Add dualstack nginx listen

[Meroje]

Description

When testing over an ipv6-only stack I noticed the frontend would not be reachable, as nginx listens on ipv4 only by default. This change adds the second required directive.

Addressed Issue

Additional Details

Checklist

• I have read and understand the contributing guidelines
• [/] This PR introduces new or alters existing behavior, and I have updated the documentation accordingly

[rissson]

We are also hitting this issue. This makes it work in all situations, ipv4-only, ipv6-only, and dualstack. Any chance this might get some attention?

[nscuro]

Thanks @Meroje!

[schmidi]

Unfortunately this change breaks my IPv4-only installation... Is there a way to make this configurable?

[nscuro]

@schmidi In what sense is it breaking? I was under the assumption that it should work for both IPv4 and IPv6.

[schmidi]

@schmidi In what sense is it breaking? I was under the assumption that it should work for both IPv4 and IPv6.

When I try to start the container on a server without IPv6 I get the following message:

Attaching to dtrack_dtrack-apiserver_1, dtrack_dtrack-frontend_1
dtrack-frontend_1   | /docker-entrypoint.sh: /docker-entrypoint.d/ is not empty, will attempt to perform configuration
dtrack-frontend_1   | /docker-entrypoint.sh: Looking for shell scripts in /docker-entrypoint.d/
dtrack-frontend_1   | /docker-entrypoint.sh: Launching /docker-entrypoint.d/10-listen-on-ipv6-by-default.sh
dtrack-frontend_1   | 10-listen-on-ipv6-by-default.sh: info: ipv6 not available
dtrack-frontend_1   | /docker-entrypoint.sh: Sourcing /docker-entrypoint.d/15-local-resolvers.envsh
dtrack-frontend_1   | /docker-entrypoint.sh: Launching /docker-entrypoint.d/20-envsubst-on-templates.sh
dtrack-frontend_1   | /docker-entrypoint.sh: Launching /docker-entrypoint.d/30-oidc-configuration.sh
dtrack-frontend_1   | /docker-entrypoint.sh: Launching /docker-entrypoint.d/30-tune-worker-processes.sh
dtrack-frontend_1   | /docker-entrypoint.sh: Configuration complete; ready for start up
dtrack-frontend_1   | 2023/10/23 09:34:01 [emerg] 1#1: socket() [::]:8080 failed (97: Address family not supported by protocol)
dtrack-frontend_1   | nginx: [emerg] socket() [::]:8080 failed (97: Address family not supported by protocol)
dtrack-frontend_1   | /docker-entrypoint.sh: Launching /docker-entrypoint.d/30-oidc-configuration.sh
dtrack-frontend_1   | /docker-entrypoint.sh: Launching /docker-entrypoint.d/30-tune-worker-processes.sh
dtrack-frontend_1   | /docker-entrypoint.sh: Configuration complete; ready for start up
dtrack-frontend_1   | 2023/10/23 09:34:02 [emerg] 1#1: socket() [::]:8080 failed (97: Address family not supported by protocol)
dtrack-frontend_1   | nginx: [emerg] socket() [::]:8080 failed (97: Address family not supported by protocol)

[nscuro]

Found the issue as well as the solution: #621

Will backport this to 4.9.1. Thanks for raising the issue @schmidi!

[schmidi]

@nscuro Thanks for the fast reply and the fix.

[Meroje]

Well sorry about that, it never failed me but I guess I usually let ipv6 be un-routable rather than disabling it outright. Thanks for putting in in a better fix ❤️