Openstack Venv
The openstack-venv image is built from ContainerFiles/openstack-venv. This image has no dedicated CVE script; security updates are included during the build.
This container packages the Openstack Venv service for use in the stack. The build installs the required packages, applies security updates and configuration, and prepares the service for integration.
graph LR
A[Base image] --> B[Install packages]
B --> C[Apply CVE patches]
C --> D[Configure Openstack Venv]
D --> E[Container ready]
E --> Ceph_LibsContainerFile used for the build
# syntax = docker/dockerfile:1
# This Dockerfile uses multi-stage build to customize DEV and PROD images:
# https://docs.docker.com/develop/develop-images/multistage-build/
ARG PYTHON_VERSION=3.13
ARG OS_RELEASE=trixie
FROM python:${PYTHON_VERSION}-${OS_RELEASE}
ARG CACHEBUST=0
RUN python3 -m venv /var/lib/openstack
RUN /var/lib/openstack/bin/pip install --upgrade pip "setuptools>=80.9.0,<81"
# NOTE(cloudnull): We install the latest version of pyasyncore to ensure that we have
# the latest version of the asyncore module which is used by various
# services and will be carried until the asyncore module is removed
# other OpenStack dependencies.
RUN /var/lib/openstack/bin/pip install --upgrade pyasyncore
ENV PATH="/var/lib/openstack/bin:$PATH" \
PIP_NO_CACHE_DIR=1 \
PIP_DISABLE_PIP_VERSION_CHECK=1 \
PIP_DEFAULT_TIMEOUT=100 \
PYTHONUNBUFFERED=1
RUN export DEBIAN_FRONTEND=noninteractive \
&& apt-get update && apt-get upgrade -y \
&& apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false \
&& apt-get clean -y \
&& rm -rf /var/lib/apt/lists/* \
&& find / -name '*.pyc' -delete \
&& find / -name '*.pyo' -delete \
&& find / -name '__pycache__' -delete
# Set the working directory
WORKDIR /var/lib/openstack
Build Arguments
| Argument | Default |
|---|---|
| PYTHON_VERSION | 3.13 |
| OS_RELEASE | trixie |
| CACHEBUST | 0 |
Build Command
Dependencies
- Builds From Upstream Python
Container Image
The container image is available on Github Container Registry.