dangerzone/install/common/build-image.py

import gzip
import os
import platform
import subprocess
from pathlib import Path

BUILD_CONTEXT = "dangerzone/"
TAG = "dangerzone.rocks/dangerzone:latest"
REQUIREMENTS_TXT = "container-pip-requirements.txt"
if platform.system() in ["Darwin", "Windows"]:
    CONTAINER_RUNTIME = "docker"
elif platform.system() == "Linux":
    CONTAINER_RUNTIME = "podman"


def main():
    print("exporting container pip dependencies")
    export_container_pip_dependencies()

    print("Building container image")
    subprocess.run(
        [
            CONTAINER_RUNTIME,
            "build",
            "--pull",
            BUILD_CONTEXT,
            "--build-arg",
            f"REQUIREMENTS_TXT={REQUIREMENTS_TXT}",
            "-f",
            "Dockerfile",
            "--tag",
            TAG,
        ]
    )

    print("Saving container image")
    cmd = subprocess.Popen(
        [
            CONTAINER_RUNTIME,
            "save",
            TAG,
        ],
        stdout=subprocess.PIPE,
    )

    print("Compressing container image")
    chunk_size = 4 << 12
    with gzip.open("share/container.tar.gz", "wb") as gzip_f:
        while True:
            chunk = cmd.stdout.read(chunk_size)
            if len(chunk) > 0:
                gzip_f.write(chunk)
            else:
                break

    cmd.wait(5)

    print("Looking up the image id")
    image_id = subprocess.check_output(
        [
            CONTAINER_RUNTIME,
            "image",
            "list",
            "--format",
            "{{.ID}}",
            TAG,
        ],
        text=True,
    )
    with open("share/image-id.txt", "w") as f:
        f.write(image_id)


def export_container_pip_dependencies():
    try:
        container_requirements_txt = subprocess.check_output(
            ["poetry", "export", "--only", "container"], universal_newlines=True
        )
    except subprocess.CalledProcessError as e:
        print("FAILURE", e.returncode, e.output)
    print(f"REQUIREMENTS: {container_requirements_txt}")
    # XXX Export container dependencies and exclude pymupdfb since it is not needed in container
    req_txt_pymupdfb_stripped = container_requirements_txt.split("pymupdfb")[0]
    with open(Path(BUILD_CONTEXT) / REQUIREMENTS_TXT, "w") as f:
        f.write(req_txt_pymupdfb_stripped)


if __name__ == "__main__":
    main()