feat(connector-iroha2): update to the new LTS image as of 28.07.2023 #2252
Conversation
|
@outSH Just bumping the thread to make sure we don't forget: Has this reached a point in the meantime where it could be merged? I'm trying to clear out some of the backlog of the pull requests that we have. |
I will update it shortly |
outSH
force-pushed
the
iroha2_update_to_new_lts
branch
2 times, most recently
from
d1383c3
to
a7ed0c7
Compare
@outSH Cheers! One small nit while you do that update: Please specify the exact version of said LTS so that the next time we do the exact same thing (update to the LTS image) the commit messages are still unique. |
petermetz
added
the
Iroha
outSH
force-pushed
the
iroha2_update_to_new_lts
branch
from
a7ed0c7
to
f2bc772
Compare
outSH
changed the title
@petermetz Well, they don't really publish any LTS versions, but I see your point and agree, and hence added the I've reached Iroha team to provide pinned LTS docker images but didn't receive any answer. I wanted to use the pinned version in tests to prevent issues where they introduce some change or a bug to LTS version that breaks our tests, and we'll end up investigating the root cause wondering if it's connector or upstream iroha fault (I hope the motivations are clear). Funny thing is, we didn’t have to wait for them at all - I've recently discovered that you can pull images using image digest, completely ignoring the tag. Seems kinda obvious that such feature exist, but I was not aware of that :( I've switched to using a digest instead of a tag, but then the freeze-image script stopped working (it doesn't support this format), and since it is internal tool of another project that's hard to update, I've decided to use Red Hat's Please review and upload iroha2-all-in-one image from this branch (tools/docker/iroha2-all-in-one/README.md) to hyperledger ghcr, so I can replace references to private repo. |
outSH
requested review from
petermetz,
takeutak,
izuru0,
jagpreetsinghsasan,
VRamakrishna and
sandeepnRES
as code owners
@outSH Thank you very much!
If you have a link to the github issue you opened or anything else that I can go and upvote please send the link and I'll do it to express more support for the idea and hopefully that way they'll prioritize it a little higher. This is important to protect against supply chain attacks IMO.
Yay! Thank you so much for investigating and going the extra mile so that we have a way of pinning it, definitely saves us from bugs and/or vulnerabilities down the line! |
outSH
force-pushed
the
iroha2_update_to_new_lts
branch
from
f2bc772
to
613d4a0
Compare
Thank you, done!
Well, it ways mostly "internal" channel communication but since the digest pull seem to work fine I don't think there's a reason to push it forward anymore |
@outSH OK, that's fine by me. I'll go ahead and open an issue for this anyway on their repo because while the digests technically work, it is more mental effort for humans to deal with them and that increases the probability of somebody in the future slipping up because they didn't notice that the digest was different or even if they did they didn't realize that they were upgrading to something bad (which they would've if they were able to refer to their images via semver tags) |
jagpreetsinghsasan
dismissed
their stale review
Peter has already approved this PR. Removing my approval as we need approvals from maintainers from other organizations
- Change iroha2 setup docker and helper classes to work with the new LTS image. - Update Iroha SDK packages to the newest. - Fix some tests that were failing after upgrade. - Adjust SDK usage (new version doesn't create Torii client, arguments are provided with each method instead) - Use pinned iroha2 container version in all in one image. - Use skopeo to pre-download pinend image version. Signed-off-by: Michal Bajer <[email protected]>
petermetz
force-pushed
the
iroha2_update_to_new_lts
branch
from
613d4a0
to
84a3a63
Compare
arguments are provided with each method instead)