Build and push disk images #30
Conversation
vraiti
force-pushed
the
disk-img-pipeline
branch
2 times, most recently
from
9d3b286
to
ac5cc52
Compare
.github/workflows/build-bootc.yaml
Outdated
|
|
||
| oras blob push "$URL" $ARTIFACT | ||
|
|
||
| SHA="sha256:"$(sha256sum $ARTIFACT | awk '{print $1}') |
There was a problem hiding this comment.
Hrm why are we having to calculate SHAs and sizes manually here?
There was a problem hiding this comment.
Oras AFAIK has no built-in tools for creating image indexes (only for uploading them via oras manifest push), so I build the jsons by hand.
There was a problem hiding this comment.
Urg that's annoying, I think we could do it all with buildah
Generate raw, qcow2
gzip raw, qcow2
buildah manifest create $IMAGE
buildah manifest add $IMAGE --artifact <gzipped raw> --arch arm64 --os linux --artifact-type application/vnd.diskimage+raw
buildah manifest add $IMAGE --artifact <gzipped qcow2> --arch arm64 --os linux --artifact-type application/vnd.diskimage+qcow2
buildah manifest annotate --index --annotation bootc-image=<source-image> --annotation bootc-digest=<source-digest> $IMAGE
buildah manifest push --all $IMAGE
I just don't think we need to / should be building the image index + child manifests manually :/
There was a problem hiding this comment.
Or even crate the manifest with buildah and then add to it with ORAS, however being able to use one tool would be ideal
There was a problem hiding this comment.
I was going to say that buildah push always produces an invalid manifest for me and that's why I went this route, but I realized that I had not been including the --all flag haha... Just pushed a new script that uses buildah.
.github/workflows/build-bootc.yaml
Outdated
| SHA="sha256:"$(sha256sum $ARTIFACT | awk '{print $1}') | ||
| SIZE=$(cat $ARTIFACT | wc -c) | ||
| cat .github/workflow-scripts/manifest.json.tmpl | envsubst > manifest.json | ||
| oras manifest push $URL manifest.json |
There was a problem hiding this comment.
Can't we just do
oras manifest push $URL
oras attach $URL --artifact-type application/vnd.diskimage+qcow2 --platform linux/arm64 output/qcow2/disk.qcow2
without need to make/maintain the manifest ourselves?
There was a problem hiding this comment.
Frank asked for the disk images to be findable by a single multiarch manifest, so I wanted to try to stay true to that. The index vs attach method could just be aesthetic, but I worry that because the Oras docs talk about using attachments as dependencies, it would force users to download all of the disk images for a given flavor in order to access one.
I'm also not sure if we can just attach to an empty manifest list? I tried running the commands you gave above and it gave me
vraiti@vraiti-thinkpadt14sgen2i:~/oras/oras1$ oras manifest push quay.io/vraiti/oras:attach index.json
Pushed [registry] quay.io/vraiti/oras:attach
Digest: sha256:806749360f1c4a2f8d7c94e4674fe5aeb5a494353d71fbc19fc90cae03251b08
vraiti@vraiti-thinkpadt14sgen2i:~/oras/oras1$ oras attach quay.io/vraiti/oras:attach --artifact-type application/vnd.diskimage+qcow2 --platform linux/arm64 amd.txt
Error response from registry: failed to resolve attach: sha256:806749360f1c4a2f8d7c94e4674fe5aeb5a494353d71fbc19fc90cae03251b08: not found: no matching manifest was found in the manifest list
fetch-artifact
Outdated
| @@ -0,0 +1,43 @@ | |||
| #!/usr/bin/env python3 | |||
There was a problem hiding this comment.
There's no python in this repo yet I don't think, I would keep it that way unless it's really needed, if we're needing to wrap oras let's try and do it with a bash script
There was a problem hiding this comment.
Just pushed a new (much simplified) bash script to replace it. Turns out Fedora comes with a super old Oras version that was preventing me from using the --platform option.
vraiti
force-pushed
the
disk-img-pipeline
branch
7 times, most recently
from
8c53a95
to
cb90b41
Compare
vraiti
force-pushed
the
disk-img-pipeline
branch
from
c5d7590
to
472d5aa
Compare
No description provided.