root
/
buildah
mirror of https://github.com/containers/buildah.git
1
0
Fork 0
Code Issues Actions 3 Packages Projects Releases Wiki Activity
buildah/pkg/cli/build.go

476 lines
15 KiB
Go
Raw Normal View History

Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
package cli
build,commit: add --sbom to scan and produce SBOMs when committing Add a --sbom flag to `buildah build` and `buildah commit` which will scan the rootfs and specified context directories to build SPDX or CycloneDX SBOMs and lists of package URLs. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
2023-12-05 03:05:38 +08:00
// the cli package contains spf13/cobra related structs that help make up
// the command line for buildah commands. this file's contents are better
// suited for pkg/parse, but since pkg/parse imports pkg/util which also
// imports pkg/parse, having it there would create a cyclic dependency, so
// here we are.
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
import (
Switch to golang native error wrapping We now use the golang error wrapping format specifier `%w` instead of the deprecated github.com/pkg/errors package. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
2022-07-06 17:14:06 +08:00
"errors"
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
"fmt"
"io"
"os"
"path/filepath"
"strings"
"time"
"github.com/containers/buildah/define"
"github.com/containers/buildah/pkg/parse"
"github.com/containers/buildah/pkg/util"
"github.com/containers/common/pkg/auth"
build,cache: support pulling/pushing cache layers to/from remote sources Following commit * Initiates `cacheKey` or `layerKey` for intermediate images generated for layers. * Allows end users to upload cached layers with `cacheKey` to remote sources using `--cache-to`. `--cache-to` is a optional flag to be used with `buildah build` which publishes cached layers to remote sources. * Allows end users to use cached layers from `remote` sources with `--cache-from`. `--cache-from` is a optional flag to be used with `buildah build` and it pulls cached layers from remote sources in a step by step manner only if is a valid cache hit. Example * Populate cache source or use cached layers if already present ```bash buildah build -t test --layers --cache-to registry/myrepo/cache --cache-from registry/myrepo/cache . ``` Future: * `cacheKey` or `layerKey` model is only being used when working with remote sources however local cache lookup can be also optimized if its is altered to use `cacheKey` model instead of iterating through all the images in local storage. As discussed here References: * Feature is quite similar to `kaniko`'s `--cache-repo`: https://github.com/GoogleContainerTools/kaniko#--cache-repo Closes: issues#620 Signed-off-by: Aditya R <arajan@redhat.com>
2022-07-18 13:47:55 +08:00
"github.com/containers/image/v5/docker/reference"
build: support --skip-unused-stages for multi-stage builds In multi-stage builds buildah will skip stages which are unused (i.e stages which don't contribute anything to target stage directly or indirectly) however in certain cases users need to process these unused stages hence add support for `--skip-unused-stages` which allows users to control this behaviour. Ref: https://github.com/GoogleContainerTools/kaniko#flag---skip-unused-stages Closes: https://github.com/containers/buildah/issues/4243 Signed-off-by: Aditya R <arajan@redhat.com>
2022-09-15 18:00:23 +08:00
"github.com/containers/image/v5/types"
run,build: conflict --isolation=chroot and --network Conflict --isolation=chroot and --network, since internally --chroot will always configure network ns equivalent to host. Closes: https://github.com/containers/buildah/issues/4255 Signed-off-by: Aditya R <arajan@redhat.com>
2022-09-19 17:08:50 +08:00
"github.com/opencontainers/runtime-spec/specs-go"
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
"github.com/sirupsen/logrus"
"github.com/spf13/cobra"
Use golang.org/x/exp/slices.Contains ... instead of github.com/containers/common/pkg/util.StringInSlice, per linters. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
2024-01-31 23:03:20 +08:00
"golang.org/x/exp/slices"
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
)
type BuildOptions struct {
*LayerResults
*BudResults
*UserNSResults
*FromAndBudResults
*NameSpaceResults
Logwriter *os.File
}
const (
MaxPullPushRetries = 3
PullPushRetryDelay = 2 * time.Second
)
// GenBuildOptions translates command line flags into a BuildOptions structure
func GenBuildOptions(c *cobra.Command, inputArgs []string, iopts BuildOptions) (define.BuildOptions, []string, []string, error) {
options := define.BuildOptions{}
var removeAll []string
output := ""
cleanTmpFile := false
tags := []string{}
Prevent use of --dns* options with --net=none This is blocked in Podman for run and create but not for build, we should block it also for build. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-09-16 02:26:37 +08:00
if iopts.Network == "none" {
if c.Flag("dns").Changed {
Fix broken dns test (from merge collision) And, while I'm at it, fix grammar ("cannot" is one word) Signed-off-by: Ed Santiago <santiago@redhat.com>
2022-09-21 10:02:40 +08:00
return options, nil, nil, errors.New("the --dns option cannot be used with --network=none")
Prevent use of --dns* options with --net=none This is blocked in Podman for run and create but not for build, we should block it also for build. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-09-16 02:26:37 +08:00
}
if c.Flag("dns-option").Changed {
Fix broken dns test (from merge collision) And, while I'm at it, fix grammar ("cannot" is one word) Signed-off-by: Ed Santiago <santiago@redhat.com>
2022-09-21 10:02:40 +08:00
return options, nil, nil, errors.New("the --dns-option option cannot be used with --network=none")
Prevent use of --dns* options with --net=none This is blocked in Podman for run and create but not for build, we should block it also for build. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-09-16 02:26:37 +08:00
}
if c.Flag("dns-search").Changed {
Fix broken dns test (from merge collision) And, while I'm at it, fix grammar ("cannot" is one word) Signed-off-by: Ed Santiago <santiago@redhat.com>
2022-09-21 10:02:40 +08:00
return options, nil, nil, errors.New("the --dns-search option cannot be used with --network=none")
Prevent use of --dns* options with --net=none This is blocked in Podman for run and create but not for build, we should block it also for build. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-09-16 02:26:37 +08:00
}
}
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
if c.Flag("tag").Changed {
tags = iopts.Tag
if len(tags) > 0 {
output = tags[0]
tags = tags[1:]
}
if c.Flag("manifest").Changed {
for _, tag := range tags {
if tag == iopts.Manifest {
return options, nil, nil, errors.New("the same name must not be specified for both '--tag' and '--manifest'")
}
}
}
}
if err := auth.CheckAuthFile(iopts.BudResults.Authfile); err != nil {
return options, nil, nil, err
}
if c.Flag("logsplit").Changed {
if !c.Flag("logfile").Changed {
Switch to golang native error wrapping We now use the golang error wrapping format specifier `%w` instead of the deprecated github.com/pkg/errors package. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
2022-07-06 17:14:06 +08:00
return options, nil, nil, errors.New("cannot use --logsplit without --logfile")
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
}
iopts.BudResults.Authfile, cleanTmpFile = util.MirrorToTempFileIfPathIsDescriptor(iopts.BudResults.Authfile)
if cleanTmpFile {
removeAll = append(removeAll, iopts.BudResults.Authfile)
}
build,commit: add --sbom to scan and produce SBOMs when committing Add a --sbom flag to `buildah build` and `buildah commit` which will scan the rootfs and specified context directories to build SPDX or CycloneDX SBOMs and lists of package URLs. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
2023-12-05 03:05:38 +08:00
pullPolicy, err := parse.PullPolicyFromOptions(c)
if err != nil {
return options, nil, nil, err
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
args := make(map[string]string)
build: accept arguments from file with --build-arg-file Allows codifying build arguments into a structured file, perhaps one named arguments.Containerargs The build arg file also accepts comments starting #, so automated tooling or CI/CD workflows can monitor arguments like versions to ensure they are up-to-date. Signed-off-by: Jack Wearden <jack@jackwearden.co.uk>
2023-03-25 18:32:47 +08:00
if c.Flag("build-arg-file").Changed {
for _, argfile := range iopts.BuildArgFile {
if err := readBuildArgFile(argfile, args); err != nil {
return options, nil, nil, err
}
}
}
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
if c.Flag("build-arg").Changed {
for _, arg := range iopts.BuildArg {
build: accept arguments from file with --build-arg-file Allows codifying build arguments into a structured file, perhaps one named arguments.Containerargs The build arg file also accepts comments starting #, so automated tooling or CI/CD workflows can monitor arguments like versions to ensure they are up-to-date. Signed-off-by: Jack Wearden <jack@jackwearden.co.uk>
2023-03-25 18:32:47 +08:00
readBuildArg(arg, args)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
}
additionalBuildContext := make(map[string]*define.AdditionalBuildContext)
if c.Flag("build-context").Changed {
for _, contextString := range iopts.BuildContext {
av := strings.SplitN(contextString, "=", 2)
if len(av) > 1 {
parseAdditionalBuildContext, err := parse.GetAdditionalBuildContext(av[1])
if err != nil {
Switch to golang native error wrapping We now use the golang error wrapping format specifier `%w` instead of the deprecated github.com/pkg/errors package. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
2022-07-06 17:14:06 +08:00
return options, nil, nil, fmt.Errorf("while parsing additional build context: %w", err)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
additionalBuildContext[av[0]] = &parseAdditionalBuildContext
} else {
return options, nil, nil, fmt.Errorf("while parsing additional build context: %q, accepts value in the form of key=value", av)
}
}
}
containerfiles := getContainerfiles(iopts.File)
Make cli.EncryptConfig,DecryptConfig, GetFormat public We want to share these functions with Podman, Podman currently has a slightly different version which is correct, so use correct version in Buildah and vendor it into Podman. Fixing: https://github.com/containers/podman/issues/18196 Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2023-05-19 04:28:21 +08:00
format, err := GetFormat(iopts.Format)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
if err != nil {
return options, nil, nil, err
}
layers := UseLayers()
if c.Flag("layers").Changed {
layers = iopts.Layers
}
contextDir := ""
cliArgs := inputArgs
// Nothing provided, we assume the current working directory as build
// context
if len(cliArgs) == 0 {
contextDir, err = os.Getwd()
if err != nil {
Switch to golang native error wrapping We now use the golang error wrapping format specifier `%w` instead of the deprecated github.com/pkg/errors package. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
2022-07-06 17:14:06 +08:00
return options, nil, nil, fmt.Errorf("unable to choose current working directory as build context: %w", err)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
} else {
// The context directory could be a URL. Try to handle that.
tempDir, subDir, err := define.TempDirForURL("", "buildah", cliArgs[0])
if err != nil {
Fix stutters Podman adds an Error: to every error message. So starting an error message with "error" ends up being reported to the user as Error: error ... This patch removes the stutter. Also ioutil.ReadFile errors report the Path, so wrapping the err message with the path causes a stutter. Signed-off-by: Daniel J Walsh dwalsh@redhat.com [NO NEW TESTS NEEDED] Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-09-18 18:36:08 +08:00
return options, nil, nil, fmt.Errorf("prepping temporary context directory: %w", err)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
if tempDir != "" {
// We had to download it to a temporary directory.
// Delete it later.
removeAll = append(removeAll, tempDir)
contextDir = filepath.Join(tempDir, subDir)
} else {
// Nope, it was local. Use it as is.
absDir, err := filepath.Abs(cliArgs[0])
if err != nil {
Fix stutters Podman adds an Error: to every error message. So starting an error message with "error" ends up being reported to the user as Error: error ... This patch removes the stutter. Also ioutil.ReadFile errors report the Path, so wrapping the err message with the path causes a stutter. Signed-off-by: Daniel J Walsh dwalsh@redhat.com [NO NEW TESTS NEEDED] Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-09-18 18:36:08 +08:00
return options, nil, nil, fmt.Errorf("determining path to directory: %w", err)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
contextDir = absDir
}
}
if len(containerfiles) == 0 {
// Try to find the Containerfile/Dockerfile within the contextDir
containerfile, err := util.DiscoverContainerfile(contextDir)
if err != nil {
return options, nil, nil, err
}
containerfiles = append(containerfiles, containerfile)
contextDir = filepath.Dir(containerfile)
}
contextDir, err = filepath.EvalSymlinks(contextDir)
if err != nil {
Fix stutters Podman adds an Error: to every error message. So starting an error message with "error" ends up being reported to the user as Error: error ... This patch removes the stutter. Also ioutil.ReadFile errors report the Path, so wrapping the err message with the path causes a stutter. Signed-off-by: Daniel J Walsh dwalsh@redhat.com [NO NEW TESTS NEEDED] Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-09-18 18:36:08 +08:00
return options, nil, nil, fmt.Errorf("evaluating symlinks in build context path: %w", err)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
var stdin io.Reader
if iopts.Stdin {
stdin = os.Stdin
}
var stdout, stderr, reporter *os.File
stdout = os.Stdout
stderr = os.Stderr
reporter = os.Stderr
if iopts.Logwriter != nil {
logrus.SetOutput(iopts.Logwriter)
stdout = iopts.Logwriter
stderr = iopts.Logwriter
reporter = iopts.Logwriter
}
systemContext, err := parse.SystemContextFromOptions(c)
if err != nil {
Fix stutters Podman adds an Error: to every error message. So starting an error message with "error" ends up being reported to the user as Error: error ... This patch removes the stutter. Also ioutil.ReadFile errors report the Path, so wrapping the err message with the path causes a stutter. Signed-off-by: Daniel J Walsh dwalsh@redhat.com [NO NEW TESTS NEEDED] Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-09-18 18:36:08 +08:00
return options, nil, nil, fmt.Errorf("building system context: %w", err)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
isolation, err := parse.IsolationOption(iopts.Isolation)
if err != nil {
return options, nil, nil, err
}
runtimeFlags := []string{}
for _, arg := range iopts.RuntimeFlags {
runtimeFlags = append(runtimeFlags, "--"+arg)
}
commonOpts, err := parse.CommonBuildOptions(c)
if err != nil {
return options, nil, nil, err
}
if (c.Flag("rm").Changed || c.Flag("force-rm").Changed) && (!c.Flag("layers").Changed && !c.Flag("no-cache").Changed) {
Switch to golang native error wrapping We now use the golang error wrapping format specifier `%w` instead of the deprecated github.com/pkg/errors package. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
2022-07-06 17:14:06 +08:00
return options, nil, nil, errors.New("'rm' and 'force-rm' can only be set with either 'layers' or 'no-cache'")
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
if c.Flag("compress").Changed {
logrus.Debugf("--compress option specified but is ignored")
}
compression := define.Gzip
if iopts.DisableCompression {
compression = define.Uncompressed
}
if c.Flag("disable-content-trust").Changed {
logrus.Debugf("--disable-content-trust option specified but is ignored")
}
namespaceOptions, networkPolicy, err := parse.NamespaceOptions(c)
if err != nil {
return options, nil, nil, err
}
usernsOption, idmappingOptions, err := parse.IDMappingOptions(c, isolation)
if err != nil {
Fix stutters Podman adds an Error: to every error message. So starting an error message with "error" ends up being reported to the user as Error: error ... This patch removes the stutter. Also ioutil.ReadFile errors report the Path, so wrapping the err message with the path causes a stutter. Signed-off-by: Daniel J Walsh dwalsh@redhat.com [NO NEW TESTS NEEDED] Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-09-18 18:36:08 +08:00
return options, nil, nil, fmt.Errorf("parsing ID mapping options: %w", err)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
namespaceOptions.AddOrReplace(usernsOption...)
platforms, err := parse.PlatformsFromOptions(c)
if err != nil {
return options, nil, nil, err
}
Make cli.EncryptConfig,DecryptConfig, GetFormat public We want to share these functions with Podman, Podman currently has a slightly different version which is correct, so use correct version in Buildah and vendor it into Podman. Fixing: https://github.com/containers/podman/issues/18196 Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2023-05-19 04:28:21 +08:00
decryptConfig, err := DecryptConfig(iopts.DecryptionKeys)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
if err != nil {
Switch to golang native error wrapping We now use the golang error wrapping format specifier `%w` instead of the deprecated github.com/pkg/errors package. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
2022-07-06 17:14:06 +08:00
return options, nil, nil, fmt.Errorf("unable to obtain decrypt config: %w", err)
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
var excludes []string
if iopts.IgnoreFile != "" {
build: honor <Containerfile>.containerignore as ignore file As per buildkit backend documentation when using the BuildKit backend, docker build searches for a `.dockerignore` file relative to the Dockerfile name. For example, running `docker build -f myapp.Dockerfile .` will first look for an ignore file named `myapp.Dockerfile.dockerignore`. If such a file is not found, the `.dockerignore` file is used if present. Using a Dockerfile based `.dockerignore` is useful if a project contains multiple Dockerfiles that expect to ignore different sets of files. Following PR introduces this buildkit feature parity. Closes: https://github.com/containers/buildah/issues/4236 Signed-off-by: Aditya R <arajan@redhat.com>
2022-09-13 14:35:34 +08:00
if excludes, _, err = parse.ContainerIgnoreFile(contextDir, iopts.IgnoreFile, containerfiles); err != nil {
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
return options, nil, nil, err
}
}
var timestamp *time.Time
if c.Flag("timestamp").Changed {
t := time.Unix(iopts.Timestamp, 0).UTC()
timestamp = &t
}
if c.Flag("output").Changed {
buildOption, err := parse.GetBuildOutput(iopts.BuildOutput)
if err != nil {
return options, nil, nil, err
}
if buildOption.IsStdout {
iopts.Quiet = true
}
}
Add `buildah mkcw`, add `--cw` to `buildah commit` and `buildah build` Add a --cw option to `buildah build` and `buildah commit`, which takes a comma-separated list of arguments and produces an image laid out for use as a confidential workload: type: sev or snp attestation_url: location of a key broker server cpus: expected number of virtual CPUs to run with memory: expected megabytes of memory to run with workload_id: a distinguishing identifier for the key broker server ignore_attestation_errors: ignore errors registering the workload passphrase: for encrypting the disk image slop: extra space to allocate for the disk image At least one of attestation_url and passphrase must be specified in order for the encrypted disk image to be decryptable at run-time. Other arguments can be omitted. ignore_attestation_errors is intentionally undocumented, as it's mainly used to permit some amount of testing on systems which don't have the required hardware. Add an `mkcw` top-level command, for converting directly from an image to a confidential workload. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
2023-07-18 04:27:19 +08:00
var confidentialWorkloadOptions define.ConfidentialWorkloadOptions
if c.Flag("cw").Changed {
confidentialWorkloadOptions, err = parse.GetConfidentialWorkloadOptions(iopts.CWOptions)
if err != nil {
return options, nil, nil, err
}
}
remote-cache: support multiple sources and destinations Buildah must support multiple sources for remote cache when using `--cache-to` and `--cache-from` so users can distribute and collect cache from various sources. We also need for compat with buildkit api which in past broke `podman` compat build API see: https://github.com/containers/podman/pull/16380 More discussion here: https://github.com/containers/podman/pull/16380 Signed-off-by: Aditya R <arajan@redhat.com>
2022-12-05 14:29:19 +08:00
var cacheTo []reference.Named
var cacheFrom []reference.Named
build,cache: support pulling/pushing cache layers to/from remote sources Following commit * Initiates `cacheKey` or `layerKey` for intermediate images generated for layers. * Allows end users to upload cached layers with `cacheKey` to remote sources using `--cache-to`. `--cache-to` is a optional flag to be used with `buildah build` which publishes cached layers to remote sources. * Allows end users to use cached layers from `remote` sources with `--cache-from`. `--cache-from` is a optional flag to be used with `buildah build` and it pulls cached layers from remote sources in a step by step manner only if is a valid cache hit. Example * Populate cache source or use cached layers if already present ```bash buildah build -t test --layers --cache-to registry/myrepo/cache --cache-from registry/myrepo/cache . ``` Future: * `cacheKey` or `layerKey` model is only being used when working with remote sources however local cache lookup can be also optimized if its is altered to use `cacheKey` model instead of iterating through all the images in local storage. As discussed here References: * Feature is quite similar to `kaniko`'s `--cache-repo`: https://github.com/GoogleContainerTools/kaniko#--cache-repo Closes: issues#620 Signed-off-by: Aditya R <arajan@redhat.com>
2022-07-18 13:47:55 +08:00
cacheTo = nil
cacheFrom = nil
if c.Flag("cache-to").Changed {
remote-cache: support multiple sources and destinations Buildah must support multiple sources for remote cache when using `--cache-to` and `--cache-from` so users can distribute and collect cache from various sources. We also need for compat with buildkit api which in past broke `podman` compat build API see: https://github.com/containers/podman/pull/16380 More discussion here: https://github.com/containers/podman/pull/16380 Signed-off-by: Aditya R <arajan@redhat.com>
2022-12-05 14:29:19 +08:00
cacheTo, err = parse.RepoNamesToNamedReferences(iopts.CacheTo)
build,cache: support pulling/pushing cache layers to/from remote sources Following commit * Initiates `cacheKey` or `layerKey` for intermediate images generated for layers. * Allows end users to upload cached layers with `cacheKey` to remote sources using `--cache-to`. `--cache-to` is a optional flag to be used with `buildah build` which publishes cached layers to remote sources. * Allows end users to use cached layers from `remote` sources with `--cache-from`. `--cache-from` is a optional flag to be used with `buildah build` and it pulls cached layers from remote sources in a step by step manner only if is a valid cache hit. Example * Populate cache source or use cached layers if already present ```bash buildah build -t test --layers --cache-to registry/myrepo/cache --cache-from registry/myrepo/cache . ``` Future: * `cacheKey` or `layerKey` model is only being used when working with remote sources however local cache lookup can be also optimized if its is altered to use `cacheKey` model instead of iterating through all the images in local storage. As discussed here References: * Feature is quite similar to `kaniko`'s `--cache-repo`: https://github.com/GoogleContainerTools/kaniko#--cache-repo Closes: issues#620 Signed-off-by: Aditya R <arajan@redhat.com>
2022-07-18 13:47:55 +08:00
if err != nil {
return options, nil, nil, fmt.Errorf("unable to parse value provided `%s` to --cache-to: %w", iopts.CacheTo, err)
}
}
if c.Flag("cache-from").Changed {
remote-cache: support multiple sources and destinations Buildah must support multiple sources for remote cache when using `--cache-to` and `--cache-from` so users can distribute and collect cache from various sources. We also need for compat with buildkit api which in past broke `podman` compat build API see: https://github.com/containers/podman/pull/16380 More discussion here: https://github.com/containers/podman/pull/16380 Signed-off-by: Aditya R <arajan@redhat.com>
2022-12-05 14:29:19 +08:00
cacheFrom, err = parse.RepoNamesToNamedReferences(iopts.CacheFrom)
build,cache: support pulling/pushing cache layers to/from remote sources Following commit * Initiates `cacheKey` or `layerKey` for intermediate images generated for layers. * Allows end users to upload cached layers with `cacheKey` to remote sources using `--cache-to`. `--cache-to` is a optional flag to be used with `buildah build` which publishes cached layers to remote sources. * Allows end users to use cached layers from `remote` sources with `--cache-from`. `--cache-from` is a optional flag to be used with `buildah build` and it pulls cached layers from remote sources in a step by step manner only if is a valid cache hit. Example * Populate cache source or use cached layers if already present ```bash buildah build -t test --layers --cache-to registry/myrepo/cache --cache-from registry/myrepo/cache . ``` Future: * `cacheKey` or `layerKey` model is only being used when working with remote sources however local cache lookup can be also optimized if its is altered to use `cacheKey` model instead of iterating through all the images in local storage. As discussed here References: * Feature is quite similar to `kaniko`'s `--cache-repo`: https://github.com/GoogleContainerTools/kaniko#--cache-repo Closes: issues#620 Signed-off-by: Aditya R <arajan@redhat.com>
2022-07-18 13:47:55 +08:00
if err != nil {
return options, nil, nil, fmt.Errorf("unable to parse value provided `%s` to --cache-from: %w", iopts.CacheTo, err)
}
}
build: support filtering cache by duration using --cache-ttl `build` or `bud` now supports a new flag `--cache-ttl` which accepts duration and allows end users to ignore cache images which are not under the specified duration. Following flag is useful for setups/platforms which heavily relies on `--layer` and buildah caching but want recompute certain `RUN` steps after specified duration to make sure specific `RUN` steps are always updated. Example `RUN dnf update` or `RUN dnf install` Closes: https://github.com/containers/buildah/issues/4160 Somewhat similar to kaniko's: https://github.com/GoogleContainerTools/kaniko#--cache-ttl-duration Signed-off-by: Aditya R <arajan@redhat.com>
2022-08-04 15:14:39 +08:00
var cacheTTL time.Duration
if c.Flag("cache-ttl").Changed {
cacheTTL, err = time.ParseDuration(iopts.CacheTTL)
if err != nil {
return options, nil, nil, fmt.Errorf("unable to parse value provided %q as --cache-ttl: %w", iopts.CacheTTL, err)
}
buildah: make --cache-ttl=0s equivalent to --no-cache If user explicitly specified `--cache-ttl=0s it would effectively mean that user is asking to use no cache at all. In such use cases buildah can skip looking for cache entierly by setting `--no-cache=true` internally. Closes: https://github.com/containers/buildah/issues/4244 Signed-off-by: Aditya R <arajan@redhat.com>
2022-09-15 16:42:19 +08:00
// If user explicitly specified `--cache-ttl=0s`
// it would effectively mean that user is asking
// to use no cache at all. In such use cases
Run codespell on codebase Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2023-02-09 22:05:03 +08:00
// buildah can skip looking for cache entirely
buildah: make --cache-ttl=0s equivalent to --no-cache If user explicitly specified `--cache-ttl=0s it would effectively mean that user is asking to use no cache at all. In such use cases buildah can skip looking for cache entierly by setting `--no-cache=true` internally. Closes: https://github.com/containers/buildah/issues/4244 Signed-off-by: Aditya R <arajan@redhat.com>
2022-09-15 16:42:19 +08:00
// by setting `--no-cache=true` internally.
if int64(cacheTTL) == 0 {
logrus.Debug("Setting --no-cache=true since --cache-ttl was set to 0s which effectively means user wants to ignore cache")
if c.Flag("no-cache").Changed && !iopts.NoCache {
return options, nil, nil, fmt.Errorf("cannot use --cache-ttl with duration as 0 and --no-cache=false")
}
iopts.NoCache = true
}
build: support filtering cache by duration using --cache-ttl `build` or `bud` now supports a new flag `--cache-ttl` which accepts duration and allows end users to ignore cache images which are not under the specified duration. Following flag is useful for setups/platforms which heavily relies on `--layer` and buildah caching but want recompute certain `RUN` steps after specified duration to make sure specific `RUN` steps are always updated. Example `RUN dnf update` or `RUN dnf install` Closes: https://github.com/containers/buildah/issues/4160 Somewhat similar to kaniko's: https://github.com/GoogleContainerTools/kaniko#--cache-ttl-duration Signed-off-by: Aditya R <arajan@redhat.com>
2022-08-04 15:14:39 +08:00
}
buildah: support for --retry and --retry-delay for push/pull failures Allows users to configure `--retry` attempts and `--retry-delay` duration using two additional flags for commands * buildah build * buildah pull * buildah push * buildah from * buildah add * buildah copy Closes: https://github.com/containers/buildah/issues/4018 Not sure how we can test retry attempts in CI, but added a test in tests/bud.bats which verfies we parse and added flag in other options for sanity parsing checking. Signed-off-by: Aditya R <arajan@redhat.com>
2022-08-22 14:46:39 +08:00
run,build: conflict --isolation=chroot and --network Conflict --isolation=chroot and --network, since internally --chroot will always configure network ns equivalent to host. Closes: https://github.com/containers/buildah/issues/4255 Signed-off-by: Aditya R <arajan@redhat.com>
2022-09-19 17:08:50 +08:00
if c.Flag("network").Changed && c.Flag("isolation").Changed {
if isolation == define.IsolationChroot {
if ns := namespaceOptions.Find(string(specs.NetworkNamespace)); ns != nil {
if !ns.Host {
return options, nil, nil, fmt.Errorf("cannot set --network other than host with --isolation %s", c.Flag("isolation").Value.String())
}
}
}
}
build,commit: add --sbom to scan and produce SBOMs when committing Add a --sbom flag to `buildah build` and `buildah commit` which will scan the rootfs and specified context directories to build SPDX or CycloneDX SBOMs and lists of package URLs. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
2023-12-05 03:05:38 +08:00
var sbomScanOptions []define.SBOMScanOptions
if c.Flag("sbom").Changed || c.Flag("sbom-scanner-command").Changed || c.Flag("sbom-scanner-image").Changed || c.Flag("sbom-image-output").Changed || c.Flag("sbom-merge-strategy").Changed || c.Flag("sbom-output").Changed || c.Flag("sbom-image-output").Changed || c.Flag("sbom-purl-output").Changed || c.Flag("sbom-image-purl-output").Changed {
sbomScanOption, err := parse.SBOMScanOptions(c)
if err != nil {
return options, nil, nil, err
}
Use golang.org/x/exp/slices.Contains ... instead of github.com/containers/common/pkg/util.StringInSlice, per linters. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
2024-01-31 23:03:20 +08:00
if !slices.Contains(sbomScanOption.ContextDir, contextDir) {
build,commit: add --sbom to scan and produce SBOMs when committing Add a --sbom flag to `buildah build` and `buildah commit` which will scan the rootfs and specified context directories to build SPDX or CycloneDX SBOMs and lists of package URLs. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
2023-12-05 03:05:38 +08:00
sbomScanOption.ContextDir = append(sbomScanOption.ContextDir, contextDir)
}
for _, abc := range additionalBuildContext {
if !abc.IsURL && !abc.IsImage {
sbomScanOption.ContextDir = append(sbomScanOption.ContextDir, abc.Value)
}
}
sbomScanOption.PullPolicy = pullPolicy
sbomScanOptions = append(sbomScanOptions, *sbomScanOption)
}
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
options = define.BuildOptions{
AddCapabilities: iopts.CapAdd,
Sort buildoptions and move cli/build functions to internal Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 20:51:57 +08:00
AdditionalBuildContexts: additionalBuildContext,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
AdditionalTags: tags,
AllPlatforms: iopts.AllPlatforms,
Annotations: iopts.Annotation,
Architecture: systemContext.ArchitectureChoice,
Args: args,
BlobDirectory: iopts.BlobCache,
Sort buildoptions and move cli/build functions to internal Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 20:51:57 +08:00
BuildOutput: iopts.BuildOutput,
build,cache: support pulling/pushing cache layers to/from remote sources Following commit * Initiates `cacheKey` or `layerKey` for intermediate images generated for layers. * Allows end users to upload cached layers with `cacheKey` to remote sources using `--cache-to`. `--cache-to` is a optional flag to be used with `buildah build` which publishes cached layers to remote sources. * Allows end users to use cached layers from `remote` sources with `--cache-from`. `--cache-from` is a optional flag to be used with `buildah build` and it pulls cached layers from remote sources in a step by step manner only if is a valid cache hit. Example * Populate cache source or use cached layers if already present ```bash buildah build -t test --layers --cache-to registry/myrepo/cache --cache-from registry/myrepo/cache . ``` Future: * `cacheKey` or `layerKey` model is only being used when working with remote sources however local cache lookup can be also optimized if its is altered to use `cacheKey` model instead of iterating through all the images in local storage. As discussed here References: * Feature is quite similar to `kaniko`'s `--cache-repo`: https://github.com/GoogleContainerTools/kaniko#--cache-repo Closes: issues#620 Signed-off-by: Aditya R <arajan@redhat.com>
2022-07-18 13:47:55 +08:00
CacheFrom: cacheFrom,
CacheTo: cacheTo,
build: support filtering cache by duration using --cache-ttl `build` or `bud` now supports a new flag `--cache-ttl` which accepts duration and allows end users to ignore cache images which are not under the specified duration. Following flag is useful for setups/platforms which heavily relies on `--layer` and buildah caching but want recompute certain `RUN` steps after specified duration to make sure specific `RUN` steps are always updated. Example `RUN dnf update` or `RUN dnf install` Closes: https://github.com/containers/buildah/issues/4160 Somewhat similar to kaniko's: https://github.com/GoogleContainerTools/kaniko#--cache-ttl-duration Signed-off-by: Aditya R <arajan@redhat.com>
2022-08-04 15:14:39 +08:00
CacheTTL: cacheTTL,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
CNIConfigDir: iopts.CNIConfigDir,
CNIPluginPath: iopts.CNIPlugInPath,
Add `buildah mkcw`, add `--cw` to `buildah commit` and `buildah build` Add a --cw option to `buildah build` and `buildah commit`, which takes a comma-separated list of arguments and produces an image laid out for use as a confidential workload: type: sev or snp attestation_url: location of a key broker server cpus: expected number of virtual CPUs to run with memory: expected megabytes of memory to run with workload_id: a distinguishing identifier for the key broker server ignore_attestation_errors: ignore errors registering the workload passphrase: for encrypting the disk image slop: extra space to allocate for the disk image At least one of attestation_url and passphrase must be specified in order for the encrypted disk image to be decryptable at run-time. Other arguments can be omitted. ignore_attestation_errors is intentionally undocumented, as it's mainly used to permit some amount of testing on systems which don't have the required hardware. Add an `mkcw` top-level command, for converting directly from an image to a confidential workload. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
2023-07-18 04:27:19 +08:00
ConfidentialWorkload: confidentialWorkloadOptions,
Sort buildoptions and move cli/build functions to internal Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 20:51:57 +08:00
CPPFlags: iopts.CPPFlags,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
CommonBuildOpts: commonOpts,
Compression: compression,
ConfigureNetwork: networkPolicy,
ContextDirectory: contextDir,
Devices: iopts.Devices,
DropCapabilities: iopts.CapDrop,
Err: stderr,
Sort buildoptions and move cli/build functions to internal Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 20:51:57 +08:00
Excludes: excludes,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
ForceRmIntermediateCtrs: iopts.ForceRm,
From: iopts.From,
Add support for --group-add to buildah from Allow containers running under buildah to use --group-add keep-groups, so that they can inherit access to the users groups. Also allow users to add supplimental groups to the container. Fixes: https://github.com/containers/buildah/issues/4476 Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-12-22 03:51:59 +08:00
GroupAdd: iopts.GroupAdd,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
IDMappingOptions: idmappingOptions,
IIDFile: iopts.Iidfile,
Sort buildoptions and move cli/build functions to internal Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 20:51:57 +08:00
IgnoreFile: iopts.IgnoreFile,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
In: stdin,
Isolation: isolation,
Sort buildoptions and move cli/build functions to internal Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 20:51:57 +08:00
Jobs: &iopts.Jobs,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
Labels: iopts.Label,
buildah: add --layer-label for setting labels on layers `--layer-label` allows users to set labels on intermediate labels agnostic of the labels set on actual image. Since there are use-cases where users want to perform operation on intermediate images only on the basis of certain labels. Closes: https://github.com/containers/buildah/issues/4933 Signed-off-by: Aditya R <arajan@redhat.com>
2023-08-02 15:29:19 +08:00
LayerLabels: iopts.LayerLabel,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
Layers: layers,
LogFile: iopts.Logfile,
LogRusage: iopts.LogRusage,
Sort buildoptions and move cli/build functions to internal Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 20:51:57 +08:00
LogSplitByPlatform: iopts.LogSplitByPlatform,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
Manifest: iopts.Manifest,
buildah: support for --retry and --retry-delay for push/pull failures Allows users to configure `--retry` attempts and `--retry-delay` duration using two additional flags for commands * buildah build * buildah pull * buildah push * buildah from * buildah add * buildah copy Closes: https://github.com/containers/buildah/issues/4018 Not sure how we can test retry attempts in CI, but added a test in tests/bud.bats which verfies we parse and added flag in other options for sanity parsing checking. Signed-off-by: Aditya R <arajan@redhat.com>
2022-08-22 14:46:39 +08:00
MaxPullPushRetries: iopts.Retry,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
NamespaceOptions: namespaceOptions,
NoCache: iopts.NoCache,
OS: systemContext.OSChoice,
Sort buildoptions and move cli/build functions to internal Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 20:51:57 +08:00
OSFeatures: iopts.OSFeatures,
OSVersion: iopts.OSVersion,
OciDecryptConfig: decryptConfig,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
Out: stdout,
Output: output,
OutputFormat: format,
Sort buildoptions and move cli/build functions to internal Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 20:51:57 +08:00
Platforms: platforms,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
PullPolicy: pullPolicy,
Quiet: iopts.Quiet,
RemoveIntermediateCtrs: iopts.Rm,
ReportWriter: reporter,
Runtime: iopts.Runtime,
RuntimeArgs: runtimeFlags,
RusageLogFile: iopts.RusageLogFile,
build,commit: add --sbom to scan and produce SBOMs when committing Add a --sbom flag to `buildah build` and `buildah commit` which will scan the rootfs and specified context directories to build SPDX or CycloneDX SBOMs and lists of package URLs. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
2023-12-05 03:05:38 +08:00
SBOMScanOptions: sbomScanOptions,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
SignBy: iopts.SignBy,
SignaturePolicyPath: iopts.SignaturePolicy,
build: support --skip-unused-stages for multi-stage builds In multi-stage builds buildah will skip stages which are unused (i.e stages which don't contribute anything to target stage directly or indirectly) however in certain cases users need to process these unused stages hence add support for `--skip-unused-stages` which allows users to control this behaviour. Ref: https://github.com/GoogleContainerTools/kaniko#flag---skip-unused-stages Closes: https://github.com/containers/buildah/issues/4243 Signed-off-by: Aditya R <arajan@redhat.com>
2022-09-15 18:00:23 +08:00
SkipUnusedStages: types.NewOptionalBool(iopts.SkipUnusedStages),
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
Squash: iopts.Squash,
SystemContext: systemContext,
Target: iopts.Target,
Timestamp: timestamp,
Sort buildoptions and move cli/build functions to internal Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 20:51:57 +08:00
TransientMounts: iopts.Volumes,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
UnsetEnvs: iopts.UnsetEnvs,
build,config: add support for --unsetlabel Just like `--unsetenv` following flag allows to unset image label. Signed-off-by: Aditya R <arajan@redhat.com>
2023-09-23 01:34:15 +08:00
UnsetLabels: iopts.UnsetLabels,
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
Use retry logic from containers/common Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2024-02-21 05:01:00 +08:00
if iopts.RetryDelay != "" {
options.PullPushRetryDelay, err = time.ParseDuration(iopts.RetryDelay)
if err != nil {
return options, nil, nil, fmt.Errorf("unable to parse value provided %q as --retry-delay: %w", iopts.RetryDelay, err)
}
// Following log line is used in integration test.
logrus.Debugf("Setting MaxPullPushRetries to %d and PullPushRetryDelay to %v", iopts.Retry, options.PullPushRetryDelay)
}
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
if iopts.Quiet {
Replace io/ioutil calls with os calls In golang 1.19, `io/ioutil` is fully deprecated preventing Buildah from compiling. Replace all calls with equivalent calls from the `os` package. Signed-off-by: Chris Evich <cevich@redhat.com>
2022-11-15 00:22:45 +08:00
options.ReportWriter = io.Discard
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
}
build: pass process environment variables by reference See: https://github.com/containers/buildah/issues/4688 Signed-off-by: Chris Bandy <bandy.chris@gmail.com>
2023-04-03 07:24:10 +08:00
options.Envs = LookupEnvVarReferences(iopts.Envs, os.Environ())
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
return options, containerfiles, removeAll, nil
}
build: accept arguments from file with --build-arg-file Allows codifying build arguments into a structured file, perhaps one named arguments.Containerargs The build arg file also accepts comments starting #, so automated tooling or CI/CD workflows can monitor arguments like versions to ensure they are up-to-date. Signed-off-by: Jack Wearden <jack@jackwearden.co.uk>
2023-03-25 18:32:47 +08:00
func readBuildArgFile(buildargfile string, args map[string]string) error {
argfile, err := os.ReadFile(buildargfile)
if err != nil {
return err
}
for _, arg := range strings.Split(string(argfile), "\n") {
Make cli.EncryptConfig,DecryptConfig, GetFormat public We want to share these functions with Podman, Podman currently has a slightly different version which is correct, so use correct version in Buildah and vendor it into Podman. Fixing: https://github.com/containers/podman/issues/18196 Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2023-05-19 04:28:21 +08:00
if len(arg) == 0 || arg[0] == '#' {
build: accept arguments from file with --build-arg-file Allows codifying build arguments into a structured file, perhaps one named arguments.Containerargs The build arg file also accepts comments starting #, so automated tooling or CI/CD workflows can monitor arguments like versions to ensure they are up-to-date. Signed-off-by: Jack Wearden <jack@jackwearden.co.uk>
2023-03-25 18:32:47 +08:00
continue
}
readBuildArg(arg, args)
}
return err
}
func readBuildArg(buildarg string, args map[string]string) {
av := strings.SplitN(buildarg, "=", 2)
if len(av) > 1 {
args[av[0]] = av[1]
} else {
// check if the env is set in the local environment and use that value if it is
if val, present := os.LookupEnv(av[0]); present {
args[av[0]] = val
} else {
delete(args, av[0])
}
}
}
Move options parsing out of build.go and into pkg/cli Attempting to share common code for CLI parsing between buildah build and podman build Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-06-07 02:58:38 +08:00
func getContainerfiles(files []string) []string {
var containerfiles []string
for _, f := range files {
if f == "-" {
containerfiles = append(containerfiles, "/dev/stdin")
} else {
containerfiles = append(containerfiles, f)
}
}
return containerfiles
}