Remove bundled python dependencies in favour of pip installed ones

pull/107/head
Stefano Ortolani 2024-08-06 12:37:15 +01:00
parent 1a2a515fe0
commit 2f24067089
4 changed files with 16 additions and 2 deletions

View File

@ -102,6 +102,7 @@ FROM php-base AS python-build
ARG PYPI_MIXBOX_VERSION ARG PYPI_MIXBOX_VERSION
ARG PYPI_CYBOX_VERSION ARG PYPI_CYBOX_VERSION
ARG PYPI_PYMISP_VERSION ARG PYPI_PYMISP_VERSION
ARG PYPI_MISP_STIX_VERSION
RUN apt-get install -y --no-install-recommends \ RUN apt-get install -y --no-install-recommends \
git \ git \
@ -129,7 +130,7 @@ EOF
# 2. If missing, add it (with optional version from env (defaults to empty string)) # 2. If missing, add it (with optional version from env (defaults to empty string))
# 3. If present, replace with our specified version if it exists, otherwise leave # 3. If present, replace with our specified version if it exists, otherwise leave
# the upstream version alone. # the upstream version alone.
set -- "redis" "lief" "pydeep2" "python-magic" "misp-lib-stix2" "maec" "mixbox" "cybox" "pymisp" set -- "redis" "lief" "pydeep2" "python-magic" "misp-lib-stix2" "maec" "mixbox" "cybox" "pymisp" "misp-stix"
for mod in "$@"; do for mod in "$@"; do
mod_version_var=$(echo "PYPI_${mod}_VERSION" | tr '[:lower:]' '[:upper:]' | tr '-' '_') mod_version_var=$(echo "PYPI_${mod}_VERSION" | tr '[:lower:]' '[:upper:]' | tr '-' '_')
mod_version=$(eval "echo \"\$$mod_version_var\"") mod_version=$(eval "echo \"\$$mod_version_var\"")
@ -151,11 +152,18 @@ EOF
pip wheel --no-cache-dir -w /wheels/ -r /var/www/MISP/requirements.txt pip wheel --no-cache-dir -w /wheels/ -r /var/www/MISP/requirements.txt
# Remove files we do not care for # Remove files we do not care for
rm -r /var/www/MISP/PyMISP
find /var/www/MISP/INSTALL/* ! -name 'MYSQL.sql' -type f -exec rm {} + find /var/www/MISP/INSTALL/* ! -name 'MYSQL.sql' -type f -exec rm {} +
find /var/www/MISP/INSTALL/* ! -name 'MYSQL.sql' -type l -exec rm {} + find /var/www/MISP/INSTALL/* ! -name 'MYSQL.sql' -type l -exec rm {} +
# Remove most files in .git - we do not use git functionality in docker # Remove most files in .git - we do not use git functionality in docker
find /var/www/MISP/.git/* ! -name HEAD -exec rm -rf {} + find /var/www/MISP/.git/* ! -name HEAD -exec rm -rf {} +
# Remove libraries' submodules
rm -r /var/www/MISP/PyMISP
rm -r /var/www/MISP/app/files/scripts/cti-python-stix2
rm -r /var/www/MISP/app/files/scripts/misp-stix
rm -r /var/www/MISP/app/files/scripts/mixbox
rm -r /var/www/MISP/app/files/scripts/python-cybox
rm -r /var/www/MISP/app/files/scripts/python-maec
rm -r /var/www/MISP/app/files/scripts/python-stix
EOF EOF

View File

@ -38,6 +38,10 @@ variable "PYPI_PYMISP_VERSION" {
default = "" default = ""
} }
variable "PYPI_MISP_STIX" {
default = ""
}
variable "NAMESPACE" { variable "NAMESPACE" {
default = null default = null
} }

View File

@ -57,6 +57,7 @@ services:
- PYPI_MIXBOX_VERSION=${PYPI_MIXBOX_VERSION} - PYPI_MIXBOX_VERSION=${PYPI_MIXBOX_VERSION}
- PYPI_CYBOX_VERSION=${PYPI_CYBOX_VERSION} - PYPI_CYBOX_VERSION=${PYPI_CYBOX_VERSION}
- PYPI_PYMISP_VERSION=${PYPI_PYMISP_VERSION} - PYPI_PYMISP_VERSION=${PYPI_PYMISP_VERSION}
- PYPI_MISP_STIX_VERSION=${PYPI_MISP_STIX_VERSION}
depends_on: depends_on:
redis: redis:
condition: service_healthy condition: service_healthy

View File

@ -17,6 +17,7 @@ LIBFAUP_COMMIT=3a26d0a
# PYPI_MIXBOX_VERSION="==1.0.*" # PYPI_MIXBOX_VERSION="==1.0.*"
# PYPI_CYBOX_VERSION="==2.1.*" # PYPI_CYBOX_VERSION="==2.1.*"
# PYPI_PYMISP_VERSION="==2.4.178" # PYPI_PYMISP_VERSION="==2.4.178"
# PYPI_MISP_STIX_VERSION"==2.4.194"
# CORE_COMMIT takes precedence over CORE_TAG # CORE_COMMIT takes precedence over CORE_TAG
# CORE_COMMIT=c56d537 # CORE_COMMIT=c56d537