmj1lTqo4Gi7+kWKg6VKrMg18OOmDZDiV5JX7O4R
327 | Fe3OoHYHsCATEbim2zfNRoEFQ8ehPXutqmRBbHTM1ThHiQIcBBABCAAGBQJYK23Q
328 | AAoJEPvzmoyQR8kOEBoQAKIhg6CxM8BcdYfzd9rYCgF+Tnwh6dgbshonTGI5Cm2S
329 | uCFapV5mreJY+2i1e4kvCcCPYp68uGZ840+aUlOsFKOj6o+AG2h+W7kfpPLJIp5T
330 | aHb7pZzfFrqMZ6eykFt6xufMFSCfUwIeGCbB2JpAuw83GGQabbbuvyrdHHhyoX/s
331 | 3Az7kgTFxdtBfusbLB40BuoXrdL5v86ejZDf/LQm8AyWj7p8Z2B0XMgJRqN3DFEp
332 | cAqFbGuNkSOkxYbP502QhOzLeOx0KgTrOJiryFnbVO2UkhdUkFPDGbHc/2TN1F2L
333 | U1WK7HXlnURR8EjyPMNCEccVGBsFGCpZS4JXYrboC122KEpmWbr9/5FLGi4Rv7r4
334 | J0wp4Iyoo1kYmBYDr3GZ7TYP3MlP7irqrqnnE3B2zJ/yTlFxXgZsFOCyCwx133GX
335 | Pg7IxfQPqKSplGmv3lXzEk02j4fSB4kaMenQv6HpRPIwgNCL77tqJMv2RTORxU72
336 | HX3fpIKl2bOISCMfNCh4M39pBHOssuYisozm7KfUCNzyUlUvqR0/sRqfO/QZ/Fvx
337 | EMG9msd28ynliY5QUVWE/WWO6jggkCS2DJFY6UGaO/xmBu6U2Mcw8Zi67orA2PNB
338 | 6glSnaCOgKg4O9smCRJTodG3ljYhzL24jEugAAVWeelv/I3ApKq9a19xz8Uy9nxI
339 | iQIcBBABCAAGBQJYUSjkAAoJENE+lt1iUR3UFvoP/1oMRWhDr1DpxLklQZzvQ2nB
340 | g8b+fj6q5C65H5jO+BIUpx+ZVMciKT4XuyQBsF/RU/cwLlGJr9JI0N4nsb+Axuul
341 | yERwgG/20Ti4s4Qpm2HIw+omk4rcdfRVjcKM6AwvPphC9FdX7K06BC1LhihyrKUQ
342 | 3UdaZ8LRDQekYOQs5ZrXLRHZ18WVg35eGVTzrpoOEd/q98GGWfpZu5qkCb19JUvw
343 | PreqEm/b6hm3lQZcFW2DOINf8RORGM5ixnFG179Ex/V9JfpVGBpjBnYKJvv1gPXq
344 | jwHuFxt11qMBp04vBoW1jqIWSysucCzyml/stYoni0l6aRBrpU8RiaSAh7RGFhoH
345 | L2b6DI7pPjVVaj+UqbX1p/hSxrifiYcSJyUzysPN6N/uVYLQr3d211A64+nJ8/9T
346 | PLWYjFyl9x/5IK5HPiC3AfUQLF8RAPsQZEbyTgUoLJ0C+SU2m2Bwqd51uri3+nqd
347 | 3ST9568SEWXMIdBSaIOPMgE1pWYjbLszIG/SI6QYMLMPuadEYTXFAo5t+XU9D8GQ
348 | Uq753d/RokFz7SYEyYtXJP8oboXBwwtcTf0Mm3y9qSwbFbrrY7oBoKLouHalsy12
349 | 6UYAkAryORfWt1F7QA1t98aD4VHbBvBTpjOQ7xUpxiymeVY3FBRYXJ0MDYWYHHkd
350 | rCKvAIeDBTC94HwbH2hXiQEiBBABAgAMBQJWHqdeBQMAEnUAAAoJEJcQuJvKV618
351 | TBoH/0C4vQPup/0XJxy6iXTfxxdlfYyCcI1Te+3MPSS8rH9Ni55b2CPRUfhUXcLX
352 | /RRj6sj/Q82UZHsJXoMK1vposPMA0nxhRdNuQmwnmgxahr4HAE7bK9WoOVz9utF1
353 | TL6VrQy+EcpiG2bUrYjG+gzfl+INFJdCW/Rra1n0EehJWYWF6fc8rYD/QqPdkEoI
354 | qw/7fmMwRVEk76F0EKe60AEbX0LtyyJBgQnS2Oj/jVymG12SfQ/luNDmAvAws5ma
355 | J1lKsGNkdx/EcEutexinvrRcmDGJx++sWjccSc5r57Xf0ij6TnTS7zyB6/JYFhje
356 | Nz77Lg+fz847RIkjhfs7b8Y+BDqJASIEEAECAAwFAliGJ8sFAwASdQAACgkQlxC4
357 | m8pXrXwH0wf9FfEQtmFJidMsGg/Q6G7U7v1oes6u2wS8bgQSkRkkX8YH4W8bASIe
358 | B+R0mqhcRDS2CZpMZ1E67bCbC9+PkcLqaU7sVkA8MGooIKfHhYaZdGe6r1sHpJGS
359 | FbapqZh4osrjsuAn2FngMS33Vh7Ksmk6EL20VC7IUzvfqwmhrO+WtTnpqqyQsCMG
360 | j96V5m0uhQEHgxdWTzMidbADMO9fk/z9SkCeLhCZS1SrH4vDq3LpGxQx8MIlxGxB
361 | 5IG4xtqJ+jxREIimUCm5Aq0swlHk2KPDr6lOg/2PEO0v6UdWizNSs2Al8XjTA5J2
362 | n/Qa/SSAFDbnPdZmeJGbkXhHmVXeXw76ZYkCHAQRAQgABgUCWJQumAAKCRBsqXE2
363 | yMf7YmJdD/91XyPbmzqnhFebEvdCsLajyl5jkr27kEiZXMV+mzDMXY9Jtp2c+W5n
364 | MLJIOWm4JMLIOqH+l+pxj2IEwAOn7YrzD0FRLCIXw1TzF37G+bJnnFMJALBWdeVt
365 | sGEbg8izp3vscgENxh4aOPSuWsUFTU4FhsR7f2iKGN8ViYCHLT6L+5cNnvzWNbGZ
366 | beYmnz03ID1xCigwmHLv/J/Xs56GxNTYQjkcLCJ2SSuJkxllQcm/W44Tx3BXBKU1
367 | m+PsmI5h7KcBCHuMooKxtbsX1oLWq3fWUTZFZzikKBk1VyDNvo7sXaYDVSd9TrFr
368 | tw2oc7Ha0tlM3wqK/iOvSblimsEOM4BsTwxv0Pa7YWnWQAiOjF1AbPDqO96LJVQE
369 | U9onL/6lGaARntlttuj5GVZHrpyKlKj8Gvca3fzNVARtTbP95vCnFPsB6rLLX/kB
370 | sa6qADX/fKODP8CPNl++sFm5G9DLUkp3L0RlIWkfE8FWwxbqSbtxkZlUK3H9ixqs
371 | f74jf8vfPzcI9ioagaOHyLp2XsCiaO8xY5UJT5TjvVgvahzj0imP8M1BZcbgwsct
372 | pqb0BeTy3gSLWYz6ZbMcFgtpOZaePFkuqU5RyA8BtKEdj6wu+Scd8ISACypxolAk
373 | 4FBsqG7TpHO31pFr1KZd1wufYMEddd7kwkjH4yR6p0f+d1KOgagJeokBIgQQAQIA
374 | DAUCWJe9VgUDABJ1AAAKCRCXELibyletfBGrB/0WcqMm2qRijR10C5jDTpF+ccr1
375 | busMjc4g6ctVXPt8E5xmvUmj7hRIfiJo43BkhqrkW2K+azSwY3MXmFLnhNER7CcT
376 | 1OJjYIbYEoD5f6+ZOtIyXH8u6er3Tdwr50i/a1fXPUJip/OwBK5yfTMx9pIB1uup
377 | qDK58lr1k4idC1WGN7sOnKbTb/yF43WPmV1jvOnPIcWQAEkF5UDj5rFonEK/8EuK
378 | jOxvNfsJC8EGoi3mssu3WUNe8zDBuUDWV3ZQvR5ZuqJdCWTSwAdWCX8f1SJflO5y
379 | 4mcF/JVUB/9TN7yCuK1AVfe0hNL3FMLUq+e4WMqM1BCcDIYYZz9WLNsN+EpJiQI3
380 | BBMBAgAhAhsDAh4BAheABQJUUAQIBQsJCAcDBRUKCQgLBRYCAwEAAAoJEDgEu4LT
381 | ncDjO7EP/Ryz+mS6Odz/5Rn/4CM1S11WBrR7GPccWz6KF4CfqaRMna6Kb8IsM00n
382 | Bf1AnmKn4DrQXhOff9rsKLhekMPETJjY4Zfnex6VlKkQh7miRSChKZN8OftaCjUA
383 | 6ZSdnjSX4PTmqaHomhriSDOVBVXEq5HrMmfxgavJ/Fn9cEkA7drVi0Pi5eXvt+su
384 | w7EJm+/WPjNBK4NE24b65lGk0F8ySloS/Km5wdAOjmbqMYl5FgK16naJFUpSUVNL
385 | PHjmxEfP+Zfrahs5OqHzr6MlIMkvUNPAHZPUSp9TkB1udK8naLlQj4luPdOudToB
386 | T07ZjFfYemMAj8tBOccRiiWPFT7trWjFsezeKK9i1/tTWVcA23Rn9Wh7Ws/Ta2nP
387 | hEISqTt1++2GUJ8EaW2ajxv5cCZI2mf2UUsYJMkjKk3kfA0cN5DgPvwnZRsN34j0
388 | in6WzxkyI7lA8Alx4N4dh40vG5bUPoEW4Bw9UmZqIjsswotLVQQfTKPAVgCTYEDH
389 | q2xe/eipGzBf9VvxOzYkgd6+EDiBz2lptj2H3EZebFEHuA7wyqWnOSDXisVfV19+
390 | qO6myXHQ3kU7DQ5oWruHCsPEQRFtDC82zs3iEXGUjG9GcvCHVPvh/PoT+eKGKQsO
391 | GDOJKJc9epvnM6N8q1jXYYYBeYXxjg+BLI//T48R/YLzkbmUk92xiQEiBBABAgAM
392 | BQJYuqyTBQMAEnUAAAoJEJcQuJvKV618yd8H/0PhhEJiD378fuC+LauHgZAKqn8h
393 | wS0EjlPAIYmFcQZC4cDd2duS47xC09RHkr6N8G0wUTBkyCxgWmPHcqQZ3twrVKun
394 | T6aYP8gGATeUUDhE+yLF50v6+qmo/3B9cKbCAsDU/vKgi4KOhz/aka7a7bck9/BN
395 | a20uR3Qjo28nT9Q10Klcuxl55Qe8qD5P+WlR9UsDTMpOo8AzWpGJt9H59+LaTdmf
396 | z3oSo7m7sv3qDnatj/Yc9V1z4O3iloAYluKRbywxcNNE/yiBsoB2JV0pZ8sMEonp
397 | BtEOLrPahiJ1z74P+wCNFxAitHtu3f6A1JFazUgdC2SQz8Jr39jmHFgwAj+0Jk1p
398 | Y2hhbCBQYXBpcyA8bWljaGFsLnBhcGlzQHRvcHRhbC5jb20+iQI3BBMBCAAhBQJY
399 | scQzAhsDBQsJCAcCBhUICQoLAgQWAgMBAh4BAheAAAoJEDgEu4LTncDj4xgP/3sT
400 | nG/1pZDSFkQLiiOuyFMoZ+x/X/R/UK+y87o+2Gu9UFuy4jICs6k7CMqe5ca4XRSI
401 | B9QWyq/bs1bx/4cVEpiwwKMkxIWrseXTtsKJ8+hWhElzLL8cNTFCz+4ax7PKE8eC
402 | GTUXcyMyzAe0SysHI2bCWFfQe8RGEy+1cnLH5+qO2MwLDKKN4+at2ADZFrYn4FEZ
403 | 8wvlb9/is1iN7h7+s2GDPpvEJrrnpeHeNTX1BEeykvbjW+Bsb89g6kJfks7PvhD+
404 | BQwVMaNrmjR8KYi+GaopHdQ30yLWD4ck97B+UYZnqSKk7E8NOpwU22b31VlZgI/J
405 | XWeXgQ5cY58J0ShGmbfypHXerthzlm6UHzjg6g+yujqDrxaOPTdfxYAzJmX5ztk3
406 | D9xMEhCAD8ypefTdMGQb0B2q5Yjsl3sHqNNqxTeg1iorUNz6UtEhX3RmGrTDdY0r
407 | gn0prjgiMTEMWWxAmgeYw/gOkpWfEZNrX64La65OkhTg+aBZEe6broHrc1x6dXpo
408 | RkxGJrlRfcsxOcgy2M0/C0gk1L1yYWXRL4yENkQ/hNuPZmdDtrvWxcSTnMPfclwq
409 | 6kklflC099ujCZf5NuOG80mZi03917LQBtgWp4INmG+B6aLY52KuINmWXm25wYPY
410 | 5MfEbyO2KzngJSpxdR90GbP4F5lri2Ho9eSByisb0dLq0ugBEAABAQAAAAAAAAAA
411 | AAAAAP/Y/+AAEEpGSUYAAQEBAGAAYAAA/+EAQEV4aWYAAElJKgAIAAAAAQBphwQA
412 | AQAAABoAAAAAAAAAAgACoAkAAQAAAJ8AAAADoAkAAQAAAJ8AAAAAAAAA/9sAQwAI
413 | BgYHBgUIBwcHCQkICgwUDQwLCwwZEhMPFB0aHx4dGhwcICQuJyAiLCMcHCg3KSww
414 | MTQ0NB8nOT04MjwuMzQy/9sAQwEJCQkMCwwYDQ0YMiEcITIyMjIyMjIyMjIyMjIy
415 | MjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIy/8AAEQgAnwCfAwEi
416 | AAIRAQMRAf/EAB8AAAEFAQEBAQEBAAAAAAAAAAABAgMEBQYHCAkKC//EALUQAAIB
417 | AwMCBAMFBQQEAAABfQECAwAEEQUSITFBBhNRYQcicRQygZGhCCNCscEVUtHwJDNi
418 | coIJChYXGBkaJSYnKCkqNDU2Nzg5OkNERUZHSElKU1RVVldYWVpjZGVmZ2hpanN0
419 | dXZ3eHl6g4SFhoeIiYqSk5SVlpeYmZqio6Slpqeoqaqys7S1tre4ubrCw8TFxsfI
420 | ycrS09TV1tfY2drh4uPk5ebn6Onq8fLz9PX29/j5+v/EAB8BAAMBAQEBAQEBAQEA
421 | AAAAAAABAgMEBQYHCAkKC//EALURAAIBAgQEAwQHBQQEAAECdwABAgMRBAUhMQYS
422 | QVEHYXETIjKBCBRCkaGxwQkjM1LwFWJy0QoWJDThJfEXGBkaJicoKSo1Njc4OTpD
423 | REVGR0hJSlNUVVZXWFlaY2RlZmdoaWpzdHV2d3h5eoKDhIWGh4iJipKTlJWWl5iZ
424 | mqKjpKWmp6ipqrKztLW2t7i5usLDxMXGx8jJytLT1NXW19jZ2uLj5OXm5+jp6vLz
425 | 9PX29/j5+v/aAAwDAQACEQMRAD8A9YFKTzRikxikSLTutMpw6UAKBRxQc9qOaYCe
426 | 1I2BznisHX/FdnoSFW/fXH/PNT0+p7V5J4k8calrExRZXgg/55xEgd+vrWsKTlqc
427 | dXGQjLljqz2TUvEekaTj7ZfRIx/hzk/kKoQ+PvDMzhBqiBiM/MrAfnjFfP085kIB
428 | YsR+NN+6gYnB7YrT2MTH63U3PoR/HXhqPJ/tSM4/uqx/kKt6d4p0TU5PLtNSheT+
429 | 6x2n8jivnaJgY8k80hlYEccU/YR7krGVL7H1CCGGVII9jTq+crDxXqWkSIba8lXB
430 | 4Utkfka9C8O/Fe3vJEt9Xg8h+nnpypPuO1ZyotbanRTxal8SseldTQRmo4Z47iJZ
431 | InV42GQynINS8isTrTuJ04oNGaSgYn1opN3PSlwKAHGlptLSAMYpRSHmkBzQA+qe
432 | rX8emafLdSZwo4x69qtj61w/xGvzHawWcbcsDI/8h/WtqMOeaRy4ys6VFyW55V4n
433 | vp7jUZHMpO87ic9c1iIk0gOwE+tdr4Z8HXPia482bKWqHBf19q9V0/wHo9lEgFsr
434 | Mv8AEwrerVjB2OHC4WpOmrfefP8AHpV4SCsTE4yRtNWf7DvPL3NA+BzX0eugWIx+
435 | 4TI74qZ9EtGTaYUwO2Kw+sdkdf1CT3kfNqac8Iw8Lg9uKryQYypVlr6Kn8L2MnWF
436 | fxFYOqeB7O4B8uMBs5qvrK6oyeW1L3TPBpok5yeRUEbmE9Rkd69UvvhqzZMbY9hX
437 | I6v4Lv8AT4jIIyyDrgU41oN6Ml4erFe8tDX+H/jT+xrs2d27NaTsOevln1r28HIy
438 | Dwa+UlLRTLkYIPIr6D8AazJq/htDK+6aBvLY47dv0pVVdcyNcNPll7N9djqqPwop
439 | CawO8UYopM4pRQIWiikpDFopKUelAB0ryzxFu1vxXNDGSwVxGMdgOD+ua9L1C7Fn
440 | p9xcn/llGWH1xxXE+DLLdI91McyO3X1rswz5IyqM8jMr1alOguup3Oj2EWnadFbx
441 | IFCqK0Vf3qGPg1IUJrz27u579OKhFRRMHWnF6r7HHSj5h1oTG0Pds1A4ycU4saru
442 | zFj1pNlJCPtHXFUrm2hnQo6Ag9sVM6uxpqoQcv0HSsy2lY8Y+IHhRdLuRe2qfuZD
443 | yAOhrY+EN7i5v7Jj96MSAfQ4/rXceJLOPUNJnikGRtJFeYeCQ+keO7dTxHKWj9sE
444 | cfrivRo3nSZ4OJ5aWJX3ntxNBGaM8ZNJmsDvCnA4ppOBSr05oAdTSCehp3egdaQw
445 | xx0oXmlPNC0wMLxZNjQZEx991UjPXnP9Ki0O2ECxLtClVHA6CtTV7VJbINMuUVw2
446 | fTFRWbots04OVY8EelaSqpUeVHFDDOWN9pLayNiLnGasBgvU15hqHj+5hvJYoIY/
447 | KQkBt3LYrNl+J8qEHy2Udw1cXOj2eRs9kDrTXkQ8V5Rb/E5JpY02qV43EHmuj03x
448 | TFqJAjbLdcU/aIapNnYYQ0AR461zF/rn2Ncvwvqax5/H1raMqyc5HJz0o50ynSaV
449 | 2d40aYzVW4jGw4rjofHkFzIRGvy4zuLDApZPH1hFtWSVMdCcjj8qTkibNGnqEhWF
450 | 0znjpXmN0wtdbimG4NFKGBHsc1341O21NfMgkDoRwVrz3WAU1p1zzu/Wu/AT1cTw
451 | 88pe7Gouh7WrCRFdfusAacR6CobLIsLcHIPlr/Kpj3rJ7nbB3imwwB9aKO2KXoKQ
452 | x1Hc0gIYceuKWkMOcUo6UtJmmBkTXEpa8t5OYyxMftwOK4qHWdQ/tk+Gm067gtS7
453 | bbwblV1CltoOOpxjg5xn611mr3xi1G3tkUEyuAfp3P5Vb+yC4lt5N20wymQDHXKM
454 | uP8Ax7P4Vzc28TtlT1U32PLdU2WDymS0Z33HYqpkmuZvdbv4wG/sdVB7OCT+QHvX
455 | vN5o0Nyd20Bx0OKxbvw/MxwGVvrGP51Cunqa2jJaOx4zBdedKgn06FHk5Uxg5/nX
456 | Z+GUe01GHbbzziVWIiUqGGMc/MQMc+ueldInhFFkEsuxSDkAKM1P4Q0Ce38VX15P
457 | K8sUOUi3LgLuwcD6KF5/2qe7B+6tDO8ZTzHSXdtMvoQAMtI0RA+u1yf0ry65mtkY
458 | LKkszdBtcpn+dfQ/jSx+3+HLy1jQGWSFlQ4744rynTvC8l7plvcNHHM7rnDDBA7c
459 | +uOvvVNKLJi3NJHBrqOnLN5UunzhunMpbH4VejXTr1SYUYEdU3kGu0HhJGfJ0rcw
460 | PJ4B/OpY/BCmUObVYMHs2c1LmuhSptblLQZzpukvcxu6wQHdLHJhsL/EQQBjA579
461 | KNOvNN1rVxfKfPV5QsaEFAAoyzH17cV1FxoUdvpUttGgYTLtdW6FSQD+ma5u/sbK
462 | zuo47OOK23KVCxqFGMjPArSnV5Nepz1sOqrUbXVz0fS/EEWqapLY28X7qCIM0o6E
463 | 5HArbzXIeCrQW816/UuEwfb/AD/Kuv8AerpNtXZGJjGNS0ULj1opKU1ocw6koIyK
464 | O1IoXPpTQRmjgUnfNAjPvLZZLn7UOHhUqQR1zwCP1FS2uMBiakupl+zSRZAbg47n
465 | msee++zoornlZM9GF5JXN8yM3AbH4Zqvc3HlIWecAe6isT+1gI8lv1rm9T1aXULl
466 | bSBiWY4PPQVLqHRGjrrsdNb6gdVuzBby5C/eYDFdLZbEUAMCe5FcLL5uhacJLBVa
467 | bbhgf4q5608Yana+ZLcxbWJ6K3H60ou24VIKXw6Hq+pS5Bwa4hL6bTdTMFzs8t+Y
468 | ziuW1Xx7cy24SMNv9FNOsdRfV4A1zuAjGFz2z1olK+qHTgo6M9LimV0DbF6fwmkY
469 | xsT8pP1ri9K1p7aT7PKxO3hTnqK15dXXH3qXPcbpW2J9VlKwMEAAx0FcZf2TXV7a
470 | yIf3pymPbI5/nWzNqRugyL0xirVlYPd2jBGMZJwXA5x6Z7UlqZr3JHSeH4Fg01SC
471 | DuOM+oHH+Nap6VBawJa2sVug+WNQoqftXalZWPKqS5pNhmgmkx6UgAzTIJc+tHem
472 | 5BpQBSGBBzxQaUUNTEUry3ilQyMgLoCVboRXNX6GTdt7jNdc3PBHFcs58u4eGTqr
473 | FT/Q1z1kduFl0MDUDLHZkR5J6VDo1stvNvndPNbkjPSt94IyxRhlT61gatocl2ri
474 | 1uGtps/LItcy0Z36yVjqmCSxBcjkd/WuU1rRDJGTCAWHUKetYFnpWsRytb6pfTBl
475 | YYmDfKQT+nFaz6C6Ws8qa0A8TEAhxjoCM+nWtHOzsxKCW7MgeHnRi0oXJPc1q2tv
476 | FZQshdeTyB6VWvdDEflmbWkZmVmJMg5x6Vyk1hqt5dJDZTSRx/xSliM0lLmdinFd
477 | DpLgGWTdG4BU8VYSSeS0VjkE0zR/D+x0SadpnH3nY9a3rm3iR44kXEaDpUS3Hdoz
478 | 7SNojljyeTXYaJpeokQyyzQrZkB1Vcl2zzg8YH61yrZmu44IgN0jBF+pOBXp8aLF
479 | Eka/dQBR9BW9GF9WcGIquLshcYNO7Yph60ZJrqOAdnPamUo601zhc5xQMzBr1uf4
480 | Jf8Av2aUa/bZ+5N/3wa1/sdt6/8AjtIbK37MP++anUNDK/4SK1z9yb/vg0f8JFbY
481 | +5L/AN8GtQ2lt/eH/fNH2W19R/3zR7waGWdetM5xJ/3waw9avIZblLmDcMjEgKkf
482 | Q1132W1J+8P++ajubC0ntpYm2kMpHSpkm0aUp8srnGi7VwOOfWpoGLHGec1iBzDc
483 | Pbt1UkCtiwAeZW3Ae2a5Op6qlbULqSNP9am0f3sZx9axbiXSjIPPt9Pdh/G2M/ka
484 | 66501LpfmyAay5PBtnMN0hbJ9MCrXMaxqxSOamm0wcW8dlFzyY1GT+VPtdkjZjTI
485 | HG4962JPClpaNlGY5PGcVcisIbVBjkHnPtUyuVKomjOgH2bLSdevFZ9xeDc0h4z0
486 | qa/u1ZiiYxzXO311j5FOT0qLGLlc6HwxPbf219ru5VSOAEru7uen5DP6V3X/AAkO
487 | l97yL86860W/utNgjEOlJqKPukmTftlAGOUzwT7e1auo+KNAis7W/wDskkljckqk
488 | 0aA7HHVHXghv5jmuum9LI83ERfNdnZf2/pZHF5Efxo/tzTyeLhPzrmtP1XwjehjH
489 | qlmhHJE2Yv8A0IDP4Vv2lhpF/Hvs5rO4QdWikVgPyrT3jn0JxrNiy5NzGPbdzVS9
490 | 1m1KMqXMYAwSxNW20Cz7RQ/pXP6vokC2o2qil5OCCPQ/4VMnKxUUrncKOelLt4zg
491 | 4p5ULGXLAAcmmWWoQ3UX7p1kGSMocim5paFxpSaG7Qe1IAOeBx19q8+1P4iz6H41
492 | udLvIEnsEx80I+dBgc8nB69OK868UeJv7X8R3M9rNcixmA8uOU4KnA3AgEjrmqV3
493 | sQ0k3c9e1nx5oWjlkNz9pmGcpb4bH1boKQeINSlhtoRbRQXlwqTSggt9ljb7qnP3
494 | pGAJ7BQDxxz4lpaR3Otabay48ua7iR8/3S4B/SvV9O1Rr/xNqCSqVddQus577QI1
495 | /JVrOu+SJvg6Ptajvsk39xW1m1InNxGPmzzVaC+dIhIjZI6jFdJdQhlYYzmuU1K0
496 | ls5TNBnbnkdjXIjs3RtWvi2AAo/GOoParra5HIg2uB3zmuDmFrdncy7JPbiq7LcR
497 | f6ufIHTNXzMuMTurjXYoSWkmDccVzt/4qeZWSMfMRgAdhXPS+dJ/rZSaZujg6fM3
498 | rSuNouTXRVOSd3qaqW8bTzbjzzzSQwS3cnfHf2roLKyWJRxj8Km9hWHed/ZiWMyn
499 | DLcA4/2cc/pXOpcJqGkeOIo8G1jmS8g9FbzduR9VYitDxBcqk6gt8sEZZh6f5xXO
500 | aIxtvh94iumGPtlxb2iH1IJkb9APzrTDNuUjTMqSp4ei+ru/l0MMTFcZ65qzpN9e
501 | 6XqY1CzupYZwdo2twR6Edx7GswOS3TpVpD0Ga7zxD0bSvidqtoxGoJHeRMDycIwO
502 | OMEDBH4VatPHEmsXCW17bwRIWLI6ZGMBuDk+9eY7y0p54UfmasRzHJANRNFQ0Z7h
503 | ZfEfTF0aO8upM3EgwIFOSG7gj/PUV5/a+NbnSTqsWlBYILucyIp5MQPZfTtXFJIU
504 | j445JpQ/7z681MaKW5rLEN7aE97eyzXstzM7SySYLs3U1UuPnlQLx8vFK53TAdiM
505 | Uw5Gz/ZO2trWMG23dkkNzLDLHKh2zRsHQ+jA5Feoalr2n6bqlp4hiObK+ZbiTaPu
506 | GQEP+T7vyryqYEHIPvXQeHbGLxHZPoctw0TyygW7kEhXYEqD7Ejn65rnxEOZL1O7
507 | L6nJKfnFnssdzDdwpNbyrJFINyuhyCKr3NsJoypGa8P0fxPq/hK8ltAweKNystvI
508 | cruBwcEdD9P1r07QviFo+sFIJPNtrlv+WboWBPsR/XFc86UkOnWi9yvqGj/vGZFx
509 | 9DWHPbXUJIJYfUV6RcQJIm7gg9DWFd2KnPzY/Csrs6YtHEMs7NyGwfbFWrbT3lYF
510 | hWldNY2AMl1NsX12k/yFYt3470mzBSzhluHHfGxfzPP6U0pS2QpVIx3Z1FrZrEg6
511 | ADtWN4g8X2ekK0Fsy3F50CKeFPuf6VxGqeMtV1MNGsgtoTxsi4J+p61labD5t/EX
512 | 5VTvOe+Oa1jRsryMfbe0moQ6nRaxdztZJC7mS6uCA+Op9f14q74q2aNpel+GEJ8y
513 | yQ3N7/18SAEr/wABXaPzqbwv5MU974tv4/NtNJ2+RD/z0nY/uwfQA5Yn2FcleTz3
514 | 11JcXEheeeQySuerMTkmtqMOWIsyxKr1vd+GOi9EJGmRn1qyPlGT2qNBgClkYCPH
515 | rXQecKudnPU80/fsHqe9IKhmbFTLYqL1P//ZiQI3BBMBCAAhBQJYseahAhsDBQsJ
516 | CAcCBhUICQoLAgQWAgMBAh4BAheAAAoJEDgEu4LTncDjYawP/0CafFAJq4OAlFl1
517 | bhb4BTiw3eAbRnifGpBUldTpxxp65UJyXtqA3wX3ggbhXMWnb5zMOh06HzVUFJ7S
518 | nse3cxAHgi9+qqueBI53Zx1btPlJNX/AIv6TlESRMZJXE3y2pSBdmwW/tiXr5fC5
519 | RJqpgUevKfq3eW33aUtybE48FqmLqDJjyAvAbF/jKHY0Zahz7iCVkWJwufoGxkcI
520 | MMLYh1R633DT2yDSti4xS8xKUYJsiiw2B2t//Ux6zoNh3gzBEeMoRDRFPuC3ibfd
521 | kwC9zMkbDMNSMSlSB8F0sn52k93uQcnR1jWoWc5nSz9x5m1I3xo0Zl0I5YNIkDIN
522 | z0SL426fN9zBSPHPnXsoOXOnDSF5xGt1Wzg3Do/kErFzlKPExqo5j+W5RbRznuZR
523 | +uQw0nvCNGS3kfASbAaXR5lkb0VJiIliLM5HzXKi6W662y/XX5iQDkWx7UjjmTx5
524 | x7r12RYA6mwLJWlpNQoK4kWDlllUn1QpC+wqjTKePPMM/1vyqlh14tRVurxWTZPA
525 | h6/2kzrb0a0noq4YBeCNjOU2Ri+1RXZJkthjn2eNsXEvLCp104H7W0uHwDAofiOk
526 | X99T823H6dIUEllIyiX5DRyRimZYqC6ux5Qq8AKVJmAKY3+z61W+psmFqVXckSMu
527 | 8fd03DXvVgx60WWgGkGj8hEcoBe3uQINBFRQBC8BEADRTWbSpwvuyjGkPQxCsWs2
528 | df7qxEbj+NvzETDY7yeyWN49zll0zz1pCYZ11BtzCSiZWTLe9Ngk+PJsP4t87gZM
529 | whNgG4YvIEJ9BIcpkPDCMvMyMW6Y8J0rPPjGrscLAPnIQg8VTZmsTGeEBUXsQNHF
530 | igeBH/OL0Rwf4ydhUt4SfgldrcBCfS2EkJH4ULhUw5enhkfp5tt3k5l0C9Wa6+qW
531 | YMEdhnN6rBjXGfwksgZAh2VfW7BNbidtuaCn8ZqrSf4p0kC3YdClW0wcDSGfT+Pp
532 | OE04waycxUMB7gH8wvI8phcMSHj7rRJPui6rXytS14AI0BKinfXh0Tw9QwU6V8Cx
533 | Wwq0/SFwcD10Q8Y7gDLfevzptKISpN05ACNSqCf1WmBZn63FWxk68r3JYrxFEYQv
534 | VWHMAOQB1doODgrv+84xTxhcn781SAxA/F1BOtMgf/wgiUXUClxn7k4Cf27kLiZb
535 | 471SM8GTjoi5IVg7WyvN3p9wI6KWy7IrrvuwZKxXvr65Q3iDliVP1j0236PaBGJt
536 | gznNhaHPyWkaDwBZW9MXQlejc+ixaeTceE9BqKvn+0Z1Dhx7WCzfBPgDkqSVLQP5
537 | O9kg9qjxkN2TkuQlWVVNJL+0reeQm7CSEyA5SjtZjOmnC9bcHDsnLlzPw8Qt9g9O
538 | Ih8XUhr6inF3k6UrB55nqQARAQABiQREBBgBAgAPAhsCBQJYsb3rBQkIM/K8AinB
539 | XSAEGQECAAYFAlRQBC8ACgkQ4gbCn78E/xc2jxAAsFu+jcO/pKvyixFilobPztif
540 | tnk5NQ207eVA5rV6r/UV2ngBUn35YGpot1zltevXGs6hpS7jnvOtRgHYGjXxVEdG
541 | /qFbqqHMOhjbNtQYLJBusPZI+L3hImiDCuipdy6d1uPGuXbiZ+jCyRj1FsLbA7HR
542 | GHHFqkH6Yx7YM3FJV4VKzOw7pBrLM69fGu0WWFWqCf70ErreZudsF1EOjjpyUAMJ
543 | O3ktKXUIRPNHSizAjgxDFW2hkkbILeBUbq6Qy5Qkt+K9tLrL08MloXSYiRnB/aIq
544 | DF+mKc01292KkmUSy2AFX3xcrZDdwPZCmn9u2sbQ+yxek25cqbyG0qA9ihjrh/j1
545 | VILNs8kXUglI6qaj40aWeBlU+kCjedII2QNjWiye+0pbtrm512VUUaGm6xZHyE/5
546 | iy9Xyogi4L7r1xPxEG/n2dIQJUzkTpuy3ZDZot/eXYc6rMhDGrWXBk3Vy4j/feYo
547 | MhaWazYZf9jOU6wCHoUHM8LhwE2rgEk65f01yIGoMba8e372N/3lPKl8LUoYJ36k
548 | 97HLtapSewPKe793e6jsOH3SGGVJRQJ3BhKfxo60xNTi31aQz0mdX4jaDiGQSXAK
549 | wfjO8kEbFEunI06TcXCbBD/NMz6MnabC6CbCu76vF2vIFjXAnh7snFmmJL9/0FKP
550 | nHAn1OV+RVPjQJxovtgJEDgEu4LTncDj8nYP/18SgUQ7yUTgc2DjwVOlrUFgL5TP
551 | WtqjiRPaiUC5GwW/aFRKGyD0BcUaFFxJP2qhR5zMdmPrbZq9jTzPqPbDfq7Pin75
552 | pRLg0LIPjDWuygqhXIRECxSBsl5OA+zPsyoZEos0sZZI88OFAQR3jXwWANA6hlLY
553 | oXohND92bk8s7BcQr9XJqghk93X0TX2HMJxExLKfp1jFF6gFEWpeqx91DIhQyKLS
554 | txOeFCPsf8dUccg7QrgHZ60wE8W9jbDQW7kwhOlQ27ClvKKW1H/ZQTg3eFFc4IuI
555 | 86tAAb+AJNlr7CGyf5sQfzqMdPxy9ywvg3Kk9VEK7Y1mHGVcsvqAlfyOgOMJc0fZ
556 | 2U/1tDEKjk18KNxGsiIRrrwdYT9irwE0hmgWc3o4lxV6zFNJ1pxcmKkRhCMthNa3
557 | 1KCKBiZDhZMQY5fSmUmNAFEsV92Z1o29BF3rK5FmH4FLueO+39aAoZiZO3W2jtrS
558 | elzq6ol5XlAOB7Ol7o6p+9M1gVx4OgYaR5k/9jDgeI47MMW81rBSxG0FQeRu0zlB
559 | 2/o12Wf5RAz/laXISIUekapwlU5FYMjoP+ziAFZMN9QAbo0MLCuvj8FqX/B7NpeB
560 | B+VNeou2GdK5+DPbn2sHWp1rtayNVipqMhWlEyrmsFHvkDFDcGYRSKbuSCd7O+PK
561 | ZpCkfwcZAXF25edquQENBFY3Xw0BCADsNcfIEJ23NJ9GmIyotqT6MUggt2CLTAON
562 | /ats4TeI4et851NdVI1GBMVChcmNhN36wY0OS2J+lSfozyDqksgRojMFs3Bjvn4x
563 | EdvS7UU6UdX3TTSiy2RamLdjJjd9QA9JznOXxY/q0kIW6A9gG58D/tKt43AdQdgl
564 | Q5XEMG5JY11rS9bNIrDk+QsNv8bUcN6ElFTWzOXMdFyqm0Im6ZWcxhlSdgbJG2HE
565 | 86L/DemLdNwOXetL4V2csWz+ZTY6+S6jbk2T2gSqUSel52voVU60k/HxMckYUBOa
566 | UsAxPY0R1/XV3nRfhZQVfGSfMpzvrggi5Whz1uZ8fVmyTrK5H3dfABEBAAGJAh8E
567 | GAECAAkFAlY3Xw0CGwwACgkQOAS7gtOdwOMgJg/9F2B+yY0bHwja0LHJ6+WhQYyR
568 | dSmis5JlAL49EPEGFCptA5mECgUF48F84ZU4tlVs9sbzmKH8U9BVPU4EECHgf1Hf
569 | trX+EoXf8n5BejdvKygFyzevoA2IEqH3u8WkDrOLXoNXDI2CcT4Uu25cQGJB6lvV
570 | r8ohUZ2Q3krZzugCZtDhSclG56/rk+2MhApT3yeOcs2ED1htvdnU7OIeAxwP8Rcu
571 | 0f8kWUoGvJ3KlbmA6DoMrvlVRheJsKDLXcUV6XGKd2o5CDuKuNbPx5MIg4i5FwcA
572 | R8gbNGsNVOX29g57YWZnXj7rKF0Ab2Vmx9Ir/y0qoRoSfLgH7no6io2Wx30i8mfq
573 | 2qd/6RwHi4/KimJJs9Xle9BQWb0kGU2FCnzmc8gAXoiGdzUTdvRxtHa2l8HOPlI7
574 | 8z0cklwWr1cdnUXU87zJisqGFKvbyTNBEJmItXswDEuQcbzIsIMyDM5REdesH1Op
575 | SJBc/A095yy/JuT7618R4T6BaWDD0oEvBtCds36Vd2jwtTRBb5cXvcfMc1Rfo5lN
576 | afpO//HcKgJ/Oa4zAmKaXURzi+rBrxO+CGVpXQex+4+cohxxZ6gTbgNxYmGA7v55
577 | 6HDxJBUyytvlzGiKqg97GKsHiISy4o5BLQPYFMpCNgB3rcb5RR0v5tGeeuhraXOo
578 | 2lPgP440izPGh5s38Oc=
579 | =8riE
580 | -----END PGP PUBLIC KEY BLOCK-----
581 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
  1 | # Docker base images for Ruby, Python, Node.js and Meteor web apps
  2 | 
  3 | <img src="http://blog.phusion.nl/content/images/2018/03/passenger-docker.jpg" width="500" alt="Docker">
  4 | 
  5 | Passenger-docker is a set of [Docker](https://www.docker.com) images meant to serve as good bases for **Ruby, Python, Node.js and Meteor** web app images. In line with [Phusion Passenger](https://www.phusionpassenger.com/)'s goal, passenger-docker's goal is to make Docker image building for web apps much easier and faster.
  6 | 
  7 | Why is this image called "passenger"? It's to represent the ease: you just have to sit back and watch most of the heavy lifting being done for you. Passenger-docker is part of a larger and more ambitious project: to make web app deployment ridiculously simple, to heights never achieved before.
  8 | 
  9 | **Relevant links:**
 10 |  [Github](https://github.com/phusion/passenger-docker) |
 11 |  [Docker registry](https://registry.hub.docker.com/r/phusion/passenger-full/) |
 12 |  [Discussion forum](https://groups.google.com/d/forum/passenger-docker) |
 13 |  [Twitter/X](https://twitter.com/phusion_nl) |
 14 |  [Blog](http://blog.phusion.nl/)
 15 | 
 16 | ---------------------------------------
 17 | 
 18 | **Table of contents**
 19 | 
 20 |  * [Why use passenger-docker?](#why_use)
 21 |  * [About passenger-docker](#about)
 22 |    * [What's included?](#whats_included)
 23 |    * [Memory efficiency](#memory_efficiency)
 24 |    * [Image variants](#image_variants)
 25 |  * [Inspecting the image](#inspecting_the_image)
 26 |  * [Using the image as base](#using)
 27 |    * [Getting started](#getting_started)
 28 |    * [The `app` user](#app_user)
 29 |    * [Using Nginx and Passenger](#nginx_passenger)
 30 |      * [Adding your web app to the image](#adding_web_app)
 31 |      * [Configuring Nginx](#configuring_nginx)
 32 |      * [Setting environment variables in Nginx](#nginx_env_vars)
 33 |      * [Application environment name (`RAILS_ENV`, `NODE_ENV`, etc)](#app_env_name)
 34 |    * [Using Redis](#redis)
 35 |    * [Using memcached](#memcached)
 36 |    * [Additional daemons](#additional_daemons)
 37 |    * [Using Ruby](#using_ruby)
 38 |      * [Selecting a default Ruby version](#selecting_default_ruby)
 39 |      * [Running a command with a specific Ruby version](#running_command_with_specific_ruby_version)
 40 |      * [Default wrapper scripts](default_ruby_wrapper_scripts)
 41 |    * [Running scripts during container startup](#running_startup_scripts)
 42 |    * [Upgrading the operating system inside the container](#upgrading_os)
 43 |    * [Upgrading Passenger to the latest version](#upgrading_passenger)
 44 |  * [Container administration](#container_administration)
 45 |    * [Running a one-shot command in a new container](#oneshot)
 46 |    * [Running a command in an existing, running container](#run_inside_existing_container)
 47 |    * [Login to the container via `docker exec`](#login_docker_exec)
 48 |      * [Usage](#docker_exec)
 49 |    * [Login to the container via SSH](#login_ssh)
 50 |      * [Enabling SSH](#enabling_ssh)
 51 |      * [About SSH keys](#ssh_keys)
 52 |      * [Using the insecure key for one container only](#using_the_insecure_key_for_one_container_only)
 53 |      * [Enabling the insecure key permanently](#enabling_the_insecure_key_permanently)
 54 |      * [Using your own key](#using_your_own_key)
 55 |      * [The `docker-ssh` tool](#docker_ssh)
 56 |    * [Inspecting the status of your web app](#inspecting_web_app_status)
 57 |    * [Logs](#logs)
 58 |  * [Switching to Phusion Passenger Enterprise](#enterprise)
 59 |  * [Building the image yourself](#building)
 60 |  * [FAQ](#faq)
 61 |    * [Why are you using RVM? Why not rbenv or chruby?](#why_rvm)
 62 |  * [Contributing](#contributing)
 63 |  * [Conclusion](#conclusion)
 64 | 
 65 | ---------------------------------------
 66 | 
 67 | <a name="why_use"></a>
 68 | ## Why use passenger-docker?
 69 | 
 70 | Why use passenger-docker instead of doing everything yourself in Dockerfile?
 71 | 
 72 |  * Your Dockerfile can be smaller.
 73 |  * It reduces the time needed to write a correct Dockerfile. You won't have to worry about the base system and the stack, you can focus on just your app.
 74 |  * It sets up the base system **correctly**. It's very easy to get the base system wrong, but this image does everything correctly. [Learn more.](https://github.com/phusion/baseimage-docker#contents)
 75 |  * It drastically reduces the time needed to run `docker build`, allowing you to iterate your Dockerfile more quickly.
 76 |  * It reduces download time during redeploys. Docker only needs to download the base image once: during the first deploy. On every subsequent deploys, only the changes you make on top of the base image are downloaded.
 77 | 
 78 | <a name="about"></a>
 79 | ## About the image
 80 | 
 81 | <a name="whats_included"></a>
 82 | ### What's included?
 83 | 
 84 | *Passenger-docker is built on top of a solid base: [baseimage-docker](http://phusion.github.io/baseimage-docker/).*
 85 | 
 86 | Basics (learn more at [baseimage-docker](http://phusion.github.io/baseimage-docker/)):
 87 | 
 88 |  * Ubuntu 24.04 LTS as base system.
 89 |  * A **correct** init process ([learn more](http://blog.phusion.nl/2015/01/20/docker-and-the-pid-1-zombie-reaping-problem/)).
 90 |  * Fixes APT incompatibilities with Docker.
 91 |  * syslog-ng.
 92 |  * The cron daemon.
 93 |  * [Runit](http://smarden.org/runit/) for service supervision and management.
 94 | 
 95 | Language support:
 96 | 
 97 |  * Ruby 3.2.9, 3.3.10, 3.4.8 and JRuby 10.0.2.0 and 9.4.14.0.
 98 |    * RVM is used to manage Ruby versions. [Why RVM?](#why_rvm)
 99 |    * 3.4.8 is configured as the default.
100 |    * JRuby uses OpenJDK 17 (9.4) or 21 (10.0).
101 |  * Python 3.12, or any version provided by the Deadsnakes PPA (currently 3.10, 3.11, 3.12, 3.13, 3,14; see https://launchpad.net/~deadsnakes/+archive/ubuntu/ppa).
102 |  * Node.js 22 by default, or any version provided by Nodesource (currently 20, 22, 24; see https://github.com/nodesource/distributions).
103 |  * A build system, git, and development headers for many popular libraries, so that the most popular Ruby, Python and Node.js native extensions can be compiled without problems.
104 | 
105 | Web server and application server:
106 | 
107 |  * Nginx 1.24. Disabled by default.
108 |  * [Phusion Passenger 6](https://www.phusionpassenger.com/). Disabled by default (because it starts along with Nginx).
109 |    * This is a fast and lightweight tool for simplifying web application integration into Nginx.
110 |    * It adds many production-grade features, such as process monitoring, administration and status inspection.
111 |    * It replaces (G)Unicorn, Thin, Puma, uWSGI.
112 |    * Node.js users: [watch this 4 minute intro video](http://vimeo.com/phusionnl/review/84945384/73fe7432ee) to learn why it's cool and useful.
113 | 
114 | Auxiliary services and tools:
115 | 
116 |  * Redis 7.0. Not installed by default.
117 |  * Memcached. Not installed by default.
118 | 
119 | <a name="memory_efficiency"></a>
120 | ### Memory efficiency
121 | 
122 | Passenger-docker is very lightweight on memory. In its default configuration, it only uses 10 MB of memory (the memory consumed by bash, runit, syslog-ng, etc).
123 | 
124 | <a name="image_variants"></a>
125 | ### Image variants
126 | 
127 | Passenger-docker consists of several images, each one tailor made for a specific user group.
128 | 
129 | **Ruby images**
130 | 
131 |  * `phusion/passenger-ruby32` - Ruby 3.2.
132 |  * `phusion/passenger-ruby33` - Ruby 3.3.
133 |  * `phusion/passenger-ruby34` - Ruby 3.4.
134 |  * `phusion/passenger-jruby94` - JRuby 9.4.
135 |  * `phusion/passenger-jruby100` - JRuby 10.0.
136 | 
137 | Python images
138 | 
139 |  * `phusion/passenger-python310` - Python 3.10
140 |  * `phusion/passenger-python311` - Python 3.11
141 |  * `phusion/passenger-python312` - Python 3.12
142 |  * `phusion/passenger-python313` - Python 3.13
143 |  * `phusion/passenger-python314` - Python 3.14
144 | 
145 | **Node.js and Meteor images**
146 | 
147 |  * `phusion/passenger-nodejs` - Node.js 22.
148 | 
149 | **Other images**
150 | 
151 |  * `phusion/passenger-full` - Contains everything in the above images. Ruby, Python, Node.js, all in a single image for your convenience.
152 |  * `phusion/passenger-customizable` - Contains only the base system, as described in ["What's included?"](#whats_included). Specific Ruby, Python, and Node.js versions are not preinstalled beyond what is needed for the image to run, or which are inherited from the baseimage. This image is meant to be further customized through your Dockerfile. For example, using this image you can create a custom image that contains Ruby 3.2 and Node.js.
153 | 
154 | In the rest of this document we're going to assume that the reader will be using `phusion/passenger-full`, unless otherwise stated. Simply substitute the name if you wish to use another image.
155 | 
156 | <a name="inspecting_the_image"></a>
157 | ## Inspecting the image
158 | 
159 | To look around in the image, run:
160 | 
161 |     docker run --rm -t -i phusion/passenger-full bash -l
162 | 
163 | You don't have to download anything manually. The above command will automatically pull the passenger-docker image from the Docker registry.
164 | 
165 | <a name="using"></a>
166 | ## Using the image as base
167 | 
168 | <a name="getting_started"></a>
169 | ### Getting started
170 | 
171 | There are several images, e.g. `phusion/passenger-ruby32` and `phusion/passenger-nodejs`. Choose the one you want. See [Image variants](#image_variants).
172 | 
173 | So put the following in your Dockerfile:
174 | 
175 | ```dockerfile
176 | # Use phusion/passenger-full as base image. To make your builds reproducible, make
177 | # sure you lock down to a specific version, not to `latest`!
178 | # See https://github.com/phusion/passenger-docker/blob/master/CHANGELOG.md for
179 | # a list of version numbers.
180 | FROM phusion/passenger-full:<VERSION>
181 | # Or, instead of the 'full' variant, use one of these:
182 | #FROM phusion/passenger-ruby32:<VERSION>
183 | #FROM phusion/passenger-ruby33:<VERSION>
184 | #FROM phusion/passenger-ruby34:<VERSION>
185 | #FROM phusion/passenger-python310:<VERSION>
186 | #FROM phusion/passenger-python311:<VERSION>
187 | #FROM phusion/passenger-python312:<VERSION>
188 | #FROM phusion/passenger-python313:<VERSION>
189 | #FROM phusion/passenger-python314:<VERSION>
190 | #FROM phusion/passenger-jruby94:<VERSION>
191 | #FROM phusion/passenger-jruby100:<VERSION>
192 | #FROM phusion/passenger-nodejs:<VERSION>
193 | #FROM phusion/passenger-customizable:<VERSION>
194 | 
195 | # Set correct environment variables.
196 | ENV HOME /root
197 | 
198 | # Use baseimage-docker's init process.
199 | CMD ["/sbin/my_init"]
200 | 
201 | # If you're using the 'customizable' variant, you need to explicitly opt-in
202 | # for features.
203 | #
204 | # N.B. these images are based on https://github.com/phusion/baseimage-docker,
205 | # so anything it provides is also automatically on board in the images below
206 | # (e.g. older versions of Ruby, Node, Python).
207 | #
208 | # Uncomment the features you want:
209 | #
210 | #   Node.js and Meteor standalone support (not needed if you will also be installing Ruby, unless you need a version other than the default)
211 | #RUN /pd_build/nodejs.sh 22
212 | #
213 | #   Ruby support
214 | #RUN /pd_build/ruby-3.2.*.sh
215 | #RUN /pd_build/ruby-3.3.*.sh
216 | #RUN /pd_build/ruby-3.4.*.sh
217 | #RUN /pd_build/jruby-9.4.*.sh
218 | #RUN /pd_build/jruby-10.0.*.sh
219 | #
220 | #   Python support
221 | #RUN /pd_build/python.sh 3.12
222 | 
223 | # ...put your own build instructions here...
224 | 
225 | # Clean up APT when done.
226 | RUN apt-get clean && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
227 | ```
228 | 
229 | <a name="app_user"></a>
230 | ### The `app` user
231 | 
232 | The image has an `app` user with UID 9999 and home directory `/home/app`. Your application is supposed to run as this user. Even though Docker itself provides some isolation from the host OS, running applications without root privileges is good security practice.
233 | 
234 | Your application should be placed inside /home/app.
235 | 
236 | Note: when copying your application, make sure to set the ownership of the application directory to `app` by calling `COPY --chown=app:app /local/path/of/your/app /home/app/webapp`
237 | 
238 | <a name="nginx_passenger"></a>
239 | ### Using Nginx and Passenger
240 | 
241 | Before using Passenger, you should familiarise yourself with it by [reading its documentation](https://www.phusionpassenger.com).
242 | 
243 | Nginx and Passenger are disabled by default. Enable them like so:
244 | 
245 | ```dockerfile
246 | RUN rm -f /etc/service/nginx/down
247 | ```
248 | 
249 | <a name="adding_web_app"></a>
250 | #### Adding your web app to the image
251 | 
252 | Passenger works like a `mod_ruby`, `mod_nodejs`, etc. It changes Nginx into an application server and runs your app from Nginx. So to get your web app up and running, you just have to add a virtual host entry to Nginx which describes where your app is, and Passenger will take care of the rest.
253 | 
254 | You can add a virtual host entry (`server` block) by placing a .conf file in the directory `/etc/nginx/sites-enabled`. For example:
255 | 
256 | # /etc/nginx/sites-enabled/webapp.conf:
257 | ```nginx
258 | server {
259 |     listen 80;
260 |     server_name www.webapp.com;
261 |     root /home/app/webapp/public;
262 | 
263 |     # The following deploys your Ruby/Python/Node.js/Meteor app on Passenger.
264 | 
265 |     # Not familiar with Passenger, and used (G)Unicorn/Thin/Puma/pure Node before?
266 |     # Yes, this is all you need to deploy on Passenger! All the reverse proxying,
267 |     # socket setup, process management, etc are all taken care automatically for
268 |     # you! Learn more at https://www.phusionpassenger.com/.
269 |     passenger_enabled on;
270 |     passenger_user app;
271 | 
272 |     # If this is a Ruby app, specify a Ruby version:
273 |     # For Ruby 3.4
274 |     passenger_ruby /usr/bin/ruby3.4;
275 |     # For Ruby 3.3
276 |     passenger_ruby /usr/bin/ruby3.3;
277 |     # For Ruby 3.2
278 |     passenger_ruby /usr/bin/ruby3.2;
279 | 
280 |     # For Python ie. Django
281 |     passenger_app_type wsgi;
282 |     passenger_startup_file passenger_wsgi.py; # (contents example: https://gist.github.com/ajhodgson/96c51dba349697e5c7e46027cc530434)
283 | 
284 |     # For Node.js
285 |     passenger_app_type node;
286 |     passenger_startup_file app.js;
287 | 
288 |     # Nginx has a default limit of 1 MB for request bodies, which also applies
289 |     # to file uploads. The following line enables uploads of up to 50 MB:
290 |     client_max_body_size 50M;
291 | }
292 | ```
293 | 
294 | # Dockerfile:
295 | ```dockerfile
296 | RUN rm /etc/nginx/sites-enabled/default
297 | ADD webapp.conf /etc/nginx/sites-enabled/webapp.conf
298 | RUN mkdir /home/app/webapp
299 | RUN ...commands to place your web app in /home/app/webapp...
300 | # This copies your web app with the correct ownership.
301 | # COPY --chown=app:app /local/path/of/your/app /home/app/webapp
302 | ```
303 | 
304 | <a name="configuring_nginx"></a>
305 | #### Configuring Nginx
306 | 
307 | The best way to configure Nginx is by adding .conf files to `/etc/nginx/main.d` and `/etc/nginx/conf.d`. Files in `main.d` are included into the Nginx configuration's main context, while files in `conf.d` are included in the Nginx configuration's http context.
308 | 
309 | For example:
310 | 
311 |     # /etc/nginx/main.d/secret_key.conf:
312 |     env SECRET_KEY=123456;
313 | 
314 |     # /etc/nginx/conf.d/gzip_max.conf:
315 |     gzip_comp_level 9;
316 | 
317 |     # Dockerfile:
318 |     ADD secret_key.conf /etc/nginx/main.d/secret_key.conf
319 |     ADD gzip_max.conf /etc/nginx/conf.d/gzip_max.conf
320 | 
321 | <a name="nginx_env_vars"></a>
322 | #### Setting environment variables in Nginx
323 | 
324 | By default Nginx [clears all environment variables](http://nginx.org/en/docs/ngx_core_module.html#env) (except `TZ`) for its child processes (Passenger being one of them). That's why any environment variables you set with `docker run -e`, Docker linking and `/etc/container_environment`, won't reach Nginx.
325 | 
326 | To preserve these variables, place an Nginx config file ending with `*.conf` in the directory `/etc/nginx/main.d`, in which you tell Nginx to preserve these variables. For example when linking a PostgreSQL container or MongoDB container:
327 | 
328 |     # /etc/nginx/main.d/postgres-env.conf:
329 |     env POSTGRES_PORT_5432_TCP_ADDR;
330 |     env POSTGRES_PORT_5432_TCP_PORT;
331 | 
332 |     # Dockerfile:
333 |     ADD postgres-env.conf /etc/nginx/main.d/postgres-env.conf
334 | 
335 | By default, passenger-docker already contains a config file `/etc/nginx/main.d/default.conf` which preserves the `PATH` environment variable.
336 | 
337 | <a name="app_env_name"></a>
338 | #### Application environment name (`RAILS_ENV`, `NODE_ENV`, etc)
339 | 
340 | Some web frameworks adjust their behavior according to the value some environment variables. For example, Rails respects `RAILS_ENV` while Connect.js respects `NODE_ENV`. By default, Phusion Passenger sets all of the following environment variables to the value **production**:
341 | 
342 |  * `RAILS_ENV`
343 |  * `RACK_ENV`
344 |  * `WSGI_ENV`
345 |  * `NODE_ENV`
346 |  * `PASSENGER_APP_ENV`
347 | 
348 | Setting these environment variables yourself (e.g. using `docker run -e RAILS_ENV=...`) will not have any effect, because Phusion Passenger overrides all of these environment variables. The only exception is `PASSENGER_APP_ENV` (see below).
349 | 
350 | With passenger-docker, there are two ways to set the aforementioned environment variables. The first is through the [`passenger_app_env`](https://www.phusionpassenger.com/library/config/nginx/reference/#passenger_app_env) config option in Nginx. For example:
351 | 
352 | ```nginx
353 | # /etc/nginx/sites-enabled/webapp.conf:
354 | server {
355 |     ...
356 |     # Ensures that RAILS_ENV, NODE_ENV, etc are set to "staging"
357 |     # when your application is started.
358 |     passenger_app_env staging;
359 | }
360 | ```
361 | 
362 | The second way is by setting the `PASSENGER_APP_ENV` environment variable from `docker run`
363 | 
364 |     docker run -e PASSENGER_APP_ENV=staging YOUR_IMAGE
365 | 
366 | This works because passenger-docker autogenerates an Nginx configuration file (`/etc/nginx/conf.d/00_app_env.conf`) during container boot. This file sets the `passenger_app_env` option in the `http` context. This means that if you already set `passenger_app_env` in the `server` context, running `docker run -e PASSENGER_APP_ENV=...` won't have any effect!
367 | 
368 | If you want to set a default value while still allowing that to be overridden by `docker run -e PASSENGER_APP_ENV=`, then instead of specifying `passenger_app_env` in your Nginx config file, you should create a `/etc/nginx/conf.d/00_app_env.conf`. This file will be overwritten if the user runs `docker run -e PASSENGER_APP_ENV=...`.
369 | 
370 | ```nginx
371 | # /etc/nginx/conf.d/00_app_env.conf
372 | # File will be overwritten if user runs the container with `-e PASSENGER_APP_ENV=...`!
373 | passenger_app_env staging;
374 | ```
375 | 
376 | <a name="redis"></a>
377 | ### Using Redis
378 | 
379 | **Redis is only available in the passenger-customizable and passenger-full images!**
380 | 
381 | Install and enable Redis:
382 | 
383 | ```dockerfile
384 | # Opt-in for Redis if you're using the 'customizable' image.
385 | #RUN /pd_build/redis.sh
386 | 
387 | # Enable the Redis service.
388 | RUN rm -f /etc/service/redis/down
389 | ```
390 | 
391 | The configuration file is in /etc/redis/redis.conf. Modify it as you see fit, but make sure `daemonize no` is set.
392 | 
393 | <a name="memcached"></a>
394 | ### Using memcached
395 | 
396 | **Memcached is only available in the passenger-customizable and passenger-full images!**
397 | 
398 | Install and enable memcached:
399 | 
400 | ```dockerfile
401 | # Opt-in for Memcached if you're using the 'customizable' image.
402 | #RUN /pd_build/memcached.sh
403 | 
404 | # Enable the memcached service.
405 | RUN rm -f /etc/service/memcached/down
406 | ```
407 | 
408 | The configuration file is in /etc/memcached.conf. Note that it does not follow the Debian/Ubuntu format, but our own, in order to make it work well with runit. The default contents are:
409 | 
410 | 
411 |     # These arguments are passed to the memcached daemon.
412 |     MEMCACHED_OPTS="-l 127.0.0.1"
413 | 
414 | 
415 | <a name="additional_daemons"></a>
416 | ### Additional daemons
417 | 
418 | You can add additional daemons to the image by creating runit entries. You only have to write a small shell script which runs your daemon, and runit will keep it up and running for you, restarting it when it crashes, etc.
419 | 
420 | The shell script must be called `run`, must be executable, and is to be placed in the directory `/etc/service/<NAME>`.
421 | 
422 | Here's an example showing you how to a memached server runit entry can be made.
423 | 
424 |     ### In memcached.sh (make sure this file is chmod +x):
425 |     #!/bin/sh
426 |     # `setuser` is part of baseimage-docker. `setuser mecached xxx...` runs the given command
427 |     # (`xxx...`) as the user `memcache`. If you omit this, the command will be run as root.
428 |     exec /sbin/setuser memcache /usr/bin/memcached >>/var/log/memcached.log 2>&1
429 | 
430 |     ### In Dockerfile:
431 |     RUN mkdir /etc/service/memcached
432 |     ADD memcached.sh /etc/service/memcached/run
433 | 
434 | Note that the shell script must run the daemon **without letting it daemonize/fork it**. Usually, daemons provide a command line flag or a config file option for that.
435 | 
436 | **Tip**: If you're thinking about running your web app, consider deploying it on Passenger instead of on runit. Passenger relieves you from even having to write a shell script, and adds all sorts of useful production features like process scaling, introspection, etc. These are not available when you're only using runit.
437 | 
438 | <a name="using_ruby"></a>
439 | ### Using Ruby
440 | 
441 | We use [RVM](https://rvm.io/) to install and to manage Ruby interpreters. Because of this there are some special considerations you need to know, particularly when you are using the `passenger-full` image which contains multiple Ruby versions installed in parallel. You can learn more about RVM at the RVM website, but this section will teach you its basic usage.
442 | 
443 | <a name="selecting_default_ruby"></a>
444 | #### Selecting a default Ruby version
445 | 
446 | The default Ruby (what the `/usr/bin/ruby` command executes) is the latest Ruby version that you've chosen to install. You can use RVM select a different version as default.
447 | 
448 | ```dockerfile
449 | # Ruby 3.2.9
450 | RUN bash -lc 'rvm --default use ruby-3.2.9'
451 | # Ruby 3.3.10
452 | RUN bash -lc 'rvm --default use ruby-3.3.10'
453 | # Ruby 3.4.8
454 | RUN bash -lc 'rvm --default use ruby-3.4.8'
455 | # JRuby 9.4.9.0
456 | RUN bash -lc 'rvm --default use jruby-9.4.9.0'
457 | # JRuby 10.0.0.0
458 | RUN bash -lc 'rvm --default use jruby-10.0.0.0'
459 | ```
460 | 
461 | Learn more: [RVM: Setting the default Ruby](https://rvm.io/rubies/default).
462 | 
463 | <a name="running_command_with_specific_ruby_version"></a>
464 | #### Running a command with a specific Ruby version
465 | 
466 | You can run any command with a specific Ruby version by prefixing it with `rvm-exec <IDENTIFIER>`. For example:
467 | 
468 | ```bash
469 | $ rvm-exec 3.3.10 ruby -v
470 | Using /usr/local/rvm/gems/ruby-3.3.10
471 | ruby 3.3.10 (2025-10-23 revision 343ea05002) [x86_64-linux]
472 | 
473 | $ rvm-exec 3.4.8 ruby -v
474 | Using /usr/local/rvm/gems/ruby-3.4.8
475 | ruby 3.4.8 (2025-12-17 revision 995b59f666) +PRISM [x86_64-linux]
476 | ```
477 | 
478 | More examples, but with Bundler instead:
479 | 
480 | ```bash
481 | # This runs 'bundle install' using Ruby 3.4.8
482 | rvm-exec 3.4.8 bundle install
483 | ```
484 | 
485 | <a name="default_ruby_wrapper_scripts"></a>
486 | #### Default wrapper scripts
487 | 
488 | Rubies are installed by RVM to /usr/local/rvm. Interactive and login Bash shells load the RVM environment, which ensures that the appropriate directories under /usr/local/rvm are in PATH.
489 | 
490 | But this means that if you invoke a command without going through an interactive and login Bash shell (e.g. directly using `docker exec`) then the RVM environment won't be loaded. In order to make Ruby work even in this case, Passenger-docker includes a bunch of wrapper scripts:
491 | 
492 |  * /usr/bin/ruby
493 |  * /usr/bin/rake
494 |  * /usr/bin/gem
495 |  * /usr/bin/bundle
496 | 
497 | These wrapper scripts execute the respective command through `rvm-exec` using the default Ruby interpreter.
498 | 
499 | <a name="running_startup_scripts"></a>
500 | ### Running scripts during container startup
501 | 
502 | passenger-docker uses the [baseimage-docker](http://phusion.github.io/baseimage-docker/) init system, `/sbin/my_init`. This init system runs the following scripts during startup, in the following order:
503 | 
504 |  * All executable scripts in `/etc/my_init.d`, if this directory exists. The scripts are run during in lexicographic order.
505 |  * The script `/etc/rc.local`, if this file exists.
506 | 
507 | All scripts must exit correctly, e.g. with exit code 0. If any script exits with a non-zero exit code, the booting will fail.
508 | 
509 | The following example shows how you can add a startup script. This script simply logs the time of boot to the file /tmp/boottime.txt.
510 | 
511 |     ### In logtime.sh (make sure this file is chmod +x):
512 |     #!/bin/sh
513 |     date > /tmp/boottime.txt
514 | 
515 |     ### In Dockerfile:
516 |     RUN mkdir -p /etc/my_init.d
517 |     ADD logtime.sh /etc/my_init.d/logtime.sh
518 | 
519 | <a name="upgrading_os"></a>
520 | ### Upgrading the operating system inside the container
521 | 
522 | passenger-docker images contain an Ubuntu 24.04 operating system. You may want to update this OS from time to time, for example to pull in the latest security updates. OpenSSL is a notorious example. Vulnerabilities are discovered in OpenSSL on a regular basis, so you should keep OpenSSL up-to-date as much as you can.
523 | 
524 | While we release passenger-docker images with the latest OS updates from time to time, you do not have to rely on us. You can update the OS inside passenger-docker images yourself, and it is recommend that you do this instead of waiting for us. This is also especially important to upgrade any installed Python or Node packages to the latest minor version.
525 | 
526 | To upgrade the OS in the image, run this in your Dockerfile:
527 | 
528 |     RUN apt-get update && apt-get -y -o Dpkg::Options::="--force-confdef" -o Dpkg::Options::="--force-confold" upgrade
529 | 
530 | <a name="upgrading_passenger"></a>
531 | ### Upgrading Passenger to the latest version
532 | 
533 | #### Upgrading to the latest image
534 | 
535 | Passenger-docker images contain a specific Passenger version by default. We regularly update passenger-docker with the latest version of Passenger, Ruby, Node.js, etc.
536 | 
537 | To upgrade your image to the latest passenger-docker version, please edit your Dockerfile and change the passenger-docker version in the `FROM` command to the latest version. You can find a list of available versions in the [Changelog](https://github.com/phusion/passenger-docker/blob/master/CHANGELOG.md).
538 | 
539 | For example, if you were using passenger-docker 0.9.16 and want to upgrade to 0.9.17, then change...
540 | 
541 | ```dockerfile
542 | FROM phusion/passenger-docker-XXXX:0.9.16
543 | ```
544 | 
545 | ...to:
546 | 
547 | ```dockerfile
548 | FROM phusion/passenger-docker-XXXX:0.9.17
549 | ```
550 | 
551 | Then rebuild your image.
552 | 
553 | #### Upgrading Passenger without waiting for image updates
554 | 
555 | We do not update the passenger-docker image on *every* Passenger release. Having said that, you can upgrade Passenger at any time, without waiting for us to release a new image.
556 | 
557 | Passenger is installed through [the Passenger APT repository](https://www.phusionpassenger.com/library/install/nginx/apt_repo/), so you can use APT to upgrade Passenger.
558 | 
559 | To upgrade to the latest Passenger version, run this to your Dockerfile:
560 | 
561 | ```dockerfile
562 | RUN apt-get update && apt-get -y -o Dpkg::Options::="--force-confdef" -o Dpkg::Options::="--force-confold" upgrade
563 | ```
564 | 
565 | <a name="container_administration"></a>
566 | ## Container administration
567 | 
568 | One of the ideas behind Docker is that containers should be stateless, easily restartable, and behave like a black box. However, you may occasionally encounter situations where you want to login to a container, or to run a command inside a container, for development, inspection and debugging purposes. This section describes how you can administer the container for those purposes.
569 | 
570 | _**Tip**: passenger-docker is based on [baseimage-docker](https://github.com/phusion/baseimage-docker). Please consult [the baseimage-docker documentation](https://github.com/phusion/baseimage-docker) for more container administration documentation and tips._
571 | 
572 | <a name="oneshot"></a>
573 | ### Running a one-shot command in a new container
574 | 
575 | _**Note:** This section describes how to run a command insider a -new- container. To run a command inside an existing running container, see [Running a command in an existing, running container](#run_inside_existing_container)._
576 | 
577 | Normally, when you want to create a new container in order to run a single command inside it, and immediately exit after the command exits, you invoke Docker like this:
578 | 
579 |     docker run YOUR_IMAGE COMMAND ARGUMENTS...
580 | 
581 | However the downside of this approach is that the init system is not started. That is, while invoking `COMMAND`, important daemons such as cron and syslog are not running. Also, orphaned child processes are not properly reaped, because `COMMAND` is PID 1.
582 | 
583 | Passenger-docker provides a facility to run a single one-shot command, while solving all of the aforementioned problems. Run a single command in the following manner:
584 | 
585 |     docker run YOUR_IMAGE /sbin/my_init -- COMMAND ARGUMENTS ...
586 | 
587 | This will perform the following:
588 | 
589 |  * Runs all system startup files, such as /etc/my_init.d/* and /etc/rc.local.
590 |  * Starts all runit services.
591 |  * Runs the specified command.
592 |  * When the specified command exits, stops all runit services.
593 | 
594 | For example:
595 | 
596 |     $ docker run phusion/passenger-full:<VERSION> /sbin/my_init -- ls
597 |     *** Running /etc/rc.local...
598 |     *** Booting runit daemon...
599 |     *** Runit started as PID 80
600 |     *** Running ls...
601 |     bin  boot  dev  etc  home  image  lib  lib64  media  mnt  opt  proc  root  run  sbin  selinux  srv  sys  tmp  usr  var
602 |     *** ls exited with exit code 0.
603 |     *** Shutting down runit daemon (PID 80)...
604 |     *** Killing all processes...
605 | 
606 | You may find that the default invocation is too noisy. Or perhaps you don't want to run the startup files. You can customize all this by passing arguments to `my_init`. Invoke `docker run YOUR_IMAGE /sbin/my_init --help` for more information.
607 | 
608 | The following example runs `ls` without running the startup files and with less messages, while running all runit services:
609 | 
610 |     $ docker run phusion/passenger-full:<VERSION> /sbin/my_init --skip-startup-files --quiet -- ls
611 |     bin  boot  dev  etc  home  image  lib  lib64  media  mnt  opt  proc  root  run  sbin  selinux  srv  sys  tmp  usr  var
612 | 
613 | <a name="run_inside_existing_container"></a>
614 | ### Running a command in an existing, running container
615 | 
616 | There are two ways to run a command inside an existing, running container.
617 | 
618 |  * Through the `docker exec` tool. This is builtin Docker tool, available since Docker 1.4. Internally, it uses Linux kernel system calls in order to execute a command within the context of a container. Learn more in [Login to the container, or running a command inside it, via `docker exec`](#login_docker_exec).
619 |  * Through SSH. This approach requires running an SSH daemon inside the container, and requires you to setup SSH keys. Learn more in [Login to the container, or running a command inside it, via SSH](#login_ssh).
620 | 
621 | Both way have their own pros and cons, which you can learn in their respective subsections.
622 | 
623 | <a name="login_docker_exec"></a>
624 | ### Login to the container, or running a command inside it, via `docker exec`
625 | 
626 | You can use the `docker exec` tool on the Docker host OS to login to any container that is based on passenger-docker. You can also use it to run a command inside a running container. `docker exec` works by using Linux kernel system calls.
627 | 
628 | Here's how it compares to [using SSH to login to the container or to run a command inside it](#login_ssh):
629 | 
630 |  * Pros
631 |    * Does not require running an SSH daemon inside the container.
632 |    * Does not require setting up SSH keys.
633 |    * Works on any container, even containers not based on passenger-docker.
634 |  * Cons
635 |    * If the `docker exec` process on the host is terminated by a signal (e.g. with the `kill` command or even with Ctrl-C), then the command that is executed by `docker exec` is *not* killed and cleaned up. You will either have to do that manually, or you have to run `docker exec` with `-t -i`.
636 |    * Requires privileges on the Docker host to be able to access the Docker daemon. Note that anybody who can access the Docker daemon effectively has root access.
637 |    * Not possible to allow users to login to the container without also letting them login to the Docker host.
638 | 
639 | <a name="docker_exec_usage"></a>
640 | #### Usage
641 | 
642 | Start a container:
643 | 
644 |     docker run YOUR_IMAGE
645 | 
646 | Find out the ID of the container that you just ran:
647 | 
648 |     docker ps
649 | 
650 | Now that you have the ID, you can use `docker exec` to run arbitrary commands in the container. For example, to run `echo hello world`:
651 | 
652 |     docker exec YOUR-CONTAINER-ID echo hello world
653 | 
654 | To open a bash session inside the container, you must pass `-t -i` so that a terminal is available:
655 | 
656 |     docker exec -t -i YOUR-CONTAINER-ID bash -l
657 | 
658 | <a name="login_ssh"></a>
659 | ### Login to the container, or running a command inside it, via SSH
660 | 
661 | You can use SSH to login to any container that is based on passenger-docker. You can also use it to run a command inside a running container.
662 | 
663 | Here's how it compares to [using `docker exec` to login to the container or to run a command inside it](#login_docker_exec):
664 | 
665 |  * Pros
666 |    * Does not require root privileges on the Docker host.
667 |    * Allows you to let users login to the container, without letting them login to the Docker host. However, this is not enabled by default because passenger-docker does not expose the SSH server to the public Internet by default.
668 |  * Cons
669 |    * Requires setting up SSH keys. However, passenger-docker makes this easy for many cases through a pregenerated, insecure key. Read on to learn more.
670 | 
671 | <a name="enabling_ssh"></a>
672 | #### Enabling SSH
673 | 
674 | Passenger-docker disables the SSH server by default. Add the following to your Dockerfile to enable it:
675 | 
676 | ```dockerfile
677 | RUN rm -f /etc/service/sshd/down
678 | 
679 | # Regenerate SSH host keys. Passenger-docker does not contain any, so you
680 | # have to do that yourself. You may also comment out this instruction; the
681 | # init system will auto-generate one during boot.
682 | RUN /etc/my_init.d/00_regen_ssh_host_keys.sh
683 | ```
684 | 
685 | <a name="ssh_keys"></a>
686 | #### About SSH keys
687 | 
688 | First, you must ensure that you have the right SSH keys installed inside the container. By default, no keys are installed, so nobody can login. For convenience reasons, we provide [a pregenerated, insecure key](https://raw.githubusercontent.com/phusion/baseimage-docker/master/image/services/sshd/keys/insecure_key) [(PuTTY format)](https://raw.githubusercontent.com/phusion/baseimage-docker/master/image/services/sshd/keys/insecure_key.ppk) that you can easily enable. However, please be aware that using this key is for convenience only. It does not provide any security because this key (both the public and the private side) is publicly available. **In production environments, you should use your own keys**.
689 | 
690 | <a name="using_the_insecure_key_for_one_container_only"></a>
691 | #### Using the insecure key for one container only
692 | 
693 | You can temporarily enable the insecure key for one container only. This means that the insecure key is installed at container boot. If you `docker stop` and `docker start` the container, the insecure key will still be there, but if you use `docker run` to start a new container then that container will not contain the insecure key.
694 | 
695 | Start a container with `--enable-insecure-key`:
696 | 
697 |     docker run YOUR_IMAGE /sbin/my_init --enable-insecure-key
698 | 
699 | Find out the ID of the container that you just ran:
700 | 
701 |     docker ps
702 | 
703 | Once you have the ID, look for its IP address with:
704 | 
705 |     docker inspect -f "{{ .NetworkSettings.IPAddress }}" <ID>
706 | 
707 | Now that you have the IP address, you can use SSH to login to the container, or to execute a command inside it:
708 | 
709 | ```bash
710 | # Download the insecure private key
711 | curl -o insecure_key -fSL https://raw.githubusercontent.com/phusion/baseimage-docker/master/image/services/sshd/keys/insecure_key
712 | chmod 600 insecure_key
713 | 
714 | # Login to the container
715 | ssh -i insecure_key root@<IP address>
716 | 
717 | # Running a command inside the container
718 | ssh -i insecure_key root@<IP address> echo hello world
719 | ```
720 | 
721 | <a name="enabling_the_insecure_key_permanently"></a>
722 | #### Enabling the insecure key permanently
723 | 
724 | It is also possible to enable the insecure key in the image permanently. This is not generally recommended, but is suitable for e.g. temporary development or demo environments where security does not matter.
725 | 
726 | Edit your Dockerfile to install the insecure key permanently:
727 | 
728 | ```dockerfile
729 | RUN /usr/sbin/enable_insecure_key
730 | ```
731 | 
732 | Instructions for logging in the container is the same as in section [Using the insecure key for one container only](#using_the_insecure_key_for_one_container_only).
733 | 
734 | <a name="using_your_own_key"></a>
735 | #### Using your own key
736 | 
737 | Edit your Dockerfile to install an SSH public key:
738 | 
739 | ```dockerfile
740 | ## Install an SSH of your choice.
741 | ADD your_key.pub /tmp/your_key.pub
742 | RUN cat /tmp/your_key.pub >> /root/.ssh/authorized_keys && rm -f /tmp/your_key.pub
743 | ```
744 | 
745 | Then rebuild your image. Once you have that, start a container based on that image:
746 | 
747 |     docker run your-image-name
748 | 
749 | Find out the ID of the container that you just ran:
750 | 
751 |     docker ps
752 | 
753 | Once you have the ID, look for its IP address with:
754 | 
755 |     docker inspect -f "{{ .NetworkSettings.IPAddress }}" <ID>
756 | 
757 | Now that you have the IP address, you can use SSH to login to the container, or to execute a command inside it:
758 | 
759 | ```bash
760 | # Login to the container
761 | ssh -i /path-to/your_key root@<IP address>
762 | 
763 | # Running a command inside the container
764 | ssh -i /path-to/your_key root@<IP address> echo hello world
765 | ```
766 | 
767 | <a name="docker_ssh"></a>
768 | #### The `docker-ssh` tool
769 | 
770 | Looking up the IP of a container and running an SSH command quickly becomes tedious. Luckily, we provide the `docker-ssh` tool which automates this process. This tool is to be run on the *Docker host*, not inside a Docker container.
771 | 
772 | First, install the tool on the Docker host:
773 | 
774 | ```bash
775 | curl --fail -L -O https://github.com/phusion/baseimage-docker/archive/master.tar.gz && \
776 | tar xzf master.tar.gz && \
777 | sudo ./baseimage-docker-master/install-tools.sh
778 | ```
779 | 
780 | Then run the tool as follows to login to a container using SSH:
781 | 
782 |     docker-ssh YOUR-CONTAINER-ID
783 | 
784 | You can lookup `YOUR-CONTAINER-ID` by running `docker ps`.
785 | 
786 | By default, `docker-ssh` will open a Bash session. You can also tell it to run a command, and then exit:
787 | 
788 |     docker-ssh YOUR-CONTAINER-ID echo hello world
789 | 
790 | <a name="inspecting_web_app_status"></a>
791 | ### Inspecting the status of your web app
792 | 
793 | If you use Passenger to deploy your web app, run:
794 | 
795 |     passenger-status
796 |     passenger-memory-stats
797 | 
798 | <a name="logs"></a>
799 | ### Logs
800 | 
801 | If anything goes wrong, consult the log files in /var/log. The following log files are especially important:
802 | 
803 |  * /var/log/nginx/error.log
804 |  * /var/log/syslog
805 |  * Your app's log file in /home/app.
806 | 
807 | <a name="enterprise"></a>
808 | ### Switching to Phusion Passenger Enterprise
809 | 
810 | If you are a [Phusion Passenger Enterprise](https://www.phusionpassenger.com/enterprise) customer, then you can switch to the Enterprise variant as follows.
811 | 
812 |  1. Login to the [Customer Area](https://www.phusionpassenger.com/orders).
813 |  2. Download the license key and store it in the same directory as your Dockerfile.
814 |  3. Insert into your Dockerfile:
815 | 
816 | ```dockerfile
817 | ADD passenger-enterprise-license /etc/passenger-enterprise-license
818 | RUN echo deb https://download:$DOWNLOAD_TOKEN@www.phusionpassenger.com/enterprise_apt $(lsb_release -cs) main > /etc/apt/sources.list.d/passenger.list
819 | RUN apt-get update && apt-get install -y -o Dpkg::Options::="--force-confold" libnginx-mod-http-passenger-enterprise
820 | ```
821 | 
822 |     Replace `$DOWNLOAD_TOKEN` with your actual download token, as found in the Customer Area.
823 | 
824 | <a name="building"></a>
825 | ## Building the image yourself
826 | 
827 | If you want to build the image yourself instead of downloading it from the Docker registry, follow these instructions.
828 | 
829 | Clone this repository:
830 | 
831 |     git clone https://github.com/phusion/passenger-docker.git
832 |     cd passenger-docker
833 | 
834 | Build one of the images:
835 | 
836 |     make build_ruby32
837 |     make build_ruby33
838 |     make build_ruby34
839 |     make build_python310
840 |     make build_python311
841 |     make build_python312
842 |     make build_python313
843 |     make build_python314
844 |     make build_jruby94
845 |     make build_jruby100
846 |     make build_nodejs
847 |     make build_customizable
848 |     make build_full
849 | 
850 | If you want to call the resulting image something else, pass the NAME variable, like this:
851 | 
852 |      make NAME=joe/passenger build_ruby32
853 | 
854 | Make will build images for both AMD64 and ARM64 by default. If you only want to build for one CPU architecture (ie. AMD64), disable the other architecture like this:
855 | 
856 |      make BUILD_ARM64=0 build_ruby32
857 | 
858 | <a name="faq"></a>
859 | ## FAQ
860 | 
861 | <a name="why_rvm"></a>
862 | #### Why are you using RVM? Why not rbenv or chruby?
863 | 
864 | In summary:
865 | 
866 |  * We have found RVM to be much more user friendly than rbenv and chruby.
867 |  * RVM supplies precompiled binaries, while rbenv and chruby only support compiling Ruby from source.
868 |  * Installing Ruby from Brightbox's APT repository caused too many problems. We used Brightbox's APT repository in the past, but we concluded that it is not the way to go forward.
869 | 
870 | Rbenv and chruby's main value proposition is that they are "simple". Indeed, they are simpler in implementation (fewer lines of code) than RVM, but they are not simpler to use. Rbenv and chruby are built on the Unix "do one thing only" philosophy. While this is sound, it is not necessarily the behavior that users want: I have seen many users struggling with basic rbenv/chruby usage because of lack of understanding of environment variables, or not having installed the right dependencies. Many users do not understand how the system is supposed to function and what all the different parts are, so doing one thing only may not be what they need. In such a case the simplicity ends up being more of a liability than an asset. It's like selling a car engine, frame and interior separately, while most consumers want an entire car.
871 | 
872 | RVM is built around a more "holistic" philosophy, if you will. It tries harder to be friendly to users who may not necessarily understand how everything works, for example, by automatically installing a bash profile entry and necessary dependencies.
873 | 
874 | Another critique of RVM is that it is complicated and causes problems. This has not been our experience: perhaps this was the case in the past, but we have found RVM to be quite stable.
875 | 
876 | #### Why don't you just install Ruby manually from source?
877 | 
878 | By installing Ruby manually from source, we are just reinventing some of the functionality provided by a real Ruby version manager such as RVM, so we may as well use one to save ourselves time. There is no reason not to use RVM: it only occupies 5 MB of space.
879 | 
880 | #### Why are you not using the Brightbox's APT repository?
881 | 
882 | The Brightbox APT repository contains packages for multiple Ruby versions, which can be installed side-by-side. At first, this seems like the perfect solution. And indeed, passenger-docker used to use the Brightbox APT repository.
883 | 
884 | Unfortunately, we have found that it is much harder to make the different Rubies play nice with each other than it should be. Despite being installable side-to-side, they still conflict with each other. The most notable problem is that all Rubies' RubyGems install binwrappers to /usr/local/bin, but binwrappers generated by different Ruby versions may not be compatible with each other.
885 | 
886 | RVM provides much better isolation between different Ruby versions.
887 | 
888 | #### Why don't you just install Ruby from Ubuntu's APT repository?
889 | 
890 | Because we need to support Ruby versions not available from Ubuntu's APT repository. Besides, Ubuntu (and Debian) are notorious for being slow with updating Ruby packages. By the time the next Ruby version is released, we will have to wait until the next Ubuntu LTS version before we can use it.
891 | 
892 | <a name="contributing"></a>
893 | ## Contributing
894 | 
895 | Thanks for your interest in contributing! There are many ways to contribute to this project. Get started [here](https://github.com/phusion/passenger-docker/blob/master/CONTRIBUTING.md).
896 | 
897 | <a name="conclusion"></a>
898 | ## Conclusion
899 | 
900 |  * Using passenger-docker? [Tweet about us](https://twitter.com/share) or [follow us on Twitter](https://twitter.com/phusion_nl).
901 |  * Having problems? Please post a message at [the discussion forum](https://groups.google.com/d/forum/passenger-docker).
902 |  * Looking for a minimal image containing only a correct base system? Take a look at [baseimage-docker](https://github.com/phusion/baseimage-docker).
903 |  * Need a helping hand? Phusion also offers [consulting](https://www.phusion.nl/consultancy) on a wide range of topics, including Web Development, UI/UX Research & Design, Technology Migration and Auditing.
904 | 
905 | 
906 | [<img src="https://www.phusion.nl/images/mark_logotype.svg">](http://www.phusion.nl/)
907 | 
908 | Please enjoy passenger-docker, a product by [Phusion](http://www.phusion.nl/). :-)
909 | 


--------------------------------------------------------------------------------