Allow passwordless sudo in docker images (#17473)
This will allow to run commands like apt with other users besides root.
Allowing us to install stuff not only when the image is being created.
Signed-off-by: Boian Petkantchin <boian.petkantchin@amd.com>
diff --git a/build_tools/docker/context/install_basics.sh b/build_tools/docker/context/install_basics.sh
index d0ffda6..d15f18e 100755
--- a/build_tools/docker/context/install_basics.sh
+++ b/build_tools/docker/context/install_basics.sh
@@ -12,4 +12,5 @@
# (https://docs.docker.com/develop/develop-images/multistage-build/) but it
# turns out that Dockerfile is a thoroughly non-composable awful format and that
# doesn't actually work that well. These deps are pretty small.
-apt-get update && apt-get install -y git unzip wget curl gnupg2 lsb-release
+apt-get update && apt-get install -y git unzip wget curl gnupg2 lsb-release sudo
+echo "ALL ALL=NOPASSWD: ALL" > "/etc/sudoers.d/iree"
diff --git a/build_tools/docker/dockerfiles/base-bleeding-edge.Dockerfile b/build_tools/docker/dockerfiles/base-bleeding-edge.Dockerfile
index fadf136..bc4b028 100644
--- a/build_tools/docker/dockerfiles/base-bleeding-edge.Dockerfile
+++ b/build_tools/docker/dockerfiles/base-bleeding-edge.Dockerfile
@@ -19,19 +19,8 @@
######## Basic stuff ########
WORKDIR /install-basics
-# Useful utilities for building child images. Best practices would tell us to
-# use multi-stage builds
-# (https://docs.docker.com/develop/develop-images/multistage-build/) but it
-# turns out that Dockerfile is a thoroughly non-composable awful format and that
-# doesn't actually work that well. These deps are pretty small.
-RUN apt-get update \
- && apt-get install -y \
- git \
- unzip \
- wget \
- curl \
- gnupg2 \
- lsb-release
+COPY build_tools/docker/context/install_basics.sh ./
+RUN ./install_basics.sh && rm -rf /install-basics
# Install the latest supported compiler tools
ARG LLVM_VERSION=19
