autowarefoundation
diff --git a/‎.hadolint.yaml‎
Lines changed: 2 additions & 0 deletions b/‎.hadolint.yaml‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎ansible/playbooks/autoware_requirements.yaml‎
Lines changed: 45 additions & 0 deletions b/‎ansible/playbooks/autoware_requirements.yaml‎
Lines changed: 45 additions & 0 deletions
diff --git a/‎docker-new/README.md‎
Lines changed: 127 additions & 0 deletions b/‎docker-new/README.md‎
Lines changed: 127 additions & 0 deletions
diff --git a/‎docker-new/base.Dockerfile‎
Lines changed: 63 additions & 0 deletions b/‎docker-new/base.Dockerfile‎
Lines changed: 63 additions & 0 deletions
diff --git a/‎docker-new/core.Dockerfile‎
Lines changed: 102 additions & 0 deletions b/‎docker-new/core.Dockerfile‎
Lines changed: 102 additions & 0 deletions
@@ -3,3 +3,5 @@ ignored:
   - DL3013 # Pin versions in pip. Instead of `pip install <package>`, use `pip install <package>==<version>`
   - DL3015 # Avoid additional packages by specifying `--no-install-recommends`
   - DL3009 # Delete the apt-get lists after installing something
+  - DL3002 # Last USER should not be root (multi-stage builds need root in intermediate stages)
+  - DL3004 # Do not use sudo (our images use passwordless sudo by design)
@@ -0,0 +1,45 @@
+- name: Autoware development environment
+  hosts: localhost
+  connection: local
+  vars:
+    rosdistro:
+  pre_tasks:
+    - name: Print configuration
+      ansible.builtin.debug:
+        msg:
+          - rosdistro: "{{ rosdistro }}"
+      tags: [always]
+
+  roles:
+    - role: autoware.dev_env.rmw_implementation
+      tags: [base, core, universe, rmw]
+
+    - role: autoware.dev_env.build_tools
+      tags: [core, universe, ccache]
+
+    - role: autoware.dev_env.dev_tools
+      tags: [core, universe, dev_tools]
+
+    - role: autoware.dev_env.ros2_dev_tools
+      tags: [core, universe, ros2_dev_tools]
+
+    - role: autoware.dev_env.acados
+      tags: [universe, acados]
+
+    - role: autoware.dev_env.geographiclib
+      tags: [universe, geographiclib]
+
+    - role: autoware.dev_env.qt5ct_setup
+      tags: [universe, qt5ct_setup]
+
+    - role: autoware.dev_env.cuda
+      tags: [universe, nvidia, cuda]
+
+    - role: autoware.dev_env.tensorrt
+      tags: [universe, nvidia, tensorrt]
+
+    - role: autoware.dev_env.spconv
+      tags: [universe, nvidia, spconv]
+
+    - role: autoware.dev_env.artifacts
+      tags: [universe, artifacts]
@@ -0,0 +1,127 @@
+# Run Autoware in Docker
+
+## Image Graph
+
+```mermaid
+graph TD
+    base(["base"])
+    base --> core-dependencies(["core-dependencies"])
+    core-dependencies --> core-devel(["core-devel"])
+    core-devel --> universe-dependencies(["universe-dependencies"])
+    universe-dependencies --> universe-dependencies-cuda(["universe-dependencies-cuda"])
+    universe-dependencies --> universe-devel(["universe-devel"])
+    universe-dependencies-cuda --> universe-devel-cuda(["universe-devel-cuda"])
+    base --> core(["core"])
+    core-devel -- " COPY /opt/autoware " --> core
+    core --> universe-runtime-dependencies(["universe-runtime-dependencies"])
+    universe-runtime-dependencies --> universe(["universe"])
+    universe-runtime-dependencies --> universe-cuda(["universe-cuda"])
+    universe-devel -- " COPY /opt/autoware " --> universe
+    universe-devel-cuda -- " COPY /opt/autoware " --> universe-cuda
+    classDef base fill: #e8e8e8, color: #333
+    classDef devel fill: #bbdefb, color: #333
+    classDef runtime fill: #c8e6c9, color: #333
+    classDef cuda fill: #e1bee7, color: #333
+    class base base
+    class core-dependencies,core-devel,universe-dependencies,universe-devel devel
+    class core,universe-runtime-dependencies,universe runtime
+    class universe-dependencies-cuda,universe-devel-cuda,universe-cuda cuda
+```
+
+## Images
+
+| Image                           | Description                                                                          | Use case                                                   |
+| ------------------------------- | ------------------------------------------------------------------------------------ | ---------------------------------------------------------- |
+| `base`                          | ROS base, sudo, pipx, ansible, RMW, user `aw`                                        | Foundation for all other images                            |
+| `core-dependencies`             | Build deps + compiled core packages (except autoware_core and autoware_rviz_plugins) | CI for autoware_core                                       |
+| `core-devel`                    | Adds autoware_core build on top of core-dependencies                                 | Development and CI for packages depending on autoware_core |
+| `core`                          | Runtime-only: rosdep exec deps + compiled core from core-devel                       | Lightweight core runtime                                   |
+| `universe-dependencies`         | Ansible universe roles + rosdep build deps for all of autoware                       | CI for autoware_universe                                   |
+| `universe-dependencies-cuda`    | Adds CUDA, TensorRT, spconv dev libs                                                 | CI for CUDA-dependent packages                             |
+| `universe-devel`                | Builds all universe sources (no CUDA)                                                | Development without GPU                                    |
+| `universe-devel-cuda`           | Builds all universe sources with CUDA                                                | Development with GPU                                       |
+| `universe-runtime-dependencies` | Runtime ansible roles + rosdep exec deps                                             | Foundation for final runtime images                        |
+| `universe`                      | Runtime image with compiled autoware (no CUDA)                                       | Deployment without GPU                                     |
+| `universe-cuda`                 | Runtime image with compiled autoware + CUDA runtime libs                             | Deployment with GPU                                        |
+
+## Build locally
+
+From the repository root. Targets beyond `base` require source repositories under `src/`:
+
+```bash
+# Clone source repositories (needed for core and universe targets)
+vcs import src < repositories/autoware.repos
+
+# Build all default targets (universe + universe-cuda)
+docker buildx bake -f docker-new/docker-bake.hcl
+
+# Build a specific target (dependencies are resolved automatically)
+docker buildx bake -f docker-new/docker-bake.hcl base
+docker buildx bake -f docker-new/docker-bake.hcl core-devel
+docker buildx bake -f docker-new/docker-bake.hcl universe
+docker buildx bake -f docker-new/docker-bake.hcl universe-cuda
+
+# Build for humble
+ROS_DISTRO=humble docker buildx bake -f docker-new/docker-bake.hcl base
+```
+
+## Usage
+
+```bash
+xhost +local:docker
+
+docker run --rm -it \
+  --net host \
+  --privileged \
+  --gpus all \
+  -e DISPLAY=$DISPLAY \
+  -e NVIDIA_DRIVER_CAPABILITIES=all \
+  -e NVIDIA_VISIBLE_DEVICES=all \
+  -e HOST_UID=$(id -u) \
+  -e HOST_GID=$(id -g) \
+  -e QT_X11_NO_MITSHM=1 \
+  -v /tmp/.X11-unix:/tmp/.X11-unix:rw \
+  -v $HOME/autoware_map:/home/aw/autoware_map \
+  -v $HOME/autoware_data:/home/aw/autoware_data \
+  -v $HOME/autoware:/home/aw/autoware \
+  -w /home/aw/autoware \
+  --runtime=nvidia \
+  autoware:universe-cuda-jazzy \
+  bash -c "source /opt/autoware/setup.bash && exec bash"
+```
+
+| Flag                                | Why                                                                                                  |
+| ----------------------------------- | ---------------------------------------------------------------------------------------------------- |
+| `--rm`                              | Remove container on exit to avoid accumulating stopped containers                                    |
+| `-it`                               | Interactive terminal (stdin + TTY)                                                                   |
+| `--net host`                        | Share host network stack so ROS 2 nodes can discover each other                                      |
+| `--privileged`                      | Access to host devices (sensors, CAN bus, etc.)                                                      |
+| `--gpus all`                        | Expose all GPUs to the container                                                                     |
+| `-e DISPLAY`                        | Forward X11 display for GUI applications (rviz2, rqt)                                                |
+| `-e NVIDIA_DRIVER_CAPABILITIES=all` | Enable all NVIDIA driver features (compute, graphics, video)                                         |
+| `-e NVIDIA_VISIBLE_DEVICES=all`     | Make all GPUs visible inside the container                                                           |
+| `-e HOST_UID/HOST_GID`              | Entrypoint remaps the `aw` user to match host UID/GID, avoiding permission issues on mounted volumes |
+| `-e QT_X11_NO_MITSHM`               | Disable MIT-SHM for Qt apps (shared memory doesn't work across container boundary)                   |
+| `-v /tmp/.X11-unix`                 | Mount X11 socket for GUI forwarding                                                                  |
+| `-v autoware_map`                   | Mount map data from host                                                                             |
+| `-v autoware_data`                  | Mount perception model data from host                                                                |
+| `-v autoware`                       | Mount source code for development                                                                    |
+| `-w /home/aw/autoware`              | Set working directory to the mounted source                                                          |
+| `--runtime=nvidia`                  | Use NVIDIA container runtime for GPU support                                                         |
+
+Or run without volume mounting:
+
+```bash
+docker run --rm -it \
+  --net host \
+  autoware:core-jazzy
+```
+
+The default CycloneDDS config uses the `lo` interface (localhost only). To override it, mount your own config:
+
+```bash
+docker run --rm -it \
+  --net host \
+  -v /path/to/your/cyclonedds.xml:/home/aw/cyclonedds.xml \
+  autoware:universe-cuda-jazzy
+```
@@ -0,0 +1,63 @@
+# check=skip=InvalidDefaultArgInFrom
+ARG ROS_DISTRO
+
+FROM ros:${ROS_DISTRO}-ros-base AS base
+SHELL ["/bin/bash", "-o", "pipefail", "-c"]
+
+ARG ROS_DISTRO
+ARG USERNAME=aw
+
+RUN rm -f /etc/apt/apt.conf.d/docker-clean && \
+    echo 'Binary::apt::APT::Keep-Downloaded-Packages "true";' > /etc/apt/apt.conf.d/keep-cache && \
+    echo 'APT::Install-Recommends "false";' > /etc/apt/apt.conf.d/99-no-recommends && \
+    echo 'APT::Install-Suggests "false";' >> /etc/apt/apt.conf.d/99-no-recommends
+RUN --mount=type=cache,target=/var/cache/apt,sharing=locked \
+    --mount=type=cache,target=/var/lib/apt/lists,sharing=locked \
+    apt-get update && \
+    apt-get install -y --no-install-recommends \
+    sudo \
+    pipx \
+    bash-completion \
+    gosu
+
+# Remove default ubuntu user (present since 24.04, occupies UID 1000)
+RUN userdel -r ubuntu 2>/dev/null || true && \
+    useradd -m -s /bin/bash -U ${USERNAME} && \
+    echo "${USERNAME} ALL=(ALL) NOPASSWD:ALL" >/etc/sudoers.d/90-user-nopasswd && \
+    chmod 0440 /etc/sudoers.d/90-user-nopasswd && \
+    sed -i 's/^#force_color_prompt=yes/force_color_prompt=yes/' /home/${USERNAME}/.bashrc
+
+USER ${USERNAME}
+WORKDIR /home/${USERNAME}
+
+# Make pipx shims visible during build steps and at runtime
+ENV PATH="/home/${USERNAME}/.local/bin:${PATH}"
+
+ENV ANSIBLE_COLLECTIONS_PATH="/home/${USERNAME}/.ansible/collections"
+
+# hadolint ignore=DL3003
+RUN --mount=type=bind,source=ansible-galaxy-requirements.yaml,target=/tmp/ansible/ansible-galaxy-requirements.yaml \
+    --mount=type=bind,source=ansible,target=/tmp/ansible/ansible \
+    --mount=type=cache,target=/var/cache/apt,sharing=locked \
+    --mount=type=cache,target=/var/lib/apt/lists,sharing=locked \
+    --mount=type=cache,target=/home/aw/.cache/pipx,uid=1000,gid=1000 \
+    pipx install --include-deps "ansible==10.*" && \
+    cd /tmp/ansible && \
+    ansible-galaxy collection install -f -r ansible-galaxy-requirements.yaml && \
+    ansible-playbook autoware.dev_env.autoware_requirements \
+      --tags rmw \
+      -e rosdistro=${ROS_DISTRO} && \
+    pipx uninstall ansible
+
+COPY docker-new/files/cyclonedds.xml /home/${USERNAME}/cyclonedds.xml
+ENV CYCLONEDDS_URI=file:///home/${USERNAME}/cyclonedds.xml
+
+# Entrypoint runs as root so it can adjust UID/GID, then drops to user
+USER root
+COPY --chmod=755 docker-new/docker-entrypoint.sh /docker-entrypoint.sh
+
+ENV ROS_DISTRO=${ROS_DISTRO}
+ENV USERNAME=${USERNAME}
+
+ENTRYPOINT ["/docker-entrypoint.sh"]
+CMD ["/bin/bash"]
@@ -0,0 +1,102 @@
+# syntax=docker/dockerfile:1
+# check=skip=InvalidDefaultArgInFrom
+ARG BASE_IMAGE
+
+FROM ${BASE_IMAGE} AS core-dependencies
+SHELL ["/bin/bash", "-o", "pipefail", "-c"]
+
+USER ${USERNAME}
+RUN --mount=type=cache,target=/var/cache/apt,sharing=locked \
+    --mount=type=cache,target=/var/lib/apt/lists,sharing=locked \
+    --mount=type=cache,target=/home/aw/.cache/pip,uid=1000,gid=1000 \
+    --mount=type=cache,target=/home/aw/.cache/pipx,uid=1000,gid=1000 \
+    pipx install --include-deps "ansible==10.*" && \
+    ansible-playbook autoware.dev_env.autoware_requirements \
+      --tags core \
+      --skip-tags base \
+      -e "rosdistro=${ROS_DISTRO}" && \
+    pipx uninstall ansible
+USER root
+
+ENV CC="/usr/lib/ccache/gcc"
+ENV CXX="/usr/lib/ccache/g++"
+ENV CCACHE_DIR="/home/aw/.ccache"
+
+COPY --parents --chown=${USERNAME}:${USERNAME} src/core/**/package.xml /tmp/autoware/
+RUN rm -rf /tmp/autoware/src/core/autoware_core /tmp/autoware/src/core/autoware_rviz_plugins
+
+RUN --mount=type=cache,target=/var/cache/apt,sharing=locked \
+    --mount=type=cache,target=/var/lib/apt/lists,sharing=locked \
+    apt-get update && \
+    . "/opt/ros/${ROS_DISTRO}/setup.sh" && \
+    rosdep install -y --from-paths /tmp/autoware/src/core \
+      --ignore-src \
+      --rosdistro "${ROS_DISTRO}" \
+      --dependency-types=build \
+      --dependency-types=build_export \
+      --dependency-types=buildtool \
+      --dependency-types=buildtool_export \
+      --dependency-types=test
+
+RUN --mount=type=bind,source=src/core,target=/tmp/autoware/src/core,rw \
+    --mount=type=cache,target=/home/aw/.ccache,uid=1000,gid=1000 \
+    rm -rf /tmp/autoware/src/core/autoware_core \
+           /tmp/autoware/src/core/autoware_rviz_plugins && \
+    . "/opt/ros/${ROS_DISTRO}/setup.sh" && \
+    colcon build \
+      --base-paths /tmp/autoware/src/core \
+      --install-base /opt/autoware \
+      --cmake-args -DCMAKE_BUILD_TYPE=Release && \
+    rm -rf build log
+
+FROM core-dependencies AS core-devel
+
+COPY --parents --chown=${USERNAME}:${USERNAME} \
+    src/core/autoware_core/**/package.xml \
+    src/core/autoware_rviz_plugins/**/package.xml \
+    /tmp/autoware/
+
+RUN --mount=type=cache,target=/var/cache/apt,sharing=locked \
+    --mount=type=cache,target=/var/lib/apt/lists,sharing=locked \
+    apt-get update && \
+    . "/opt/ros/${ROS_DISTRO}/setup.sh" && \
+    . /opt/autoware/setup.sh && \
+    rosdep install -y --from-paths /tmp/autoware/src/core \
+      --ignore-src \
+      --rosdistro "${ROS_DISTRO}" \
+      --dependency-types=build \
+      --dependency-types=build_export \
+      --dependency-types=buildtool \
+      --dependency-types=buildtool_export \
+      --dependency-types=test
+
+RUN --mount=type=bind,source=src/core/autoware_core,target=/tmp/autoware/src/core/autoware_core \
+    --mount=type=bind,source=src/core/autoware_rviz_plugins,target=/tmp/autoware/src/core/autoware_rviz_plugins \
+    --mount=type=cache,target=/home/aw/.ccache,uid=1000,gid=1000 \
+    . "/opt/ros/${ROS_DISTRO}/setup.sh" && \
+    . /opt/autoware/setup.sh && \
+    colcon build \
+      --base-paths /tmp/autoware/src/core/autoware_core \
+                   /tmp/autoware/src/core/autoware_rviz_plugins \
+      --install-base /opt/autoware \
+      --cmake-args -DCMAKE_BUILD_TYPE=Release && \
+    rm -rf build log
+
+FROM ${BASE_IMAGE} AS core
+ENV AUTOWARE_RUNTIME=1
+
+COPY --from=core-devel /opt/autoware /opt/autoware
+RUN find /opt/autoware -name '*.so' -exec strip --strip-unneeded {} +
+
+COPY --parents src/core/**/package.xml /tmp/
+
+RUN --mount=type=cache,target=/var/cache/apt,sharing=locked \
+    --mount=type=cache,target=/var/lib/apt/lists,sharing=locked \
+    apt-get update && \
+    . "/opt/ros/${ROS_DISTRO}/setup.sh" && \
+    sudo apt-get install -y "ros-${ROS_DISTRO}-topic-tools" && \
+    rosdep install -y --from-paths /tmp/src/core \
+      --dependency-types=exec \
+      --ignore-src \
+      --rosdistro "${ROS_DISTRO}" && \
+    rm -rf /tmp/src