Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move analyze phase before detect #135

Merged
merged 12 commits into from
Feb 17, 2021
Merged

Move analyze phase before detect #135

merged 12 commits into from
Feb 17, 2021

Conversation

jkutner
Copy link
Member

@jkutner jkutner commented Jan 13, 2021
edited by ekcasey
Loading

@jkutner jkutner requested a review from a team as a code owner January 13, 2021 23:47
@jkutner
Add RFC for prepare phase
0af5a0f 
Signed-off-by: Joe Kutner <jpkutner@gmail.com>
hone
hone reviewed Jan 13, 2021
View reviewed changes
text/0000-prepare-phase.md Outdated Show resolved Hide resolved
hone
hone reviewed Jan 13, 2021
View reviewed changes
text/0000-prepare-phase.md Outdated Show resolved Hide resolved
hone
hone reviewed Jan 13, 2021
View reviewed changes
text/0000-prepare-phase.md Outdated
# What it is
[what-it-is]: #what-it-is

The prepare phase will run before all other phase, and prepare the execution environment for a buildpack build. This phase will have access to secrets and credentials used to access registries and other services.
Copy link
Member

@hone hone Jan 13, 2021
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

"access to secrets and credentials used to access registries and other services"

Is this something that will happen throughout the lifecycle or just in prepare like export? Should this be defined as a special level of privilege?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

it happens in analyze, restore, and export (but not detect and build)

@hone hone requested a review from a team January 13, 2021 23:57
jkutner and others added 2 commits January 13, 2021 17:58
@jkutner @hone
Update text/0000-prepare-phase.md
288a096 
Signed-off-by: Joe Kutner <jpkutner@gmail.com>

Co-authored-by: Terence Lee <hone02@gmail.com>
@jkutner
Added an alternative to prepare phase
4547fe1 
Signed-off-by: Joe Kutner <jpkutner@gmail.com>
ekcasey
ekcasey reviewed Jan 14, 2021
View reviewed changes
text/0000-prepare-phase.md Outdated Show resolved Hide resolved
text/0000-prepare-phase.md Outdated Show resolved Hide resolved
text/0000-prepare-phase.md Outdated Show resolved Hide resolved
text/0000-prepare-phase.md Outdated Show resolved Hide resolved
text/0000-prepare-phase.md Outdated Show resolved Hide resolved
text/0000-prepare-phase.md Outdated Show resolved Hide resolved
text/0000-prepare-phase.md Outdated Show resolved Hide resolved
ekcasey
ekcasey reviewed Jan 14, 2021
View reviewed changes
text/0000-prepare-phase.md Outdated Show resolved Hide resolved
@jabrown85
Updating based on feedback. Move analyze phase instead of new phase.
8c0541f 
Signed-off-by: Jesse Brown <jabrown85@gmail.com>
@jabrown85 jabrown85 changed the title Prepare Phase Move analyze phase before detect Jan 14, 2021
@jabrown85
suggestions from Emily
58cf956 
Signed-off-by: Jesse Brown <jabrown85@gmail.com>
@jabrown85
added few missing inputs that are needed
d0d712c 
Signed-off-by: Jesse Brown <jabrown85@gmail.com>
ekcasey
ekcasey approved these changes Jan 14, 2021
View reviewed changes
text/0000-move-analyze-phase.md Outdated Show resolved Hide resolved
text/0000-move-analyze-phase.md Show resolved Hide resolved
@jabrown85
suggestions from Emily
986f419 
Signed-off-by: Jesse Brown <jabrown85@gmail.com>
natalieparellano
natalieparellano reviewed Jan 19, 2021
View reviewed changes
text/0000-move-analyze-phase.md
* Exit status
* Info-level logs to `stdout`
* Error-level logs to `stderr`
* Analysis metadata [`analyzed.toml`](https://github.com/buildpacks/spec/blob/main/platform.md#analyzedtoml-toml), including run-image information.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does analyzer need to care about the cache at this stage?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think analyzer will need the cache now, actually. It is already omitted from the inputs here, but only by chance :)

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Well hmm.. maybe analyzer does want the cache-image. But maybe not the cache-dir. So it can validate the registry keychain earlier.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this is tangential to this RFC, but maybe it's worth noting that this RFC exists: https://github.com/buildpacks/rfcs/pull/21/files#diff-588fc1758ea351208954c917064a1907620d2e7a5984cd07d433c55bcd683e9b. I don't think anything in this RFC contradicts the other one, just keeping context.

natalieparellano
natalieparellano reviewed Jan 19, 2021
View reviewed changes
text/0000-move-analyze-phase.md Outdated

The analyze phase will now run before the detect phase. The analyze phase will have access to secrets and credentials used to access registries and other services, as it does today. Analyze will no longer require a [`group.toml`](https://github.com/buildpacks/spec/blob/main/platform.md#grouptoml-toml). It will do this by splitting off some of the responsibilites into the restore phase.

## Responsibilities
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It might be worth calling out that these are new responsibilities, vs. what the analyzer does currently.

@jabrown85
Suggestions from Natalie
829dc4f 
Signed-off-by: Jesse Brown <jabrown85@gmail.com>
@jabrown85
More suggestions from Natalie
4b835b4 
Signed-off-by: Jesse Brown <jabrown85@gmail.com>
@hone
Copy link
Member

hone commented Jan 20, 2021

@sclevine do these updates align with what you were thinking?

@jabrown85
Remove project.toml parsing from proposal
3da9417 
We can add these in later or in another optional phase.

Signed-off-by: Jesse Brown <jabrown85@gmail.com>
@jabrown85
Removing more project.toml references
5479f53 
Signed-off-by: Jesse Brown <jabrown85@gmail.com>
@nebhale nebhale requested a review from a team January 20, 2021 21:41
@nebhale nebhale requested a review from a team January 20, 2021 21:42
yaelharel
yaelharel reviewed Jan 21, 2021
View reviewed changes
text/0000-move-analyze-phase.md
* [Stack buildpacks](https://github.com/buildpacks/rfcs/pull/111), which require a phase to read run-image mixins validation prior to detection
* Validating registry access for all images that are used can happen prior to `detector` or `builder` phases, providing faster failures for end users.

# What it is
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe it's worth adding in what Platform API we're going to introduce these changes.

@jabrown85
Add cache-dir back
7eb541e 
In order to determine if cache should be restored/analyzed at all if the stack change. Future use.

Signed-off-by: Jesse Brown <jabrown85@gmail.com>
This was referenced Feb 17, 2021
Closed
Closed
@dfreilich dfreilich mentioned this pull request Feb 17, 2021
Closed
1 task
@ekcasey ekcasey mentioned this pull request Feb 17, 2021
Closed
ekcasey added a commit that referenced this pull request Feb 17, 2021
@ekcasey
RFC 0075
f048628 
[#135]

Signed-off-by: Emily Casey <ecasey@vmware.com>
@ekcasey ekcasey merged commit dc8e65f into main Feb 17, 2021
@ekcasey ekcasey deleted the prepare-phase branch February 17, 2021 19:48
@jabrown85 jabrown85 mentioned this pull request Mar 12, 2021
Closed
jabrown85 added a commit to buildpacks/lifecycle that referenced this pull request Apr 15, 2021
@jabrown85
Run analyzer before detector
c0d6ff6 
This is a re-do of #505, porting to the recently updated main branch.

[RFC](buildpacks/rfcs#135)
[Spec PR](buildpacks/spec#197)

Signed-off-by: Jesse Brown <jabrown85@gmail.com>
@jabrown85 jabrown85 mentioned this pull request Apr 15, 2021
Merged
jabrown85 added a commit to buildpacks/lifecycle that referenced this pull request Apr 30, 2021
@jabrown85 @natalieparellano
Run analyzer before detector (#582)
416e597 
Run `analyzer` before `detector`

[Related RFC](buildpacks/rfcs#135)
[Spec PR](buildpacks/spec#197)

Signed-off-by: Jesse Brown <jabrown85@gmail.com>
Co-authored-by: Natalie Arellano <narellano@vmware.com>
Co-authored-by: Yael Harel <yharel@vmware.com>
@natalieparellano natalieparellano mentioned this pull request Jun 7, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jabrown85 jabrown85 jabrown85 left review comments

@dfreilich dfreilich dfreilich left review comments

@hone hone hone approved these changes

@nebhale nebhale nebhale approved these changes

@ekcasey ekcasey ekcasey approved these changes

@natalieparellano natalieparellano natalieparellano approved these changes

@yaelharel yaelharel yaelharel approved these changes

Assignees
No one assigned
Labels
issues-created/core issues-created/distribution issues-created/implementation issues-created/learning issues-created/platform spec/platform team/implementation
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
8 participants
@jkutner @hone @nebhale @jabrown85 @ekcasey @natalieparellano @dfreilich @yaelharel