Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [che-dev] Building Images at WS creation Time

Regarding podman/buildah: We investigated both for the Eclipse Codewind project and found that they couldn't run on Kubernetes as unprivileged, `privileged: true` had to be set in the pod. While buildah can run unprivileged locally (via Docker or Podman), it seems that it can't do the same on a Kube cluster. https://github.com/containers/buildah/issues/1335 highlights the issues that myself (and others) had with unprivileged buildah on Kube

While CEKit might work, unless buildah/podman/docker can be forced to run as unprivileged on Kube, it might not make it viable for Che.


Regards,

John Collier
Software Developer, Eclipse Codewind
Email: John.J.Collier@xxxxxxx

Inactive hide details for Nick Boldt ---2019/07/10 12:54:09 PM---Would CEKit work here? It lets you define images as yml (not dNick Boldt ---2019/07/10 12:54:09 PM---Would CEKit work here? It lets you define images as yml (not dockerfiles) and then build 'em on the

From: Nick Boldt <nboldt@xxxxxxxxxx>
To: che developer discussions <che-dev@xxxxxxxxxxx>
Date: 2019/07/10 12:54 PM
Subject: [EXTERNAL] Re: [che-dev] Building Images at WS creation Time
Sent by: che-dev-bounces@xxxxxxxxxxx




Would CEKit work here? It lets you define images as yml (not dockerfiles) and then build 'em on the fly with podman/buildah/docker/brew. Doesn't rely on s2i images -- examples given are pure centos.

https://cekit.readthedocs.io/en/latest/getting-started/index.html
https://cekit.readthedocs.io/en/latest/handbook/building/builder-engines.html

On Wed, Jul 10, 2019 at 5:08 AM <tmader@xxxxxxxxxx> wrote:
    On Wed, 2019-07-10 at 10:56 +0200, Ilya Buziuk wrote:
      So my idea is to run a s2i build when a workspace is created or when it's configuration is changed. The s2i build would native-compile jdt.ls together with the bundles that need to run inside it. The outcome will be the "Java support" sidecar image.

    Sounds interesting but s2i is OpenShift specific framework. How this would work in the Kubernetes world?

    I'm sure there's some way to build an image, but I don't know. Che could abstract over the exact mechanism.

    /Thomas
    _______________________________________________
    che-dev mailing list
    che-dev@xxxxxxxxxxx
    To change your delivery options, retrieve your password, or unsubscribe from this list, visit
    https://www.eclipse.org/mailman/listinfo/che-dev


--
Nick Boldt
Principal Software Engineer, RHCSA
Productization Lead :: JBoss Tools & Dev Studio
IM: @nickboldt / @nboldt / http://nick.divbyzero.com

TRIED. TESTED. TRUSTED.
@ @redhatnews      Red Hat


“The Only Thing That Is Constant Is Change” - Heraclitus_______________________________________________
che-dev mailing list
che-dev@xxxxxxxxxxx
To change your delivery options, retrieve your password, or unsubscribe from this list, visit
https://www.eclipse.org/mailman/listinfo/che-dev



Back to the top