Support linux/arm64/v8 for most Ubuntu-based images

[ianks]

Previously, many images only provided linux/amd64 builds, which meant that Apple silicon folks were left to Rosetta or qemu emulation when cross-compiling. Although Rosetta's x86_64 emulation is a remarkable feat of engineering, nothing beats the performance of using the linux/arm64/v8 on Apple silicon.

This PR adds support to a bunch of Ubuntu-based images for linux/arm64/v8 builds. I haven't been able to build all of them yet... mostly just tested the x86_64-unknown-linux-gnu container. But I plan to squash any issues that arise from CI. Theoretically, it shouldn't be too hard since the core logic is the same across all images.

New Platforms Supported

• aarch64-unknown-linux-gnu
• armv5te-unknown-linux-gnueabi
• armv7-unknown-linux-gnueabi
• i586-unknown-linux-gnu
• i686-unknown-linux-gnu
• mips-unknown-linux-gnu
• mips64-unknown-linux-gnuabi64
• mips64el-unknown-linux-gnuabi64
• mipsel-unknown-linux-gnu
• powerpc-unknown-linux-gnu
• powerpc64-unknown-linux-gnu
• powerpc64le-unknown-linux-gnu
• riscv64gc-unknown-linux-gnu
• s390x-unknown-linux-gnu
• sparc64-unknown-linux-gnu
• thumbv7neon-unknown-linux-gnueabihf
• x86_64-unknown-linux-gnu

[ianks]

I decided to move these variable above apt-cross-essential.sh, since I wanted to use CROSS_TOOLCHAIN_PREFIX to test for pre-installed gfortran (which was causing some headaches).

[ianks]

I don't know why, but apt was unable to find the original 5.10.0-26-amd64 package. Maybe it disappeared or something? Anyway, this fixed it and unblocked me

[ianks]

/usr/lib64 is not a thing on arm64, so just use /usr/local/lib instead. This potentially could cause issues with folks who building of their old Pentium 4's, but I'm not sure. Either way, I'd reckon it's a small subset of the userbase anyway.

[Emilgardis]

This is awesome! Thank you, its all looking very good.

We have a problem though with how to publish the arm64 images, I laid out a strategy in #849 but we could also use imagetools. We'd also probably want arm64 runners, but they are only available for team/enterprise orgs :/

The current ci wont set the platform correctly, itll also overwrite the uploaded images to not be multi-arch

cross/.github/workflows/ci.yml

Lines 185 to 195 in 4090bec

	- name: Build Docker image
	id: build-docker-image
	if: steps.prepare-meta.outputs.has-image
	timeout-minutes: 120
	run: cargo xtask build-docker-image -v "${TARGET}${SUB:+.$SUB}" ${{ matrix.verbose && '-v' || '' }}
	env:
	TARGET: ${{ matrix.target }}
	SUB: ${{ matrix.sub }}
	LABELS: ${{ steps.docker-meta.outputs.labels }}
	LATEST: ${{ needs.check.outputs.is-latest || 'false' }}
	shell: bash

Ill have a look into this pr more closely

[Emilgardis]

Actually, not true, it should build but would overwrite, lets do a try :D

cross/xtask/src/build_docker_image.rs

Line 179 in 4090bec

for (platform, (target, dockerfile)) in targets

/ci try --target aarch64-unknown-linux-gnu --target x86_64-unknown-linux-gnu

[ianks]

@Emilgardis Ok I think I see the issue, linux-image-5.10.0-26-* is gone due to some security patch, so just bumping to 5.10.0-27 should resolve the issue. Can you try building again?

[ianks]

it should build but would overwrite

My (very limited) understanding was the buildx should automagically deal with pushing to the correct destination for each platform (so docker CLI can pull the right image later)... Does that sound right?

[ianks]

/ci try --target aarch64-unknown-linux-gnu --target x86_64-unknown-linux-gnu

[ianks]

I stumbled upon this... which I assumed to have been a typo since packages is likely not defined (its only used for wildcard kernel image searches).

[Emilgardis]

/ci try --target aarch64-unknown-linux-gnu --target x86_64-unknown-linux-gnu

[Emilgardis]

My (very limited) understanding was the buildx should automagically deal with pushing to the correct destination for each platform (so docker CLI can pull the right image later)... Does that sound right?

That sounds right, but it doesn't mean that both the amd64 and arm64/v8 images would be available, only the last built one would be tagged with what we want.

[github-actions]

Try run for comment

• try / conclusion - ✔️

Successful Jobs

• aarch64-unknown-linux-gnu - ✔️
• x86_64-unknown-linux-gnu - ✔️

[ianks]

My (very limited) understanding was the buildx should automagically deal with pushing to the correct destination for each platform (so docker CLI can pull the right image later)... Does that sound right?

That sounds right, but it doesn't mean that both the amd64 and arm64/v8 images would be available, only the last built one would be tagged with what we want.

I took a look, and I think 6428332 may do the trick. Basically, it just expands the matrix to include platform as a dimension, and passes the --platform to build-docker-image. Am I on the right track here???

[Emilgardis]

That works, but it doesnt change anything. It doesnt solve the problem of how to consolidate the two builds into one image

[ianks]

That works, but it doesnt change anything. It doesnt solve the problem of how to consolidate the two builds into one image

Good point. If I'm understanding correctly, I see a couple of options for solving this:

1. Let buildx handle it by building/pushing for all platforms in a single GHA job (--platforms linux/amd64,linux/arm64/v8). Pros: simpler to implement. Cons: slower builds.
2. Deal with it ourselves using docker manifest create .... Pros: faster builds, more explicit. Cons: more complex orchestration of GHA jobs
3. ... something else?

Which would you prefer???

[Emilgardis]

I have no preference, just want something that works. I've not heard of buildx build supporting multiple platforms and then combining it, that's interesting and would be useful

[Emilgardis]

Thinking about this a bit more, using the multi value --platform would work for all images, except when target=host, as we want to then use Dockerfile.native instead

[ianks]

Thinking about this a bit more, using the multi value --platform would work for all images, except when target=host, as we want to then use Dockerfile.native instead

Ok, I'll give the multi-platform string a whirl. The only thing I'm unsure about is if we need to supply the --push parameter for it to work. If so, that could be a nuisance because I think we want to test before actually pushing 🤔

[Emilgardis]

Dont think thats needed, i only see that the docker-container driver is needed, which we should be using already. You should revert 6428332 i think

[ianks]

Dont think thats needed, i only see that the docker-container driver is needed, which we should be using already. You should revert 6428332 i think

To clarify, you do want to use multiple platforms per job correct? Because before 6428332, we were only passing one platform (see here). If so, I can proceed with revert and work on passing multiple platforms per job afterwards.

[Emilgardis]

To clarify, you do want to use multiple platforms per job correct? Because before 6428332, we were only passing one platform (see here). If so, I can proceed with revert and work on passing multiple platforms per job afterwards.

Interesting, that is not the intent of the code, it should build all passed platforms in one job per target in sequence. I don't think it's easy to do one job per target and platform, as we'd have to pass the built image somewhere else, however, as I mentioned here I think the most correct approach is publishing the image as <target>:<version>-<platform> and then consolidate the new <target>:<version>-* images into one image/manifest tagged <target>:<version>

[ianks]

@Emilgardis If possible, I'd like to get this PR merged as is then we can handle the CI aspect of it as a follow up if you're OK with that. I'm struggling to figure out the best way to do it and I don't want to balloon the scope of this PR any more

[Emilgardis]

That's alright! The problem with merging it as is is that this will make people on aarch64 try to use an image that is not published. If you remove the changes to targets.toml and update provided_images.rs we can merge