Use git sha1 instead of counter tagging
#121
Conversation
RuoqingHe
requested review from
andreeaflorescu,
lauralt,
stefano-garzarella,
stsquad,
roypat,
ShadowCurse and
TimePrinciple
as code owners
There was a problem hiding this comment.
Yeah, thanks for implementing my suggestion of using sha1 instead of counter.
I suggest putting some context in the PR description and also in the commit description where we change from vXX to gYYYYY, especially to explain the reason of the changes, otherwise can be hard for reviewer to understand what we are fixing here.
What about updating the README.md too, where we used v38 as an example?
Maybe we can also add a section to mention that we used vXX till v49/v50, then switched to gYYYYY (where YYYYY=$(git show -s --format=%h))
Would it be better to use |
This is a good idea, is |
Yes, |
RuoqingHe
force-pushed
the
use-git-sha1-instead-of-explict-versioning
branch
from
436a027 to
f6da42c
Compare
Currently, there are places hard-coded and functions manually re-implemented, refactor `docker.sh` to a cleaner manner. Signed-off-by: Ruoqing He <[email protected]>
RuoqingHe
force-pushed
the
use-git-sha1-instead-of-explict-versioning
branch
from
f6da42c to
4383699
Compare
We were using `vXX` counter tagging till `v49` for x86_64 and aarch64, and `v49-riscv` for riscv64. And we have separated riscv64 from the other two to another job due to insufficient Github Action time limit (if the job failed to complete in 6 hours, it will be canceled), which end up of having two jobs. If the x86_64 and aarch64 job are finished and images are published in vN, while riscv64 job fails in that run, restarting the riscv64 job will result an absence of vN and a presence of v(N+1). So we decided to move on to git sha1 tagging strategy. Remove `latest` function and `vXX` counter tagging, and use output of ```console git show -s --format=%h ``` as the tag of images built per PR for publishing. Signed-off-by: Ruoqing He <[email protected]>
Add code for RISC-V specific tagging. Signed-off-by: Ruoqing He <[email protected]>
RuoqingHe
force-pushed
the
use-git-sha1-instead-of-explict-versioning
branch
from
4383699 to
f500dde
Compare
|
LGTM! @RuoqingHe I'd just suggest fixing also the README and add a little section that we switched from vXX to gYYYYY. |
`dev` image for x86_64 and aarch64 could be pulled through command `docker pull rustvmm/dev:latest` and for riscv64 through `docker pull rustvmm/dev:latest-riscv` for developers/users to use/test. Signed-off-by: Ruoqing He <[email protected]>
RuoqingHe
force-pushed
the
use-git-sha1-instead-of-explict-versioning
branch
from
24644a9 to
0c21d2c
Compare
Thanks for reviewing, I gather there were something wrongly configured in my workflow, I force pushed to see if it's addressed 🙂 |
Looks like that's now working, I will write them into |
RuoqingHe
changed the title
git sha1 instead of explict versioninggit sha1 instead of counter tagging
|
@RuoqingHe LGTM! thanks for this work! @roypat can you take a look? |
RuoqingHe
force-pushed
the
use-git-sha1-instead-of-explict-versioning
branch
from
320af9e to
551ee0c
Compare
mhh, we don't pin dependency versions in the docker file, so whenever we rebuild we just pull in the newest version of everything. cargo-audit had a new release 10 days ago, so might be that this new version has this issue? We can try pinning it to an older version (and maybe cut an issue to the appropriate location? maybe rustc?) |
yep, I agree. @RuoqingHe can you take a look when you have time? I know it's Chinese new year (happy new year!!!) and you will travel for FOSDEM, so take your time, it's not urgent! |
|
Could @stefano-garzarella @roypat restart the failed job for me when convenient, my local builds start to pass, looks like our upstream have this problem addressed 😯 |
|
Okay, it seems I was right that I tested locally even with |
RuoqingHe
force-pushed
the
use-git-sha1-instead-of-explict-versioning
branch
from
551ee0c to
61727b4
Compare
Update `README.md` after we swtiched to `gYYYYY` git sha1 tagging from `vXX` counter tagging. Change example to pull an evolving `latest` for x86_64, aarch64 and `latest-riscv` for riscv64. Signed-off-by: Ruoqing He <[email protected]>
RuoqingHe
force-pushed
the
use-git-sha1-instead-of-explict-versioning
branch
from
61727b4 to
f286a77
Compare
RuoqingHe
dismissed stale reviews from stefano-garzarella and roypat
via
ed9122b
RuoqingHe
force-pushed
the
use-git-sha1-instead-of-explict-versioning
branch
from
ed9122b to
f286a77
Compare
|
@RuoqingHe what is the current state? |
Also, why it's needed? I mean we are just changing the versioning. If it's a fix for something else, IMHO we should fix in another PR. |
Never mind, I was just trying if upgrading to 24.04 helps addressing this problem. I'm not planning to propose upgrading to 24.04 in this PR 😉 I couldn't reproduce this problem (buildx fails on arm64) in my setup, I'm just running out of ideas 😭 |
Do you think it's related to our changes? |
I hardly think so, this PR haven't touched How about we restart workflow of our latest commit to find out, but that would result |
Maybe we can open a draft PR with minimal changes just to start the CI, but I'd not start the one on main to avoid new version published |
Noted, I will raise one 👍 |
Use `docker/setup-qemu-action` to setup `binfmt` and etc. to cross-build `aarch64` dev image. After setting up QEMU, `aarch64` build errors out with `error processing package libc-bin`. Fix as sugguested in this post [1]. [1] https://stackoverflow.com/questions/78105004/docker-build-fails-because-unable-to-install-libc-bin Signed-off-by: Ruoqing He <[email protected]>
|
Green light, are we good to go @roypat @stefano-garzarella 🫠 |
|
@RuoqingHe great! @roypat do you think we should open a separated PR for the CI fix (last patch)? TBH I'm fine also merging this PR with the fix. |
|
Wohooo, great work!!
I'm fine merging it through here as well :) |
We have switched to git sha1 tagging since v49. For details, see: rust-vmm/rust-vmm-container#121. Signed-off-by: Ruoqing He <[email protected]>
We have switched to git sha1 tagging since v49. For details, see: rust-vmm/rust-vmm-container#121. Signed-off-by: Ruoqing He <[email protected]>
We have switched to git sha1 tagging since v49. For details, see: rust-vmm/rust-vmm-container#121. Signed-off-by: Ruoqing He <[email protected]>
Summary of the PR
docker.sh: Reuse code as much as possible
docker.sh: Replace counter tagging with git sha1:
We were using
vXXcounter tagging tillv49for x86_64 and aarch64,and
v49-riscvfor riscv64. And we have separated riscv64 from theother two to another job due to insufficient Github Action time limit
(if the job failed to complete in 6 hours, it will be canceled), which
end up of having two jobs. If the x86_64 and aarch64 job are finished
and images are published in vN, while riscv64 job fails in that run,
restarting the riscv64 job will result an absence of vN and a presence
of v(N+1). So we decided to move on to git sha1 tagging strategy.
Remove
latestfunction andvXXcounter tagging, and use output ofgit show -s --format=%has the tag of images built per PR for publishing.
docker.sh: Introduce RISC-V support for manual operations
ci: Add latest tag for ease of use
Requirements
Before submitting your PR, please make sure you addressed the following
requirements:
git commit -s), and the commit message has max 60 characters for thesummary and max 75 characters for each description line.
test.
Release" section of CHANGELOG.md (if no such section exists, please create one).
unsafecode is properly documented.