Cannot extract OTP release tarball during Kaniko build about kerl HOT 4 OPEN

eluklar is indeed me. I think github actions failed for 25.3.2.9 so I had to build the pre-built source manually which is why it shows up like that.

from kerl.

👋 @vassilevsky.

I'm not sure how kerl is involved in this, but maybe I'm missing a detail here.

Note: eluklar is potentially @garazdawi, and he might have a better explanation than me as to why the packaging was so.

In any case, kerl can build 25.3.2.9, as per this repo's CI.

What would you suggest we do? Or what is the exact issue we should look at?

from kerl.

Nice to meet you, Paulo :)

For now I have solved this issue by pointing Kerl to my fork of OTP. My fork does not have releases, so Kerl resorts to downloading tags. In the archives made by GitHub, files are owned by root:

$ tar -tvf otp-OTP-25.3.2.9.tar | head -n 3
drwxrwxr-x  0 root   root        0 Feb  7 18:01 otp-OTP-25.3.2.9/
drwxrwxr-x  0 root   root        0 Feb  7 18:01 otp-OTP-25.3.2.9/.devcontainer/
-rw-rw-r--  0 root   root     1188 Feb  7 18:01 otp-OTP-25.3.2.9/.devcontainer/devcontainer.json

$ tar -tv --numeric-owner -f otp-OTP-25.3.2.9.tar | head -n 3
drwxrwxr-x  0 0      0           0 Feb  7 18:01 otp-OTP-25.3.2.9/
drwxrwxr-x  0 0      0           0 Feb  7 18:01 otp-OTP-25.3.2.9/.devcontainer/
-rw-rw-r--  0 0      0        1188 Feb  7 18:01 otp-OTP-25.3.2.9/.devcontainer/devcontainer.json

They are extracted without problems and the build succeeds :)

Very nice to meet you, Lukas :) Thank you for making this effort of uploading OTP archives to GitHub releases. I found your issue #351 where you announced it and it led me to this discovery. I did not want to bother you at all with this, but oh well.

I think that one possible thing that Kerl might do to prevent errors like this in the future is to always run tar --no-same-owner --no-same-permissions. This is the default for non-root users, and it could very well be enabled for root user as well. I see no reason to preserve ownership when extracting any OTP archive, regardless of its source. File ownership inside the archive should not matter. I could make this change myself and send you a pull request, if you agree.

Or we might as well do nothing, because this is such a niche problem, and next OTP archives will most likely be made by CI anyway :)

from kerl.

File ownership inside the archive should not matter. I could make this change myself and send you a pull request, if you agree

I think it's a reasonable change. Just be sure to make it POSIX compliant, since kerl is usable under Linux and macOS, at least. CI should be enough to test it, but one never knows.

from kerl.