Is it possible to lazy pull eStargz images during (docker buildx) build #1390
Comments
Please try "BuildKit" section of https://medium.com/nttlabs/lazy-pulling-estargz-ef35812d73de
|
|
Perfect, thanks for the pointer! |
|
Okay, I've had a chance to test this out and I think I'm running into the same credential issue mentioned in #1389 (comment). When I use the lazy-builder, it's running a buildkitd instance in a docker container which doesn't have access to the credentials for my private repo. Is there a way to propagate docker credentials to the instance of buildkitd running in the container created with a |
|
@dmosdallas stargz-snapshotter is embedded to buildktid and it receives creds via docker command over buildkitd API so I believe #1389 (comment) should not occur if you use |
Background
I am attempting to build new images that are based upon images that are already in the eStargz format.
With docker buildx, I can run the following:
Problem
The above successfully builds a new eStargz-formatted image, but it fully pulls the eStargz-formatted base image during the build.
Ideas
I've come across some buildkit documentation that describes how to enable lazy pulling of images using buildkitd & buildctl directly.
It is probably my lack of understanding, but I've gotten a bit lost in this documentation. As far as I can tell, a vanilla install of docker does not include buildkitd and I'm not totally sure how buildx relates to it -- buildx seems to be a standalone plugin that exposes some features of buildkit without buildkitd?
Question
Is there a way to configure the docker buildx plugin to use the
--oci-worker-snapshotter=stargzas described in the above docs, or am I totally misunderstanding how this is wired together?The text was updated successfully, but these errors were encountered: