♻️ Migrate ddns to /config/ source-of-truth architecture ♻️

Migrate ddns Docker image to the new build-time config architecture.
- rootfs/root/docker/setup/03-files.sh: rewrite to canonical form with /tmp/bin, /tmp/var, /tmp/etc, /tmp/usr handlers
- rootfs/usr/local/etc/docker/functions/entrypoint.sh: update to latest template
- rootfs/usr/local/etc/docker/init.d/*.sh: fix $(basename) UUOC; move inline comments above code lines
- rootfs/tmp/etc/: add named, dhcp, nginx, tor, named.conf, radvd.conf configs deployed to /etc/ at build time
- rootfs/tmp/usr/: add htdocs and named data files deployed to /usr/local/share/ at build time
- rootfs/usr/local/share/template-files/: delete; config now deployed via /tmp/etc/ and /tmp/usr/ at build time

rootfs/root/docker/setup/03-files.sh
rootfs/tmp/
rootfs/usr/local/etc/docker/functions/entrypoint.sh
rootfs/usr/local/share/template-files/config/dhcp/dhcpd4.conf
rootfs/usr/local/share/template-files/config/dhcp/dhcpd6.conf
rootfs/usr/local/share/template-files/config/env/default.sample
rootfs/usr/local/share/template-files/config/env/examples/00-directory.sh
rootfs/usr/local/share/template-files/config/env/examples/addresses.sh
rootfs/usr/local/share/template-files/config/env/examples/certbot.sh
rootfs/usr/local/share/template-files/config/env/examples/couchdb.sh
rootfs/usr/local/share/template-files/config/env/examples/dockerd.sh
rootfs/usr/local/share/template-files/config/env/examples/global.sh
rootfs/usr/local/share/template-files/config/env/examples/healthcheck.sh
rootfs/usr/local/share/template-files/config/env/examples/mariadb.sh
rootfs/usr/local/share/template-files/config/env/examples/mongodb.sh
rootfs/usr/local/share/template-files/config/env/examples/networking.sh
rootfs/usr/local/share/template-files/config/env/examples/other.sh
rootfs/usr/local/share/template-files/config/env/examples/php.sh
rootfs/usr/local/share/template-files/config/env/examples/postgres.sh
rootfs/usr/local/share/template-files/config/env/examples/redis.sh
rootfs/usr/local/share/template-files/config/env/examples/services.sh
rootfs/usr/local/share/template-files/config/env/examples/ssl.sh
rootfs/usr/local/share/template-files/config/env/examples/supabase.sh
rootfs/usr/local/share/template-files/config/env/examples/webservers.sh
rootfs/usr/local/share/template-files/config/env/examples/zz-entrypoint.sh
rootfs/usr/local/share/template-files/config/.gitkeep
rootfs/usr/local/share/template-files/config/named/certbot-update.conf
rootfs/usr/local/share/template-files/config/named/common/001-soa.inc
rootfs/usr/local/share/template-files/config/named/common/002-nameservers.inc
rootfs/usr/local/share/template-files/config/named/common/003-dns.inc
rootfs/usr/local/share/template-files/config/named.conf
rootfs/usr/local/share/template-files/config/named/config/0000-logging.conf
rootfs/usr/local/share/template-files/config/named/config/0001-rndc.conf
rootfs/usr/local/share/template-files/config/named/config/0001-rndc.key
rootfs/usr/local/share/template-files/config/named/config/0002-acl.conf
rootfs/usr/local/share/template-files/config/named/hosted/host.ddns.conf
rootfs/usr/local/share/template-files/config/named/hosted/ip.ddns.conf
rootfs/usr/local/share/template-files/config/named/keys/managed-keys.bind
rootfs/usr/local/share/template-files/config/named/zones/000-hint.conf
rootfs/usr/local/share/template-files/config/named/zones/000-localdomain.zone
rootfs/usr/local/share/template-files/config/named/zones/000-localhost.zone
rootfs/usr/local/share/template-files/config/named/zones/000-tor.zone
rootfs/usr/local/share/template-files/config/named/zones/001-ddns.zone
rootfs/usr/local/share/template-files/config/nginx/mime.types
rootfs/usr/local/share/template-files/config/nginx/nginx.conf
rootfs/usr/local/share/template-files/config/nginx/nginx.ssl.conf
rootfs/usr/local/share/template-files/config/radvd.conf
rootfs/usr/local/share/template-files/config/tor/torrc
rootfs/usr/local/share/template-files/data/.gitkeep
rootfs/usr/local/share/template-files/data/htdocs/www/css/.gitkeep
rootfs/usr/local/share/template-files/data/htdocs/www/images/.gitkeep
rootfs/usr/local/share/template-files/data/htdocs/www/index.php
rootfs/usr/local/share/template-files/data/htdocs/www/js/.gitkeep
rootfs/usr/local/share/template-files/data/named/data/hint
rootfs/usr/local/share/template-files/data/named/data/localdomain.conf
rootfs/usr/local/share/template-files/data/named/data/localhost4.rev
rootfs/usr/local/share/template-files/data/named/data/localhost6.rev
rootfs/usr/local/share/template-files/data/named/data/localhost.zone
rootfs/usr/local/share/template-files/data/named/dynamic/ddns.zone
rootfs/usr/local/share/template-files/data/named/dynamic/inc/cnames.ddns.zone
rootfs/usr/local/share/template-files/data/named/dynamic/inc/static.ipv4.arpa.rev
rootfs/usr/local/share/template-files/data/named/dynamic/inc/static.ipv4.ddns.zone
rootfs/usr/local/share/template-files/data/named/dynamic/inc/static.ipv6.arpa.rev
rootfs/usr/local/share/template-files/data/named/dynamic/inc/static.ipv6.ddns.zone
rootfs/usr/local/share/template-files/data/named/dynamic/inc/static.sso.ddns.zone
rootfs/usr/local/share/template-files/data/named/master/.gitkeep
rootfs/usr/local/share/template-files/data/named/reverse/in-addr.arpa.rev
rootfs/usr/local/share/template-files/data/named/reverse/ip6.arpa.rev
rootfs/usr/local/share/template-files/data/named/slaves/.gitkeep
rootfs/usr/local/share/template-files/defaults/.gitkeep

rootfs/tmp/etc/named/config/0000-logging.conf

@@ -0,0 +1,104 @@
+logging {
+  # channel default {
+  #   file "/data/log/dns/default.log";
+  #   severity debug;
+  #   print-category yes;
+  #   print-severity yes;
+  #   print-time yes;
+  #   };
+  # category lame-servers {
+  #   default;
+  #   };
+  # category dispatch {
+  #   default;
+  #   };
+  # category network {
+  #   default;
+  #   };
+  # category unmatched {
+  #   default;
+  #   };
+  # category client {
+  #   default;
+  #   };
+  # category resolver {
+  #   default;
+  #   };
+  # category config {
+  #   default;
+  #   };
+  # category database {
+  #   default;
+  #   };
+  # category general {
+  #   default;
+  #   };
+  # category default {
+  #   default;
+  #   };
+
+  channel security {
+    file "/data/log/dns/default.log";
+    severity dynamic;
+    print-severity yes;
+    print-time yes;
+    };
+  category security {
+    security;
+    };
+  category dnssec {
+    security;
+    };
+
+  channel xfer-in {
+    file "/data/log/dns/default.log";
+    severity info;
+    print-category yes;
+    print-severity yes;
+    print-time yes;
+    };
+  category xfer-in {
+    xfer-in;
+    };
+  channel xfer-out {
+    file "/data/log/dns/default.log";
+    severity info;
+    print-category yes;
+    print-severity yes;
+    print-time yes;
+    };
+  category xfer-out {
+    xfer-out;
+    };
+
+  channel update {
+    file "/data/log/dns/default.log";
+    severity info;
+    print-category yes;
+    print-severity yes;
+    print-time yes;
+    };
+  category update {
+    update;
+    };
+
+  channel notify {
+    file "/data/log/dns/default.log";
+    severity info;
+    print-category yes;
+    print-severity yes;
+    print-time yes;
+    };
+  category notify {
+    notify;
+    };
+
+  channel querylog {
+    file "/data/log/dns/default.log";
+    severity info;
+    print-time yes;
+    };
+  category queries {
+    querylog;
+    };
+};

rootfs/tmp/etc/named/config/0001-rndc.conf

@@ -0,0 +1,3 @@
+controls {
+        inet 127.0.0.1 allow { trusted; } keys { "rndc-key"; };
+};

rootfs/tmp/etc/named/config/0001-rndc.key

@@ -0,0 +1,4 @@
+key "rndc-key" {
+  algorithm hmac-md5;
+  secret "REPLACE_WITH_RNDC_KEY";
+};

rootfs/tmp/etc/named/config/0002-acl.conf

@@ -0,0 +1,10 @@
+ acl "trusted" {
+    127.0.0.0/8;
+    10.0.0.0/8;
+    172.0.0.0/12;
+    192.168.0.0/16;
+    ::1/128;
+    2001:db8:edfa:1234::/64;
+    localhost;
+    localnets;
+};