This change removes the additional libnvidia-container0=0.10.0+jetpack dependency
that was introduced for Tegra-based systems. These have since been migrated to
CDI-based direct injection using the NVIDIA Container Runtime.
Signed-off-by: Evan Lezar <elezar@nvidia.com>
This change removes the centos8-x86_64 and centos8-aarch64 pipeline jobs.
These packages are no longer used since centos7 packages are used instead.
Signed-off-by: Evan Lezar <elezar@nvidia.com>
This change adds arm64/aarch64 images to supported distributions.
This is triggered if BUILD_MULTI_ARCH_IMAGE=true.
Note that for ubi8 images this means that we switch to using centos8
packages instead of centos7 since we do not build aarch64 packages
for the latter.
This also means that for centos7 we only build x86_64 images.
Signed-off-by: Evan Lezar <elezar@nvidia.com>
This change allows for docker buildx to be used to build container
images. This also allows multi-arch images being built.
In addition to using docker buildx to build images, regctl as a
replacement for the docker push command to release images. This
tool also supports regctl.
The selection of docker buildx (and regctl) is controlled by a
BUILD_MULTI_ARCH_IMAGES make variable. If this is 'true',
the build-% make targets for the toolkit container will be
run through buildx and the equivalent push-% targets will trigger
a regctl command.
Signed-off-by: Evan Lezar <elezar@nvidia.com>
This change allows the CVE_UPGRADES build arg to be set
to address CVEs in base images instead of requesting waivers.
Signed-off-by: Evan Lezar <elezar@nvidia.com>
This change adds CI definitions for building the toolkit-container
images. This modifies the existing CI and replaces the build-one
stage with multiple stages that do the following:
* peform the standard golang checks
* build the packages required by the images
* build the images for supported platforms
* releases the images (currently to the CI staging registry)
The build-all stage is included as a final step in the CI. This is
run after the release stage as the target platforms are not requried
from an imaging perspective. The build-all stage is only run on
MRs or tagged builds.
Signed-off-by: Evan Lezar <elezar@nvidia.com>
This change adds platform-specific Dockerfiles and a Makefile
to build the toolkit-container images.
This image builds the container-config commands from the tools
directory and installs the components of the NVIDIA Container Toolkit
directly from the nvidia-container-toolkit and libnvidia-container*
packages in the dist directory.
This includes make targets for the centos7, centos8, ubuntu18.04,
and ubi8 container-toolkit images as well as the container tests
make targets implemented in the contianer-config repository.
Files adapted from:
383587f766
Signed-off-by: Evan Lezar <elezar@nvidia.com>