First commit, WIP

.github/workflows/build-scan-push.yml

@@ -27,13 +27,6 @@ jobs:
       - name: Lint Shell Scripts with ShellCheck
         uses: ludeeus/action-shellcheck@master
 
-      - name: Lint Kubernetes Resources with KubeLinter
-        id: kube-lint-scan
-        uses: stackrox/kube-linter-action@v1
-        with:
-          directory: k8s
-          config: .kube-linter/config.yaml
-
       # Set up Docker Buildx for multi-architecture builds
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v3
@@ -79,10 +72,10 @@ jobs:
         uses: aquasecurity/trivy-action@master
         with:
           image-ref: ${{ secrets.DOCKER_USERNAME }}/docker-bitlbee:latest
-          format: 'table'
+          format: "table"
           ignore-unfixed: true
-          vuln-type: 'os,library'
+          vuln-type: "os,library"
-          severity: 'CRITICAL,HIGH'
+          severity: "CRITICAL,HIGH"
 
       - name: Upload Trivy Report
         uses: actions/upload-artifact@v3

.hadolint.yaml

@@ -1 +1,2 @@
-failure-threshold: error
+ignored:
+  - DL4006

.kube-linter/config.yaml

@@ -1,5 +0,0 @@
-checks:
-  exclude:
-    - "latest-tag"
-    - "no-read-only-root-fs"
-    - "run-as-non-root"

Dockerfile

@@ -5,33 +5,67 @@ LABEL org.opencontainers.image.title="BitlBee container" \
   org.opencontainers.image.url="https://github.com/mbologna/docker-bitlbee" \
   org.opencontainers.image.licenses="MIT"
 
-ENV BITLBEE_VERSION="3.6" SKYPE4PIDGIN_VERSION="1.7" FACEBOOK_VERSION="1.2.2"
+ARG DEBIAN_FRONTEND=noninteractive
 
-WORKDIR "/"
+# e.g. "master" or "tags/3.6-1"
+ENV BITLBEE_VERSION="master"
+
+# Install necessary build packages
 RUN apt-get update && apt-get upgrade -y && apt-get install -y --no-install-recommends \
-    autoconf automake build-essential cmake g++ gettext gcc git \
+  autoconf automake \
-    gperf imagemagick libtool make libglib2.0-dev libhttp-parser-dev \
+  build-essential \
-    libotr5-dev libpurple-dev libgnutls28-dev libjson-glib-dev libnss3-dev \
+  cmake g++ gettext gcc git \
-    libpng-dev libolm-dev libprotobuf-c-dev libqrencode-dev libssl-dev \
+  gperf \
-    protobuf-c-compiler libgcrypt20-dev libmarkdown2-dev \
+  imagemagick \
-    libpng-dev libpurple-dev librsvg2-bin libsqlite3-dev libwebp-dev \
+  curl \
-    libgdk-pixbuf2.0-dev libopusfile-dev \
+  make \
-    libtool-bin netcat-traditional pkg-config sudo && \
+  cmake \
-    curl -LO https://get.bitlbee.org/src/bitlbee-"$BITLBEE_VERSION".tar.gz && \
+  libtool \
-    git clone https://github.com/EionRobb/purple-hangouts && \
+  pkg-config \
-    git clone https://github.com/EionRobb/purple-discord && \
+  libglib2.0-dev \
-    git clone https://github.com/matrix-org/purple-matrix && \
+  libhttp-parser-dev \
-    git clone https://github.com/EionRobb/purple-teams && \
+  libotr5-dev \
-    git clone https://github.com/dylex/slack-libpurple && \
+  libpurple-dev \
-    curl -LO https://github.com/EionRobb/skype4pidgin/archive/"$SKYPE4PIDGIN_VERSION".tar.gz && \
+  libgnutls28-dev \
-    curl -LO https://github.com/bitlbee/bitlbee-facebook/archive/v"$FACEBOOK_VERSION".tar.gz && \
+  libjson-glib-dev libnss3-dev \
-    git clone https://src.alexschroeder.ch/bitlbee-mastodon.git && \
+  libolm-dev \
-    git clone https://github.com/BenWiederhake/tdlib-purple && \
+  libqrencode-dev \
-    rm -fr /var/lib/apt/lists/*
+  libssl-dev \
+  protobuf-compiler \
+  protobuf-c-compiler \
+  libprotobuf-c-dev \
+  libgcrypt20-dev \
+  libmarkdown2-dev \
+  librsvg2-bin \
+  libsqlite3-dev \
+  libwebp-dev \
+  libpng-dev \
+  libgdk-pixbuf-xlib-2.0-dev \
+  libopusfile-dev \
+  libtool-bin \
+  netcat-traditional \
+  && rm -fr /var/lib/apt/lists/*
+#sudo
 
-RUN tar zxvf bitlbee-"$BITLBEE_VERSION".tar.gz
+# Install Rust (for purple-presage)
-WORKDIR /bitlbee-"$BITLBEE_VERSION"
+RUN curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y
-RUN ./configure --verbose=1 --jabber=1 --otr=1 --purple=1 --strip=1 && \
+
+# Add .cargo/bin to PATH
+ENV PATH="/root/.cargo/bin:${PATH}"
+
+RUN mkdir -p /build
+
+WORKDIR "/build"
+
+# Fetch sources of packages to be built
+RUN git clone https://github.com/bitlbee/bitlbee.git && \
+  git -C bitlbee checkout ${BITLBEE_VERSION} && \
+  git clone --recurse-submodules https://github.com/hoehermann/purple-presage.git
+#git clone https://github.com/matrix-org/purple-matrix && \
+
+# Build Bitlbee
+WORKDIR /build/bitlbee
+RUN ./configure --verbose=1 --jabber=1 --otr=1 --purple=1 --strip=1 --prefix=/usr/local/ && \
   make -j"$(nproc)" && \
   make install && \
   make install-bin && \
@@ -40,70 +74,48 @@ RUN ./configure --verbose=1 --jabber=1 --otr=1 --purple=1 --strip=1 && \
   make install-etc && \
   make install-plugin-otr
 
-WORKDIR /purple-hangouts
+# Build purple-presage (Signal)
-RUN make -j"$(nproc)" && make install
+FROM builder as presage-builder
-WORKDIR /purple-discord
-RUN make -j"$(nproc)" && make install
-WORKDIR /purple-matrix
-RUN make -j"$(nproc)" && make install
-WORKDIR /purple-teams
-RUN make -j"$(nproc)" && make install
-WORKDIR /slack-libpurple
-RUN make install
-WORKDIR /
-RUN tar zxvf "$SKYPE4PIDGIN_VERSION".tar.gz
-WORKDIR /skype4pidgin-$SKYPE4PIDGIN_VERSION/skypeweb
-RUN make -j"$(nproc)" && make install
-WORKDIR /
-RUN tar zxvf v"$FACEBOOK_VERSION".tar.gz
-WORKDIR /bitlbee-facebook-$FACEBOOK_VERSION
-RUN ./autogen.sh && make -j"$(nproc)" && make install
-WORKDIR /bitlbee-mastodon
-RUN sh autogen.sh && ./configure && make -j"$(nproc)" && make install
-WORKDIR /tdlib-purple
-RUN ./build_and_install.sh
 
-WORKDIR /
+WORKDIR /build/purple-presage
-RUN libtool --finish /usr/local/lib/bitlbee
+RUN cmake -B build && \
+  cmake --build build --config Release && \
+  cmake --install build
 
-RUN rm -fr ./bitlbee-"$BITLBEE_VERSION" && \
+RUN libtool --mode=finish /usr/lib/x86_64-linux-gnu/purple-2
-    rm -fr ./purple* && \
-    rm -fr ./slack-libpurple && \
-    rm -fr ./skype4pidgin* && \
-    rm -fr ./bitlbee-facebook* && \
-    rm -fr ./bitlbee-mastodon* && \
-    rm -fr ./tdlib-purple && \
-    rm -fr -- *.gz && \
-    apt-get clean && \
-    rm -fr /tmp/* /var/tmp/*
 
-# FROM docker.io/debian:stable-slim
+# Build purple-matrix
+# FROM builder as matrix-builder
+# WORKDIR /build/purple-matrix
+# RUN make -j"$(nproc)" && make install
 
-# COPY --from=builder /usr/local/etc/bitlbee/ /usr/local/etc/bitlbee/
+FROM docker.io/debian:stable-slim
-# COPY --from=builder /usr/local/lib/bitlbee/ /usr/local/lib/bitlbee/
+
-# COPY --from=builder /usr/local/lib/pkgconfig/ /usr/local/lib/pkgconfig/
+RUN apt-get update && apt-get upgrade -y && apt-get install -y --no-install-recommends \
-# COPY --from=builder /usr/lib/x86_64-linux-gnu/purple-2/libdiscord.so /usr/lib/x86_64-linux-gnu/purple-2/libdiscord.so
+  libpurple0 \
-# COPY --from=builder /usr/lib/x86_64-linux-gnu/purple-2/libhangouts.so /usr/lib/x86_64-linux-gnu/purple-2/libhangouts.so
+  libotr5 \
+  adduser
+
+COPY --from=builder /usr/local/etc/bitlbee/ /usr/local/etc/bitlbee/
+COPY --from=builder /usr/local/include/bitlbee/ /usr/local/include/bitlbee/
+COPY --from=builder /usr/local/lib/pkgconfig/bitlbee.pc /usr/local/lib/pkgconfig/bitlbee.pc
+COPY --from=builder /usr/local/sbin/bitlbee /usr/local/sbin/bitlbee
+COPY --from=builder /usr/local/share/bitlbee/ /usr/local/share/bitlbee/
+#COPY --from=builder /usr/local/share/locale/ /usr/local/share/locale/
+#COPY --from=builder /usr/local/share/man/ /usr/local/share/man/
+#COPY --from=builder /usr/local/share/metainfo/ /usr/local/share/metainfo/
+
+COPY --from=presage-builder /usr/lib/x86_64-linux-gnu/purple-2/libpresage.so /usr/lib/x86_64-linux-gnu/purple-2/libpresage.so
 # COPY --from=builder /usr/lib/x86_64-linux-gnu/purple-2/libmatrix.so /usr/lib/x86_64-linux-gnu/purple-2/libmatrix.so
-# COPY --from=builder /usr/lib/x86_64-linux-gnu/purple-2/libskypeweb.so /usr/slib/x86_64-linux-gnu/purple-2/libskypeweb.so
-# COPY --from=builder /usr/lib/x86_64-linux-gnu/purple-2/libslack.so /usr/lib/x86_64-linux-gnu/purple-2/libslack.so
-# COPY --from=builder /usr/lib/x86_64-linux-gnu/purple-2/libteams-personal.so /usr/lib/x86_64-linux-gnu/purple-2/libteams-personal.so
-# COPY --from=builder /usr/lib/x86_64-linux-gnu/purple-2/libteams.so /usr/lib/x86_64-linux-gnu/purple-2/libteams.so
-# COPY --from=builder /usr/lib/x86_64-linux-gnu/purple-2/libtelegram-tdlib.so /usr/lib/x86_64-linux-gnu/purple-2/libtelegram-tdlib.so
-# COPY --from=builder /usr/local/sbin/bitlbee /usr/local/sbin/bitlbee
-# COPY --from=builder /usr/local/share/bitlbee/ /usr/local/share/bitlbee/
-# COPY --from=builder /usr/local/share/locale/ /usr/local/share/locale/
-# COPY --from=builder /usr/local/share/man/ /usr/local/share/man/
-# COPY --from=builder /usr/local/share/metainfo/ /usr/local/share/metainfo/
-
-# RUN apt-get update && apt-get install --no-install-recommends -y \
-#     libpurple0 \
-#     libotr5
 
 RUN adduser --system --home /var/lib/bitlbee --disabled-password \
   --disabled-login --shell /usr/sbin/nologin bitlbee
 RUN touch /var/run/bitlbee.pid && chown bitlbee:nogroup /var/run/bitlbee.pid
 
+# Cleanup
+RUN apt-get remove -y adduser && \
+  rm -fr /var/lib/apt/lists/*
+
 EXPOSE 6667
 
 # Needed for VOLUME permissions

k8s/bitlbee-deployment.yaml

@@ -1,54 +0,0 @@
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: bitlbee
-  namespace: bitlbee
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: bitlbee
-  template:
-    metadata:
-      labels:
-        app: bitlbee
-    spec:
-      securityContext:
-        fsGroup: 1001 # Needed for volume permissions
-      containers:
-        - name: bitlbee
-          image: docker.io/mbologna/docker-bitlbee:latest
-          ports:
-            - containerPort: 6667
-          volumeMounts:
-            - mountPath: /var/lib/bitlbee
-              name: bitlbee-data
-          resources:
-            limits:
-              memory: "512Mi"
-              cpu: "1"
-            requests:
-              memory: "256Mi"
-              cpu: "1"
-          livenessProbe:
-            exec:
-              command:
-                - nc
-                - -z
-                - localhost
-                - "6667"
-            initialDelaySeconds: 30
-            periodSeconds: 30
-          readinessProbe:
-            exec:
-              command:
-                - nc
-                - -z
-                - localhost
-                - "6667"
-            initialDelaySeconds: 10
-            periodSeconds: 30
-      volumes:
-        - name: bitlbee-data
-          persistentVolumeClaim:
-            claimName: bitlbee-pvc

k8s/bitlbee-namespace.yaml

@@ -1,4 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  name: bitlbee

k8s/bitlbee-pvc.yaml

@@ -1,11 +0,0 @@
-apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: bitlbee-pvc
-  namespace: bitlbee
-spec:
-  accessModes:
-    - ReadWriteOnce
-  resources:
-    requests:
-      storage: 128Mi

k8s/bitlbee-service.yaml

@@ -1,12 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
-  name: bitlbee
-  namespace: bitlbee
-spec:
-  ports:
-    - protocol: TCP
-      port: 6667
-      targetPort: 6667
-  selector:
-    app: bitlbee

k8s/bitlbee-stunnel-configmap.yaml

@@ -1,9 +0,0 @@
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: stunnel-config
-  namespace: bitlbee
-data:
-  STUNNEL_SERVICE: bitlbee-stunnel
-  STUNNEL_ACCEPT: "6697"
-  STUNNEL_CONNECT: bitlbee:6667

k8s/bitlbee-stunnel-deployment.yaml

@@ -1,48 +0,0 @@
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  name: bitlbee-stunnel
-  namespace: bitlbee
-spec:
-  replicas: 1
-  selector:
-    matchLabels:
-      app: bitlbee-stunnel
-  template:
-    metadata:
-      labels:
-        app: bitlbee-stunnel
-    spec:
-      containers:
-        - name: stunnel
-          image: docker.io/dweomer/stunnel:latest
-          ports:
-            - containerPort: 6697
-          envFrom:
-            - configMapRef:
-                name: stunnel-config
-          resources:
-            limits:
-              memory: "256Mi"
-              cpu: "1"
-            requests:
-              memory: "128Mi"
-              cpu: "1"
-          livenessProbe:
-            exec:
-              command:
-                - nc
-                - -z
-                - localhost
-                - "6697"
-            initialDelaySeconds: 30
-            periodSeconds: 30
-          readinessProbe:
-            exec:
-              command:
-                - nc
-                - -z
-                - localhost
-                - "6697"
-            initialDelaySeconds: 10
-            periodSeconds: 30

k8s/bitlbee-stunnel-service.yaml

@@ -1,12 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
-  name: bitlbee-stunnel
-  namespace: bitlbee
-spec:
-  ports:
-    - protocol: TCP
-      port: 6697
-      targetPort: 6697
-  selector:
-    app: bitlbee-stunnel