code

Runtime error

App Files Files Community

abc1181 commited on Mar 27

Commit

19fd71d

verified ·

1 Parent(s): e319329

Update Dockerfile

Browse files

Files changed (1) hide show

Dockerfile +20 -133

Dockerfile CHANGED Viewed

@@ -1,141 +1,28 @@
 FROM nvidia/cuda:11.3.1-base-ubuntu20.04
 ENV DEBIAN_FRONTEND=noninteractive \
-	TZ=Aisa/Shanghai \
-    LC_CTYPE=C.UTF-8 \
-    LANG=C.UTF-8
-# Remove any third-party apt sources to avoid issues with expiring keys.
-# Install some basic utilities
-RUN rm -f /etc/apt/sources.list.d/*.list && \
-    apt-get update && apt-get install -y \
-    curl \
-    ca-certificates \
-    sudo \
-    git \
-    git-lfs \
-    zip \
-    unzip \
-    htop \
-    bzip2 \
-    libx11-6 \
-    nginx \
-    vim \
-    lsof \
-    telnet \
-    wget \
-    build-essential \
-    libsndfile-dev \
-    software-properties-common \
- && rm -rf /var/lib/apt/lists/*
-ARG BUILD_DATE
-ARG VERSION
-ARG CODE_RELEASE
-RUN \
-  echo "**** install openvscode-server runtime dependencies ****" && \
-  apt-get update && \
-  apt-get install -y \
-    jq \
-    libatomic1 \
-    nano \
-    net-tools \
-    netcat && \
-  echo "**** install openvscode-server ****" && \
-  if [ -z ${CODE_RELEASE+x} ]; then \
-    CODE_RELEASE=$(curl -sX GET "https://api.github.com/repos/gitpod-io/openvscode-server/releases/latest" \
-      | awk '/tag_name/{print $4;exit}' FS='[""]' \
-      | sed 's|^openvscode-server-v||'); \
-  fi && \
-  mkdir -p /app/openvscode-server && \
-  curl -o \
-    /tmp/openvscode-server.tar.gz -L \
-    "https://github.com/gitpod-io/openvscode-server/releases/download/openvscode-server-v${CODE_RELEASE}/openvscode-server-v${CODE_RELEASE}-linux-x64.tar.gz" && \
-  tar xf \
-    /tmp/openvscode-server.tar.gz -C \
-    /app/openvscode-server/ --strip-components=1 && \
-  echo "**** clean up ****" && \
-  apt-get clean && \
-  rm -rf \
-    /tmp/* \
-    /var/lib/apt/lists/* \
-    /var/tmp/*
-COPY root/ /
-RUN add-apt-repository ppa:flexiondotorg/nvtop && \
-    apt-get upgrade -y && \
-    apt-get install -y --no-install-recommends nvtop
-RUN curl -sL https://deb.nodesource.com/setup_18.x  | bash - && \
-    apt-get install -y nodejs && \
-    npm install -g configurable-http-proxy
-# Create a working directory
-WORKDIR /app
-# Create a non-root user and switch to it
-RUN adduser --disabled-password --gecos '' --shell /bin/bash user \
- && chown -R user:user /app
-RUN echo "user ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/90-user
-USER user
-# All users can use /home/user as their home directory
-ENV HOME=/home/user
-RUN mkdir $HOME/.cache $HOME/.config \
- && chmod -R 777 $HOME
-# Set up the Conda environment
-ENV CONDA_AUTO_UPDATE_CONDA=false \
-    PATH=$HOME/miniconda/bin:$PATH
-RUN curl -sLo ~/miniconda.sh https://repo.continuum.io/miniconda/Miniconda3-py310_23.5.2-0-Linux-x86_64.sh \
- && chmod +x ~/miniconda.sh \
- && ~/miniconda.sh -b -p ~/miniconda \
- && rm ~/miniconda.sh \
- && conda clean -ya
-WORKDIR $HOME/app
-#######################################
-# Start root user section
-#######################################
-USER root
-# User Debian packages
-## Security warning : Potential user code executed as root (build time)
-RUN --mount=target=/root/packages.txt,source=packages.txt \
-    apt-get update && \
-    xargs -r -a /root/packages.txt apt-get install -y --no-install-recommends \
     && rm -rf /var/lib/apt/lists/*
-RUN --mount=target=/root/on_startup.sh,source=on_startup.sh,readwrite \
-	bash /root/on_startup.sh
-#######################################
-# End root user section
-#######################################
-USER user
-# Python packages
-RUN --mount=target=requirements.txt,source=requirements.txt \
-    pip install --no-cache-dir --upgrade -r requirements.txt
-# Copy the current directory contents into the container at $HOME/app setting the owner to the user
-COPY --chown=user . $HOME/app
-WORKDIR $HOME/app
-RUN chmod +x start_server.sh
-ENV PYTHONUNBUFFERED=1 \
-	GRADIO_ALLOW_FLAGGING=never \
-	GRADIO_NUM_PORTS=1 \
-	GRADIO_SERVER_NAME=0.0.0.0 \
-	GRADIO_THEME=huggingface \
-	SYSTEM=spaces \
-	SHELL=/bin/bash
-EXPOSE 7860 3000
-CMD ["./start_server.sh"]

 FROM nvidia/cuda:11.3.1-base-ubuntu20.04
+# Set root-level environment variables
 ENV DEBIAN_FRONTEND=noninteractive \
+    HOME=/root \
+    WORKDIR=/root/app
+RUN apt-get update && apt-get install -y \
+    curl ca-certificates sudo git git-lfs zip unzip htop nginx vim wget build-essential \
     && rm -rf /var/lib/apt/lists/*
+# Install openvscode-server directly into /opt or /root
+RUN CODE_RELEASE=$(curl -sX GET "https://api.github.com/repos/gitpod-io/openvscode-server/releases/latest" | jq -r .tag_name | sed 's/openvscode-server-v//') && \
+    mkdir -p /opt/openvscode-server && \
+    curl -L "https://github.com/gitpod-io/openvscode-server/releases/download/openvscode-server-v${CODE_RELEASE}/openvscode-server-v${CODE_RELEASE}-linux-x64.tar.gz" | tar -xzC /opt/openvscode-server --strip-components=1
+# Create the user but give them global sudo with no password
+RUN useradd -m -u 1000 user && \
+    echo "user ALL=(ALL) NOPASSWD:ALL" >> /etc/sudoers
+# Setup the project in /root/app
+WORKDIR /root/app
+COPY . /root/app
+RUN chmod -R 777 /root  # High-level permission grant
+# Switch to the mandatory HF user, but immediately sudo back to root in the CMD
+USER user
+CMD ["sudo", "-E", "bash", "start_server.sh"]