artifacts: sort out remote bucket layout for multi-arch artifacts #463
Comments
|
/cc @jlebon @dustymabe as they may have some opinions on this already. For reference, on ContainerLinux the basearch was part of the "board name" which was exposed as a separate directory hierarchy. See https://alpha.release.core-os.net/arm64-usr/ vs https://alpha.release.core-os.net/amd64-usr/. |
|
One thing that makes this tricky is the build ids. Right now it's basically determined by the OSTree version of the commit + an "image generation version". If we instead made it external to the process (i.e. we stopped using Then we can pretty easily gather the builds from all the arches and present them however we want in the bucket. If we want the same |
I think this is a good point. Depending on how we set this up we could have a higher level first step in our entire build process that lays the foundation for the different architecture builds to happen and then have the different architecture builds happen in parallel.. i.e.
agree |
|
Strongly related to this is the concept of having a central orchestrator schedule builds on distinct machines (like Koji does). I don't think cosa should be an orchestrator (that's https://github.com/coreos/fedora-coreos-pipeline ) - but it should enable and define baseline mechanics. Specifically I think the pipeline should schedule a |
|
Some related discussions in #159 around build layout.
Hmm, I might be missing something, though wouldn't all the nodes be connected to the same OCP cluster? So then we should be able to share scratch space and merge locally, right? E.g. that way we don't upload lots of images if one of the arches failed. Actually, that's probably something we need to discuss as well as part of this (re. multi-arch nodes). AFAIK CentOS CI only has x86_64 which means we'd have to emulate other arches... Not sure offhand if Fedora infra's OpenShift cluster is multi-arch. |
yes that would be nice.
I've brought that up with brian stinson several times. They have hardware I believe they just don't have everything wired up or a new enough version of openshift that supports it |
|
we have hashed some of this out over in coreos/fedora-coreos-tracker#189. |
|
So right now the FCOS pipeline is not strictly following the layout in coreos/fedora-coreos-tracker#189: builds are directly under I'd like to fix this, even if we ship preview for x86_64 only. Though one question here is whether we want to make this structure native to cosa or something we do in post. I would much prefer the former, but it is also a significant change. Would probably want to modify the builds:
- id: 30.1234
archs:
- x86_64
- ppc64le
- ...And a top-level |
Mmm...it'd kind of have to be a "mode" right? I wouldn't want that for local builds I think. Or, at least |
+1 - I think I'd rather have COSA able to handle this so we get used to the structure everywhere. One thing to keep in mind is that there will most likely still be some sort of post step because we'll have to merge the outputs of multiple builds (one for each arch). |
Hmm, though if we don't change the default behaviour for new workdirs, we'll have to carry this forever, vs. hopefully one day being able to drop support for it entirely.
Right, the assumption here is that all |
+1 on doing this in cosa |
Still a lot of prep patches to split out and some more testing to do,
but it works pretty well so far.
```
$ find builds
builds
builds/builds.json
builds/30.1
builds/30.1/x86_64
builds/30.1/x86_64/coreos-assembler-config.tar.gz
builds/30.1/x86_64/coreos-assembler-config-git.json
builds/30.1/x86_64/fedora-coreos-30.1-qemu.qcow2
builds/30.1/x86_64/ostree-commit-object
builds/30.1/x86_64/meta.json
builds/30.1/x86_64/manifest-lock.generated.json
builds/30.1/x86_64/commitmeta.json
builds/30.1/x86_64/ostree-commit.tar
builds/30.1/x86_64/fedora-coreos-30.1-installer-kernel
builds/30.1/x86_64/fedora-coreos-30.1-installer-initramfs.img
builds/30.1/x86_64/fedora-coreos-30.1-installer.iso
builds/30.1/x86_64/fedora-coreos-30.1-metal.raw
builds/30.1/x86_64/fedora-coreos-30.1-openstack.qcow2
builds/latest
$ cat builds/builds.json
{
"schema-version": "1.0.0",
"builds": [
{
"id": "30.1",
"archs": [
"x86_64"
]
}
],
"timestamp": "2019-06-28T20:50:54Z"
```
For more context, see:
coreos#463 (comment)
The key thing to note here is that this only affects new workdirs
currently. I'll also be writing a separate migration tool so that we can
adapt S3 buckets to the new layout.
Adapting to this will definitely be a bit painful, but I think it's
worth it overall. Making this native to cosa means that we don't need a
translation layer between our S3 bucket and cosa, we can parallelize
things more easily in the future, and e.g. we can transparently use
"bulk" commands like `cosa buildupload` and `cosa compress`.
|
So if we add the basearch to artifacts names, an alternative approach here is to simply keep it all together as mentioned higher up. I think that would work, but would make the file hierarchy messier (except the devel case), and would still require some kind of breaking change to |
|
Of the two options I think I'd prefer having the separate directories. |
To be clear, that's my preference as well. 😄 |
For FCOS, we need to be able to drive versioning from outside of `cosa build` (see [1]). This will also be used in the very short-term to manually version the first few FCOS preview releases before making it automated. [1] coreos#463 (comment)
For FCOS, we need to be able to drive versioning from outside of `cosa build` (see [1]). This will also be used in the very short-term to manually version the first few FCOS preview releases before making it automated. [1] #463 (comment)
|
I'm going to close this, as the original ask of this ticket is now fixed by #580 and coreos/fedora-coreos-tracker#208. There's some related work around versioning and orchestration that will still need resolving (see #463 (comment)), but let's track that in a separate issue to make it easier to follow. |
|
I split out the thread we had here about orchestration into #673. |
Right now all artifacts produced by coreos-assembler are implicitly for a single architecture, and we currently only publish x86_64 outputs.
Eventually we are going to produce and publish artifacts for multiple architectures, available over HTTPS from some remote bucket/URL. To my knowledge, we currently don't expose the
basearchlabel anywhere in the URL.This ticket is to figure out the layout of the final multi-arch remote bucket, as consumers will need some way to pick up the relevant images for their arch.
The text was updated successfully, but these errors were encountered: