chore: Migrate to docker compose v2 #770
Conversation
BobdenOs
requested review from
patricebender,
gregorwolf,
sebastianesch,
vobu,
danjoa,
johannes-vogel,
stewsk and
sjvans
as code owners
|
Hi @BobdenOs , checking the container images defined in the YAML files I see only images used that are not public. Wouldn't it be better to work with a HANA Cloud instance instead? Or can you convince someone internal to re-publish the HXE image? Best Regards |
|
Hi @gregorwolf, The HANA Express images are publicly available here (Last pushed 25 days ago). It might not be clear in the YAML files as for action startup times we use a pre-started image. Which saves I specifically decided against using a HANA Cloud instance, because of the following reasons:
*1 It is possible to enable secrets in PRs from forks, but this makes leaking secrets trivial. *2 As GitHub Actions are a black box to us. It is not possible to determine where the Action will be executed. So even when using a HANA Cloud instance that is running on Azure. There is no guarantee that the HANA Cloud instance and the Action runner will be in the same data center / continent. Which comes with a large impact on the networking performance as a side effect of how the HANA network protocol is defined. Where internal test suites have shown a variance in runtime of 3x the base line. While local HANA Cloud instances have around 0.1x variance in runtime. Even when running on the default GitHub Action runners which don't meet the minimal requirements of HANA Express. Which means that there is no need to set the test timeout to 60seconds which means that if something goes wrong the test run will fail quickly. *3 While we have access to development and testing HANA Cloud instances it would be required to run an additional instance to just serve this repository. As it is possible for anyone to make PR and push commits it would be required that the HANA Cloud instance serving these GitHub Actions would scale accordingly. Which is currently difficult to do as scaling up an HANA Cloud instance takes quite some time and additional privileges (BTP). Which if done using existing HANA Cloud instances would create the cascading effect of preventing internal PRs to fail when the HANA Cloud instance is being attacked through this method. Effectively creating a Denial of Development attack on this repository and all internal repositories that share the HANA Cloud instance. Sorry for the long explanation, but I hope it provides some insight to the decision. Regards, |
|
Thank you @BobdenOs for the details. Seems the search for https://hub.docker.com/search?q=hanaexpress is not providing the best result list. saplabs/hanaexpress appears, but it's not the top result and even after a imaged named the same way. Do you have any contact to the saplabs team maintaining the image? Maybe they can push Dockerhub to get the search result fixed. |
|
@gregorwolf I haven't had any direct contact with the SAP labs colleagues. I am also not sure how big of a deal it is that the image is not Search engine optimized. Especially as the first hit on Docker Hub has Additionally when using a proper search engine the image page is the first hit(s) (google, bing). Sure Bing has 4 hits in the top 5 results that point to instructions on how to install deleted version of HANA Express using Docker. Not sure how much can be done about that at this point. It is still a goal of mine to expose the HANA Express and HANA Cloud local development scripts from the |
docker-compose(v1) has been replaced for a little while now withdocker compose(v2), but forDocker Desktopthere is an aliasdocker-composewhich actually is (v2) which created a miss match between the GitHub Action and the local development setup as the container name changed fromhana_1tohana-1.This PR aligns the two by switching to
docker compose(v2) for the GitHub Actions as well. As the GitHub Action default runner seems to have removed thedocker-compose(v1) command.