Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
[pipelines] Cannot use `DockerImage.fromAsset()` as CodeBuild environment
See original GitHub issueThe SelfMutate action fails with the error Cannot connect to the Docker daemon at unix:///var/run/docker.sock. Is the docker daemon running?
My pipeline uses a custom build image in the Build stage through codebuild.LinuxBuildImage.fromAsset. This requires building and publishing the build image in the SelfMutate action.
This is likely due to missing privileged: true in the SelfMutation CodeBuild project:
Reproduction Steps
const buildProject = new codebuild.PipelineProject(this, 'BuildProject', {
buildSpec: codebuild.BuildSpec.fromSourceFilename('buildspec.yml'),
environment: {
buildImage: codebuild.LinuxBuildImage.fromAsset(this, 'BuildImage', {
directory: path.join(__dirname, 'build-image'),
}),
},
});
const synthAction = new codepipeline_actions.CodeBuildAction({
actionName: 'Build',
project: buildProject,
input: sourceArtifact,
outputs: [cloudAssemblyArtifact],
});
What did you expect to happen?
The SelfMutate action can invoke Docker to build the custom build image.
What actually happened?
The SelfMutate action could not invoke Docker.
Error trace:
PipelineStack: deploying...
--
PipelineStack: deploying...
Assuming role 'arn:aws:iam::XXXXXXXXXXXX:role/cdk-hnb659fds-deploy-role-XXXXXXXXXXXX-eu-central-1'.
Waiting for stack CDKToolkit to finish creating or updating...
[0%] start: Publishing e8b2cd44815671370f30cd36ed6bf04788aadc936896ce7e63d94822c137c429:XXXXXXXXXXXX-eu-central-1
Retrieved account ID XXXXXXXXXXXX from disk cache
Assuming role 'arn:aws:iam::XXXXXXXXXXXX:role/cdk-hnb659fds-file-publishing-role-XXXXXXXXXXXX-eu-central-1'.
[0%] check: Check s3://cdk-hnb659fds-assets-XXXXXXXXXXXX-eu-central-1/e8b2cd44815671370f30cd36ed6bf04788aadc936896ce7e63d94822c137c429
[0%] upload: Upload s3://cdk-hnb659fds-assets-XXXXXXXXXXXX-eu-central-1/e8b2cd44815671370f30cd36ed6bf04788aadc936896ce7e63d94822c137c429
[50%] success: Published e8b2cd44815671370f30cd36ed6bf04788aadc936896ce7e63d94822c137c429:XXXXXXXXXXXX-eu-central-1
[50%] start: Publishing a67245d91d0552ef5f12da7797006b386702cfa0b2002a65f8435b728b249199:XXXXXXXXXXXX-eu-central-1
Retrieved account ID XXXXXXXXXXXX from disk cache
Assuming role 'arn:aws:iam::XXXXXXXXXXXX:role/cdk-hnb659fds-image-publishing-role-XXXXXXXXXXXX-eu-central-1'.
Retrieved account ID XXXXXXXXXXXX from disk cache
[50%] check: Check XXXXXXXXXXXX.dkr.ecr.eu-central-1.amazonaws.com/cdk-hnb659fds-container-assets-XXXXXXXXXXXX-eu-central-1:a67245d91d0552ef5f12da7797006b386702cfa0b2002a65f8435b728b249199
Call failed: describeImages({"repositoryName":"cdk-hnb659fds-container-assets-XXXXXXXXXXXX-eu-central-1","imageIds":[{"imageTag":"a67245d91d0552ef5f12da7797006b386702cfa0b2002a65f8435b728b249199"}]}) => The image with imageId {imageDigest:'null', imageTag:'a67245d91d0552ef5f12da7797006b386702cfa0b2002a65f8435b728b249199'} does not exist within the repository with name 'cdk-hnb659fds-container-assets-XXXXXXXXXXXX-eu-central-1' in the registry with id 'XXXXXXXXXXXX'
[50%] debug: docker login --username AWS --password-stdin https://XXXXXXXXXXXX.dkr.ecr.eu-central-1.amazonaws.com
[50%] debug: docker inspect cdkasset-a67245d91d0552ef5f12da7797006b386702cfa0b2002a65f8435b728b249199
[50%] build: Building Docker image at /codebuild/output/src189637107/src/asset.a67245d91d0552ef5f12da7797006b386702cfa0b2002a65f8435b728b249199
[50%] debug: docker build --tag cdkasset-a67245d91d0552ef5f12da7797006b386702cfa0b2002a65f8435b728b249199 .
Cannot connect to the Docker daemon at unix:///var/run/docker.sock. Is the docker daemon running?
[100%] fail: docker build --tag cdkasset-a67245d91d0552ef5f12da7797006b386702cfa0b2002a65f8435b728b249199 . exited with error code 1: Cannot connect to the Docker daemon at unix:///var/run/docker.sock. Is the docker daemon running?
❌ PipelineStack failed: Error: Failed to publish one or more assets. See the error messages above for more information.
at Object.publishAssets (/usr/local/lib/node_modules/aws-cdk/lib/util/asset-publishing.ts:25:11)
at CloudFormationDeployments.publishStackAssets (/usr/local/lib/node_modules/aws-cdk/lib/api/cloudformation-deployments.ts:262:7)
at CloudFormationDeployments.deployStack (/usr/local/lib/node_modules/aws-cdk/lib/api/cloudformation-deployments.ts:154:5)
at CdkToolkit.deploy (/usr/local/lib/node_modules/aws-cdk/lib/cdk-toolkit.ts:180:24)
at initCommandLine (/usr/local/lib/node_modules/aws-cdk/bin/cdk.ts:200:9)
Failed to publish one or more assets. See the error messages above for more information.
Error: Failed to publish one or more assets. See the error messages above for more information.
at Object.publishAssets (/usr/local/lib/node_modules/aws-cdk/lib/util/asset-publishing.ts:25:11)
at CloudFormationDeployments.publishStackAssets (/usr/local/lib/node_modules/aws-cdk/lib/api/cloudformation-deployments.ts:262:7)
at CloudFormationDeployments.deployStack (/usr/local/lib/node_modules/aws-cdk/lib/api/cloudformation-deployments.ts:154:5)
at CdkToolkit.deploy (/usr/local/lib/node_modules/aws-cdk/lib/cdk-toolkit.ts:180:24)
at initCommandLine (/usr/local/lib/node_modules/aws-cdk/bin/cdk.ts:200:9)
[Container] 2020/11/11 16:06:30 Command did not exit successfully cdk -a . deploy PipelineStack --require-approval=never --verbose exit status 1
[Container] 2020/11/11 16:06:30 Phase complete: BUILD State: FAILED
[Container] 2020/11/11 16:06:30 Phase context status code: COMMAND_EXECUTION_ERROR Message: Error while executing command: cdk -a . deploy PipelineStack --require-approval=never --verbose. Reason: exit status 1
[Container] 2020/11/11 16:06:30 Entering phase POST_BUILD
Environment
- CDK CLI Version : 1.73
- Framework Version: 1.73
This is 🐛 Bug Report
Issue Analytics
- State:
- Created 3 years ago
- Comments:7 (5 by maintainers)
Top Results From Across the Web
aws-cdk/aws-codebuild module - AWS Documentation - Amazon
You can use the environment property to customize the build environment: buildImage defines the Docker image used. See Images below for details on...
Read more >aws-cdk.pipelines - PyPI
CDK Pipelines is an opinionated construct library. It is purpose-built to deploy one or more copies of your CDK applications using CloudFormation with...
Read more >CDK Pipelines - Go Packages
fromAsset ()` as the build // image of a CodeBuild step in the pipeline). // // You do not need to set it...
Read more >cannot connect to the docker daemon codebuild - You.com
Solution : From the AWS CodeBuild Console, select the Build Project. Select the 'Edit' dropdown from the top-right corner, and select the 'Environment' ......
Read more >CD for AWS without trusting a third party CI - Polar Squad
If we trigger it from our Git provider (e.g. GitHub webhooks) directly, we can't guarantee that it will run after the CI pipeline...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
It is true that this requires a
privilegedModeflag on the SelfMutate action. Feels a little dangerous/unnecessary to enable this by default. It will have to become a parameter.⚠️COMMENT VISIBILITY WARNING⚠️
Comments on closed issues are hard for our team to see. If you need more assistance, please either tag a team member or open a new issue that references this one. If you wish to keep having a conversation with other community members under this issue feel free to do so.