Page MenuHomePhabricator
Create Task
Maniphest T352003

Create a dedicated image for Debian package builds
Closed, ResolvedPublic
Actions

Description

Debian package builds require devscripts and build-essential to be installed. Right now the CI job installs these on every run. If we provide a dedicated image with the two packages preinstalled it would reduce the duration of package builds.

Details

SubjectRepoBranchLines +/-
Add new release of wmf-debci images for buildingoperations/docker-images/production-imagesmaster+14 -0
wmf-debci: Also create man1 diroperations/docker-images/production-imagesmaster+9 -7
wmf-debci: fix templating in Dockerfile RUN commandoperations/docker-images/production-imagesmaster+21 -3
wmf-debci: also install recommended dependenciesoperations/docker-images/production-imagesmaster+37 -6
add optional install_recommends to apt_installoperations/docker-images/docker-pkgmaster+9 -1
add wmf-debci imageoperations/docker-images/production-imagesmaster+41 -0
Customize query in gerrit
TitleReferenceAuthorSource BranchDest Branch
Run apt-get update before mk-build-depsrepos/sre/wmf-debci!7mvernonaptupdatemain
use wmf-debci docker imagesrepos/sre/wmf-debci!6jeltouse-wmf-debci-imagesmain
Customize query in GitLab

Related Objects

Event Timeline

LSobanski created this task.Nov 27 2023, 9:45 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 27 2023, 9:45 AM
MatthewVernon subscribed.Nov 27 2023, 9:47 AM

To be clear - this needs to be one image per suite we currently support and predictably named so builddebs.yml can use these images instead of docker-registry.wikimedia.org/${SUITE}

Jelto subscribed.Nov 27 2023, 1:16 PM

So to sum this up, we need a bullseye, bookworm and maybe a buster image which contain the following packages:

  • dpkg-dev
  • dgit
  • git
  • ca-certificates
  • devscripts
  • build-essential

That are at least all apt packages which I found in https://gitlab.wikimedia.org/repos/sre/wmf-debci/-/blob/main/builddebs.yml?ref_type=heads. @MatthewVernon does this makes sense? Or do we need devscripts and build-essential only?

Also the question is where and how to build this images. We could setup a kokkuri image build in GitLab. But then we would have to use kokurri and blubber, which creates opinionated container images. I'm not sure if this would interfere with the Debian package builds. Afaik image builds using plain Dockerfiles is not implemented/allowed yet (T351792). So we may be blocked by T351792 here.

LSobanski changed the task status from Open to Stalled.Nov 27 2023, 4:22 PM

Stalled until we have clarity on Dockerfile based builds in Gitlab.

LSobanski triaged this task as Medium priority.Nov 27 2023, 4:22 PM
LSobanski moved this task from Incoming to Backlog on the collaboration-services board.
MatthewVernon added a comment.Nov 27 2023, 4:26 PM

I don't feel strongly, but would incline to just build-essential and devscripts? [that'll pull in dpkg-dev]: that way packages will declare a correct set of Build-Depends (or not build), and git, dgit, ca-certificates are all pretty small so I don't think they'll extend build times quite as much (plus they're only needed for some of the optional jobs).

MoritzMuehlenhoff subscribed.Nov 27 2023, 4:42 PM
Joe subscribed.Nov 30 2023, 10:41 AM

These images should be in the base images repository at operations/docker-images/production-images that gets built via docker-pkg as part of our pipeline.

So there is no reason for this task to be blocked on dockerfile builds on gitlab (the only thing blocked by that is actually moving the production-images repository to build its images on gitlab instead than on the build hosts.

gerritbot added a comment.Dec 1 2023, 2:07 PM

Change 979355 had a related patch set uploaded (by Jelto; author: Jelto):

[operations/docker-images/production-images@master] add wmf-debci image

https://gerrit.wikimedia.org/r/979355

gerritbot added a project: Patch-For-Review.Dec 1 2023, 2:07 PM
Jelto changed the task status from Stalled to Open.Dec 1 2023, 2:09 PM
Jelto claimed this task.
Jelto moved this task from Backlog to Work in Progress on the collaboration-services board.
gerritbot added a comment.Dec 4 2023, 3:19 PM

Change 979355 merged by Jelto:

[operations/docker-images/production-images@master] add wmf-debci image

https://gerrit.wikimedia.org/r/979355

Maintenance_bot removed a project: Patch-For-Review.Dec 4 2023, 3:31 PM
CodeReviewBot added a project: Patch-For-Review.Dec 5 2023, 10:52 AM

jelto opened https://gitlab.wikimedia.org/repos/sre/wmf-debci/-/merge_requests/6

use wmf-debci docker images

gerritbot added a comment.Dec 6 2023, 1:23 PM

Change 980864 had a related patch set uploaded (by Jelto; author: Jelto):

[operations/docker-images/docker-pkg@master] add optional install_recommends to apt_install

https://gerrit.wikimedia.org/r/980864

gerritbot added a comment.Dec 7 2023, 9:07 AM

Change 980864 abandoned by Jelto:

[operations/docker-images/docker-pkg@master] add optional install_recommends to apt_install

Reason:

in favor of I4c614a836ade6d101de6d861195c702d63901bdd

https://gerrit.wikimedia.org/r/980864

gerritbot added a comment.Dec 11 2023, 9:23 AM

Change 981178 had a related patch set uploaded (by Jelto; author: Giuseppe Lavagetto):

[operations/docker-images/production-images@master] wmf-debci: also install recommended dependencies

https://gerrit.wikimedia.org/r/981178

gerritbot added a comment.Dec 11 2023, 9:31 AM

Change 981178 merged by Jelto:

[operations/docker-images/production-images@master] wmf-debci: also install recommended dependencies

https://gerrit.wikimedia.org/r/981178

gerritbot added a comment.Dec 11 2023, 10:28 AM

Change 982041 had a related patch set uploaded (by Jelto; author: Jelto):

[operations/docker-images/production-images@master] wmf-debci: fix templating in Dockerfile RUN command

https://gerrit.wikimedia.org/r/982041

gerritbot added a comment.Dec 11 2023, 11:58 AM

Change 982041 merged by Jelto:

[operations/docker-images/production-images@master] wmf-debci: fix templating in Dockerfile RUN command

https://gerrit.wikimedia.org/r/982041

CodeReviewBot added a comment.Dec 11 2023, 12:44 PM

jelto merged https://gitlab.wikimedia.org/repos/sre/wmf-debci/-/merge_requests/6

use wmf-debci docker images

Jelto added a comment.Dec 11 2023, 12:54 PM

The dedicated image for wmf-debci is available now. I triggered a small test job and Debian package building still works. @MatthewVernon you have more advanced use cases already with swift. Can you check if the pipelines for swift still work?

We have images for all three Debian suites now:

docker-registry.discovery.wmnet/wmf-debci-bookworm:0.0.3
docker-registry.discovery.wmnet/wmf-debci-buster:0.0.3
docker-registry.discovery.wmnet/wmf-debci-bullseye:0.0.3

(0.0.2 had a little typo with the Jinja templating and image builds failed on the build host).

Maintenance_bot removed a project: Patch-For-Review.Dec 11 2023, 1:10 PM
MatthewVernon added a comment.Dec 11 2023, 1:35 PM

I think we may be missing an apt update step now - I now get failures like https://gitlab.wikimedia.org/repos/data_persistence/swift/-/jobs/174503 :

Investigating (0) swift-build-deps:amd64 < 2.26.0-10+deb11u1+wmf1 @iU mK Nb Ib >
Broken swift-build-deps:amd64 Depends on dh-exec:amd64 < none @un H >
  Removing swift-build-deps:amd64 because I can't find dh-exec:amd64
Done

dh-exec is in bullseye - https://packages.debian.org/bullseye/dh-exec which I suspect a missing apt update (or apt-get update).

CodeReviewBot added a project: Patch-For-Review.Dec 11 2023, 2:03 PM

mvernon opened https://gitlab.wikimedia.org/repos/sre/wmf-debci/-/merge_requests/7

Run apt-get update before mk-build-deps

MatthewVernon added a comment.Dec 11 2023, 2:03 PM

I think https://gitlab.wikimedia.org/repos/sre/wmf-debci/-/merge_requests/7 will fix this.

CodeReviewBot added a comment.Dec 11 2023, 2:36 PM

mvernon merged https://gitlab.wikimedia.org/repos/sre/wmf-debci/-/merge_requests/7

Run apt-get update before mk-build-deps

MatthewVernon added a comment.Dec 11 2023, 2:47 PM

@Jelto my various pipelines in repos I use for testing (pcre2 and swift) are now all passing.

Maintenance_bot removed a project: Patch-For-Review.Dec 11 2023, 3:10 PM
Jelto closed this task as Resolved.Dec 13 2023, 7:29 AM
In T352003#9396391, @MatthewVernon wrote:

@Jelto my various pipelines in repos I use for testing (pcre2 and swift) are now all passing.

Great, thanks for testing!

Then I'll close the task. If we have additional requirements then we can just add it to the wmf-debci images.

gerritbot added a comment.Dec 20 2023, 12:17 AM

Change 984297 had a related patch set uploaded (by BCornwall; author: BCornwall):

[operations/docker-images/production-images@master] wmf-debci: Also create man1 dir

https://gerrit.wikimedia.org/r/984297

gerritbot added a project: Patch-For-Review.Dec 20 2023, 12:17 AM
gerritbot added a comment.Jan 3 2024, 5:35 PM

Change 984297 merged by BCornwall:

[operations/docker-images/production-images@master] wmf-debci: Also create man1 dir

https://gerrit.wikimedia.org/r/984297

Maintenance_bot removed a project: Patch-For-Review.Jan 3 2024, 6:30 PM
gerritbot added a comment.Jan 4 2024, 9:43 PM

Change 987837 had a related patch set uploaded (by BCornwall; author: BCornwall):

[operations/docker-images/production-images@master] Add new release of wmf-debci images for building

https://gerrit.wikimedia.org/r/987837

gerritbot added a project: Patch-For-Review.Jan 4 2024, 9:43 PM
gerritbot added a comment.Jan 4 2024, 9:47 PM

Change 987837 merged by BCornwall:

[operations/docker-images/production-images@master] Add new release of wmf-debci images for building

https://gerrit.wikimedia.org/r/987837

Maintenance_bot removed a project: Patch-For-Review.Jan 4 2024, 10:30 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL