Add docker-push-w-buildx make target #3135
Conversation
k8s-ci-robot
added
the
cncf-cla: yes
|
Welcome @ivyostosh! |
k8s-ci-robot
added
the
needs-ok-to-test
|
Hi @ivyostosh. Thanks for your PR. I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
k8s-ci-robot
added
the
size/M
| FROM $BASE_IMAGE as bin-unix | ||
|
|
||
| COPY --from=build /out/controller /controller | ||
| ENTRYPOINT ["/controller"] |
There was a problem hiding this comment.
This might not be compatible with the new deployment manifest corresponding to the ko image.
Since this changes doesn't influence e2e tests, please verify whether the container image is compatible with the manifest/helm chart from the main branch.
There was a problem hiding this comment.
Confirmed the deployment spec will be compatible with both the docker and the ko images. Note this change is created to support internal pipelines since we want to be able to choose both golang and base image versions.
kishorj
added
the
do-not-merge/hold
|
With ko, we can specify the base image in the .ko.yaml file |
Codecov ReportPatch and project coverage have no change.
Additional details and impacted files@@ Coverage Diff @@
## main #3135 +/- ##
=======================================
Coverage 54.72% 54.72%
=======================================
Files 145 145
Lines 8477 8477
=======================================
Hits 4639 4639
Misses 3503 3503
Partials 335 335 Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. ☔ View full report in Codecov by Sentry. |
kishorj
added
tide/merge-method-squash
Makefile
Outdated
| # Image URL to use for builder stage in Docker build | ||
| BUILD_IMAGE ?= public.ecr.aws/docker/library/golang:1.19.3 | ||
| # Image URL to use for base layer in Docker build | ||
| BASE_IMAGE ?= public.ecr.aws/eks-distro-build-tooling/eks-distro-minimal-base-nonroot:2022-07-27-1658910674.2 |
There was a problem hiding this comment.
This image has known vulnerabilities,
please use
public.ecr.aws/eks-distro-build-tooling/eks-distro-minimal-base-nonroot:2023-02-22-1677092456.2
Signed-off-by: Ivy Ostosh <[email protected]>
|
/ok-to-test |
k8s-ci-robot
added
the
ok-to-test
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: ivyostosh, kishorj The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
approved
|
/lgtm |
k8s-ci-robot
added
the
lgtm
* Add docker-push-w-buildx make target * Update BASE_IMAGE Signed-off-by: Ivy Ostosh <[email protected]> --------- Signed-off-by: Ivy Ostosh <[email protected]>
Issue
N/A
Description
Repo
aws-load-balancer-controllerhas chosen to usekofor container image build by default. This PR gives users an option to use docker buildx with customization on BUILD_IMAGE and BASE_IMAGE.Having a fixed BUILD_IMAGE and BASE_IMAGE meaning building binary and images all in a controlled environment, which allows easier CVE management where a user can monitor BUILD_IMAGE and BASE_IMAGE constantly.
Note this is created to support internal pipelines since we want to be able to choose both golang and base image versions.
Checklist
README.md, or thedocsdirectory)BONUS POINTS checklist: complete for good vibes and maybe prizes?! 🤯