This repository was archived by the owner on Sep 30, 2024. It is now read-only.
bazel: migrate legacy postgres-12 dockerfile to rules_oci#61963
Merged
Conversation
28dfa9a to
852a011
Compare
Strum355
commented
Apr 17, 2024
evict
previously approved these changes
Apr 18, 2024
b40eecf to
a49e021
Compare
a49e021 to
fd509ef
Compare
willdollman
reviewed
Apr 23, 2024
willdollman
reviewed
Apr 23, 2024
fd509ef to
652d0e6
Compare
willdollman
reviewed
Apr 24, 2024
Comment on lines
+227
to
+234
| # Please review the changes in /usr/local/share/postgresql/postgresql.conf.sample | ||
| # If there is any change, you should ping @team/delivery | ||
| # And Delivery will make sure changes are reflected in our deploy repository | ||
| oci_pull( | ||
| name = "legacy_postgres-12-alpine_base", | ||
| digest = "sha256:dcc32a6d845356288186f2ced62346cf7e0120977ff1a0d6758f4e11120401f7", | ||
| image = "index.docker.io/sourcegraph/postgres-12-alpine", | ||
| # IMPORTANT: Only update to Postgres 12.X Alpine images, and update the tag below | ||
| # (Bazel doesn't allow both tags and hashes) | ||
| # postgres:12.18-alpine3.18 |
Contributor
|
This looks really good. I've fixed a couple of issues and checked:
I've made a few changes to fix broken directory permissions. The side-effect of these is that /var/, /var/lib and /var/run are also owned by I've also added the container structure tests and re-organised the BUILD.bazel files. |
willdollman
approved these changes
Apr 24, 2024
willdollman
left a comment
Contributor
There was a problem hiding this comment.
I'm happy with these images from a security pov. For peace of mind I'd like to get the release team to test these images out by migrating an instance from the old db images to these ones. I'll tag them in the slack thread we have ongoing.
jhchabran
approved these changes
Apr 25, 2024
| ) | ||
|
|
||
| # Please review the changes in /usr/local/share/postgresql/postgresql.conf.sample | ||
| # If there is any change, you should ping @team/delivery |
Contributor
There was a problem hiding this comment.
team/delivery ? Are you talking about the release team?
Contributor
There was a problem hiding this comment.
Yes! I copied+pasted from the old Dockerfile. Fixing
Seeing error: index.docker.io/library/postgres is a multi-architecture image, so attribute 'platforms' is required
100ac4c to
636753d
Compare
Strum355
added a commit
that referenced
this pull request
May 15, 2024
akalia25
added a commit
that referenced
this pull request
May 22, 2024
* Fix bedrock URL encoding to mimic AWS CLI (#62695) * Fix bedrock URL encoding to mimic AWS CLI * Update changelog * appliance: namespace scoping (#62663) Allow a namespace to be configured, defaulting to all namespaces. Without this setting, if an admin deploys the appliance with namespace-scoped RBAC, it would throw errors due to not being able to watch ConfigMaps in all namespaces. * bazel: migrate legacy postgres-12 dockerfile to rules_oci (#61963) * build-tracker: include error if failing to write to bigquery (#62699) Without this, this error won't be logged to Sentry, resulting in us missing it unless we check GCP ## Test plan Discussed with @jac * Svelte: Fix global header navigation layers (#62697) Fix global header navigation layers * msp/rollouts: remove Cloud Deploy target import (#62687) Now that #62644 (CORE-23) is rolled out, this import block is no longer needed (and may even be disruptive when provisioning new rollout pipelines). The change was rolled out in: - sourcegraph/managed-services#1416 - sourcegraph/managed-services#1417 - sourcegraph/managed-services#1403 ## Test plan n/a * msp/cloudrun: use GA launch stage (#62685) VPC direct egress is now GA: see example in https://registry.terraform.io/providers/hashicorp/google/5.29.0/docs/resources/cloud_run_v2_service#example-usage---cloudrunv2-service-directvpc and https://cloud.google.com/run/docs/configuring/vpc-direct-vpc This also fixes the infinite `GA` -> `BETA` drift we have in TFC * Symbols: new backend integration test (#62686) This PR creates a new GraphQL integration test file focused on symbol search. It exercises the same searches the web client uses for code navigation. In a follow-up, we will add cases for older commits and enable Rockskip. * fix: update search timeout docs (#62692) * update telemetry sensitivemetadataallowlist to filter based on keys * fix main merge * Update BUILD.bazel * Update teestore_test.go * add better code-comments and error messaging * add test coverage on non-string types getting redacted with proper error value return * fix spacing! --------- Co-authored-by: Rik <rik.nauta@sourcegraph.com> Co-authored-by: Craig Furman <craig.furman@sourcegraph.com> Co-authored-by: Noah S-C <noah@sourcegraph.com> Co-authored-by: Vova Kulikov <vovakulikov@icloud.com> Co-authored-by: Robert Lin <robert@bobheadxi.dev> Co-authored-by: Julie Tibshirani <julietibs@apache.org> Co-authored-by: Michael Bahr <1830132+bahrmichael@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Test plan
Tested
v5.3.3 -> candidatebuild standard upgradev4.5.1 -> candidatebuild multiversion upgrade