Alpine 3.14 images can fail on Docker versions older than 20.10 #351
Comments
stanhu
changed the title
stanhu
changed the title
just use the |
We run a CI service where users can choose any tag, and existing builds that use |
wglambert
added
the
question
|
From another alpine-bug issue docker-library/php#1177 (comment)
|
|
We're running into this same issue with Docker 20.10.2 running on Ubuntu LTS. Docker is installed from the Docker ubuntu repo. Clearly rolling down to 3.13 "solves" things, but these seem like broken 3.14 images to me. EDIT: Resolved by upgrading docker-ce to 20.10.7. |
|
The same problem with alpine 3.14 on Fargate. |
|
This problem happens to me on AWS Fargate (1.4) with |
|
This problem happens to me on macOS Big Sur (Version 11.5.1) with Docker version 20.10.7, build f0df35096d Gemfile I have created this Dockerfile: FROM ruby:2.7.4-alpine
RUN apk add build-base tzdata postgresql-dev postgresql-client
WORKDIR /usr/src/app
COPY Gemfile* ./
RUN bundle install
# Add a script to be executed every time the container starts.
COPY entrypoint.sh /usr/bin/
RUN chmod +x /usr/bin/entrypoint.sh
ENTRYPOINT ["entrypoint.sh"]
EXPOSE 3000
COPY . .
CMD ["rails", "server", "-b", "0.0.0.0"]The error occurs when running the bundle install: |
currently 3.14 breaks builds with older versions of docker: docker-library/ruby#351
@morgoth @samnang > seems to be working on Fargate 1.4.0 now, tested with |
|
please see the alpine linux 3.14 release notes: https://wiki.alpinelinux.org/wiki/Release_Notes_for_Alpine_3.14.0#faccessat2. you should always read the release notes when upgrading linux distro, or expect surprises. if, after reading the release notes, it is still not working for anybody, please post:
to avoid cluttering the issue, please use @alexbrebu see above, and if you are using docker desktop, what version? @stanhu, docker 19.03 is officially EOL. however, you can continue using it (at your own risk) if you upgrade to runc v1.0.0-rc93 or apply the documented workaround. or, if you don't care about^W^W^Wdon't need security at the OS level, which is the only decent reason to be running without ten months of security updates, then just use --security-opt=seccomp=unconfined? although i don't maintain this image, i don't think it is a good idea to downgrade the version. it would be unexpected for users to suddenly get a lower version, as well as a version not matching the latest version advertised on the alpine linux website. additionally, some people may be using the community repo, which is not supported beyond the latest alpine linux release. |
|
.
I have installed the docker through homebrew Brebus-MacBook-Pro:~ brebuandrei$ docker -v
Docker version 20.10.7, build f0df35096d
Brebus-MacBook-Pro:~ brebuandrei$ which docker
/usr/local/bin/docker |
|
Closing because this isn't something we can fix in the images -- the proper solution is to either use the |
|
This does appear to be an issue on Azure App Service. Downgrading to Alpine 3.13 resolved the issue for me. Just leaving some breadcrumbs for anyone who finds this thread with the same issue. |
|
I solved this issue by replacing Step 1 dinghy destroy
brew uninstall docker-machine docker-compose dinghy docker docker-machine-nfsStep 2 cat ~/.bash_profile
cat ~/.bashrc |
|
I was running into an issue where installing a gem from a Git repo source failed. I would get the following error when running
Updating docker via |
This is an issue with our docker alpine image and an older docker host. Keeping to apline3.13 fixes the below error
Fix for :
While executing gem ... (Gem::FilePermissionError)
You don't have write permissions for/usr/local/bundle
Solution:
docker-library/ruby#351
* Add cypress-axe and axe-core
Add cypress-axe as a yarn devDependency
Add axe-core as a yarn peerDependency of the cypress package
Add import 'cypress-axe' to the support file as it includes commands to be used in testing
* Added basic usage of checkA11y
Cypress test for sign in spec checks for accessibility issues on page visit
To do: Refactor so that we don't have to reproduce long task code on every spec
* Fix js linting issues
* Add Cypress command to log results to terminal
Add a terminal log command that logs cypress test results to the terminal.
Refactor code to move the function terminalLog into the above command.
Add initial rules to ignore the govuk-phase-banner accessiblity issue because it is Technial Debt
* Add accessiblity cypress checks on sign in
Add accessibility checks to the page load and dynamic changes on the page during the sign in cypress tests
* Added accessibility tests to cookie tests
Added axe a11y checks to cookie_settings and cookie_banner
Refactored runtime a11y checks into function composed of:
checkA11y and injectAxe for ease of use
* Added eslint for Javascript
Created config for eslint
Added Cypress eslint plugin
Linted all JS files in repo
Cleaned up test specs
* Changed validate:js command to ESLint
Ran linter on via command on app and cypress folder
* Update comment to ESLint from standardjs
* Upgrade ruby to 2.7.5
Upgrade ruby to 2.7.5 from 2.7.2
Upgrade circleci ruby docker imgae to 2.7.5 which comes with node version 16.13.0
This is so that the circleci docker image has the node of at least (^12.22.0, ^14.17.0, or >=16.0.0) as described by ESlint.
This will allow for ESlint to be installed and work as our javascript linter
* Disable eslint error for cypress plugin/index.js
* Upgrade ruby to 2.7.5 in Dockerfile
* Fix bundle gems issue in docker
This is an issue with our docker alpine image and an older docker host. Keeping to apline3.13 fixes the below error
Fix for :
While executing gem ... (Gem::FilePermissionError)
You don't have write permissions for/usr/local/bundle
Solution:
docker-library/ruby#351
* Configure Cypress Axe impact
Disabled checks for minor and moderate issues (only check for serious or critical)
Modified custom a11yCheck command to handle config
Applied injectAxe to all a11yChecks to avoid losing the instantiation (calling the function multiple times has no impact)
Co-authored-by: ivanELEC <[email protected]>
|
Apologies for bumping a phantom thread (Although it's not that old). The advice I found out through different mediums (Use alpine 3.13), works.... However ..... Ruby 3.1.x series in dockerhub doesn't feature an alpine 3.13 build combination. As such this issue now prohibits people from using Ruby 3.1.x I personally get this issue when using Docker in Docker. And have raised a few issues (Probably in the wrong places) Any advice from people on next steps? Asking whoever maintains said images under |
|
The correct solution here is to update Docker and libseccomp on your host. |
|
is |
|
On Debian (and derivatives like Raspbian, Ubuntu, etc) the package name is |
|
FYI This doesn't fix the issue. But I've raised it elsewhere. |
=> CANCELED [internal] load build context 18.1s
|
We run a slightly old Container-Optimized OS from Google (13310.1041.24) on thousands of Google N2D machines, and after the latest updates using Alpine v3.14, we noticed all sorts of strange failures:
https://alpinelinux.org/posts/Alpine-3.14.0-released.html mentions:
Our version:
cos@runner-8a6210b8-gsrm-1625808786-f58c5cbb ~ $ docker --version Docker version 19.03.9, build 9d98839Can we rollback the Alpine v3.14 upgrade and make this opt-in instead of the default while we work to upgrade our systems?
I should note this problem did not occur on Google's supported
cos-85-13310-1260-2image:Related links:
The text was updated successfully, but these errors were encountered: