diff --git a/build/docker/milvus/amazonlinux2023/Dockerfile b/build/docker/milvus/amazonlinux2023/Dockerfile index a9ab05b6e4..07e5024984 100644 --- a/build/docker/milvus/amazonlinux2023/Dockerfile +++ b/build/docker/milvus/amazonlinux2023/Dockerfile @@ -34,6 +34,12 @@ ENV LD_LIBRARY_PATH=/milvus/lib:$LD_LIBRARY_PATH:/usr/lib ENV LD_PRELOAD=${MILVUS_ASAN_LIB}:/milvus/lib/libjemalloc.so ENV MALLOC_CONF=background_thread:true +# Change user to milvus +RUN groupadd -r milvus && useradd -r -g milvus milvus && \ + mkdir -p /var/lib/milvus && \ + chown -R milvus:milvus /milvus /var/lib/milvus +USER milvus:milvus + ENTRYPOINT ["/tini", "--"] WORKDIR /milvus diff --git a/build/docker/milvus/gpu/ubuntu20.04/Dockerfile b/build/docker/milvus/gpu/ubuntu20.04/Dockerfile index 1ea3764691..0bf22fc40c 100644 --- a/build/docker/milvus/gpu/ubuntu20.04/Dockerfile +++ b/build/docker/milvus/gpu/ubuntu20.04/Dockerfile @@ -24,3 +24,9 @@ ENV PATH=/milvus/bin:$PATH ENV LD_LIBRARY_PATH=/milvus/lib:$LD_LIBRARY_PATH:/usr/lib ENV LD_PRELOAD=/milvus/lib/libjemalloc.so ENV MALLOC_CONF=background_thread:true + +# Change user to milvus +RUN groupadd -r milvus && useradd -r -g milvus milvus && \ + mkdir -p /var/lib/milvus && \ + chown -R milvus:milvus /milvus /var/lib/milvus +USER milvus:milvus diff --git a/build/docker/milvus/gpu/ubuntu22.04/Dockerfile b/build/docker/milvus/gpu/ubuntu22.04/Dockerfile index b001ab7b91..f86a75a235 100644 --- a/build/docker/milvus/gpu/ubuntu22.04/Dockerfile +++ b/build/docker/milvus/gpu/ubuntu22.04/Dockerfile @@ -25,6 +25,12 @@ ENV LD_LIBRARY_PATH=/milvus/lib:$LD_LIBRARY_PATH:/usr/lib ENV LD_PRELOAD=/milvus/lib/libjemalloc.so ENV MALLOC_CONF=background_thread:true +# Change user to milvus +RUN groupadd -r milvus && useradd -r -g milvus milvus && \ + mkdir -p /var/lib/milvus && \ + chown -R milvus:milvus /milvus /var/lib/milvus +USER milvus:milvus + ENTRYPOINT ["/tini", "--"] WORKDIR /milvus diff --git a/build/docker/milvus/rockylinux8/Dockerfile b/build/docker/milvus/rockylinux8/Dockerfile index 89cb91a747..f138bf1828 100644 --- a/build/docker/milvus/rockylinux8/Dockerfile +++ b/build/docker/milvus/rockylinux8/Dockerfile @@ -38,6 +38,12 @@ ENV LD_LIBRARY_PATH=/milvus/lib:$LD_LIBRARY_PATH:/usr/lib ENV LD_PRELOAD=${MILVUS_ASAN_LIB}:/milvus/lib/libjemalloc.so ENV MALLOC_CONF=background_thread:true +# Change user to milvus +RUN groupadd -r milvus && useradd -r -g milvus milvus && \ + mkdir -p /var/lib/milvus && \ + chown -R milvus:milvus /milvus /var/lib/milvus +USER milvus:milvus + ENTRYPOINT ["/tini", "--"] WORKDIR /milvus diff --git a/build/docker/milvus/ubuntu20.04/Dockerfile b/build/docker/milvus/ubuntu20.04/Dockerfile index c002d0fb01..af73f9a0ec 100644 --- a/build/docker/milvus/ubuntu20.04/Dockerfile +++ b/build/docker/milvus/ubuntu20.04/Dockerfile @@ -39,6 +39,12 @@ ENV LD_LIBRARY_PATH=/milvus/lib:$LD_LIBRARY_PATH:/usr/lib ENV LD_PRELOAD=${MILVUS_ASAN_LIB}:/milvus/lib/libjemalloc.so ENV MALLOC_CONF=background_thread:true +# Change user to milvus +RUN groupadd -r milvus && useradd -r -g milvus milvus && \ + mkdir -p /var/lib/milvus && \ + chown -R milvus:milvus /milvus /var/lib/milvus +USER milvus:milvus + ENTRYPOINT ["/tini", "--"] WORKDIR /milvus/ diff --git a/build/docker/milvus/ubuntu22.04/Dockerfile b/build/docker/milvus/ubuntu22.04/Dockerfile index 61243b35f6..4e58e8eda0 100644 --- a/build/docker/milvus/ubuntu22.04/Dockerfile +++ b/build/docker/milvus/ubuntu22.04/Dockerfile @@ -39,6 +39,14 @@ ENV LD_LIBRARY_PATH=/milvus/lib:$LD_LIBRARY_PATH:/usr/lib ENV LD_PRELOAD=${MILVUS_ASAN_LIB}:/milvus/lib/libjemalloc.so ENV MALLOC_CONF=background_thread:true +# Change user to milvus +ENV ASAN_OPTIONS=detect_leaks=0 +RUN groupadd -r milvus && useradd -r -g milvus milvus && \ + mkdir -p /var/lib/milvus && \ + chown -R milvus:milvus /milvus /var/lib/milvus +ENV ASAN_OPTIONS=detect_leaks=1 +USER milvus:milvus + ENTRYPOINT ["/tini", "--"] WORKDIR /milvus/