On 14/04/2025 12:25 pm, Marek Marczykowski-Górecki wrote:
> On Mon, Apr 14, 2025 at 11:18:40AM +0100, Andrew Cooper wrote:
>> bash, busybox, musl and zlib are all in the base container.
>>
>> python3 and ncurses are in principle used by bits of Xen, but not in anything
>> we test in CI. argp-standlone, curl, dbus, libfdt, libgcc and sudo aren't
>> used at all (for x86 at least).
>>
>> libbz2 and libuuid were pulled in transitively before, and need to be
>> included
>> explicitly now.
>>
>> Use apk --no-cache to avoid keeping a ~2M package index on disk.
>>
>> Remove the modules scan on boot. We don't have or build any. This removes a
>> chunk of warnings on boot.
> Strictly speaking there is xen-argo.ko, but that's handled manually
> anyway, so probably not worth mentioning.
Hmm, it's an awkward way around in the series, but yes. The lack of
doing any of the normal module work in the kernel build is what causes
xen-argo.ko to be more special than I'd like.
>
>> This shrinks the rootfs from ~30M down to ~8M.
>>
>> No practical change.
> This also adds some preparation (the case on `uname -m`) for ARM64
> rootfs, would be nice to mention it too. Especially since libfdt removed
> here will be re-added for ARM.
"Factor out some x86-isms in preparation for ARM64 support."
>> Signed-off-by: Andrew Cooper <andrew.coop...@citrix.com>
>> ---
>> CC: Anthony PERARD <anthony.per...@vates.tech>
>> CC: Stefano Stabellini <sstabell...@kernel.org>
>> CC: Michal Orzel <michal.or...@amd.com>
>> CC: Doug Goldstein <car...@cardoe.com>
>> CC: Marek Marczykowski-Górecki <marma...@invisiblethingslab.com>
>> ---
>> scripts/alpine-rootfs.sh | 60 +++++++++++++++++++++++-----------------
>> 1 file changed, 34 insertions(+), 26 deletions(-)
>>
>> diff --git a/scripts/alpine-rootfs.sh b/scripts/alpine-rootfs.sh
>> index 75e2f8648ce5..72c29e0a0a13 100755
>> --- a/scripts/alpine-rootfs.sh
>> +++ b/scripts/alpine-rootfs.sh
>> @@ -4,33 +4,42 @@ set -eu
>>
>> WORKDIR="${PWD}"
>> COPYDIR="${WORKDIR}/binaries"
>> +UNAME=$(uname -m)
>>
>> -apk update
>> +apk --no-cache update
> This is no-op, no? IIUC the only thing `apk update` does is updating the
> cache, which you disabled...
Lovely. This ought to be upgrade, so we pull in updates to the packages
in the base image.
~Andrew
