🌱 Update Dockerfile #591
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,4 +1,6 @@ | ||
| # syntax=docker/dockerfile:1 | ||
|
|
||
| ARG BASE_IMAGE=quay.io/centos/centos:stream9@sha256:e5fdd83894773a25f22fbdf0b5253c63677d0cbaf8d3a8366b165a3ef5902964 | ||
|
|
||
| ## Build iPXE w/ IPv6 Support | ||
| ## Note: we are pinning to a specific commit for reproducible builds. | ||
|
|
@@ -7,25 +9,33 @@ ARG BASE_IMAGE=quay.io/centos/centos:stream9 | |
| FROM $BASE_IMAGE AS ironic-builder | ||
|
|
||
| ARG IPXE_COMMIT_HASH=119c415ee47aaef2717104fea493377aa9a65874 | ||
| ARG MAKEFLAGS="-j100" | ||
|
|
||
| SHELL ["/bin/bash", "-ex", "-o", "pipefail", "-c"] | ||
| RUN dnf install -y gcc make git xz-devel | ||
|
|
||
| WORKDIR /tmp/ipxe/src | ||
|
|
||
| RUN curl -Lf https://github.com/ipxe/ipxe/archive/${IPXE_COMMIT_HASH}.tar.gz | \ | ||
| tar -zx --strip-components=1 -C /tmp/ipxe && \ | ||
| ARCH=$(uname -m | sed 's/aarch/arm/') && \ | ||
| # NOTE(elfosardo): warning should not be treated as errors by default | ||
| NO_WERROR=1 make bin/undionly.kpxe "bin-$ARCH-efi/snponly.efi" | ||
|
|
||
| COPY prepare-efi.sh /bin/ | ||
| RUN prepare-efi.sh centos | ||
|
|
||
| FROM $BASE_IMAGE | ||
|
|
||
| LABEL org.opencontainers.image.url="https://github.com/metal3-io/ironic-image" | ||
| LABEL org.opencontainers.image.title="Metal3 Ironic Container" | ||
| LABEL org.opencontainers.image.description="Container image to run OpenStack Ironic as part of Metal³" | ||
| LABEL org.opencontainers.image.documentation="https://github.com/metal3-io/ironic-image/blob/main/README.md" | ||
|
There was a problem hiding this comment. Documentation would maybe better point to our user-guide? There was a problem hiding this comment. I agree, let's point to the user guide |
||
| LABEL org.opencontainers.image.version="v26.0.1" | ||
|
There was a problem hiding this comment. Good call. We'd need to update our releasing documentation to bump this (I expect the next version to be 26.1.0 or 27.0.0). CC @elfosardo There was a problem hiding this comment. We should not have anything but latest in main tho There was a problem hiding this comment. this is ok for released branches, as Dmitry said probably need to add this when we cut a new branch |
||
| LABEL org.opencontainers.image.vendor="Metal3-io" | ||
| LABEL org.opencontainers.image.licenses="Apache License 2.0" | ||
|
|
||
| ARG PKGS_LIST=main-packages-list.txt | ||
| ARG EXTRA_PKGS_LIST | ||
| ARG PATCH_LIST | ||
|
|
||
|
|
@@ -40,9 +50,6 @@ COPY sources /sources/ | |
| COPY ${UPPER_CONSTRAINTS_FILE} ironic-packages-list ${PKGS_LIST} ${EXTRA_PKGS_LIST:-$PKGS_LIST} ${PATCH_LIST:-$PKGS_LIST} /tmp/ | ||
| COPY prepare-image.sh patch-image.sh configure-nonroot.sh /bin/ | ||
|
|
||
| COPY scripts/ /bin/ | ||
|
|
||
| # IRONIC # | ||
|
|
@@ -61,11 +68,17 @@ COPY ironic-config/httpd-modules.conf /etc/httpd/conf.modules.d/ | |
| COPY ironic-config/apache2-vmedia.conf.j2 /etc/httpd-vmedia.conf.j2 | ||
| COPY ironic-config/apache2-ipxe.conf.j2 /etc/httpd-ipxe.conf.j2 | ||
|
|
||
| SHELL ["/bin/bash", "-ex", "-o", "pipefail", "-c"] | ||
| WORKDIR /var/lib/ironic | ||
| RUN prepare-image.sh && \ | ||
| # DATABASE | ||
| sqlite3 /var/lib/ironic/ironic.sqlite "pragma journal_mode=wal" && \ | ||
| # configure non-root user and set relevant permissions | ||
| configure-nonroot.sh && \ | ||
| dnf remove -y sqlite && \ | ||
| dnf clean all && \ | ||
| rm -rf /bin/configure-nonroot.sh /bin/prepare-image.sh /var/cache/{yum,dnf}/* | ||
|
|
||
| USER ironic | ||
| WORKDIR / | ||
| ENTRYPOINT ["/bin/bash"] | ||
|
There was a problem hiding this comment. The entrypoint does not look right. There was a problem hiding this comment. this is also probably not needed |
||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
A 100 jobs, I don't think thats reasonable default.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
no need to set MAKEFLAGS at all