Dockerfile - set ENV to result of command

Question

Is it possible to set a docker ENV variable to the result of a command? Like:

ENV MY_VAR whoami

i want MY_VAR to get the value "root" or whatever whoami returns

See https://stackoverflow.com/questions/33201271/parse-a-variable-with-the-result-of-a-command-in-dockerfile — akhmed, Jan 24 '16 at 04:59

score 47 · Answer 1 · edited Feb 24 '18 at 04:51

47

As an addition to DarkSideF answer.

You should be aware that each line/command in Dockerfile is ran in another container.

You can do something like this:

RUN export bleah=$(hostname -f);echo $bleah;

This is run in a single container.

edited Feb 24 '18 at 04:51

soywod

4,377
3
26
47

answered Jun 16 '16 at 13:15

Dimitrie Mititelu

995
7
10

104

Just to clarify - `$bleah` is **not** available anywhere outside this RUN command, not even on the next line in the same dockerfile, let alone in another image it's based off. Really obvious missing feature from docker here, it does look like writing to and reading from a file is the only way to actually store (dynamic) variables in images and pass them between images, which seems super hacky. – davnicwil Mar 03 '20 at 21:43

score 31 · Answer 2 · answered Jan 26 '17 at 01:36

31

At this time, a command result can be used with RUN export, but cannot be assigned to an ENV variable.

Known issue: https://github.com/docker/docker/issues/29110

answered Jan 26 '17 at 01:36

Kur00Hazama

619
6
4

score 24 · Answer 3 · edited Apr 13 '17 at 12:36

24

I had same issue and found way to set environment variable as result of function by using RUN command in dockerfile.

For example i need to set SECRET_KEY_BASE for Rails app just once without changing as would when i run:

docker run  -e SECRET_KEY_BASE="$(openssl rand -hex 64)"

Instead it i write to Dockerfile string like:

RUN bash -l -c 'echo export SECRET_KEY_BASE="$(openssl rand -hex 64)" >> /etc/bash.bashrc'

and my env variable available from root, even after bash login. or may be

RUN /bin/bash -l -c 'echo export SECRET_KEY_BASE="$(openssl rand -hex 64)" > /etc/profile.d/docker_init.sh'

then it variable available in CMD and ENTRYPOINT commands

Docker cache it as layer and change only if you change some strings before it.

You also can try different ways to set environment variable.

edited Apr 13 '17 at 12:36

Community

1
1

answered Jun 16 '16 at 09:38

DarkSideF

453
3
11

1

Is /etc/profile.d/docker_init.sh still a thing? This answer is the only mention of it that I can find with Google, and it doesn't work for me. Was it perhaps part of a Docker execution engine in 2016 that is no longer current? – SigmaX Jan 09 '20 at 15:28
3

@SigmaX It's not a docker thing, it's more a **Linux** thing. Any `*.sh` file inside `/etc/profile.d/` is used to populate the environment – Madacol Jan 24 '20 at 17:53

score 20 · Answer 4 · edited Jul 26 '23 at 13:46

20

If you run commands using sh as it seems to be the default in docker.

You can do something like this:

RUN echo "export VAR=`command`" >> /envfile
RUN . /envfile; echo $VAR
....
RUN . /envfile; echo $VAR # can be re-used

This way, you build a env file by redirecting output to the env file of your choice. It's more explicit than having to define profiles and so on.

Then as the file will be available to other layers, it will be possible to source it and use the variables being exported. The way you create the env file isn't important.

Then when you're done you could remove the file to make it unavailable to the running container.

The . is how the env file is loaded.

edited Jul 26 '23 at 13:46

Bill

2,494
5
26
61

answered Jul 07 '21 at 17:11

Loïc Faure-Lacroix

13,220
6
67
99

This always comes handy! – Marcello DeSales Dec 09 '21 at 01:01
1

this answer is underrated. – Benjamin Nov 22 '22 at 13:29
This results in a permissions issue, how do you fix it? – thus__ Jul 09 '23 at 16:00
1

@thus__ try adding `#!/bin/sh` at the top of your `envfile`, and `["chmod", "+x", "/envfile"]` to your Dockerfile – John F Aug 15 '23 at 13:30

score 16 · Answer 5 · answered Apr 25 '18 at 18:50

This answer is a response to @DarkSideF,

The method he is proposing is the following, in Dockerfile :

RUN bash -l -c 'echo export SECRET_KEY_BASE="$(openssl rand -hex 64)" >> /etc/bash.bashrc'

( adding an export in the /etc/bash.bashrc)

It is good but the environment variable will only be available for the process /bin/bash, and if you try to run your docker application for example a Node.js application, /etc/bash.bashrc will completely be ignored and your application won't have a single clue what SECRET_KEY_BASE is when trying to access process.env.SECRET_KEY_BASE.

That is the reason why ENV keyword is what everyone is trying to use with a dynamic command because every time you run your container or use an exec command, Docker will check ENV and pipe every value in the process currently run (similar to -e).

One solution is to use a wrapper (credit to @duglin in this github issue). Have a wrapper file (e.g. envwrapper) in your project root containing :

#!/bin/bash
export SECRET_KEY_BASE="$(openssl rand -hex 64)"
export ANOTHER_ENV "hello world"
$*

and then in your Dockerfile :

...
COPY . .
RUN mv envwrapper /bin/.
RUN chmod 755 /bin/envwrapper
CMD envwrapper myapp

score 9 · Answer 6 · answered Dec 05 '18 at 00:10

As an addition to @DarkSideF's answer, if you want to reuse the result of a previous command in your Dockerfile during in the build process, you can use the following workaround:

run a command, store the result in a file
use command substitution to get the previous result from that file into another command

For example :

RUN echo "bla" > ./result
RUN echo $(cat ./result)

For something cleaner, you can use also the following gist which provides a small CLI called envstore.py :

RUN envstore.py set MY_VAR bla
RUN echo $(envstore.py get MY_VAR)

Or you can use python-dotenv library which has a similar CLI.

I am having difficulty with this interacting with `ENV`. Works with `RUN` though. — John, Apr 03 '21 at 16:11

kat · Answer 7 · 2019-04-09T19:53:54.757

Not sure if this is what you were looking for, but in order to inject ENV vars or ARGS into your .Dockerfile build this pattern works.

in your my_build.sh:

echo getting version of osbase image to build from
OSBASE=$(grep "osbase_version" .version | sed 's/^.*: //')

echo building docker
docker build -f \
--build-arg ARTIFACT_TAG=$OSBASE \
PATH_TO_MY.Dockerfile \
-t my_artifact_home_url/bucketname:$TAG .

for getting an ARG in your .Dockerfile the snippet might look like this:

FROM scratch
ARG ARTIFACT_TAG
FROM my_artifact_home_url/bucketname:${ARTIFACT_TAG}

alternatively for getting an ENV in your .Dockerfile the snippet might look like this:

FROM someimage:latest
ARG ARTIFACT_TAG
ENV ARTIFACT_TAG=${ARTIFACT_TAG}

the idea is you run the shell script and that calls the .Dockerfile with the args passed in as options on the build.

score 0 · Answer 8 · answered Apr 15 '23 at 19:36

ARG KUBERNETES_VERSION="v1.25.2"
ENV ARCH_CMD='eval uname -m | grep -q x86_64 && echo "amd64" || echo "arm64"'
RUN curl -k -L "https://dl.k8s.io/release/$KUBERNETES_VERSION/bin/linux/$($ARCH_CMD)/kubectl" -o /usr/local/bin/kubectl \
    && chmod +x /usr/local/bin/kubectl

basically store the command along with eval in an environment variable for later easy access but the result of the command itself is not saved as a

Dockerfile - set ENV to result of command

8 Answers8

Linked

Related