[BCLOUD-17590] Support BuildKit on Pipelines

Type: Suggestion
Resolution: Fixed
Component/s: Pipelines - Run Failures
Labels:
- migrated

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

A significant update for people who build docker containers pulling from resources secured by ssh (for example a private bitbucket repo).

It supports --ssh which acts as an ssh agent socket forwarder, giving access to whatever the host can access without having to do things like pass in an ssh key, mount it or other insecure workarounds.

https://github.com/docker/docker-ce/releases/tag/v18.09.0

mentioned in: Page Failed to load; Page Failed to load; Page Failed to load; Page Failed to load; Page Failed to load; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...

(5 mentioned in)

Form Name

Maddie Jones (Inactive) made changes - 20/Jun/2023 12:26 AM

Attachment

Original: Screenshot 2023-06-20 at 10.26.38 am.png [ 439999 ]

Maddie Jones (Inactive) made changes - 20/Jun/2023 12:26 AM

Attachment

New: Screenshot 2023-06-20 at 10.26.38 am.png [ 439999 ]

Jayant Gawali (Inactive) added a comment - 01/Sep/2022 6:13 AM

Hi 257cb8fcc776 ,

As discussed in the comment, we have released a variable BITBUCKET_SSH_KEY_FILE to the provide the path to the ssh private key file.

Please refer our documentation for more details.

Regards,
Jayant

Jayant Gawali (Inactive) added a comment - 01/Sep/2022 6:13 AM Hi 257cb8fcc776 , As discussed in the comment , we have released a variable BITBUCKET_SSH_KEY_FILE to the provide the path to the ssh private key file. Please refer our documentation for more details. Regards, Jayant

mwatson made changes - 30/Aug/2022 3:11 AM

Remote Link

Original: This issue links to "Page (Confluence)" [ 626798 ]

Jayant Gawali (Inactive) made changes - 26/Jul/2022 6:03 AM

Resolution		New: Fixed [ 1 ]
Status	Original: In Progress [ 3 ]	New: Closed [ 6 ]

Jayant Gawali (Inactive) added a comment - 26/Jul/2022 6:03 AM

I am closing this ticket since BuildKit is available now for everyone to use.
Thank you everyone for the support.

Jayant Gawali (Inactive) added a comment - 26/Jul/2022 6:03 AM I am closing this ticket since BuildKit is available now for everyone to use. Thank you everyone for the support.

dmoller added a comment - 21/Jul/2022 4:29 PM

Hi Egor Yurtaev.

Persisting mounted build caches across diferent CI agents is very interesting but is currently an open issue for docker buildkit: https://github.com/moby/buildkit/issues/1512

dmoller added a comment - 21/Jul/2022 4:29 PM Hi Egor Yurtaev. Persisting mounted build caches across diferent CI agents is very interesting but is currently an open issue for docker buildkit: https://github.com/moby/buildkit/issues/1512

dmoller added a comment - 21/Jul/2022 12:52 PM - edited

I tried to outsmart the pipelines and setup the buildx CLI plugin like

pipelines:
  default:
    - step:
        services: [docker]
        script:
          - wget --no-verbose https://github.com/docker/buildx/releases/latest/download/buildx-v0.8.2.linux-amd64 --output-document ~/.docker/cli-plugins/docker-buildx
          - chmod a+x ~/.docker/cli-plugins/docker-buildx
          - docker buildx create --use
          - docker buildx build . --pull --cache-from registry.my.org/foo/bar --build-arg BUILDKIT_INLINE_CACHE=1 --progress=plain

but this fails with

WARNING: No output specified for docker-container driver. Build result will only remain in the build cache. To push result image into registry use --push or to load image into docker use --load
#1 [internal] booting buildkit
#1 pulling image moby/buildkit:buildx-stable-1
#1 pulling image moby/buildkit:buildx-stable-1 2.3s done
#1 creating container buildx_buildkit_busy_haibt0 done
#1 ERROR: Error response from daemon: authorization denied by plugin pipelines: --privileged=true is not allowed
------
 > [internal] booting buildkit:
------
error: Error response from daemon: authorization denied by plugin pipelines: --privileged=true is not allowed

Fat chance.

I never requested a privileged container, though. Am I doing something wrong?

dmoller added a comment - 21/Jul/2022 12:52 PM - edited I tried to outsmart the pipelines and setup the buildx CLI plugin like pipelines: default : - step: services: [docker] script: - wget --no-verbose https: //github.com/docker/buildx/releases/latest/download/buildx-v0.8.2.linux-amd64 --output-document ~/.docker/cli-plugins/docker-buildx - chmod a+x ~/.docker/cli-plugins/docker-buildx - docker buildx create --use - docker buildx build . --pull --cache-from registry.my.org/foo/bar --build-arg BUILDKIT_INLINE_CACHE=1 --progress=plain but this fails with WARNING: No output specified for docker-container driver. Build result will only remain in the build cache. To push result image into registry use --push or to load image into docker use --load #1 [internal] booting buildkit #1 pulling image moby/buildkit:buildx-stable-1 #1 pulling image moby/buildkit:buildx-stable-1 2.3s done #1 creating container buildx_buildkit_busy_haibt0 done #1 ERROR: Error response from daemon: authorization denied by plugin pipelines: --privileged= true is not allowed ------ > [internal] booting buildkit: ------ error: Error response from daemon: authorization denied by plugin pipelines: --privileged= true is not allowed Fat chance. I never requested a privileged container, though. Am I doing something wrong?

mwatson made changes - 19/Jul/2022 8:18 AM

Remote Link

New: This issue links to "Page (Confluence)" [ 663620 ]

JJ O'Brien added a comment - 12/Jul/2022 1:10 PM

Hi Raul,

Tthank you for looking into this! Is there's a corresponding public Jira ticket I could watch? Or will this be included in work for this feature?

Cheers,

JJ O'Brien added a comment - 12/Jul/2022 1:10 PM Hi Raul, Tthank you for looking into this! Is there's a corresponding public Jira ticket I could watch? Or will this be included in work for this feature? Cheers, JJ

Assignee:: Jayant Gawali (Inactive)

Reporter:: Samantha Hughes

Votes:: 324 Vote for this issue

Watchers:: 227 Start watching this issue

Created:: 17/Nov/2018 7:21 PM

Updated:: 20/Jun/2023 12:26 AM

Resolved:: 26/Jul/2022 6:03 AM

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: Jayant Gawali (Inactive) added a comment - 01/Sep/2022 6:13 AM

Expand comment: Jayant Gawali (Inactive) added a comment - 01/Sep/2022 6:13 AM

Collapse comment: Jayant Gawali (Inactive) added a comment - 26/Jul/2022 6:03 AM

Expand comment: Jayant Gawali (Inactive) added a comment - 26/Jul/2022 6:03 AM

Collapse comment: dmoller added a comment - 21/Jul/2022 4:29 PM

Expand comment: dmoller added a comment - 21/Jul/2022 4:29 PM

Collapse comment: dmoller added a comment - 21/Jul/2022 12:52 PM, Edited by dmoller - 22/Jul/2022 8:39 AM

Expand comment: dmoller added a comment - 21/Jul/2022 12:52 PM, Edited by dmoller - 22/Jul/2022 8:39 AM

Collapse comment: JJ O'Brien added a comment - 12/Jul/2022 1:10 PM

Expand comment: JJ O'Brien added a comment - 12/Jul/2022 1:10 PM

People

Dates