Spaces:

wmdjt
/

windows

Running

App Files Files Community

wmdjt commited on Nov 8, 2025

Commit

33bcd7c

verified ·

1 Parent(s): 8907a1d

Create Dockerfile

Browse files

Files changed (1) hide show

Dockerfile +154 -0

Dockerfile ADDED Viewed

	@@ -0,0 +1,154 @@

+FROM nvidia/cuda:12.5.1-cudnn-devel-ubuntu20.04
+ENV DEBIAN_FRONTEND=noninteractive \
+    TZ=Europe/Paris
+# 以root身份开始，安装所有系统工具
+RUN rm -f /etc/apt/sources.list.d/*.list && \
+    apt-get update && apt-get install -y --no-install-recommends \
+    curl \
+    ca-certificates \
+    sudo \
+    git \
+    wget \
+    procps \
+    git-lfs \
+    zip \
+    unzip \
+    htop \
+    vim \
+    nano \
+    bzip2 \
+    libx11-6 \
+    build-essential \
+    libsndfile-dev \
+    software-properties-common \
+    net-tools \
+    lsof \
+    strace \
+    gdb \
+    openssh-server \
+    tmux \
+    screen \
+ && rm -rf /var/lib/apt/lists/*
+# 安装系统监控和诊断工具
+RUN add-apt-repository ppa:flexiondotorg/nvtop -y && \
+    apt-get update && \
+    apt-get install -y --no-install-recommends \
+    nvtop \
+    iotop \
+    iftop \
+    nethogs \
+    sysstat \
+    dstat
+# 安装Node.js和相关工具
+RUN curl -sL https://deb.nodesource.com/setup_21.x | bash - && \
+    apt-get install -y nodejs && \
+    npm install -g configurable-http-proxy \
+    pm2 \
+    forever
+# 设置工作目录
+WORKDIR /app
+# 创建用户，但给予最大权限
+RUN adduser --disabled-password --gecos '' --shell /bin/bash user && \
+    usermod -aG sudo user && \
+    echo "user ALL=(ALL:ALL) NOPASSWD:ALL" >> /etc/sudoers && \
+    echo "root ALL=(ALL:ALL) NOPASSWD:ALL" >> /etc/sudoers
+# 设置最大权限的环境变量
+ENV HOME=/home/user
+RUN mkdir -p $HOME/.cache $HOME/.config $HOME/.ssh && \
+    chmod -R 777 $HOME && \
+    chown -R user:user $HOME && \
+    chmod 777 /app && \
+    chmod 777 /tmp
+# 安装Conda并给予最大权限
+ENV CONDA_AUTO_UPDATE_CONDA=false \
+    PATH=$HOME/miniconda/bin:$PATH
+RUN curl -sLo /tmp/miniconda.sh https://repo.continuum.io/miniconda/Miniconda3-py39_4.10.3-Linux-x86_64.sh \
+ && chmod +x /tmp/miniconda.sh \
+ && bash /tmp/miniconda.sh -b -p $HOME/miniconda \
+ && rm /tmp/miniconda.sh \
+ && conda clean -ya \
+ && chmod -R 777 $HOME/miniconda
+WORKDIR $HOME/app
+# 系统级配置和最大权限设置
+RUN echo "alias sudo='sudo '" >> $HOME/.bashrc && \
+    echo "export PATH=$PATH:/usr/local/cuda/bin" >> $HOME/.bashrc && \
+    echo "export LD_LIBRARY_PATH=/usr/local/cuda/lib64:$LD_LIBRARY_PATH" >> $HOME/.bashrc && \
+    echo "umask 000" >> $HOME/.bashrc
+# 安装系统级Python包（root权限）
+RUN pip install --upgrade pip && \
+    pip install --no-cache-dir \
+    jupyter \
+    jupyterlab \
+    ipython \
+    notebook \
+    gpustat \
+    psutil
+# 创建数据目录并给予最大权限
+RUN mkdir -p /data /workspace /logs && \
+    chmod -R 777 /data /workspace /logs && \
+    chown -R user:user /data /workspace /logs
+# 设置SSH服务（允许远程root访问）
+RUN mkdir /var/run/sshd && \
+    echo 'root:password' | chpasswd && \
+    echo 'user:password' | chpasswd && \
+    sed -i 's/#PermitRootLogin prohibit-password/PermitRootLogin yes/' /etc/ssh/sshd_config && \
+    sed -i 's/#PasswordAuthentication yes/PasswordAuthentication yes/' /etc/ssh/sshd_config
+# 复制并执行最大权限的自启动脚本
+COPY --chown=root:root on_startup.sh /root/on_startup.sh
+COPY --chown=user:user on_startup.sh /home/user/on_startup.sh
+RUN chmod 777 /root/on_startup.sh /home/user/on_startup.sh
+# 执行系统级启动脚本（root权限）
+RUN bash /root/on_startup.sh
+# 复制应用代码并给予最大权限
+COPY --chown=user:user . $HOME/app
+RUN chmod -R 777 $HOME/app
+# 安装Python依赖（最大权限）
+COPY --chown=user:user requirements.txt $HOME/app/requirements.txt
+RUN pip install --no-cache-dir --upgrade -r $HOME/app/requirements.txt
+# 复制Jupyter登录页（允许无密码访问）
+COPY --chown=root:root login.html /usr/local/lib/python3.9/site-packages/jupyter_server/templates/login.html
+RUN chmod 666 /usr/local/lib/python3.9/site-packages/jupyter_server/templates/login.html
+# 设置最大权限的环境变量
+ENV PYTHONUNBUFFERED=1 \
+    GRADIO_ALLOW_FLAGGING=never \
+    GRADIO_NUM_PORTS=1 \
+    GRADIO_SERVER_NAME=0.0.0.0 \
+    GRADIO_THEME=huggingface \
+    SYSTEM=spaces \
+    SHELL=/bin/bash \
+    JUPYTER_ALLOW_INSECURE_WRITES=1 \
+    JUPYTER_ENABLE_LAB=yes \
+    NOTEBOOK_ALLOW_ROOT=1
+# 启动脚本（最大权限）
+COPY --chown=root:root start_server.sh /start_server.sh
+COPY --chown=user:user start_server.sh $HOME/app/start_server.sh
+RUN chmod 777 /start_server.sh $HOME/app/start_server.sh
+# 设置为user用户，但保留所有sudo权限
+USER user
+# 多端口启动支持（最大网络权限）
+EXPOSE 22 80 443 8888 7860 8000 8001 8002 9000 9001
+# 启动所有服务（最大权限）
+CMD ["sudo", "bash", "-c", "/start_server.sh && /home/user/app/start_server.sh && /bin/bash"]