Page MenuHomePhabricator
Create Task
Maniphest T123237

Provide production jessie image with node 4.2; use this for service-runner build command
Closed, InvalidPublic
Actions

Description

The service-runner build functionality uses a jessie docker image to compile dependencies for deploy repositories. Now that production is switching to a Node 4.2 backport we should switch to a jessie image that is using the precise packages we are using in production.

The simplest approach should be to layer on top of the regular jessie image, by

  • configuring the Wikimedia repository, and
  • running apt-get update & upgrade, followed by an installation of nodejs.

Alternatively, we could build a complete image from scratch using the wikimedia mirror of jessie. Given the large overlap with production I'm not sure that it would be worth the effort. @MoritzMuehlenhoff, @fgiunchedi, @faidon, @mobrovac, @Eevans, @Pchelolo: Any thoughts on this?

Related Objects
Search...

Event Timeline

GWicke created this task.Jan 11 2016, 4:37 PM
GWicke raised the priority of this task from to High.
GWicke updated the task description. (Show Details)
GWicke added projects: SRE, Services, RESTBase.
GWicke added subscribers: santhosh, yuvipanda, cscott and 13 others.
GWicke updated the task description. (Show Details)Jan 11 2016, 4:40 PM
GWicke set Security to None.
Pchelolo added a comment.EditedJan 11 2016, 5:24 PM

@GWicke We already support alternative node versions in docker build script. See T114399 (resolved by this PR), so the easiest way to resolve this task is to add node version config to RESTBase config and other services configs as we switch them to 4.2

mobrovac added a comment.Jan 11 2016, 6:09 PM
In T123237#1924514, @Pchelolo wrote:

We already support alternative node versions in docker build script.

+1. While the service-runner's docker script uses the version provided by nvm, I'd say this leaves enough flexibility so that service-runner isn't tied to our apt repo.

GWicke added a comment.Jan 11 2016, 6:22 PM

My concern with using the nvm version is that it opens up some chance of binary dependency disagreements between the build environment & what we run in production. Building binary dependencies against the exact node & other library versions as used in production avoids this risk.

Given the relatively small effort involved, I think creating a WMF Jessie image is worth it. It should also be useful for CI and mediawiki-containers. We could make that the default target used by service-runner, with upstream jessie and ubuntu still supported if desired.

mobrovac added a comment.Jan 11 2016, 6:27 PM
In T123237#1924848, @GWicke wrote:

My concern with using the nvm version is that it opens up some chance of binary dependency disagreements between the build environment & what we run in production. Building binary dependencies against the exact node & other library versions as used in production avoids this risk.

4.2.0 is marked as stable in nvm so I doubt that this will present a real issue in practice.

GWicke added a comment.Jan 11 2016, 6:30 PM

4.2.0 is marked as stable in nvm so I doubt that this will present a real issue in practice.

I agree that it's unlikely, but given the limited effort involved & the high stakes I think it's worth ruling out any incompatibilities.

yuvipanda unsubscribed.Jun 30 2016, 2:06 PM
GWicke lowered the priority of this task from High to Medium.Oct 12 2016, 10:30 PM
GWicke edited projects, added Services (later); removed Services.
GWicke added a subscriber: yuvipanda.

@yuvipanda, IIRC you mentioned that you were working on a WMF Jessie image. Do you have a pointer to this?

yuvipanda added a subscriber: Joe.Oct 12 2016, 10:32 PM

There's a 'docker-registry.tools.wmflabs.org/wikimedia-jessie' you can pull. I think at some point @Joe might be working on having this be served from production.

yuvipanda added a comment.Oct 12 2016, 10:32 PM

(No guarantees are made about the stability of that docker image, but I'll notify you in case we change it)

GWicke added a comment.Oct 12 2016, 11:39 PM

@yuvipanda: Awesome, thanks!

Phabricator_maintenance removed a subscriber: yuvipanda.Jun 7 2017, 6:45 PM
mobrovac added a project: Platform Team Legacy (Later).Dec 20 2018, 12:07 PM
Phabricator_maintenance moved this task from Backlog to Acknowledged on the SRE board.Jan 26 2019, 8:28 PM
Pchelolo closed this task as Invalid.Jul 31 2019, 10:11 PM

We're updating to k8s and not running node 4 anymore.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL