FROM arm64v8/ubuntu:22.04

# 避免交互式提示卡住构建
ENV DEBIAN_FRONTEND=noninteractive

RUN sed -i 's@//.*ports.ubuntu.com@//mirrors.aliyun.com@g' /etc/apt/sources.list
# -----------------------------------------------------------------------------
# 第一阶段：安装基础构建工具和 PPA 管理工具
# -----------------------------------------------------------------------------
RUN apt-get update && \
    apt-get install -y --no-install-recommends \
    sudo \
    build-essential \
    cmake \
	meson \
    ninja-build \
    git \
    gdb \
    vim \
    unzip \
    pkg-config \
    wget \
    software-properties-common \
    gpg-agent && \
    rm -rf /var/lib/apt/lists/*

# -----------------------------------------------------------------------------
# 第二阶段：添加 PPA 源
# -----------------------------------------------------------------------------
# 分开执行，确保网络问题或源失效能被单独定位
RUN apt-get update && apt-get install -y gnupg2 curl && \
    # 获取密钥 (如果 keyserver 连不上，多试几次或检查网络)
    gpg --keyserver keyserver.ubuntu.com --recv-keys 3CC0D9D1F3F0354B50D24F51F02122ECF25FB4D7 && \
    gpg --export 3CC0D9D1F3F0354B50D24F51F02122ECF25FB4D7 > /etc/apt/trusted.gpg.d/jjriek.gpg && \
    # 手动添加源地址 (直接指向 content 服务器，绕过 API)
    echo "deb [arch=arm64] https://ppa.launchpadcontent.net/jjriek/panfork-mesa/ubuntu jammy main" > /etc/apt/sources.list.d/panfork.list && \
    echo "deb [arch=arm64] https://ppa.launchpadcontent.net/jjriek/rockchip/ubuntu jammy main" > /etc/apt/sources.list.d/rockchip.list && \
    echo "deb [arch=arm64] https://ppa.launchpadcontent.net/jjriek/rockchip-multimedia/ubuntu jammy main" > /etc/apt/sources.list.d/multimedia.list && \
    apt-get update

# -----------------------------------------------------------------------------
# 第三阶段：安装核心依赖库 (Rockchip 专有库 & 基础开发库)
# -----------------------------------------------------------------------------
# 注意：每次 RUN 如果涉及 install，最好都先 update，因为层之间的 apt 缓存通常不保留
RUN apt-get update && \
    apt-get install -y --no-install-recommends \
    python3 \
    python3-pip \
    libssl-dev \
    libspdlog-dev \
    libsqlite3-dev \
    libboost-all-dev \
	libcurl4-openssl-dev \
    librockchip-mpp-dev \
    libdrm-dev \
    libeigen3-dev \
    espeak-ng-data \
    libespeak1 \
    libasound2-plugins \
    alsa-utils && \
    rm -rf /var/lib/apt/lists/*

COPY librga-1.10.0.zip /tmp/
RUN unzip -q /tmp/librga-1.10.0.zip -d /tmp/ && \
    # GitHub 的 zip 解压后通常带版本号文件夹，重命名一下方便操作
    # 如果解压出来直接是 librga 目录，请根据实际情况调整下面这行
    mv /tmp/librga-1.10.0 /tmp/librga && \
    \
    # --- [关键步骤] 1. 仅复制头文件 ---
    cp -r /tmp/librga/include/* /usr/include/ && \
    \
    # --- [严禁操作] 绝对不要执行下面这两行拷贝库的操作！---
    # cp -r /tmp/librga/libs/Linux/gcc-aarch64/* /usr/lib/ && \
    # ln -sf /usr/lib/librga.so /usr/lib/librga.so.2 && \
    \
    # --- [关键步骤] 2. 生成 .pc 文件 (骗过编译检查) ---
    mkdir -p /usr/lib/pkgconfig && \
    echo "prefix=/usr" > /usr/lib/pkgconfig/librga.pc && \
    echo "exec_prefix=\${prefix}" >> /usr/lib/pkgconfig/librga.pc && \
    echo "libdir=\${prefix}/lib" >> /usr/lib/pkgconfig/librga.pc && \
    echo "includedir=\${prefix}/include" >> /usr/lib/pkgconfig/librga.pc && \
    echo "" >> /usr/lib/pkgconfig/librga.pc && \
    echo "Name: librga" >> /usr/lib/pkgconfig/librga.pc && \
    echo "Description: Rockchip RGA library" >> /usr/lib/pkgconfig/librga.pc && \
    # 这里写 2.1.0 是为了匹配你板子的真实版本
    echo "Version: 2.1.0" >> /usr/lib/pkgconfig/librga.pc && \
    echo "Libs: -L\${libdir} -lrga" >> /usr/lib/pkgconfig/librga.pc && \
    echo "Cflags: -I\${includedir}" >> /usr/lib/pkgconfig/librga.pc && \
    \
    # 清理垃圾
    rm -rf /tmp/librga /tmp/librga-1.10.0.zip && \
    ldconfig
# -----------------------------------------------------------------------------
# 第四阶段：安装多媒体和视觉库 (GStreamer & OpenCV)
# -----------------------------------------------------------------------------
RUN apt-get update && \
    apt-get install -y --no-install-recommends \
    gstreamer1.0-rockchip \
    libgstreamer1.0-dev \
    libgstreamer-plugins-base1.0-dev \
    gstreamer1.0-alsa \
    gstreamer1.0-plugins-base \
    gstreamer1.0-plugins-good \
    gstreamer1.0-plugins-bad \
    gstreamer1.0-plugins-ugly \
    gstreamer1.0-libav \
    gstreamer1.0-tools \
    gstreamer1.0-x \
    gstreamer1.0-pulseaudio \
    gstreamer1.0-rtsp \
    libopencv-dev \
    nmap && \
    rm -rf /var/lib/apt/lists/*

# -----------------------------------------------------------------------------
# 第五阶段：用户与权限配置
# -----------------------------------------------------------------------------
RUN groupadd -r developers && \
    useradd -ms /bin/bash -g developers -G sudo dev && \
    # 允许组创建失败（如果组已存在），使用 || true
    (groupadd -g 20 dialout || true) && \
    (groupadd -g 44 video || true) && \
    (groupadd -g 110 render || true) && \
    (groupadd -g 29 render_alt || true) && \
    usermod -a -G dialout dev && \
    usermod -a -G video dev && \
    usermod -a -G render dev && \
    usermod -a -G audio dev && \
    echo "dev ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/dev-nopasswd

# 配置 umask
RUN echo "umask 0002" > /etc/profile.d/99-shared-umask.sh && \
    chmod +x /etc/profile.d/99-shared-umask.sh

# -----------------------------------------------------------------------------
# 第六阶段：编译第三方源码 (Paho MQTT)
# -----------------------------------------------------------------------------
# 建议：确保你有 .dockerignore 文件排除 .git 目录，否则 COPY . 会很慢
COPY . /tmp/build-context

RUN cd /tmp/build-context/external/paho.mqtt.c && \
    cmake -Bbuild -H. -DPAHO_WITH_SSL=ON -DPAHO_BUILD_SAMPLES=OFF -DPAHO_BUILD_DOCUMENTATION=OFF && \
    cmake --build build --target install && \
    cd /tmp/build-context/external/paho.mqtt.cpp && \
    cmake -Bbuild -H. -DPAHO_WITH_SSL=ON -DPAHO_BUILD_SAMPLES=OFF -DPAHO_BUILD_DOCUMENTATION=OFF && \
    cmake --build build --target install && \
    rm -rf /tmp/build-context

# -----------------------------------------------------------------------------
# 第七阶段：安装 RKNN SDK
# -----------------------------------------------------------------------------
COPY rknn_sdk/librknn_api/include/rknn_api.h /usr/local/include/
COPY rknn_sdk/rknn_server/aarch64/usr/bin/rknn_server /usr/bin/rknn_server
COPY rknn_sdk/librknn_api/aarch64/librknnrt.so /usr/lib/librknnrt.so
COPY rknn_sdk/librknn_api/aarch64/librknn_api.so /usr/lib/librknn_api.so
COPY rknn_sdk/whl/*.whl /tmp/rknn_wheels/

RUN pip3 install /tmp/rknn_wheels/*.whl && \
    rm -rf /tmp/rknn_wheels && \
    chmod +x /usr/bin/rknn_server && \
    ldconfig

# -----------------------------------------------------------------------------
# 第八阶段：Python 环境与运行准备
# -----------------------------------------------------------------------------
COPY piper_models/ /app/piper_models/

USER dev
# 这里的 --no-cache-dir 对于减小镜像体积很重要
RUN pip install --no-cache-dir --user -i https://mirrors.aliyun.com/pypi/simple/ \
    piper-tts \
    onvif-zeep \
    python-nmap \
    psutil \
    paramiko

RUN echo 'export PATH="$HOME/.local/bin:$PATH"' >> ~/.bash_profile

CMD ["/bin/bash"]