Skip to content

Decouple extend phase from kaniko #331

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
natalieparellano wants to merge 5 commits into
base: main
Choose a base branch
from
Open

Decouple extend phase from kaniko #331

natalieparellano wants to merge 5 commits into from

Conversation

@natalieparellano
Copy link
Member

@natalieparellano natalieparellano commented Apr 10, 2025
edited
Loading

Decouple extend phase from kaniko
4a2d228 
Signed-off-by: Natalie Arellano <narellano@vmware.com>
@buildpack-bot
Copy link
Member

buildpack-bot commented Apr 10, 2025

Maintainers,

As you review this RFC please queue up issues to be created using the following commands:

/queue-issue <repo> "<title>" [labels]...
/unqueue-issue <uid>

Issues

(none)

Add code references
13d2047 
Signed-off-by: Natalie Arellano <narellano@vmware.com>
natalieparellano
natalieparellano commented Apr 11, 2025
View reviewed changes
text/0000-extract-extender.md Outdated
-rw-r--r-- 0:0 560 B └── lifecycle.toml
```

* When creating builders, pack will inspect the lifecycle version provided and pull the extender with the same version from the GitHub releases page.
Copy link
Member Author

@natalieparellano natalieparellano Apr 11, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actually, this is just as non-declarative as looking for "sibling" artifacts, and would prevent builder creation in offline environments. We should probably go the uri route...

Natalie Arellano added 2 commits April 11, 2025 13:14
Not so opinionated about separate delivery
023b325 
Signed-off-by: Natalie Arellano <narellano@vmware.com>
Link and wording
522c540 
Signed-off-by: Natalie Arellano <narellano@vmware.com>
natalieparellano
natalieparellano commented Apr 11, 2025
View reviewed changes
text/0000-extract-extender.md Outdated
* Using the builder image (as before) when doing build image extension
* Using the run image + extender binary from the _extender_ image (this is different) when doing run image extension
* See [here](https://github.com/buildpacks/pack/blob/a1edf2e9e3837c2e9eeca019b97c28896b40f778/pkg/client/build.go#L662) for how this is working today in pack
* Other platforms would need to make a similar change in order to upgrade to a newer lifecycle version IF they are looking in the lifecycle image for the extender binary (vs the builder)
Copy link
Member Author

@natalieparellano natalieparellano Apr 11, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do such platforms exist? Anecdotally the support requests I've seen re: run image extension (vs switching) were using pack build

@modulo11
Copy link

modulo11 commented May 16, 2025

If we had the option to remove extensions, I would remove them completely. Anyway, we tried some experiments with buildah to programmatically build an image in https://github.tools.sap/I549554/buildah-rootless/, which might be helpful during evaluation.

@natalieparellano
Update approach
cdee8c7 
* Removed the separate delivery mechanism for the extender
* Added the optional "slim" version concept for future consideration
* Simplified the migration path

Signed-off-by: Natalie Arellano <natalie.p.arellano@gmail.com>
@WYGIN
Copy link

WYGIN commented Jun 7, 2025

I am happy to help on this @natalieparellano if the lifecycle gonna use buildkit

@sambhav
Copy link
Member

sambhav commented Jun 7, 2025

FYI https://www.linkedin.com/posts/danlorenc_github-chainguard-devkaniko-build-container-activity-7336385564310446080-gPDH?utm_source=share&utm_medium=member_android&rcm=ACoAABdR7SsBvrTB1PKPq3dEXArh2MVgInLCBro

jjbustamante
jjbustamante reviewed Jun 9, 2025
View reviewed changes
text/0000-extract-extender.md

## 2. Providing an alternative implementation of the extender

* We will need to explore alternatives to kaniko for Dockerfile application.
Copy link
Member

@jjbustamante jjbustamante Jun 9, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does the reference from @sambhav change our approach here? If Kaniko is going to be maintained by Chainguard, I will suggest changing our references in go.mod to that fork, which will unblock us for security updates.
We can think on providing an alternative without the urgency we have now. right?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jjbustamante jjbustamante jjbustamante left review comments

@jabrown85 jabrown85 jabrown85 approved these changes

Assignees

@jjbustamante jjbustamante

Labels

team/implementation type/rfc

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

9 participants

@natalieparellano @buildpack-bot @modulo11 @WYGIN @sambhav @jabrown85 @jjbustamante @jkutner