Skip to content

buildah manifest: add artifact-related options#5301

Merged
openshift-merge-bot[bot] merged 11 commits intocontainers:mainfrom
nalind:fun-with-artifacts
Feb 7, 2024
Merged

buildah manifest: add artifact-related options#5301
openshift-merge-bot[bot] merged 11 commits intocontainers:mainfrom
nalind:fun-with-artifacts

Conversation

@nalind
Copy link
Copy Markdown
Member

@nalind nalind commented Jan 30, 2024
edited
Loading

What type of PR is this?

/kind feature

What this PR does / why we need it:

Add functionality for creating artifact manifests and adding them to image indexes. buildah manifest add gets a --artifact option for telling it to create artifact manifests, and --artifact-type, --artifact-config-type, --artifact-layer-type, --artifact-exclude-titles, and --subject options to fine-tune the contents of the artifact manifests it creates.

Add a --index flag to buildah manifest annotate so that it can be told to set annotations on the index itself instead of on one of the entries in the image index.

Add a --subject flag to buildah manifest annotate for setting the subject field of an image index.

Add a --annotation flag to buildah manifest create to allow for adding annotations to the new image index.

How to verify it

New integration tests!

Which issue(s) this PR fixes:

Fixes #5051

Special notes for your reviewer:

Does this PR introduce a user-facing change?

`buildah manifest add` now accepts a `--artifact` option, which can create artifact manifests for arbitrary files and add those artifact manifests to an image index.
`buildah manifest annotate` now accepts a `--index` option, indicating that `--annotation` values should be added to the image index rather than an item listed in an image index.

@openshift-ci openshift-ci bot added kind/feature Categorizes issue or PR as related to a new feature. approved labels Jan 30, 2024
@nalind
Copy link
Copy Markdown
Member Author

nalind commented Jan 30, 2024

/hold until after containers/common#1833 is merged, so that it doesn't depend on a branch in my personal fork.

@nalind nalind force-pushed the fun-with-artifacts branch 2 times, most recently from adbf537 to 70a6313 Compare January 30, 2024 23:12
@packit-as-a-service
Copy link
Copy Markdown

packit-as-a-service bot commented Jan 30, 2024

Ephemeral COPR build failed. @containers/packit-build please check.

@nalind nalind force-pushed the fun-with-artifacts branch 2 times, most recently from 353916c to 3a5c70a Compare January 31, 2024 15:05
@nalind nalind mentioned this pull request Jan 31, 2024
Merged
@nalind nalind force-pushed the fun-with-artifacts branch 12 times, most recently from 9eb3c83 to b0c2566 Compare February 7, 2024 14:33
@rhatdan
Copy link
Copy Markdown
Member

rhatdan commented Feb 7, 2024

Can you change the common PR above to not be Do not merge? I think common is up 2 date.

@nalind nalind force-pushed the fun-with-artifacts branch from b0c2566 to dad7450 Compare February 7, 2024 16:20
@nalind
Copy link
Copy Markdown
Member Author

nalind commented Feb 7, 2024

Removing the update of github.com/containers/common from the first commit in the series.

@nalind
Copy link
Copy Markdown
Member Author

nalind commented Feb 7, 2024

Oh, you meant "take the DO NOT MERGE off the description", since the previously-vendored version of common is from November.

@nalind nalind force-pushed the fun-with-artifacts branch from dad7450 to 68b2475 Compare February 7, 2024 16:42
nalind added 3 commits February 7, 2024 11:47
@nalind
Update github.com/openshift/imagebuilder and containers/common
5d58b88 
Update github.com/openshift/imagebuilder to the v1.2.6 release
Update github.com/containers/common to the current tip of the main branch

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
@nalind
Update to match dependency API update
56e6ef8 
github.com/docker/docker/client.NewVersionError() takes a context.Context now.

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
@nalind
Set CONTAINERS_CONF in the chroot-mount-flags integration test
04847f5 
... in an attempt to try to get UID 0 in a user namespace to stop trying
to read files from root's home directory, where the permissions error is
treated as a hard failure.

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
nalind added 8 commits February 7, 2024 11:48
@nalind
Try Cirrus with a newer VM version
e6d1794 
... which will have netavark installed in it, so that tests won't just
fail because it isn't there.

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
@nalind
egrep is obsolescent; use grep -E
302a798 
In tests/validate/pr-should-include-tests and
tests/validate/whitespace.sh, use grep -E instead of egrep, because
egrep keeps telling us to switch.

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
@nalind
Fix a couple of typos in one-line comments
e999600 
Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
@nalind
Disable loong64 again
e202d62 
github.com/cilium/ebpf v0.12.3 (the latest tag as of this moment) won't
build on linux/loong64, but the tip of its main branch does.  When
v0.12.4 is released, and we're using that or a later version, we can
turn it back on.

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
@nalind
Use golang.org/x/exp/slices.Contains
4f0b619 
... instead of github.com/containers/common/pkg/util.StringInSlice,
per linters.

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
@nalind
cmd/buildah/manifest.go: don't make struct declarations aliases
a0852e9 
Locally-defined structs don't need to be aliases for themselves.

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
@nalind
cmd/buildah/manifest.go: lock lists before adding/annotating/pushing
0705791 
Lock an image index's image before attempting to modify or push it.

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
@nalind
buildah manifest: add artifact-related options
aca884a 
Add functionality for creating artifact manifests and adding them to
image indexes.  `buildah manifest add` gets a `--artifact` option for
telling it to create artifact manifests, and `--artifact-type`,
`--artifact-config`, `--artifact-config-type`, `--artifact-layer-type`,
`--artifact-exclude-titles`, and `--subject` options to fine-tune the
contents of the artifact manifests it creates.

Add a `--index` flag to `buildah manifest annotate` so that it can be
told to set annotations on the index itself instead of on one of the
entries in the image index.

Add a `--subject` flag to `buildah manifest annotate` for setting the
`subject` field of an image index.

Add a `--annotation` flag to `buildah manifest create` to allow for
adding annotations to the new image index.

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
@nalind nalind force-pushed the fun-with-artifacts branch from 68b2475 to aca884a Compare February 7, 2024 16:53
rhatdan
rhatdan reviewed Feb 7, 2024
View reviewed changes
chroot/run_common.go
cmd.Stdin, cmd.Stdout, cmd.Stderr = stdin, stdout, stderr
cmd.Dir = "/"
cmd.Env = []string{fmt.Sprintf("LOGLEVEL=%d", logrus.GetLevel())}
if _, ok := os.LookupEnv(containersConfEnv); ok {
Copy link
Copy Markdown
Member

@rhatdan rhatdan Feb 7, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nit: Why not use the val passed back rather then calling os.Getenv() again.if

val, ok := os.LookupEnv(containersConfEnv); ok {
	cmd.Env = append(cmd.Env, containersConfEnv+"="+val))
}

Copy link
Copy Markdown
Member Author

@nalind nalind Feb 7, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, that would have been better.

rhatdan
rhatdan approved these changes Feb 7, 2024
View reviewed changes
Copy link
Copy Markdown
Member

@rhatdan rhatdan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@openshift-ci
Copy link
Copy Markdown
Contributor

openshift-ci bot commented Feb 7, 2024

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: nalind, rhatdan

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@baude
Copy link
Copy Markdown
Member

baude commented Feb 7, 2024

i verified it worked with multiple artifacts and quay ... great work @nalind

/lgtm

@openshift-ci openshift-ci bot added the lgtm label Feb 7, 2024
@nalind nalind mentioned this pull request Feb 7, 2024
Closed
1 task
@openshift-merge-bot openshift-merge-bot bot merged commit 817237a into containers:main Feb 7, 2024
@nalind nalind deleted the fun-with-artifacts branch February 7, 2024 20:20
@kachick kachick mentioned this pull request Mar 17, 2024
Merged
@stale-locking-app stale-locking-app bot locked as resolved and limited conversation to collaborators May 8, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@rhatdan rhatdan rhatdan approved these changes

Assignees

@baude baude

Labels

approved kind/feature Categorizes issue or PR as related to a new feature. lgtm locked - please file new issue/PR

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Image index media type and annotation

3 participants

@nalind @rhatdan @baude