fix: move to scratch docker image #2705
Open
+78
−77
Commits on Jul 29, 2024
-
fix: move to scratch docker image
This updates several components in order to switch to scratch images. The move to scratch is to reduce additional OS dependencies and also added ldflags to remove golang debug symbols. This resulted in a reduction from 96.6MB to 54.9MB for the release image This also removes all other files except for the operator itself and the ca-certificates This is the new image structure ``` ├── etc drwxr-xr-x 0:0 214 kB │ └── ssl drwxr-xr-x 0:0 214 kB │ └── certs -rw-r--r-- 0:0 214 kB │ └── ca-certificates.crt -rwxr-xr-x 0:0 55 MB └── postgres-operator ``` Switched off of golang-alpine image because of issues with alpine images as well as the alpine golang image being experimental. https://hub.docker.com/_/golang declares "This variant is highly experimental, and not officially supported by the Go project" There are several issues with alpine due to musl as well - [Why I Will Never Use Alpine Linux Ever Again](https://martinheinz.dev/blog/92) - [Docker/Alpine - Why you should avoid alpine linux](https://dev.to/kakisoft/dockeralpine-why-you-should-avoid-alpine-linux-44he) are some examples. golang:$ver is the supported version This required some additional changes to fix the e2e tests, mainly replacing the kubectl exec for curl and wget and replacing it with port-forward and using python requests instead. This method does not require curl or wget to be included in the operator image. - removed docker/build_operator.sh which was no longer used after https://github.com/zalando/postgres-operator/pull/2665/files - since both the image and the k8s manifests reference the user id of 1000:1000, there is no need to pre-create the user or to even have a passwd file in the image, if the user was set to `pgo:pgo` then this would require the passwd file to be able to map the name to an id. - update kubectl version to match the kind version used for testing - updated e2e tests to automatically build image if it doesn't exist during pipeline tests Ran e2e tests to numerous times to confirm all the changes worked.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.