-
Notifications
You must be signed in to change notification settings - Fork 242
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Use centos:stream9 as a base image, cleanup unused code #1983
Conversation
You say "Removes VDI importer code" |
Looking again, in the original PR by @visheshtanksale (#1512) he added VDI support, so it might be used. |
Yes some of our key functionality will be lost if we merge this without support for VDI. |
/hold |
Per https://groups.google.com/g/kubevirt-dev/c/Vu89kytp2mQ, I'm interested in having both Kubevirt and CDI move away from Fedora. Is there a time estimate on when Centos 8 stream will gain VDI support so that this PR can progress? |
Gentle ping. I see in #1982, you cited https://bugzilla.redhat.com/show_bug.cgi?id=2013331. It doesn't look like there has been any activity on that bug yet. Do you have any kind of estimate on if/when that will be acted on, which would unblock both #1982 and this PR? |
@jsquyres No idea about timelines. The bug report requesting VDI support seems to get a positive response but unfortunately all the replies are set to private. |
@maya-r That's somewhat of a bummer. Is it a sensitive topic? I notice that the issue is currently marked as RHEL9. |
4eca286
to
5817274
Compare
cmd/cdi-importer/BUILD.bazel
Outdated
"@nbdkit-server-aarch64//file", | ||
"@nbdkit-basic-filters-aarch64//file", | ||
#"@nbdkit-vddk-plugin-aarch64//file", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Don't we need the vddk plugin?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The plugin doesn't seem to be built for aarch64 - I'm not sure why that is the case.
(I didn't notice I'm the one introducing this change, I thought it's an existing one)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Worth noting that vmware aarch64 support is in tech preview and not really likely to be in heavy use
/retest |
looks like the push builder job is a periodic that hasn't run yet |
Oops, I'm going to need kubevirt/project-infra#1796 to update the builder. |
Blocked as the builder push job is having connectivity issues. Daniel Hiller tried re-running it but it failed again. |
5817274
to
94730f8
Compare
Is there any progress on this PR, perchance (and #2087)? It would be really, really great to ditch Fedora and switch to Centos stream... |
They expire faster than we can update checksums, this is unfortunate but perhaps they will soon publish images at a lower rate allowing us to keep up. Signed-off-by: Maya Rashish <mrashish@redhat.com>
Signed-off-by: Maya Rashish <mrashish@redhat.com>
Signed-off-by: Maya Rashish <mrashish@redhat.com>
Signed-off-by: Maya Rashish <mrashish@redhat.com>
Signed-off-by: Maya Rashish <mrashish@redhat.com>
Noticed due to: duplicated checksum but no problem in testsuite, lack of aarch64 equivalent. Signed-off-by: Maya Rashish <mrashish@redhat.com>
Signed-off-by: Maya Rashish <mrashish@redhat.com>
Signed-off-by: Maya Rashish <mrashish@redhat.com>
Needed after kubevirt#2174 Signed-off-by: Maya Rashish <mrashish@redhat.com>
The previous version we were using can't be fetched any more Signed-off-by: Maya Rashish <mrashish@redhat.com>
Now updating the dependencies can be done by running `make rpm-deps` and committing the change, like kubevirt. This creates a small complication that we need to run update-ca-trust to trust root CAs. Do this on the pod, using the entrypoint to do so. Use a single image with all the dependencies for the test tools, we don't benefit from making them minimal and it saved some trouble in the conversion. Signed-off-by: Maya Rashish <mrashish@redhat.com>
Looks like all the image io tests are failing on something. |
Run update-ca-trust and update-crypto-policies before running ovirt-imageio, to stop error messages. Signed-off-by: Maya Rashish <mrashish@redhat.com>
674b452
to
a55e82a
Compare
/retest-required |
@maya-r: The following tests failed, say
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
/retest |
all green @mhenriks |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good just a question about the arm base image not being set in a few places
"@io_bazel_rules_go//go/platform:linux_arm64": "@fedora-aarch64//image", | ||
"//conditions:default": "@fedora//image", | ||
}), | ||
base = "//:centos_base", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Don't we also need the arm version here?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
centos_base is a different image if the platform is arm64.
the cross build works, I pushed the binaries and when inspecting one by hand it seems to be made up of arm64 binaries and executables.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
okay
"@io_bazel_rules_go//go/platform:linux_arm64": "@fedora-aarch64//image", | ||
"//conditions:default": "@fedora//image", | ||
}), | ||
base = "//:centos_base", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Same we need arm version here.
"@io_bazel_rules_go//go/platform:linux_arm64": "@fedora-aarch64//image", | ||
"//conditions:default": "@fedora//image", | ||
}), | ||
base = "//:centos_base", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
arm version?
/approve |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: awels The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
/lgtm |
Forgotten in kubevirt#1983, needed to run `make rpm-deps` Signed-off-by: Maya Rashish <mrashish@redhat.com>
Forgotten in kubevirt#1983, needed to run `make rpm-deps` Signed-off-by: Maya Rashish <mrashish@redhat.com>
Forgotten in #1983, needed to run `make rpm-deps` Signed-off-by: Maya Rashish <mrashish@redhat.com>
What this PR does / why we need it:
KubeVirt has done similar with centos stream8.
Fedora has some downsides: frequent releases, and shorter end of life.
CentOS stream will mean fewer base image changes, and it means we use a base image which has vulnerabilities reported to it, as requested on kubevirt-dev.
Special notes for your reviewer:
Blocked on #1982 which changes the builder image.
Biggest change was switching away from what might be a self-made Fedora RPM for golang-govmomi to downloading the releases and untarring with the entrypoint.sh file.
VDI test now uses a pre-generated tinyCore.vdi as the qemu-img vdi support is read-only.
Release note: