simple docker build changing CMD and ENTRYPOINT of resulting image

[josh-m-sharpe]

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment

Overview of the Issue

the resulting image packer produces is changing the CMD and Entrypoint (possibly other things)

build {
  name = "amzn2-ctm-core"

  source "source.docker.dockerhub" {
    image  = "amazonlinux:2"
  }

  post-processors {
    post-processor "docker-tag" {
      tags = [
        "core_${local.timestamp}",
        "core_latest"
      ]
    }
  }
}

After building this, comparing the images:

# The source image:
$ docker inspect amazonlinux:2 | jq -s ".[0][0].Config.Cmd"
[
  "/bin/bash"
]
$ docker inspect amazonlinux:2 | jq -s ".[0][0].Config.Entrypoint"
null

# the resulting image
$ docker inspect acct1234.dkr.ecr.us-east-1.amazonaws.com/amzn2-ctm:core_20221118194409 | jq -s ".[0][0].Config.Cmd"
null
$ docker inspect acct1234.dkr.ecr.us-east-1.amazonaws.com/amzn2-ctm:core_20221118194409 | jq -s ".[0][0].Config.Entrypoint"
[
  "/bin/sh"
]

Why is packer doing this?

Packer version

1.8.4

Operating system and Environment details

built on, and sourcing from: amazonlinux;2

[josh-m-sharpe]

Here's another similar example:

build {
  name = "amzn2-ctm-core"

  source "source.docker.dockerhub" {
    image  = "amazonlinux:2"
    changes = [
      "ENTRYPOINT [\"/bin/bash\", \"-l\", \"-c\"]",
      "CMD /bin/bash"
    ]
  }

  post-processors {
    post-processor "docker-tag" {
      tags = [
        "core_${local.timestamp}",
        "core_latest"
      ]
    }
  }
}

Results in docker inspect with this:

            "Cmd": [
                "/bin/sh",
                "-c",
                "/bin/bash"
            ],
            "Entrypoint": [
                "/bin/bash",
                "-l",
                "-c"
            ],

This is very unexpected.

[huyz]

Yes this breaks Dockerfile images with esoteric errors.