[Bug 1926732] [NEW] Add ubuntu-oci project for building OCI-ready tarballs with livecd-rootfs

Launchpad Bug Tracker 1926732 at bugs.launchpad.net
Fri Apr 30 13:12:19 UTC 2021


You have been subscribed to a public bug by Thomas Bechtold (toabctl):

[Impact]

Currently the ubuntu-base livecd-rootfs project is used to build tarballs that are the base for building docker/OCI images.
The tarballs produced with the ubuntu-base project are modified externally (see https://github.com/tianon/docker-brew-ubuntu-core/blob/master/update.sh ) to create the "official" ubuntu images on dockerhub.

When including the ubuntu-oci project into livecd-rootfs, we can build
tarballs that already contain the changes that are currently done
externally. This has multiple advantages:

1) a Dockerfile using that tarball would no longer have to modify anything (means less layers)
2) publishing new OCI images no longer depends on the external dockerhub image creation. Currently eg. the AWS ECR ubuntu containers depend on the containers from dockerhub. That would be no longer the case with this change
3) Possible faster reaction on CVEs. no longer depending on external processes.

[Test Plan]

1) Build a test ubuntu-oci tarball with ubuntu-old-fashioned:

./scripts/ubuntu-bartender/ubuntu-bartender --no-cleanup --  --series
impish --image-format plain --project ubuntu-oci --subproject minimized

2) create a Dockerfile using the tarball created in step 1):

cat << EOF > Dockerfile
FROM scratch
ADD ubuntu-impish-oci-cloudimg-amd64-root.tar.gz /
CMD ["/bin/bash"]
EOF

3) build the container

docker build .

4) run something in the container:

docker run -it $container-id uname -a

5) check the size of the docker image and compare with the image for the
same series available on dockerhub


[Where problems could occur]

This change could break other livecd-rootfs projects which might lead to
failed builds. But beside that, there is nothing I can think of that
would be affected by this change.

[Other Info]

When this is accepted, there will be livefs builds available at
https://launchpad.net/~cloud-images-release-
managers/+livefs/ubuntu/$SERIES/ubuntu-oci

** Affects: livecd-rootfs (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: livecd-rootfs (Ubuntu Bionic)
     Importance: Undecided
     Assignee: Thomas Bechtold (toabctl)
         Status: In Progress

** Affects: livecd-rootfs (Ubuntu Focal)
     Importance: Undecided
     Assignee: Thomas Bechtold (toabctl)
         Status: In Progress

** Affects: livecd-rootfs (Ubuntu Groovy)
     Importance: Undecided
     Assignee: Thomas Bechtold (toabctl)
         Status: In Progress

** Affects: livecd-rootfs (Ubuntu Hirsute)
     Importance: Undecided
     Assignee: Thomas Bechtold (toabctl)
         Status: In Progress

-- 
Add ubuntu-oci project for building OCI-ready tarballs with livecd-rootfs
https://bugs.launchpad.net/bugs/1926732
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is subscribed to the bug report.



More information about the Ubuntu-sponsors mailing list