Skip to content

apt: remove not allowed dist-upgrade#81

Merged
kaspar030 merged 1 commit intoRIOT-OS:masterfrom
Rotzbua:patch-2
Oct 10, 2019
Merged

apt: remove not allowed dist-upgrade#81
kaspar030 merged 1 commit intoRIOT-OS:masterfrom
Rotzbua:patch-2

Conversation

@Rotzbua
Copy link
Copy Markdown
Contributor

@Rotzbua Rotzbua commented Aug 30, 2019

  • Base image should be up to date.

  • "Avoid RUN apt-get upgrade and dist-upgrade, as many of the “essential” packages from the parent images cannot upgrade inside an unprivileged container. "

Reference:
https://docs.docker.com/develop/develop-images/dockerfile_best-practices/#run

miri64
miri64 reviewed Sep 9, 2019
View reviewed changes
@miri64 miri64 requested a review from kaspar030 September 9, 2019 12:10
@Rotzbua Rotzbua force-pushed the patch-2 branch 2 times, most recently from 281e0d0 to ac6f302 Compare September 18, 2019 15:03
@kaspar030
Copy link
Copy Markdown
Contributor

kaspar030 commented Sep 23, 2019

while this is "best practice", I'm not sure we actually should stop updating the base image. "ubuntu:bionic" is still at its initial version, right?

@Rotzbua
Copy link
Copy Markdown
Contributor Author

Rotzbua commented Sep 23, 2019

We should not update an underling layer, because it simply costs resources in build time and storage. The base image should be always up to date.
The dockerfile uses the official docker image from ubuntu, which is regularly updated. Nevertheless docker use caches so docker may use an older local caches ubuntu base image. To avoid this behavior simply add --pull flag to ensure latest available version.

@Rotzbua
Copy link
Copy Markdown
Contributor Author

Rotzbua commented Sep 23, 2019

Should I add the --pull flag to travis script and:

riotdocker/Dockerfile

Line 10 in 2ac1e6c

# 2. # docker build -t riotbuild .

?

@kaspar030
Copy link
Copy Markdown
Contributor

kaspar030 commented Sep 23, 2019

The dockerfile uses the official docker image from ubuntu, which is regularly updated.

Do you have a reference for this?

Docker Hub using old versions of the parent image might be the reason that every dist-upgrade actually upgrades a lot.

@Rotzbua
Copy link
Copy Markdown
Contributor Author

Rotzbua commented Sep 23, 2019

You mean?
https://docs.docker.com/docker-hub/official_images/

Ubuntu image:
https://hub.docker.com/_/ubuntu?tab=tags

bionic25.48 MB
Last updated5 days agobydoijanky

@kaspar030
Copy link
Copy Markdown
Contributor

kaspar030 commented Sep 23, 2019

Yes, thanks! I also found this: https://anchore.com/look-often-docker-images-updated/
That's seems fine.

@kaspar030
Copy link
Copy Markdown
Contributor

kaspar030 commented Sep 23, 2019

Should I add the --pull flag to travis script and:

Yes please!

kaspar030
kaspar030 approved these changes Oct 10, 2019
View reviewed changes
Copy link
Copy Markdown
Contributor

@kaspar030 kaspar030 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ACK.

@kaspar030 kaspar030 merged commit ea042a7 into RIOT-OS:master Oct 10, 2019
@chrysn chrysn mentioned this pull request Apr 8, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@miri64 miri64 miri64 left review comments

@kaspar030 kaspar030 kaspar030 approved these changes

Assignees

No one assigned

Labels

enhancement

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Rotzbua @kaspar030 @miri64