The current GRR implementation is not repackaging the GRR clients for other architectures (ie Linux, Mac & Windows).
At the same time it also relies on Google Cloud Build to build the grr-client container image.
This PR proposes to use Kaniko (https://github.com/GoogleContainerTools/kaniko) to build container images from a Dockerfile inside a container or Kubernetes cluster.
What is the feature you are proposing to solve the problem?
Kaniko (https://github.com/GoogleContainerTools/kaniko) allows for building container images from a Dockerfile inside a container or Kubernetes cluster.
This enables that we can build the grr-client container without having to rely on external docker/build environments like for example Google Cloud Build.
Furthermore, by leveraging kaniko to build the grr-client within the GRR cluster on GKE we can also repackage the GRR client packages for the other architectures (ie Linux, Mac & Windows) and upload them to the GRR server.
Name and Version
charts/grr 1.0.3
What is the problem this feature will solve?
The current GRR implementation is not repackaging the GRR clients for other architectures (ie Linux, Mac & Windows). At the same time it also relies on Google Cloud Build to build the grr-client container image. This PR proposes to use Kaniko (https://github.com/GoogleContainerTools/kaniko) to build container images from a Dockerfile inside a container or Kubernetes cluster.
What is the feature you are proposing to solve the problem?
Kaniko (https://github.com/GoogleContainerTools/kaniko) allows for building container images from a Dockerfile inside a container or Kubernetes cluster. This enables that we can build the grr-client container without having to rely on external docker/build environments like for example Google Cloud Build. Furthermore, by leveraging kaniko to build the grr-client within the GRR cluster on GKE we can also repackage the GRR client packages for the other architectures (ie Linux, Mac & Windows) and upload them to the GRR server.
What alternatives have you considered?
No response