深度定制MySQL容器从entrypoint.sh脚本解析到高级初始化实践在Docker生态中MySQL官方镜像因其稳定性和易用性广受欢迎但许多中级开发者在使用时常常遇到这样的困境官方镜像的默认行为无法满足特定业务需求而环境变量提供的配置选项又有限。本文将带您深入MySQL官方镜像的entrypoint.sh脚本内部掌握定制化容器初始化的高级技巧。1. 理解entrypoint.sh的核心机制MySQL官方镜像的entrypoint.sh脚本是一个精心设计的初始化流程控制器它负责处理容器启动时的各种场景。与简单依赖环境变量不同直接修改或扩展这个脚本可以实现更精细的控制。脚本的核心逻辑可以分为几个关键阶段参数预处理检查启动命令是否包含帮助选项环境变量加载通过file_env函数支持变量从文件读取数据库初始化处理首次运行时的数据库创建权限配置设置root密码和创建用户初始化脚本执行处理/docker-entrypoint-initdb.d/目录下的文件其中最具扩展价值的是process_init_file函数它定义了如何执行初始化脚本process_init_file() { local f$1; shift local mysql( $ ) case $f in *.sh) echo $0: running $f; . $f ;; *.sql) echo $0: running $f; ${mysql[]} $f; echo ;; *.sql.gz) echo $0: running $f; gunzip -c $f | ${mysql[]}; echo ;; *) echo $0: ignoring $f ;; esac echo }2. 定制化数据库初始化流程2.1 修改默认初始化行为官方镜像默认会在/var/lib/mysql目录为空时初始化数据库。我们可以通过修改以下代码段来改变这一行为if [ ! -d $DATADIR/mysql ]; then file_env MYSQL_ROOT_PASSWORD if [ -z $MYSQL_ROOT_PASSWORD -a -z $MYSQL_ALLOW_EMPTY_PASSWORD -a -z $MYSQL_RANDOM_ROOT_PASSWORD ]; then echo 2 error: database is uninitialized and password option is not specified exit 1 fi mkdir -p $DATADIR echo Initializing database $ --initialize-insecure echo Database initialized例如如果我们希望即使数据目录为空也不自动初始化可以添加一个自定义环境变量MYSQL_SKIP_INITif [ ! -d $DATADIR/mysql ] [ -z $MYSQL_SKIP_INIT ]; then # 原有初始化代码 fi2.2 扩展用户创建逻辑官方镜像支持通过MYSQL_USER和MYSQL_PASSWORD创建一个普通用户但业务场景中往往需要创建多个用户或设置更复杂的权限。我们可以扩展以下代码块原始代码file_env MYSQL_USER file_env MYSQL_PASSWORD if [ $MYSQL_USER -a $MYSQL_PASSWORD ]; then echo CREATE USER $MYSQL_USER% IDENTIFIED BY $MYSQL_PASSWORD ; | ${mysql[]} if [ $MYSQL_DATABASE ]; then echo GRANT ALL ON \$MYSQL_DATABASE\.* TO $MYSQL_USER% ; | ${mysql[]} fi echo FLUSH PRIVILEGES ; | ${mysql[]} fi修改后可支持多用户配置# 支持以逗号分隔的多用户配置 if [ -n $MYSQL_USERS ]; then IFS, read -ra users $MYSQL_USERS IFS, read -ra passwords $MYSQL_PASSWORDS for i in ${!users[]}; do echo CREATE USER ${users[i]}% IDENTIFIED BY ${passwords[i]} ; | ${mysql[]} if [ $MYSQL_DATABASE ]; then echo GRANT ALL ON \$MYSQL_DATABASE\.* TO ${users[i]}% ; | ${mysql[]} fi done echo FLUSH PRIVILEGES ; | ${mysql[]} fi3. 高级初始化技巧3.1 初始化脚本执行顺序控制默认情况下/docker-entrypoint-initdb.d/目录中的脚本按文件名顺序执行。通过修改process_init_file的调用方式我们可以实现更复杂的执行逻辑# 原始调用方式 for f in /docker-entrypoint-initdb.d/*; do process_init_file $f ${mysql[]} done # 修改后可支持优先级排序 find /docker-entrypoint-initdb.d/ -type f -name *.sql | sort -n | while read f; do process_init_file $f ${mysql[]} done find /docker-entrypoint-initdb.d/ -type f -name *.sh | sort -n | while read f; do process_init_file $f ${mysql[]} done3.2 数据库预热对于性能要求高的场景可以在初始化完成后执行预热操作echo Warming up database cache... ${mysql[]} EOSQL SELECT table_schema, table_name, CONCAT(SELECT * FROM , table_schema, ., table_name, LIMIT 1;) AS warmup_query FROM information_schema.tables WHERE table_schema NOT IN (information_schema, performance_schema, mysql, sys) INTO OUTFILE /tmp/warmup_queries.sql; EOSQL ${mysql[]} /tmp/warmup_queries.sql4. 安全增强实践4.1 敏感信息处理原始脚本使用file_env函数支持从文件读取敏感信息我们可以进一步扩展secure_file_env() { local var$1 local fileVar${var}_FILE local def${2:-} if [ ${!var:-} ] [ ${!fileVar:-} ]; then echo 2 error: both $var and $fileVar are set (but are exclusive) exit 1 fi local val$def if [ ${!var:-} ]; then val${!var} # 记录日志但不输出实际值 echo 2 info: $var is set from environment elif [ ${!fileVar:-} ]; then val$( ${!fileVar}) # 确保权限正确 chmod 600 ${!fileVar} echo 2 info: $var is set from $fileVar fi export $var$val unset $fileVar # 加密存储到临时文件供脚本使用 if [ -n $val ]; then encrypted_val$(echo $val | openssl enc -aes-256-cbc -salt -pass pass:${container_id}) echo $encrypted_val /tmp/${var}.enc chmod 400 /tmp/${var}.enc fi }4.2 审计日志在entrypoint.sh中添加数据库操作审计功能audit_db_operation() { local operation$1 local query$2 local audit_log/var/log/mysql/audit.log mkdir -p $(dirname $audit_log) touch $audit_log chown mysql:mysql $audit_log echo $(date %Y-%m-%d %H:%M:%S) [$$] $operation: $query $audit_log } # 在关键操作处添加审计 echo CREATE DATABASE IF NOT EXISTS \$MYSQL_DATABASE\ ; | ${mysql[]} audit_db_operation CREATE_DATABASE CREATE DATABASE IF NOT EXISTS \$MYSQL_DATABASE\5. 构建自定义镜像的最佳实践5.1 分层修改策略直接修改entrypoint.sh虽然灵活但不利于维护。推荐采用分层策略基础层官方MySQL镜像修改层复制并修改entrypoint.sh扩展层添加自定义脚本和工具Dockerfile示例FROM mysql:5.7 # 备份原始entrypoint RUN cp /usr/local/bin/docker-entrypoint.sh /usr/local/bin/docker-entrypoint-orig.sh # 复制修改后的entrypoint COPY custom-entrypoint.sh /usr/local/bin/docker-entrypoint.sh # 添加辅助工具 COPY scripts /docker-entrypoint-initdb.d/ RUN chmod x /docker-entrypoint-initdb.d/*.sh # 确保权限正确 RUN chmod x /usr/local/bin/docker-entrypoint.sh5.2 版本控制对entrypoint.sh的修改应该纳入版本控制建议采用以下目录结构mysql-custom/ ├── Dockerfile ├── custom-entrypoint.sh ├── scripts/ │ ├── 01-init-schema.sql │ ├── 02-seed-data.sh │ └── 99-post-init.sh └── README.md5.3 测试策略定制entrypoint.sh后需要全面测试各种场景全新启动测试验证初始化流程重启测试确保不会重复初始化数据持久化测试验证卷挂载正确失败恢复测试模拟异常情况下的行为可以使用以下测试命令# 测试全新启动 docker run --rm -e MYSQL_ROOT_PASSWORDtest -v $(pwd)/data:/var/lib/mysql custom-mysql # 测试重启 docker restart mysql-container # 测试数据持久化 docker rm -f mysql-container docker run --rm -e MYSQL_ROOT_PASSWORDtest -v $(pwd)/data:/var/lib/mysql custom-mysql6. 调试技巧与问题排查6.1 日志增强在entrypoint.sh中添加详细日志输出set -x # 开启调试模式 # 在关键节点添加日志 echo [DEBUG] Starting MySQL initialization at $(date) echo [DEBUG] DATADIR: $DATADIR echo [DEBUG] MYSQL_USER: ${MYSQL_USER:-not set}6.2 交互式调试对于复杂问题可以临时修改entrypoint.sh进入交互模式# 在脚本开头添加 if [ -n $DEBUG_MODE ]; then echo Entering debug mode... exec /bin/bash fi然后运行docker run -it --rm -e DEBUG_MODE1 -e MYSQL_ROOT_PASSWORDtest custom-mysql6.3 常见问题解决问题1初始化脚本执行顺序不符合预期解决方案在脚本名前添加数字前缀如01-init.sql、02-seed.sql问题2自定义用户权限不足解决方案确保在GRANT语句中包含了WITH GRANT OPTION如果需要GRANT ALL ON dbname.* TO username% WITH GRANT OPTION;问题3容器启动后立即退出排查步骤检查entrypoint.sh最后是否包含exec $查看MySQL错误日志docker logs container-name验证数据目录权限ls -ld /var/lib/mysql7. 性能优化实践7.1 并行初始化对于大量初始化脚本可以修改process_init_file实现并行执行# 创建临时目录存放PID文件 PID_DIR$(mktemp -d) cleanup() { rm -rf $PID_DIR } trap cleanup EXIT # 修改process_init_file函数 process_init_file() { local f$1; shift ( local mysql( $ ) case $f in *.sh) echo $0: running $f; . $f ;; *.sql) echo $0: running $f; ${mysql[]} $f; echo ;; *.sql.gz) echo $0: running $f; gunzip -c $f | ${mysql[]}; echo ;; *) echo $0: ignoring $f ;; esac echo ) local pid$! echo $pid $PID_DIR/$pid.pid wait $pid rm -f $PID_DIR/$pid.pid } # 在初始化完成后检查所有子进程 for pid_file in $PID_DIR/*.pid; do if [ -f $pid_file ]; then pid$(cat $pid_file) wait $pid || exit 1 fi done7.2 内存优化根据可用内存动态调整MySQL配置adjust_mysql_config() { local mem_limit$(cat /sys/fs/cgroup/memory/memory.limit_in_bytes) local mem_total$(free -b | awk /Mem:/ {print $2}) # 使用较小的值 if [ $mem_limit -lt $mem_total ]; then mem_total$mem_limit fi # 计算缓冲池大小(70%可用内存) local innodb_buffer_pool_size$((mem_total * 70 / 100)) # 生成配置文件 cat /etc/mysql/conf.d/docker-autoconf.cnf EOF [mysqld] innodb_buffer_pool_size${innodb_buffer_pool_size} innodb_log_file_size$((innodb_buffer_pool_size / 4)) innodb_log_buffer_size16M key_buffer_size16M max_connections200 EOF } # 在数据库初始化前调用 adjust_mysql_config8. 实际案例电商平台数据库定制8.1 需求场景某电商平台需要MySQL容器在启动时创建3个业务用户readonly, readwrite, admin初始化10个分库导入基础数据设置特定的SQL模式8.2 解决方案custom-entrypoint.sh关键修改# 在原始初始化逻辑后添加 init_ecommerce_db() { local mysql( $ ) # 创建分库 for i in {0..9}; do echo CREATE DATABASE IF NOT EXISTS shop_$i CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci; | ${mysql[]} done # 创建业务用户 echo CREATE USER readonly% IDENTIFIED BY ${ECOMMERCE_READONLY_PASSWORD}; | ${mysql[]} echo CREATE USER readwrite% IDENTIFIED BY ${ECOMMERCE_READWRITE_PASSWORD}; | ${mysql[]} echo CREATE USER admin% IDENTIFIED BY ${ECOMMERCE_ADMIN_PASSWORD}; | ${mysql[]} # 设置权限 for i in {0..9}; do echo GRANT SELECT ON shop_$i.* TO readonly%; | ${mysql[]} echo GRANT SELECT, INSERT, UPDATE, DELETE ON shop_$i.* TO readwrite%; | ${mysql[]} echo GRANT ALL PRIVILEGES ON shop_$i.* TO admin%; | ${mysql[]} done echo FLUSH PRIVILEGES; | ${mysql[]} } # 在原始初始化后调用 if [ -n $ECOMMERCE_MODE ]; then init_ecommerce_db ${mysql[]} fiDocker Compose配置示例version: 3 services: mysql: image: custom-mysql environment: MYSQL_ROOT_PASSWORD: secure_root_password ECOMMERCE_MODE: true ECOMMERCE_READONLY_PASSWORD: readonly_pass ECOMMERCE_READWRITE_PASSWORD: readwrite_pass ECOMMERCE_ADMIN_PASSWORD: admin_pass volumes: - mysql_data:/var/lib/mysql - ./init-scripts:/docker-entrypoint-initdb.d ports: - 3306:3306 volumes: mysql_data:9. 版本兼容性与升级策略9.1 多版本支持为了使自定义entrypoint.sh兼容多个MySQL版本可以添加版本检测MYSQL_VERSION$(mysqld --version | awk {print $3} | awk -F. {print $1.$2}) echo MySQL version detected: $MYSQL_VERSION case $MYSQL_VERSION in 5.7) # 5.7特定配置 export DEFAULT_AUTHmysql_native_password ;; 8.0) # 8.0特定配置 export DEFAULT_AUTHcaching_sha2_password ;; *) echo Unsupported MySQL version: $MYSQL_VERSION exit 1 ;; esac9.2 平滑升级当官方镜像更新时按以下步骤升级自定义镜像比较新旧entrypoint.sh差异diff -u docker-entrypoint-orig.sh docker-entrypoint.sh将自定义修改应用到新版本entrypoint.sh测试所有关键场景更新镜像标签如mysql-5.7-custom-v2使用工具meld可以更直观地比较meld docker-entrypoint-orig.sh custom-entrypoint.sh10. 监控与维护10.1 健康检查增强在Dockerfile中添加自定义健康检查HEALTHCHECK --interval30s --timeout10s --retries3 \ CMD mysqladmin ping -uroot -p${MYSQL_ROOT_PASSWORD} || exit 110.2 资源监控在entrypoint.sh中添加资源监控脚本start_monitoring() { # 监控MySQL内存使用 nohup bash -c while true; do date /var/log/mysql/memory.log ps -o pid,user,%mem,rss,command -C mysqld /var/log/mysql/memory.log sleep 60 done } # 在MySQL启动后调用 start_monitoring10.3 日志轮转添加日志轮转配置setup_logrotate() { cat /etc/logrotate.d/mysql EOF /var/log/mysql/*.log { daily missingok rotate 7 compress delaycompress notifempty create 640 mysql mysql sharedscripts postrotate /usr/bin/mysqladmin flush-logs || true endscript } EOF }
保姆级教程:手把手教你通过MySQL官方镜像的entrypoint.sh脚本,自定义数据库初始化流程
发布时间:2026/6/8 3:06:31
深度定制MySQL容器从entrypoint.sh脚本解析到高级初始化实践在Docker生态中MySQL官方镜像因其稳定性和易用性广受欢迎但许多中级开发者在使用时常常遇到这样的困境官方镜像的默认行为无法满足特定业务需求而环境变量提供的配置选项又有限。本文将带您深入MySQL官方镜像的entrypoint.sh脚本内部掌握定制化容器初始化的高级技巧。1. 理解entrypoint.sh的核心机制MySQL官方镜像的entrypoint.sh脚本是一个精心设计的初始化流程控制器它负责处理容器启动时的各种场景。与简单依赖环境变量不同直接修改或扩展这个脚本可以实现更精细的控制。脚本的核心逻辑可以分为几个关键阶段参数预处理检查启动命令是否包含帮助选项环境变量加载通过file_env函数支持变量从文件读取数据库初始化处理首次运行时的数据库创建权限配置设置root密码和创建用户初始化脚本执行处理/docker-entrypoint-initdb.d/目录下的文件其中最具扩展价值的是process_init_file函数它定义了如何执行初始化脚本process_init_file() { local f$1; shift local mysql( $ ) case $f in *.sh) echo $0: running $f; . $f ;; *.sql) echo $0: running $f; ${mysql[]} $f; echo ;; *.sql.gz) echo $0: running $f; gunzip -c $f | ${mysql[]}; echo ;; *) echo $0: ignoring $f ;; esac echo }2. 定制化数据库初始化流程2.1 修改默认初始化行为官方镜像默认会在/var/lib/mysql目录为空时初始化数据库。我们可以通过修改以下代码段来改变这一行为if [ ! -d $DATADIR/mysql ]; then file_env MYSQL_ROOT_PASSWORD if [ -z $MYSQL_ROOT_PASSWORD -a -z $MYSQL_ALLOW_EMPTY_PASSWORD -a -z $MYSQL_RANDOM_ROOT_PASSWORD ]; then echo 2 error: database is uninitialized and password option is not specified exit 1 fi mkdir -p $DATADIR echo Initializing database $ --initialize-insecure echo Database initialized例如如果我们希望即使数据目录为空也不自动初始化可以添加一个自定义环境变量MYSQL_SKIP_INITif [ ! -d $DATADIR/mysql ] [ -z $MYSQL_SKIP_INIT ]; then # 原有初始化代码 fi2.2 扩展用户创建逻辑官方镜像支持通过MYSQL_USER和MYSQL_PASSWORD创建一个普通用户但业务场景中往往需要创建多个用户或设置更复杂的权限。我们可以扩展以下代码块原始代码file_env MYSQL_USER file_env MYSQL_PASSWORD if [ $MYSQL_USER -a $MYSQL_PASSWORD ]; then echo CREATE USER $MYSQL_USER% IDENTIFIED BY $MYSQL_PASSWORD ; | ${mysql[]} if [ $MYSQL_DATABASE ]; then echo GRANT ALL ON \$MYSQL_DATABASE\.* TO $MYSQL_USER% ; | ${mysql[]} fi echo FLUSH PRIVILEGES ; | ${mysql[]} fi修改后可支持多用户配置# 支持以逗号分隔的多用户配置 if [ -n $MYSQL_USERS ]; then IFS, read -ra users $MYSQL_USERS IFS, read -ra passwords $MYSQL_PASSWORDS for i in ${!users[]}; do echo CREATE USER ${users[i]}% IDENTIFIED BY ${passwords[i]} ; | ${mysql[]} if [ $MYSQL_DATABASE ]; then echo GRANT ALL ON \$MYSQL_DATABASE\.* TO ${users[i]}% ; | ${mysql[]} fi done echo FLUSH PRIVILEGES ; | ${mysql[]} fi3. 高级初始化技巧3.1 初始化脚本执行顺序控制默认情况下/docker-entrypoint-initdb.d/目录中的脚本按文件名顺序执行。通过修改process_init_file的调用方式我们可以实现更复杂的执行逻辑# 原始调用方式 for f in /docker-entrypoint-initdb.d/*; do process_init_file $f ${mysql[]} done # 修改后可支持优先级排序 find /docker-entrypoint-initdb.d/ -type f -name *.sql | sort -n | while read f; do process_init_file $f ${mysql[]} done find /docker-entrypoint-initdb.d/ -type f -name *.sh | sort -n | while read f; do process_init_file $f ${mysql[]} done3.2 数据库预热对于性能要求高的场景可以在初始化完成后执行预热操作echo Warming up database cache... ${mysql[]} EOSQL SELECT table_schema, table_name, CONCAT(SELECT * FROM , table_schema, ., table_name, LIMIT 1;) AS warmup_query FROM information_schema.tables WHERE table_schema NOT IN (information_schema, performance_schema, mysql, sys) INTO OUTFILE /tmp/warmup_queries.sql; EOSQL ${mysql[]} /tmp/warmup_queries.sql4. 安全增强实践4.1 敏感信息处理原始脚本使用file_env函数支持从文件读取敏感信息我们可以进一步扩展secure_file_env() { local var$1 local fileVar${var}_FILE local def${2:-} if [ ${!var:-} ] [ ${!fileVar:-} ]; then echo 2 error: both $var and $fileVar are set (but are exclusive) exit 1 fi local val$def if [ ${!var:-} ]; then val${!var} # 记录日志但不输出实际值 echo 2 info: $var is set from environment elif [ ${!fileVar:-} ]; then val$( ${!fileVar}) # 确保权限正确 chmod 600 ${!fileVar} echo 2 info: $var is set from $fileVar fi export $var$val unset $fileVar # 加密存储到临时文件供脚本使用 if [ -n $val ]; then encrypted_val$(echo $val | openssl enc -aes-256-cbc -salt -pass pass:${container_id}) echo $encrypted_val /tmp/${var}.enc chmod 400 /tmp/${var}.enc fi }4.2 审计日志在entrypoint.sh中添加数据库操作审计功能audit_db_operation() { local operation$1 local query$2 local audit_log/var/log/mysql/audit.log mkdir -p $(dirname $audit_log) touch $audit_log chown mysql:mysql $audit_log echo $(date %Y-%m-%d %H:%M:%S) [$$] $operation: $query $audit_log } # 在关键操作处添加审计 echo CREATE DATABASE IF NOT EXISTS \$MYSQL_DATABASE\ ; | ${mysql[]} audit_db_operation CREATE_DATABASE CREATE DATABASE IF NOT EXISTS \$MYSQL_DATABASE\5. 构建自定义镜像的最佳实践5.1 分层修改策略直接修改entrypoint.sh虽然灵活但不利于维护。推荐采用分层策略基础层官方MySQL镜像修改层复制并修改entrypoint.sh扩展层添加自定义脚本和工具Dockerfile示例FROM mysql:5.7 # 备份原始entrypoint RUN cp /usr/local/bin/docker-entrypoint.sh /usr/local/bin/docker-entrypoint-orig.sh # 复制修改后的entrypoint COPY custom-entrypoint.sh /usr/local/bin/docker-entrypoint.sh # 添加辅助工具 COPY scripts /docker-entrypoint-initdb.d/ RUN chmod x /docker-entrypoint-initdb.d/*.sh # 确保权限正确 RUN chmod x /usr/local/bin/docker-entrypoint.sh5.2 版本控制对entrypoint.sh的修改应该纳入版本控制建议采用以下目录结构mysql-custom/ ├── Dockerfile ├── custom-entrypoint.sh ├── scripts/ │ ├── 01-init-schema.sql │ ├── 02-seed-data.sh │ └── 99-post-init.sh └── README.md5.3 测试策略定制entrypoint.sh后需要全面测试各种场景全新启动测试验证初始化流程重启测试确保不会重复初始化数据持久化测试验证卷挂载正确失败恢复测试模拟异常情况下的行为可以使用以下测试命令# 测试全新启动 docker run --rm -e MYSQL_ROOT_PASSWORDtest -v $(pwd)/data:/var/lib/mysql custom-mysql # 测试重启 docker restart mysql-container # 测试数据持久化 docker rm -f mysql-container docker run --rm -e MYSQL_ROOT_PASSWORDtest -v $(pwd)/data:/var/lib/mysql custom-mysql6. 调试技巧与问题排查6.1 日志增强在entrypoint.sh中添加详细日志输出set -x # 开启调试模式 # 在关键节点添加日志 echo [DEBUG] Starting MySQL initialization at $(date) echo [DEBUG] DATADIR: $DATADIR echo [DEBUG] MYSQL_USER: ${MYSQL_USER:-not set}6.2 交互式调试对于复杂问题可以临时修改entrypoint.sh进入交互模式# 在脚本开头添加 if [ -n $DEBUG_MODE ]; then echo Entering debug mode... exec /bin/bash fi然后运行docker run -it --rm -e DEBUG_MODE1 -e MYSQL_ROOT_PASSWORDtest custom-mysql6.3 常见问题解决问题1初始化脚本执行顺序不符合预期解决方案在脚本名前添加数字前缀如01-init.sql、02-seed.sql问题2自定义用户权限不足解决方案确保在GRANT语句中包含了WITH GRANT OPTION如果需要GRANT ALL ON dbname.* TO username% WITH GRANT OPTION;问题3容器启动后立即退出排查步骤检查entrypoint.sh最后是否包含exec $查看MySQL错误日志docker logs container-name验证数据目录权限ls -ld /var/lib/mysql7. 性能优化实践7.1 并行初始化对于大量初始化脚本可以修改process_init_file实现并行执行# 创建临时目录存放PID文件 PID_DIR$(mktemp -d) cleanup() { rm -rf $PID_DIR } trap cleanup EXIT # 修改process_init_file函数 process_init_file() { local f$1; shift ( local mysql( $ ) case $f in *.sh) echo $0: running $f; . $f ;; *.sql) echo $0: running $f; ${mysql[]} $f; echo ;; *.sql.gz) echo $0: running $f; gunzip -c $f | ${mysql[]}; echo ;; *) echo $0: ignoring $f ;; esac echo ) local pid$! echo $pid $PID_DIR/$pid.pid wait $pid rm -f $PID_DIR/$pid.pid } # 在初始化完成后检查所有子进程 for pid_file in $PID_DIR/*.pid; do if [ -f $pid_file ]; then pid$(cat $pid_file) wait $pid || exit 1 fi done7.2 内存优化根据可用内存动态调整MySQL配置adjust_mysql_config() { local mem_limit$(cat /sys/fs/cgroup/memory/memory.limit_in_bytes) local mem_total$(free -b | awk /Mem:/ {print $2}) # 使用较小的值 if [ $mem_limit -lt $mem_total ]; then mem_total$mem_limit fi # 计算缓冲池大小(70%可用内存) local innodb_buffer_pool_size$((mem_total * 70 / 100)) # 生成配置文件 cat /etc/mysql/conf.d/docker-autoconf.cnf EOF [mysqld] innodb_buffer_pool_size${innodb_buffer_pool_size} innodb_log_file_size$((innodb_buffer_pool_size / 4)) innodb_log_buffer_size16M key_buffer_size16M max_connections200 EOF } # 在数据库初始化前调用 adjust_mysql_config8. 实际案例电商平台数据库定制8.1 需求场景某电商平台需要MySQL容器在启动时创建3个业务用户readonly, readwrite, admin初始化10个分库导入基础数据设置特定的SQL模式8.2 解决方案custom-entrypoint.sh关键修改# 在原始初始化逻辑后添加 init_ecommerce_db() { local mysql( $ ) # 创建分库 for i in {0..9}; do echo CREATE DATABASE IF NOT EXISTS shop_$i CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci; | ${mysql[]} done # 创建业务用户 echo CREATE USER readonly% IDENTIFIED BY ${ECOMMERCE_READONLY_PASSWORD}; | ${mysql[]} echo CREATE USER readwrite% IDENTIFIED BY ${ECOMMERCE_READWRITE_PASSWORD}; | ${mysql[]} echo CREATE USER admin% IDENTIFIED BY ${ECOMMERCE_ADMIN_PASSWORD}; | ${mysql[]} # 设置权限 for i in {0..9}; do echo GRANT SELECT ON shop_$i.* TO readonly%; | ${mysql[]} echo GRANT SELECT, INSERT, UPDATE, DELETE ON shop_$i.* TO readwrite%; | ${mysql[]} echo GRANT ALL PRIVILEGES ON shop_$i.* TO admin%; | ${mysql[]} done echo FLUSH PRIVILEGES; | ${mysql[]} } # 在原始初始化后调用 if [ -n $ECOMMERCE_MODE ]; then init_ecommerce_db ${mysql[]} fiDocker Compose配置示例version: 3 services: mysql: image: custom-mysql environment: MYSQL_ROOT_PASSWORD: secure_root_password ECOMMERCE_MODE: true ECOMMERCE_READONLY_PASSWORD: readonly_pass ECOMMERCE_READWRITE_PASSWORD: readwrite_pass ECOMMERCE_ADMIN_PASSWORD: admin_pass volumes: - mysql_data:/var/lib/mysql - ./init-scripts:/docker-entrypoint-initdb.d ports: - 3306:3306 volumes: mysql_data:9. 版本兼容性与升级策略9.1 多版本支持为了使自定义entrypoint.sh兼容多个MySQL版本可以添加版本检测MYSQL_VERSION$(mysqld --version | awk {print $3} | awk -F. {print $1.$2}) echo MySQL version detected: $MYSQL_VERSION case $MYSQL_VERSION in 5.7) # 5.7特定配置 export DEFAULT_AUTHmysql_native_password ;; 8.0) # 8.0特定配置 export DEFAULT_AUTHcaching_sha2_password ;; *) echo Unsupported MySQL version: $MYSQL_VERSION exit 1 ;; esac9.2 平滑升级当官方镜像更新时按以下步骤升级自定义镜像比较新旧entrypoint.sh差异diff -u docker-entrypoint-orig.sh docker-entrypoint.sh将自定义修改应用到新版本entrypoint.sh测试所有关键场景更新镜像标签如mysql-5.7-custom-v2使用工具meld可以更直观地比较meld docker-entrypoint-orig.sh custom-entrypoint.sh10. 监控与维护10.1 健康检查增强在Dockerfile中添加自定义健康检查HEALTHCHECK --interval30s --timeout10s --retries3 \ CMD mysqladmin ping -uroot -p${MYSQL_ROOT_PASSWORD} || exit 110.2 资源监控在entrypoint.sh中添加资源监控脚本start_monitoring() { # 监控MySQL内存使用 nohup bash -c while true; do date /var/log/mysql/memory.log ps -o pid,user,%mem,rss,command -C mysqld /var/log/mysql/memory.log sleep 60 done } # 在MySQL启动后调用 start_monitoring10.3 日志轮转添加日志轮转配置setup_logrotate() { cat /etc/logrotate.d/mysql EOF /var/log/mysql/*.log { daily missingok rotate 7 compress delaycompress notifempty create 640 mysql mysql sharedscripts postrotate /usr/bin/mysqladmin flush-logs || true endscript } EOF }
)
)
:多栏目适配开发 - 通用解析规则兼容差异化网页结构)
