-
Notifications
You must be signed in to change notification settings - Fork 38.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Use debian-base instead of distroless for conformance image #119422
Use debian-base instead of distroless for conformance image #119422
Conversation
The `diff` binary (required by the `kubectl diff` e2e test) gets statically or dynamically linked based on the used glibc version. We cannot really predict that behavior for the various platforms of debian-base and therefore cannot copy the binary around. This means that distroless is not a great choice for the conformance image unless we stop relying on `diff`. This means we now switch back to `debian-base` for the conformance image to simplify the build process and reduce the amount of moving parts. Signed-off-by: Sascha Grunert <[email protected]>
This issue is currently awaiting triage. If a SIG or subproject determines this is a relevant issue, they will accept it by applying the The Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
cc @kubernetes/release-engineering |
/lgtm |
LGTM label has been added. Git tree hash: d6f78a0b24d8b9861fd4c535f84cd1d40fb3aee0
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
since the bot requested review from me, i will add my 2c. switching away from distroless might need a better argument. may be better to drop the test from conformance until this is resolved?
also i don't have full context on why kubectl diff is using shell to diff, but the diff functionality can be implemented with simple standard compatible go libraries, IIUC.
Sounds like a valid alternative to me, it's just a single test requiring this. See #119426
I was thinking about this one, too. I guess this is the most appropriate mid-term solution. |
/hold for discussion |
As an alternative to kubernetes#119422, we now skip the conformance test and therefore do not rely on `diff` any more. Signed-off-by: Sascha Grunert <[email protected]>
/unhold |
/milestone v1.28 |
/assign @dims |
/approve |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: dims, saschagrunert The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
What type of PR is this?
/kind failing-test
What this PR does / why we need it:
The
diff
binary (required by thekubectl diff
e2e test) gets statically or dynamically linked based on the used glibc version. We cannot really predict that behavior for the various platforms of debian-base and therefore cannot copy the binary around. This means that distroless is not a great choice for the conformance image unless we stop relying ondiff
.This means we now switch back to
debian-base
for the conformance image to simplify the build process and reduce the amount of moving parts.Which issue(s) this PR fixes:
Fixes #119411
Special notes for your reviewer:
None
Does this PR introduce a user-facing change?
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.: