Laminar/cfg/jobs/adguard.run

#!/bin/env bash
# Upstream doc: https://adguard-dns.io/kb/adguard-home/getting-started/
set -euxo pipefail

IMAGE="ubuntu/24.04"
DIST="${IMAGE%%/*}"
VER="${IMAGE#*/}"
VER="${VER%/*}"
VER="${VER//./-}"
UPSTREAM_VER="0.107.54"
UPSTREAM_VER_DASH="${UPSTREAM_VER//./-}"
UPSTREAM_NAME="adguard"
SERIAL="2benoitjpnet"
CNAME="$UPSTREAM_NAME-$UPSTREAM_VER_DASH-$SERIAL-$DIST-$VER"
ALIAS="$UPSTREAM_NAME-$UPSTREAM_VER-$SERIAL"

cd "$WORKSPACE"
incus launch images:$IMAGE "$CNAME" --quiet

wait_network "$CNAME"

incus exec "$CNAME" -- bash -c '
apt-get update && apt-get upgrade -y && apt-get install -y --no-install-recommends wget

adduser \
  --system \
  --shell /bin/bash \
  --gecos "AdGuard Home DNS Server" \
  --group \
  --disabled-password \
  --home /opt/adguard \
  adguard

cd /tmp && \
wget --quiet https://github.com/AdguardTeam/AdGuardHome/releases/download/v'"$UPSTREAM_VER"'/AdGuardHome_linux_amd64.tar.gz && \
tar -xzf AdGuardHome_linux_amd64.tar.gz -C /opt/adguard --strip-components=2 && \
rm AdGuardHome_linux_amd64.tar.gz
setcap "CAP_NET_BIND_SERVICE=+eip CAP_NET_RAW=+eip" /opt/adguard/AdGuardHome

install -d -m 755 -o adguard -g adguard /opt/adguard/{data,config}

#https://github.com/AdguardTeam/AdGuardHome/wiki/FAQ#bindinuse
mkdir -p /etc/systemd/resolved.conf.d
cat <<EOT> /etc/systemd/resolved.conf.d/adguardhome.conf
[Resolve]
DNS=127.0.0.1
DNSStubListener=no
EOT
'

incus file push adguard.service "$CNAME"/etc/systemd/system/
incus exec "$CNAME" -- systemctl enable adguard

laminarc run incus_publish \
  CNAME="$CNAME" \
  UPSTREAM_NAME=$UPSTREAM_NAME \
  UPSTREAM_VER=$UPSTREAM_VER \
  IMAGE=$IMAGE \
  SERIAL=$SERIAL \
  ALIAS=$ALIAS
Adguard: Init 2024-11-21 20:56:04 +09:00			`#!/bin/env bash`
			`# Upstream doc: https://adguard-dns.io/kb/adguard-home/getting-started/`
			`set -euxo pipefail`

			`IMAGE="ubuntu/24.04"`
			`DIST="${IMAGE%%/*}"`
			`VER="${IMAGE#*/}"`
			`VER="${VER%/*}"`
			`VER="${VER//./-}"`
			`UPSTREAM_VER="0.107.54"`
			`UPSTREAM_VER_DASH="${UPSTREAM_VER//./-}"`
			`UPSTREAM_NAME="adguard"`
Adguard: Add setcap 2024-11-21 21:07:33 +09:00			`SERIAL="2benoitjpnet"`
Adguard: Init 2024-11-21 20:56:04 +09:00			`CNAME="$UPSTREAM_NAME-$UPSTREAM_VER_DASH-$SERIAL-$DIST-$VER"`
			`ALIAS="$UPSTREAM_NAME-$UPSTREAM_VER-$SERIAL"`

			`cd "$WORKSPACE"`
			`incus launch images:$IMAGE "$CNAME" --quiet`

			`wait_network "$CNAME"`

			`incus exec "$CNAME" -- bash -c '`
			`apt-get update && apt-get upgrade -y && apt-get install -y --no-install-recommends wget`

			`adduser \`
			`--system \`
			`--shell /bin/bash \`
			`--gecos "AdGuard Home DNS Server" \`
			`--group \`
			`--disabled-password \`
			`--home /opt/adguard \`
			`adguard`

			`cd /tmp && \`
			`wget --quiet https://github.com/AdguardTeam/AdGuardHome/releases/download/v'"$UPSTREAM_VER"'/AdGuardHome_linux_amd64.tar.gz && \`
Adguard: Add setcap 2024-11-21 21:07:33 +09:00			`tar -xzf AdGuardHome_linux_amd64.tar.gz -C /opt/adguard --strip-components=2 && \`
Adguard: Init 2024-11-21 20:56:04 +09:00			`rm AdGuardHome_linux_amd64.tar.gz`
Adguard: Add setcap 2024-11-21 21:07:33 +09:00			`setcap "CAP_NET_BIND_SERVICE=+eip CAP_NET_RAW=+eip" /opt/adguard/AdGuardHome`
Adguard: Init 2024-11-21 20:56:04 +09:00
			`install -d -m 755 -o adguard -g adguard /opt/adguard/{data,config}`
Adguard: Patch for systemd-resolved 2024-11-27 22:18:58 +09:00
			`#https://github.com/AdguardTeam/AdGuardHome/wiki/FAQ#bindinuse`
			`mkdir -p /etc/systemd/resolved.conf.d`
			`cat <<EOT> /etc/systemd/resolved.conf.d/adguardhome.conf`
			`[Resolve]`
			`DNS=127.0.0.1`
			`DNSStubListener=no`
			`EOT`
Adguard: Init 2024-11-21 20:56:04 +09:00			`'`

			`incus file push adguard.service "$CNAME"/etc/systemd/system/`
			`incus exec "$CNAME" -- systemctl enable adguard`

			`laminarc run incus_publish \`
			`CNAME="$CNAME" \`
Fix bad variable name UPSTREAM_NAME 2024-11-21 20:58:40 +09:00			`UPSTREAM_NAME=$UPSTREAM_NAME \`
Adguard: Init 2024-11-21 20:56:04 +09:00			`UPSTREAM_VER=$UPSTREAM_VER \`
			`IMAGE=$IMAGE \`
			`SERIAL=$SERIAL \`
			`ALIAS=$ALIAS`