dockerize the build of vector package #5171
Conversation
|
I think the comments from yetus can be disregarded. Check Docker Hashes Consistency seems to be making a mistake: we base this Dockerfile on eve-rust:1.85.1-2, not on eve-rust:1.85.1-1 |
It is complaining that monitor is using a different image version than vector. Why would we need two different versions? |
Those are two different tags. Both use rust 1.85.1, but the first one uses gcc for cross-compilation and the second one uses clang. If clang does a good job in the future, I think we'll use only clang version starting from the next rust version update. |
sounds like the image should be called btw. the checker does not work on the diff, so if it gets merged, then every PR will be red |
I want to here @rucoder's opinion here then =) |
|
I see all the ARM builds were cancelled... Did anyone do it on purpose? |
|
@europaul @OhmSpectator we talked about this before with @rene and eve-rust image must be excluded from that check! this is perfectly fine and expected to have different rust versions for different packages! |
Doesn't this duplicate work, f.e. checking CVEs? |
This comment was marked as outdated.
This comment was marked as outdated.
Sorry, something went wrong.
Could you explain why different components require different versions of our own package? Do we have examples of other similar packages? @christoph-zededa, is there a mechanism to configure this in the checker? |
|
pkg/vector/Dockerfile
Outdated
| RUN cp /app/target/$CARGO_BUILD_TARGET/release/vector /app/target/ | ||
|
|
||
| # Assemble the final image | ||
| FROM alpine:3.21 AS runtime |
There was a problem hiding this comment.
This adds a different version of busybox to the image and squashfs cannot deduplicate it then. Is it really needed?
There was a problem hiding this comment.
I would suggest, to throw out the different version of busybox, etc. but therefore keep the debug symbols.
There was a problem hiding this comment.
could we use eve-alpine here or 3.21 somehow is required?
There was a problem hiding this comment.
thanks @christoph-zededa! I'll change it to eve-alpine
There was a problem hiding this comment.
Pull Request Overview
This PR dockerizes the build of the vector package by replacing the external dependency on a minimal vector build with a full vector package built within the EVE build system. The change uses the lf-edge eve-rust image as the base toolchain and implements a multi-stage Docker build to compile vector from source with specific features enabled.
Key changes:
- Replaces external vector image dependency with in-house Docker build process
- Implements multi-stage build with cross-platform support for amd64, arm64, and riscv64
- Adds comprehensive vector feature configuration and Rust optimization flags
Comments suppressed due to low confidence (1)
Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.
I also found it strange... |
@christoph-zededa I think this problem will go away when we release the next version of eve-rust e.g. 1.86.0 (that will use clang) and use it to build both btw, then we can also upgrade to vector v0.48 |
fyi: #4664 (comment) |
pkg/vector/Dockerfile
Outdated
| ARG RUST_VERSION=lfedge/eve-rust:1.85.1-2 | ||
| FROM --platform=$BUILDPLATFORM ${RUST_VERSION} AS toolchain-base | ||
| ARG TARGETARCH | ||
| RUN apk update && apk add --no-cache git perl protoc |
There was a problem hiding this comment.
same, could we use eve-alpine + eve-alpine-deploy.sh script instead of RUN apk here?
There was a problem hiding this comment.
@europaul git perl protoc are part of eve-rust 1.85-2
@europaul just add vector to the list mentioned by @christoph-zededa |
europaul
requested review from
OhmSpectator,
shjala,
milan-zededa,
rouming,
deitch and
zedi-pramodh
as code owners
@europaul , let's not bump alpine packages here, please. You can just add the package that you need on the main file and make this change to Dockerfile: diff --git a/pkg/alpine/Dockerfile b/pkg/alpine/Dockerfile
index 5be2a6ada..14a43d5bd 100644
--- a/pkg/alpine/Dockerfile
+++ b/pkg/alpine/Dockerfile
@@ -12,8 +12,7 @@ ARG ALPINE_VERSION=3.16
# this is only needed once, when this package
# is rebased on the new version of Alpine and
# you have to have FROM alpine:x.y.z above:
-# Trigger update for go package
-RUN apk update && apk upgrade -a
+#RUN apk update && apk upgrade -a
# Copy Dockerfile so we can include it in the hash
COPY Dockerfile abuild.conf /etc/without the |
|
FYI I just cancelled the workflows, it would take ages to run and changes were requested to @europaul anyways. |
|
@rene could you explain why we shouldn't update eve-alpine normally? I don't really understand this... |
Our approach is to use eve-alpine as an image with all packages that we need cached inside (i.e., those listed on When you need a package that is not installed in the eve-alpine image, you should add it to the corresponding file under When we want to bump all packages and their versions, for instance, when we want to bump Go version, then we need to run the following commands inside apk update && apk upgrade -a This was the case when I updated Alpine to 3.16.9 (458c9eb) and @christoph-zededa bumped Go version (eabd917). However, in case of this PR, we just want to add The point is that we don't need to bump all packages again, let's wait a bit for more stability and here you just need to add the |
|
@rene how about the following plan:
|
europaul
added
the
main-quest
|
UPD: I put all the requirements for this PR wrt packages and build toolchain in #5184, so as soon as it's merged, I'll rebase and we can proceed with this one. |
|
/rerun red |
3 similar comments
|
/rerun red |
|
/rerun red |
|
/rerun red |
|
@rene @OhmSpectator the builds ran successfully - the issue was with the ARM runners - they had 4GB of RAM which was not enough. @christoph-zededa increased it now to 8GBs. |
| # building the final image | ||
| FROM toolchain AS builder | ||
| ARG VECTOR_FEATURES | ||
| ADD https://github.com/vectordotdev/vector.git#v0.47.0 /app |
There was a problem hiding this comment.
Can we parametrise the version here?
| ENV CARGO_BUILD_TARGET="aarch64-unknown-linux-musl" | ||
|
|
||
| FROM toolchain-base AS target-riscv64 | ||
| ENV CARGO_BUILD_TARGET="riscv64gc-unknown-linux-gnu" |
There was a problem hiding this comment.
I would prefer to remove RISC-V "support" from the project, but for now, are you sure GNU works here? I don't care if it does not, though...
yeah, @rucoder what do you think about the caches? do they improve the performance just because it's a staged build or because we can reuse some parts across different building blocks? |
If you mean |
There was a problem hiding this comment.
I would also ask @rucoder to approve or comment. Rust builds is his kingdom. Run the tests meanwhile.
|
/rerun red |
1 similar comment
|
/rerun red |
To ensure consistency with the latest changes in the vector package, we update the eve-rust version used in the monitor package. Signed-off-by: Paul Gaiduk <[email protected]>
Remove the dependency on the minimal version of vector built externally. Now we have the full vector package built in the EVE build system, using lf-edge's eve-rust image as a base toolchain. Signed-off-by: Paul Gaiduk <[email protected]>
europaul
force-pushed
the
build-vector
branch
from
80dd9a3 to
1f9d7b6
Compare
|
@OhmSpectator do you think we can merge this? the CI ran already before I had to do the last rebase because of the git conflicts (actually there was no conflict, two different adjacent lines were changed) |
|
/rerun red |
1 similar comment
|
/rerun red |
Description
This PR addresses some suggestions from the original PR that introduced vector #5008 (comment).
Remove the dependency on the minimal version of vector built externally. Now we have the full vector package built in the EVE build system, using lf-edge's eve-rust image as a base toolchain.
PR dependencies
None.
How to test and validate this PR
Only includes changes to the EVE build. No testing necessary.
Changelog notes
N/A
PR Backports
Nope.
Checklist