Obsolete Debian release is being used #24
Comments
|
There will be a final release later this month and it will then transition to https://wiki.debian.org/LTS; so it is only obsolete in the eyes of the Debian release and security teams. We would want to update the image like docker-library/python#215, to have explicit aliases for jessie and stretch so that users would be able to stick to one while they evaluate the move to a new base distribution. |
|
Yes, that would be perfect an generally the way docker-library/python works, makes our life much easier when it goes to handling upgrades or security issues. |
wglambert
added
Request
|
Any progress on it? |
|
#27 is the first step; once we get those published I'll be doing a bump to |
|
Ok, I've attempted this adjustment, but the current published binaries from https://pypy.org/download.html link against So unfortunately, this looks like it's not going to be possible for us to implement unless upstream adjusts the binaries they publish (or we find a trivial way to just rebuild |
Upstream definitely should do that. Or just use sid https://packages.debian.org/sid/pypy . |
This comment has been minimized.
This comment has been minimized.
|
We will not be consuming binaries directly from unstable, nor will we be consuming packages built and part of Debian unless upstream specifically tells us that is what they would prefer. At the moment, PyPy upstream recommends that we use their officially published binaries, so that is what we are doing, and those binaries have constraints that we can't trivially work around within Debian Stretch and Debian Jessie is still supported within the Debian project (it's just that it's now supported by the LTS team instead of the security and release teams, so to a lesser extent). Ideally, we'd switch to using the "Portable Linux Binaries" PyPy recommends on their download page (https://github.com/squeaky-pl/portable-pypy#portable-pypy-distribution-for-linux), but those are unfortunately very limited in multi-architecture support, which would be a shame to lose here (and is considered an avenue of absolute last resort only if we absolutely must, as in Debian Jessie is no longer officially supported). If you wish to use a newer Debian base and are OK with Debian's FROM debian:stretch
RUN apt-get update && apt-get install -y pypy |
I just don't want to maintain a docker image. The good thing in official images is that they are built and maintained by someone else. |
|
Have you tried automated builds? They definitely take most of the pain out
of maintaining (add repository links and they automatically rebuild on base
image updates too).
|
No, I have not heard about this feature. Thank you. |
|
seems like we need to update to stretch now. Building the image already fails since the mirrors don't exist anymore. https://lists.debian.org/debian-devel-announce/2019/03/msg00006.html |
|
|
Yep, see debuerreotype/docker-debian-artifacts#66 (comment). We still have a little runway with the Debian LTS project, but not very much. |
|
it's a reasonable idea to upgrade the distribution asap. I've been wrapping my head around upgrading to stretch today but end up having some weird issue's with libssl in pypy ( haven't got enough time to dig in properly ) |
|
Yeah, that's the bit I outlined back in #24 (comment); good to know that's still the case. 😞 |
|
I wonder if it would be possible for us to rebuild just |
|
I've managed to get something that's working pretty successfully for 3.5 and 3.6 via running |
|
thanks for the heads-up, could you share some code? |
diff --git a/Dockerfile-slim.template b/Dockerfile-slim.template
index 91a44c6..09c070c 100644
--- a/Dockerfile-slim.template
+++ b/Dockerfile-slim.template
@@ -1,4 +1,4 @@
-FROM debian:jessie-slim
+FROM debian:stretch-slim
# ensure local pypy is preferred over distribution pypy
ENV PATH /usr/local/bin:$PATH
@@ -31,7 +31,6 @@ RUN set -ex; \
bzip2 \
wget \
; \
- rm -rf /var/lib/apt/lists/*; \
\
wget -O pypy.tar.bz2 "https://bitbucket.org/pypy/pypy/downloads/%%TAR%%-v${PYPY_VERSION}-${pypyArch}.tar.bz2"; \
echo "$sha256 *pypy.tar.bz2" | sha256sum -c; \
@@ -42,6 +41,12 @@ RUN set -ex; \
# smoke test
%%CMD%% --version; \
\
+# rebuild ffi bits for compatibility with Debian Stretch+ (https://github.com/docker-library/pypy/issues/24#issuecomment-409408657)
+ apt-get install -y --no-install-recommends gcc libc6-dev libssl-dev; \
+ cd /usr/local/lib_pypy; \
+ %%CMD%% _ssl_build.py; \
+# TODO rebuild other cffi modules here too? (other _*_build.py files)
+ \
wget -O get-pip.py 'https://bootstrap.pypa.io/get-pip.py'; \
\
%%CMD%% get-pip.py \
@@ -58,6 +63,7 @@ RUN set -ex; \
[ -z "$savedAptMark" ] || apt-mark manual $savedAptMark > /dev/null; \
apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \
# smoke test again, to be sure
+ rm -rf /var/lib/apt/lists/*; \
%%CMD%% --version; \
pip --version
diff --git a/Dockerfile.template b/Dockerfile.template
index 14ef48e..5e42067 100644
--- a/Dockerfile.template
+++ b/Dockerfile.template
@@ -1,4 +1,4 @@
-FROM buildpack-deps:jessie
+FROM buildpack-deps:stretch
# ensure local pypy is preferred over distribution pypy
ENV PATH /usr/local/bin:$PATH
@@ -23,14 +23,19 @@ RUN set -ex; \
# this "case" statement is generated via "update.sh"
%%ARCH-CASE%%; \
\
- wget -O pypy.tar.bz2 "https://bitbucket.org/pypy/pypy/downloads/%%TAR%%-v${PYPY_VERSION}-${pypyArch}.tar.bz2"; \
+ wget -O pypy.tar.bz2 "https://bitbucket.org/pypy/pypy/downloads/%%TAR%%-v${PYPY_VERSION}-${pypyArch}.tar.bz2" --progress=dot:giga; \
echo "$sha256 *pypy.tar.bz2" | sha256sum -c; \
tar -xjC /usr/local --strip-components=1 -f pypy.tar.bz2; \
find /usr/local/lib-python -depth -type d -a \( -name test -o -name tests \) -exec rm -rf '{}' +; \
rm pypy.tar.bz2; \
\
# smoke test
- %%CMD%% --version
+ %%CMD%% --version; \
+ \
+# rebuild ffi bits for compatibility with Debian Stretch+ (https://github.com/docker-library/pypy/issues/24#issuecomment-409408657)
+ cd /usr/local/lib_pypy; \
+ %%CMD%% _ssl_build.py
+# TODO rebuild other cffi modules here too? (other _*_build.py files)
RUN set -ex; \
\ |
Jessie is marked as obsolete - https://www.debian.org/releases/.
The text was updated successfully, but these errors were encountered: