94378a87b4
use `opts.MemBytes` for tmpfs size run mount instruction
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-10-19 20:16:01 +02:00
954c4721f7
use bytes as given size for tmpfs mount
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-10-19 19:47:17 +02:00
87e1fa7ecb
add size to tmpfs mounts
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-10-18 10:54:52 +02:00
a5d1cfc1e4
fix: provide only available capabilities to insecure environment
...
The problem this change is trying to fix are the environments where some
capabilities are already dropped, so they can't be granted to the
job with `--security=insecure`.
I know that probably fixed set of capabilities was implemented to
provide a stable build environment, but at the same time this breaks
environments with reduced capabilities.
Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>
2021-10-15 19:57:32 +03:00
4e32ae5630
Add support for ulimit
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-10-08 11:50:09 +02:00
ec65f412b6
Use gha cache on CI
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-10-05 10:51:48 +02:00
6094339341
Add support for shm size
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-10-01 16:07:29 +02:00
e5ecbf9722
Add BUILDKIT_SANDBOX_HOSTNAME build-arg
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-09-22 00:17:20 +02:00
5fcc94454f
Generate and embed build sources
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-09-18 01:39:35 +02:00
a9f1980ebb
Refactor cache metadata interface.
...
There are a few goals with this refactor:
1. Remove external access to fields that no longer make sense and/or
won't make sense soon due to other potential changes. For example,
there can now be multiple blobs associated with a ref (for different
compression types), so the fact that you could access the "Blob"
field from the Info method on Ref incorrectly implied there was just
a single blob for the ref. This is on top of the fact that there is
no need for external access to blob digests.
2. Centralize use of cache metadata inside the cache package.
Previously, many parts of the code outside the cache package could
obtain the bolt storage item for any ref and read/write it directly.
This made it hard to understand what fields are used and when. Now,
the Metadata method has been removed from the Ref interface and
replaced with getters+setters for metadata fields we want to expose
outside the package, which makes it much easier to track and
understand. Similar changes have been made to the metadata search
interface.
3. Use a consistent getter+setter interface for metadata, replacing
the mix of interfaces like Metadata(), Size(), Info() and other
inconsistencies.
Signed-off-by: Erik Sipsma <erik@sipsma.dev>
2021-08-25 19:15:09 +00:00
ac61da5890
update go to 1.17
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-08-16 19:56:45 -07:00
2893203136
add gateway.exec.extrahosts capability
...
Signed-off-by: Cory Bennett <cbennett@netflix.com>
2021-08-15 03:13:07 +00:00
0b683eb1ff
add missing ExtraHosts to gateway exec
...
Also adding tests for ExtraHosts and NetMode via gateway exec
Signed-off-by: Cory Bennett <cbennett@netflix.com>
2021-08-15 02:51:37 +00:00
67352249e7
dockerfile: fix parsing required key without value
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-08-12 09:46:47 -07:00
2bd37c8a7d
Merge pull request #2286 from aaronlehmann/exiterror-over-grpc
...
Allow ExitError type to be transmitted over GRPC
2021-08-11 15:51:23 -07:00
50ae0d8cf4
all: unify the go-digest package import alias to digest
...
Signed-off-by: Koichi Shiraishi <zchee.io@gmail.com>
2021-08-11 08:29:12 +09:00
671ae38fb7
all: unify the specs-go package import alias to ocispecs
...
ocispecs means "O"pen "C"ontainer "I"nitiative image-spec/"specs"-go/v1
opencontainers /image-spec/specs-go/v1
Signed-off-by: Koichi Shiraishi <zchee.io@gmail.com>
2021-08-11 08:29:09 +09:00
6034f46c3e
Merge pull request #2281 from thaJeztah/replace_deprecated_pkg_signal
...
replace use of deprecated github.com/docker/docker/pkg/signal
2021-08-10 10:50:47 -07:00
cea791d3fe
replace use of deprecated github.com/docker/docker/pkg/signal
...
This package was moved to a separate module in github.com/moby/sys/signal
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2021-08-02 12:19:45 +02:00
b8255fbceb
fix SecurityMode being dropped on gateway container Start
...
Signed-off-by: Cory Bennett <cbennett@netflix.com>
2021-07-30 19:33:44 +00:00
890c3f77b6
Allow ExitError type to be transmitted over GRPC
...
This will allow clients to retrieve exit error codes returned during a
solve without parsing the error messages.
Signed-off-by: Aaron Lehmann <alehmann@netflix.com>
2021-07-28 15:01:05 -07:00
a5b6c20c38
Update Dockerfile references to use 1.3
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-07-19 13:54:15 -07:00
18b49fd7dc
refactor to use util/bklog instead of using logurs directly
...
Signed-off-by: Morlay <morlay.null@gmail.com>
2021-07-13 11:42:31 +08:00
9df59934cd
Merge pull request #2218 from tonistiigi/error-suggest
...
dockerfile: add suggestions to how to fix certain errors
2021-07-07 10:52:07 -07:00
259fba7d43
dockerfile: move run network to stable channel
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-07-06 15:25:29 -07:00
4e4152832c
dockerfile: remove unnecessary error wrappings
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-07-02 17:29:32 -07:00
de5e10864d
dockerfile: add tests for error suggestions
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-07-02 17:29:32 -07:00
df9781b46c
dockerfile: provide suggestions for mount options
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-07-02 17:29:32 -07:00
768a12bd0d
dockerfile: suggest mistyped flag names
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-07-02 17:29:32 -07:00
277517e2a3
add error suggest pkg
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-07-02 17:29:27 -07:00
f5c34a05b8
Merge pull request #2047 from thaJeztah/improve_errors
...
Remove duplicate "not found" from some error messages
2021-07-01 21:36:33 -07:00
521727e9e2
Merge pull request #2201 from jedevc/dockerfile-heredocs-progress
...
Improve progress and history messages for heredoc-related commands
2021-07-01 12:46:31 -07:00
5840ec0de1
Merge pull request #2213 from jedevc/dockerfile-heredoc-parsing
...
Improve heredoc parsing to allow more generic shell-words
2021-07-01 12:46:14 -07:00
c99b558ec3
Improve progress and history messages for heredoc-related commands
...
Signed-off-by: Justin Chadwell <me@jedevc.com>
2021-07-01 09:15:51 +01:00
ec1bfc88f6
Improve heredoc parsing to allow more generic words
...
Previously, heredoc names were restricted to simple alphanumeric
strings. However, heredocs should support much more complex use-cases,
including quoting anywhere, as well as allowing special symbols like `.`
for easily expressing file extensions.
This patch adds support for these more complex cases, by using the shell
lexer to parse each heredoc name. Additionally, we include improvements
to the lexer to optionally preserve escape tokens to avoid problems when
lexing words that have already been lexed before.
Signed-off-by: Justin Chadwell <me@jedevc.com>
2021-07-01 09:13:58 +01:00
8d70a9e098
Merge pull request #2215 from tonistiigi/improve-errors
...
Improve build errors and remove useless grpc prefix
2021-07-01 14:33:40 +09:00
a27d7c3d81
exec: improve error message on exec errors
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-06-30 21:10:37 -07:00
be8ab28a0a
Merge pull request #2081 from tonistiigi/local-differ-none
...
Allow none differ on local source to avoid false Dockerfile matches
2021-07-01 09:42:24 +09:00
921b0de92e
Merge pull request #2209 from jedevc/dockerfile-heredocs-onbuild
...
Add support for heredocs in the ONBUILD command
2021-06-29 21:33:03 -07:00
ee39f5dd68
dockerfile: use none differ for dockerfile/dockerignore
...
This avoids wrong metadata matches on small files
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-06-29 16:17:08 -07:00
5ad1ff3e23
Add support for heredocs with ONBUILD
...
Signed-off-by: Justin Chadwell <me@jedevc.com>
2021-06-29 11:30:09 +01:00
dc86c52cc0
dockerfile: fix git version detection
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-06-28 22:05:55 -07:00
c773a215c1
integration: add common context base to all integration tests
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-06-18 20:49:49 -07:00
111153eafb
dockerfile: ensure config resolve errors keep source location
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-06-16 22:16:16 -07:00
e49dc642cf
Fix file modes with remote ADD commands
...
Signed-off-by: Justin Chadwell <me@jedevc.com>
2021-06-14 18:52:13 +01:00
4518627f4f
Merge pull request #2132 from jedevc/dockerfile-heredocs
...
Dockerfile heredocs
2021-06-10 09:23:04 -07:00
fa632c5b21
dockerfile: add documentation for here-docs
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-06-10 08:08:17 -07:00
2d35001217
Add integration tests for dockerfile heredocs
...
Signed-off-by: Justin Chadwell <me@jedevc.com>
2021-06-09 10:53:25 +01:00
de7fcce614
Integrate heredoc support into ADD/COPY and RUN
...
This modifies the command structures to support inline files, as well as
provides the logic to compile them down into appropriate LLB
definitions.
Signed-off-by: Justin Chadwell <me@jedevc.com>
2021-06-09 10:53:25 +01:00
c362e15715
Add support for parsing heredocs in ADD/COPY and RUN
...
Signed-off-by: Justin Chadwell <me@jedevc.com>
2021-06-09 10:53:20 +01:00
CrazyMax
Andrey Smirnov
Erik Sipsma
Tonis Tiigi
Cory Bennett
Koichi Shiraishi
Sebastiaan van Stijn
Aaron Lehmann
Morlay
Justin Chadwell
Akihiro Suda