container-encapsulate: Mark initramfs as exclusive component#5535
container-encapsulate: Mark initramfs as exclusive component#5535HastD wants to merge 1 commit intocoreos:mainfrom
Conversation
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
This pull request correctly identifies that the initramfs should be treated as a component to ensure it's placed in its own layer. The change from path_packages to path_components is the right approach. I've added one comment with a suggestion to further improve the consistency of this change by aligning the metadata handling for initramfs with how other components are processed. This will make the code cleaner and more maintainable.
HastD
force-pushed
the
initramfs-layer
branch
from
ae439c4 to
f9343fa
Compare
HastD
force-pushed
the
initramfs-layer
branch
from
f9343fa to
73128f9
Compare
HastD
force-pushed
the
initramfs-layer
branch
2 times, most recently
from
da16397 to
d8b8d12
Compare
|
Hi @HastD! You may be interested in https://github.com/jlebon/chunkah. It's a successor to build-chunked-oci to which bootable containers will likely eventually migrate. I'm having a similar discussion with myself in https://github.com/jlebon/chunkah/issues/16. But basically, two things I'll note:
Regardless, I also think we definitely should allow users to force any arbitrary files to be separate if they'd like/know better (filed https://github.com/jlebon/chunkah/issues/36 for that). Anyway, happy to start collaborating/chatting there if you're interested. The code is certainly not as baked/battle-tested as build-chunked-oci, and it still does dumb things, but it should improve quickly. |
|
Hi @jlebon, thanks for your work on Chunkah—it's a very cool project that I've been keeping an eye on. I anticipate that once it reaches a certain level of stability, BlueBuild will also add an option to use Chunkah in place of build-chunked-oci for rechunking images. In any case, while I do agree that it's not always optimal to put the initramfs in its own layer, I do think it's often still a good choice: the initramfs is large enough that it would significantly reduce average update sizes even if we can only avoid having to download its layer, say, every other update. I also agree that in some cases it might make more sense to instead special-case unpackaged As for this PR specifically, I think it's worth keeping in mind that this is simply a bug-fix: the intent of the existing code is to put the initramfs in its own layer as an exclusive component, but this doesn't happen because it's erroneously given package metadata instead of component metadata. This also has consequences that are clearly a bug: because the initramfs is incorrectly marked with package metadata, it can't be manually assigned to a layer using the |
HastD
force-pushed
the
initramfs-layer
branch
from
d8b8d12 to
2c45ff1
Compare
The initramfs is not provided by an RPM package, but should be placed in its own exclusive layer. Therefore, it should be added to `path_components`, not `path_packages`, in the `MappingBuilder`, and should have component (not package) metadata associated to it. Signed-off-by: Daniel Hast <[email protected]>
|
I am not opposed to this, and most failures seem unrelated. However https://github.com/coreos/rpm-ostree/actions/runs/22593223740/job/66384557537?pr=5535 that concerns me. I am not sure if that is because the algorithm we had in place needs modification now that the initramfs is not counted as a package. I need to dig deeper on this I have not looked at how we do the chunking before. |
|
@jmarrero I'm pretty sure I understand the reason for this test failure now. Unfortunately, fixing the handling of the initramfs here seems to have uncovered a bug in how ostree-ext handles exclusive components: in particular, if I'm understanding the code correctly, it looks like ostree-ext will always fail to use a prior build's layer plan if the image has exclusive components. (I did some local testing that seems to back this up.) The problem is that, in But on the other hand, the I haven't wrapped my head around the full packing algorithm well enough yet to understand exactly which part of this needs to be fixed and how best to fix it, but it seems like the problem is that it doesn't take into account the likely presence of the same exclusive components in the prior build. (I should probably write this up as an issue for ostree-ext; I'll do that later.) In any case, I think we have to hold off on merging this PR, because even though this PR does fix a bug, the other bug uncovered by doing so is worse, since (if I've understand the code correctly) the only reason chunking based on a prior build's layer plan has been working at all is the absence of exclusive components in the builds. |
|
Okay, I wrote up the issue in bootc-dev/bootc#2057. |
3 participants
The initramfs is not provided by an RPM package, but should be placed in its own exclusive layer. Therefore, it should be added to
path_components, notpath_packages, in theMappingBuilder, and should have component (not package) metadata associated to it.I've tested this change locally and it does indeed result in the initramfs being placed into its own layer as expected.
Fixes #5544.