Introduce new images

.gitignore

@@ -1,3 +1,3 @@
 *.rpm
 *.zip
-rpm/
+assets/

Dockerfile.11202

@@ -3,6 +3,24 @@
 # Author: gvenzl
 # Name: Dockerfile.11202
 # Description: Dockerfile to build Oracle DB XE 11.2.0.2.
+#              The Dockerfile supports building different flavors of images.
+#              These flavors can be controlled via the build argument "BUILD_MODE" which
+#              supports three modes, as follows:
+#
+#    FULL:     No database functionality is removed, just log and trace files from the
+#              database installation  itself.
+#              Additional required packages, such as 'gcc' and 'make' are installed
+#              (needed for native PL/SQL execution, etc.)
+#              Database configuration is as per default installation, except for the
+#              location of the fast_recovery_area and redo logs.
+#
+#    NORMAL:   Following functionalities have been removed:
+#              * gcc & make (needed for native PL/SQL execution, etc.)
+#              * APEX
+#
+#    SLIM:     Following functionalities have been removed:
+#              * Everything that has been removed in the NORMAL image, plus:
+#              * Oracle Text
 #
 # Copyright 2021 Gerald Venzl
 #
@@ -27,7 +45,7 @@ ENV ORACLE_BASE=/u01/app/oracle \
     ORACLE_SID=XE \
     PATH=${PATH}:/u01/app/oracle/product/11.2.0/xe/bin:/u01/app/oracle
 
-COPY oracle-xe-11.2.0-1.0.x86_64.rpm xe.11202.rsp install.11202.sh runDB.sh resetPassword healthcheck.sh /install/
+COPY oracle-xe-11.2.0-1.0.x86_64.rpm xe.11202.rsp install.11202.sh container-entrypoint.sh resetPassword healthcheck.sh /install/
 
 RUN /install/install.11202.sh "${BUILD_MODE}"
 
@@ -36,4 +54,4 @@ WORKDIR ${ORACLE_BASE}
 
 HEALTHCHECK CMD "${ORACLE_BASE}"/healthcheck.sh >/dev/null || exit 1
 
-CMD exec ${ORACLE_BASE}/runDB.sh
+ENTRYPOINT ["container-entrypoint.sh"]

Dockerfile.1840

@@ -0,0 +1,39 @@
+#
+# Since: January, 2021
+# Author: gvenzl
+# Name: Dockerfile.1840
+# Description: Dockerfile to build Oracle DB XE 18.4.0
+#
+# Copyright 2021 Gerald Venzl
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+FROM oraclelinux:8-slim
+
+ARG BUILD_MODE
+
+ENV ORACLE_BASE=/opt/oracle \
+    ORACLE_HOME=/opt/oracle/product/18c/dbhomeXE \
+    ORACLE_SID=XE \
+    PATH=${PATH}:/opt/oracle/product/18c/dbhomeXE/bin:/opt/oracle
+
+COPY oracle-database-xe-18c-1.0-1.x86_64.rpm install.1840.sh container-entrypoint.sh resetPassword healthcheck.sh /install/
+
+RUN /install/install.1840.sh "${BUILD_MODE}"
+
+USER oracle
+WORKDIR ${ORACLE_BASE}
+
+HEALTHCHECK CMD "${ORACLE_BASE}"/healthcheck.sh >/dev/null || exit 1
+
+ENTRYPOINT ["container-entrypoint.sh"]

README.md

@@ -1,67 +1,261 @@
 # oci-oracle-xe
 Oracle Database Express Edition Container / Docker images.
 
-The images are compatible with `podman` and `docker`.
-You can use `podman` or `docker` interchangeably.
+**The images are compatible with `podman` and `docker`. You can use `podman` or `docker` interchangeably.**
 
-## Image flavors
+# Supported tags and respective `Dockerfile` links
 
-| Flavor        | Description                                                                                 | Use cases                                                                                                    |
-| ------------- | ------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------ |
-| 11.2.0.2-slim | An image focussed on smallest possible image size sacrificing on additional functionality.  | Best for where small images sizes are important but advanced functionality of Oracle Database is not needed. |
-| 11.2.0.2      | A well-balanced image between image size and functionality. Recommended for most use cases. | Recommended for most use cases.                                                                              |
-| 11.2.0.2-full | An image containing all functionality as provided by the Oracle Database installation.      | Best for extensions or customizations.                                                                       |
+* [`18.4.0`, `18`, `latest`](https://github.com/gvenzl/oci-oracle-xe/blob/main/Dockerfile.1840)
+* [`18.4.0-full`, `18-full`, `full`](https://github.com/gvenzl/oci-oracle-xe/blob/main/Dockerfile.1840)
+* [`11.2.0.2`, `11`](https://github.com/gvenzl/oci-oracle-xe/blob/main/Dockerfile.11202)
+* [`11.2.0.2-slim`, `11-slim`](https://github.com/gvenzl/oci-oracle-xe/blob/main/Dockerfile.11202)
+* [`11.2.0.2-full`, `11-full`](https://github.com/gvenzl/oci-oracle-xe/blob/main/Dockerfile.11202)
 
-For more information, see [Image flavor details](#image-flavor-details).
+# Quick Start
 
-## Quick start
+Run a new database container:
 
-### Reset passwords
+```shell
+docker run -d -p 1521:1521 -e ORACLE_PASSWORD=<your password> gvenzl/oracle-xe
 ```
-docker exec <image name|id> resetPassword <your password>
+
+Run a new persistent database container:
+
+```shell
+docker run -d -p 1521:1521 -e ORACLE_PASSWORD=<your password> -v oracle-volume:/opt/oracle/oradata gvenzl/oracle-xe
+```
+
+Run a new database container with OEM Express expose:
+
+```shell
+docker run -d -p 1521:1521 -e ORACLE_PASSWORD=<your password> -p 5500:5500 gvenzl/oracle-xe
+```
+
+Reset database `SYS` and `SYSTEM` passwords:
+
+```shell
+docker exec <container name|id> resetPassword <your password>
+```
+
+# How to use this image
+
+## Subtle differences between versions
+
+The 11gR2 (11.2.0.2) Oracle Database version stores the database data files under `/u01/app/oracle/oradata/XE`.  
+**A volume for 11gR2 has to be pointed at `/u01/app/oradata`!**
+
+## Environment variables
+
+### `ORACLE_PASSWORD`
+This variable is mandatory for the first container startup and specifies the password for the Oracle Database `SYS` and `SYSTEM` users.
+
+### `ORACLE_RANDOM_PASSWORD`
+This is an optional variable. Set this variable to a non-empty value, like `yes`, to generate a random initial password for the `SYS` and `SYSTEM` users. The generated password will be printed to stdout (`ORACLE PASSWORD FOR SYS AND SYSTEM: ...`).
+
+## Container secrets
+
+As an alternative to passing sensitive information via environment variables, `_FILE` may be appended to some of the previously listed environment variables, causing the initialization script to load the values for those variables from files present in the container. In particular, this can be used to load passwords from Container/Docker secrets stored in `/run/secrets/<secret_name>` files. For example:
+
+```shell
+docker run --name some-oracle -e ORACLE_PASSWORD_FILE=/run/secrets/oracle-passwd -d gvenzl/oracle-xe
 ```
 
-## Image flavor details
+Currently, this is only supported for `ORACLE_PASSWORD`.
+
+## Initialization scripts
+If you would like to perform additional initialization of the database running in a container, you can add one or more `*.sql`, `*.sql.gz`, `*.sql.zip` or `*.sh` files under `/container-entrypoint-initdb.d` (creating the directory if necessary). After the database setup is completed, these files will be executed automatically in alphabetical order.
+
+The `*.sql`, `*.sql.gz` and `*.sql.zip` files will be executed in Sql*Plus as the `SYS` user connected to the Oracle instance (`XE`). Compressed files will be uncompressed on the fly, allowing for e.g. bigger data loading scripts to save space.
+
+Executable `*.sh` files will be run in a new shell process while non-executable `*.sh` files (files that do not have the Linux e`x`ecutable permission set) will be sourced into the current shell process. The main difference between these methods is that sourced shell scripts can influence the environment of the current process and should generally be avoided. However, sourcing scripts allows for execution of these scripts even if the executable flag is not set for the files containing them. This basically avoids the "why did my script not get executed" confusion.
+
+***Note:*** scripts in `/container-entrypoint-initdb.d` are only run the first time the database is initialized; any pre-existing database will be left untouched on container startup.
+
+***Note:*** you can also put files under the `/docker-entrypoint-initdb.d` directory. This is kept for backwards compatibility with other widely used container images but should generally be avoided. Do not put files under `/container-entrypoint-initdb.d` **and** `/docker-entrypoint-initdb.d` as this would cause the same files to be executed twice!
+
+***Warning:*** if a command within the sourced `/container-entrypoint-initdb.d` scripts fails, it will cause the main entrypoint script to exit and stop the container. It also may leave the database in an incomplete initialized state. Make sure that shell scripts handle error situations gracefully and ideally do not source them!
+
+***Warning:*** do not exit executable `/container-entrypoint-initdb.d` scripts with a non-zero value (using e.g. `exit 1;`) unless it is desired for a container to be stopped! A non-zero return value will tell the main entrypoint script that something has gone wrong and that the container should be stopped.
+
+### Example
+
+The following example installs the [countries, cities and currencies sample data set](https://github.com/gvenzl/sample-data/tree/master/countries-cities-currencies) under a new user `TEST` into the database:
+
+```shell
+[gvenzl@localhost init_scripts]$ pwd
+/home/gvenzl/init_scripts
+
+[gvenzl@localhost init_scripts]$ ls -al
+total 12
+drwxrwxr-x   2 gvenzl gvenzl   61 Mar  7 11:51 .
+drwx------. 19 gvenzl gvenzl 4096 Mar  7 11:51 ..
+-rw-rw-r--   1 gvenzl gvenzl  134 Mar  7 11:50 1_create_user.sql
+-rwxrwxr-x   1 gvenzl gvenzl  164 Mar  7 11:51 2_create_data_model.sh
+
+[gvenzl@localhost init_scripts]$ cat 1_create_user.sql
+ALTER SESSION SET CONTAINER=XEPDB1;
+
+CREATE USER TEST IDENTIFIED BY test QUOTA UNLIMITED ON USERS;
+
+GRANT CONNECT, RESOURCE TO TEST;
+
+[gvenzl@localhost init_scripts]$ cat 2_create_data_model.sh
+curl -LJO https://raw.githubusercontent.com/gvenzl/sample-data/master/countries-cities-currencies/install.sql
+
+sqlplus -s test/test@//localhost/XEPDB1 @install.sql
+
+rm install.sql
+
+```
+
+As the execution happens in alphabetical order, numbering the files will guarantee the execution order. A new container started up with `/home/gvenzl/init_scripts` pointing to `/container-entrypoint-initdb.d` will then execute the files above:
+
+```shell
+podman run --name test \
+>          -p 1521:1521 \
+>          -e ORACLE_RANDOM_PASSWORD="y" \
+>          -v /home/gvenzl/init_scripts:/container-entrypoint-initdb.d \
+>      gvenzl/oracle-xe:18.4.0-full
+CONTAINER: starting up...
+CONTAINER: first database startup, initializing...
+...
+CONTAINER: Executing user defined scripts...
+CONTAINER: running /container-entrypoint-initdb.d/1_create_user.sql ...
 
-There are three flavors of the image:
- * FULL (`-full` tag appended)
- * NORMAL (no tag appended)
- * SLIM (`-slim` tag appended)
+Session altered.
 
-### Full image flavor
+
+User created.
+
+
+Grant succeeded.
+
+CONTAINER: DONE: running /container-entrypoint-initdb.d/1_create_user.sql
+
+CONTAINER: running /container-entrypoint-initdb.d/2_create_data_model.sh ...
+  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
+                                 Dload  Upload   Total   Spent    Left  Speed
+100  115k  100  115k    0     0   460k      0 --:--:-- --:--:-- --:--:--  460k
+
+Table created.
+...
+Table		       provided     actual
+-------------------- ---------- ----------
+regions 		      7 	 7
+countries		    196        196
+cities			    204        204
+currencies		    146        146
+currencies_countries	    203        203
+
+
+Thank you!
+--------------------------------------------------------------------------------
+The installation is finished, please check the verification output above!
+If the 'provided' and 'actual' row counts match, the installation was successful
+.
+
+If the row counts do not match, please check the above output for error messages
+.
+
+
+CONTAINER: DONE: running /container-entrypoint-initdb.d/2_create_data_model.sh
+
+CONTAINER: DONE: Executing user defined scripts.
+
+
+#########################
+DATABASE IS READY TO USE!
+#########################
+...
+```
+
+As a result, one can then connect to the new schema directly:
+
+```shell
+[gvenzl@localhost init_scripts]$  sql test/test@//localhost/XEPDB1
+
+SQLcl: Release 20.3 Production on Sun Mar 07 12:05:06 2021
+
+Copyright (c) 1982, 2021, Oracle.  All rights reserved.
+
+Connected to:
+Oracle Database 18c Express Edition Release 18.0.0.0.0 - Production
+Version 18.4.0.0.0
+
+
+SQL> select * from countries where name = 'Austria';
+
+COUNTRY_ID COUNTRY_CODE NAME    OFFICIAL_NAME       POPULATION AREA_SQ_KM LATITUDE LONGITUDE TIMEZONE      REGION_ID
+---------- ------------ ------- ------------------- ---------- ---------- -------- --------- ------------- ---------
+AUT        AT           Austria Republic of Austria    8793000      83871 47.33333  13.33333 Europe/Vienna EU
+
+SQL>
+```
+
+## Startup scripts
+
+If you would like to perform additional action after the database running in a container has been started, you can add one or more `*.sql`, `*.sql.gz`, `*.sql.zip` or `*.sh` files under `/container-entrypoint-startdb.d` (creating the directory if necessary). After the database is up and ready for requests, these files will be executed automatically in alphabetical order.
+
+The execution order and implications are the same as with the [Initialization scripts](#initialization-scripts) described above.
+
+***Note:*** you can also put files under the `/docker-entrypoint-startdb.d` directory. This is kept for backwards compatibility with other widely used container images but should generally be avoided. Do not put files under `/container-entrypoint-startdb.d` **and** `/docker-entrypoint-startdb.d` as this would cause the same files to be executed twice!
+
+***Note:*** if the database inside the container is initialized (started for the first time), startup scripts are executed after the setup scripts.
+
+***Warning:*** files placed in `/container-entrypoint-startdb.d` are always executed after the database in a container is started, including pre-created databases. Use this mechanism only if you wish to perform a certain task always after the database has been (re)started by the container.
+
+# Image flavors
+
+| Flavor | Extension | Description                                                                                 | Use cases                                                                                              |
+| -------| --------- | ------------------------------------------------------------------------------------------- | -------------------------------------------------------------------------------------------------------|
+| Slim   | `-slim`   | An image focussed on smallest possible image size instead of additional functionality.      | Wherever small images sizes are important but advanced functionality of Oracle Database is not needed. |
+| Normal | [None]    | A well-balanced image between image size and functionality. Recommended for most use cases. | Recommended for most use cases.                                                                        |
+| Full   | `-full`   | An image containing all functionality as provided by the Oracle Database installation.      | Best for extensions and/or customizations.                                                             |
+
+## Full image flavor
 
 The full image provides an Oracle Database XE installation "as is", meaning as provided by the RPM install file.
 A couple of modifications have been performed to make the installation more suitable for running inside a container:
 
-* The `REDO` logs have been relocated into `$ORACLE_BASE/oradata/$ORACLE_SID/`
-* The fast recovery area has been relocated into `$ORACLE_BASE/oradata/$ORACLE_SID/`
 * `DBMS_XDB.SETLISTENERLOCALACCESS()` has been set to `FALSE`
 * An `OPS$ORACLE` externally identified user has been created and granted `CONNECT` and `SELECT_CATALOG_ROLE` (this is used for health check and other operations)
 
-### Normal image flavor
+### 18c specific
+
+* `LOCAL_LISTENER` is set to `NULL` (18c)
+* `COMMON_USER_PREFIX` is set to `NULL` (18c)
+
+### 11g R2 specific
+
+* The `REDO` logs have been located into `$ORACLE_BASE/oradata/$ORACLE_SID/` (11gR2 image)
+* The fast recovery area has been removed (11gR2 images)
+
+## Normal image flavor
 
 The normal image has all customizations that the full image has.
 Additionally, it also includes the following changes:
 
-#### Database components
-* Oracle APEX has been removed (you can download and install the latest and greatest from [apex.oracle.com](https://apex.oracle.com))
+### Database components
+* Oracle APEX has been removed (you can download and install the latest and greatest from [apex.oracle.com](https://apex.oracle.com), 11gR2 image)
 * The `HR` schema and folder have been removed
-* The jdbc drivers have been removed
 
-#### Operating system
+### Operating system
 
-* The following Linux packages are not installed: `binutils`, `gcc`, `glibc`, `make`
+* The following Linux packages are not installed: `binutils`, `gcc`, `glibc`, `make` (11g R2)
+* The jdbc drivers have been removed (`$ORACLE_HOME/jdbc`, `$ORACLE_HOME/jlib`)
 
-#### Data files
+### Data files
 
-| Tablespace | Size   | Autoextend | Max size    |
-| ---------- | -----: | ---------: | ----------- |
-| `REDO`     | 20 MB  |      `N/A` | `N/A`       |
-| `TEMP`     |  2 MB  |      10 MB | `UNLIMITED` |
-| `UNDO`     | 10 MB  |      10 MB | `UNLIMITED` |
-| `USERS`    | 10 MB  |      10 MB | `UNLIMITED` |
+| Tablespace | 18c Size | 11g Size | Autoextend | Max size    |
+| ---------- | --------:| -------: | ---------: | ----------- |
+| `REDO`     | 20 MB    | 20 MB    |      `N/A` | `N/A`       |
+| `SYSAUX`   | 480 MB (CDB) <br> 342 MB (PDB) | 610 MB | 10 MB | `UNLIMITED` |
+| `SYSTEM`   | 353 MB (CDB) <br> 255 MB (PDB) | 353 MB | 10 MB | `UNLIMITED` |
+| `TEMP`     | 2 MB (CDB) <br> 2 MB (PDB)     |  2 MB    |      10 MB | `UNLIMITED` |
+| `UNDO`     | 70 MB (CDB) <br> 40 MB (PDB)        | 10 MB    |      10 MB | `UNLIMITED` |
+| `USERS`    |  10 MB        | 10 MB    |      10 MB | `UNLIMITED` |
 
-#### Others
+### Others
 
 * The `DEFAULT` profile has the following set:
   * `FAILED_LOGIN_ATTEMPTS=UNLIMITED`