Open 1player opened 2 years ago
Luap99
commented
2 years ago @baude PTAL
The problem with remote support is that remote build has to tar the full context dir and send it to the remote server. Currently the client only sends the yaml content to the server and the server does all the work. To make remote build work the client would need to parse the yaml and then build the images. This is significant more complex.
github-actions[bot]
commented
2 years ago A friendly reminder that this issue had no activity for 30 days.
rhatdan
commented
1 year ago @flouthoc PTAL
axel7083
commented
2 months ago The problem with remote support is that remote build has to tar the full context dir and send it to the remote server.
Why is it a problem ? It is what podman build is doing isn't it ? One possibility could be to have --build default to false on remote machine, so the context-dir is not send if it is not explicitly required
Luap99
commented
2 months ago The client doesn't parse the yaml so it has no idea what is specified in the file as such it can never perform any builds.
You would need a major rewrite of the API in order to allow such things and this is not trivial.
axel7083
commented
2 months ago The client doesn't parse the yaml so it has no idea what is specified in the file as such it can never perform any builds.
@Luap99 After looking a bit at the code, I still think that the client does not need to parse the file.
build mechanismLet's look at the build command and how it provide the context to the server. The client never parse the Containerfile, it creates a tar from the ContextDirectory (and other elements such as secrets).
Then it provide in the POST request at /build the tar file as the body
On the server side, it will ensure the content body is x-tar.
Then untar, and uses it as the ContextDirectory
kube play mechanismWhen using kube play according to the documentation, the default ContextDirectory will be the parent folder of the yaml file provided. Or the value defined by --context-dir option.
The body of the request kube play is not the context directory as it is not supported, but simply concat all the yaml resources
and provide them as body.
My question is, why just like the build command, where the Containerfile is not parsed by the client, and the context is simply send to the server, the same could be done for the kube play
Luap99
commented
2 months ago From the docs:
Kube play is capable of building images on the fly given the correct directory layout and Containerfiles. This option is not available for remote clients, including Mac and Windows (excluding WSL2) machines, yet. Consider the following excerpt from a YAML file:
apiVersion: v1
kind: Pod
metadata:
...
spec:
containers:
- name: container
image: foobar
...If there is a directory named foobar in the current working directory with a file named Containerfile or Dockerfile, Podman kube play builds that image and name it foobar. An example directory structure for this example looks like:
|- mykubefiles
|- myplayfile.yaml
|- foobar
|- ContainerfileThe build considers foobar to be the context directory for the build NOT . If there is an image in local storage called foobar, the image is not built unless the --build flag is used. Use --build=false to completely disable builds.
So without reading the file you cannot know what the dir on the client because the context dir is based of the image name foobar. Also without reading the file we wouldn't even know how to name the final image.
axel7083
commented
2 months ago So without reading the file you cannot know what the dir on the client because the context dir is based of the image name foobar. Also without reading the file we wouldn't even know how to name the final image.
I do not see the problem of sending the entire directory where myplayfile.yaml is, and let the backend uses what it needs after parsing it, just like the build command is sending all the context-dir without knowing in advance what the Containerfile will used.
Luap99
commented
2 months ago Sending a (possible) large directory by default is very bad.
axel7083
commented
2 months ago Sending a (possible) large directory by default is very bad.
I understand the concerns, context directory can be very big on build too, but we are still sending them. IMO the sizing issue is the user responsibility: when building an image or a pod making a context directory that is okey to deal with is on the user part.
I still think that this would be manageable, and could be improve by having the build option to false by default. Having this feature working on more platforms by supporting the remote feel like it would have a lot of benefits, overlapping the few drawback already facing when using podman build.
Luap99
commented
2 months ago If you want to propose a specific way on how to do it then sure please do so here.
You can also join our cabal meetings to discus it there, next one on July 2 (https://hackmd.io/gQCfskDuRLm7iOsWgH2yrg?both). So feel free to add this topic there.
Is this a BUG REPORT or FEATURE REQUEST? (leave only one on its own line)
/kind feature
Description
podman play kube --buildis not supported on remote podman. The documentation doesn't specify why, and I wasn't able to find any discussion of why exactly it isn't working, aspodman buildworks on remote mode.The use case is developing on immutable distributions like Fedora Silverblue. I'm running podman inside a toolbox, I can build images manually with
podman --remote build, I would likepodman play kubeto be able to build as well, so I only need one command to local development.Steps to reproduce the issue:
podman play kube --buildDescribe the results you received:
Error: unknown flag: --buildDescribe the results you expected:
Build to work on remote podman.
Additional information you deem important (e.g. issue happens only occasionally):
Output of
podman version: