feat: compress termination messages to fit more results in 4KB limit

[waveywaves]

Changes

Add optional flate compression for termination messages, gated behind the
enable-termination-message-compression alpha feature flag. When enabled, results
are compressed with Go stdlib compress/flate and base64-encoded before writing
to the termination message path, effectively increasing the usable capacity from
~33 to ~187 results (5.7x) for typical image digest payloads.

The problem

Kubernetes limits termination messages to 4KB per container, and the total across
all containers in a pod is capped at 12KB (divided by container count). With multiple
steps, each container may get as little as 1KB for results (#4808). The sidecar logs
method (TEP-0127) bypasses this but adds a sidecar container to every TaskRun,
which is wasteful when most tasks don't need large results (#8448).

The solution

Compress the JSON payload before writing to the termination message path. The parser
auto-detects compressed messages via a tknz: prefix, maintaining full backward
compatibility with uncompressed messages.

Step writes result → entrypoint reads → JSON → flate compress → base64 → termination message
                                                                              ↓
Reconciler reads ← JSON ← flate decompress ← base64 decode ← termination message

E2E test results (kind cluster, k8s v1.29.2)

Results	Without Compression	With Compression
30	3776 bytes ✅	—
35	>4096 bytes ❌	899 bytes ✅
100	❌	2241 bytes ✅
150	❌	3307 bytes ✅
180	❌	3952 bytes ✅
185	❌	4061 bytes ✅
200	❌	>4096 bytes ❌

Max capacity: ~33 → ~187 results (5.7x improvement)

Implementation

• Feature flag: enable-termination-message-compression (alpha, default: false)
  • Uses PerFeatureFlag with AlphaAPIFields stability
  • Documented in config/config-feature-flags.yaml
  • Only meaningful when results-from: termination-message (default)
• Write path: pkg/termination/write.go compresses with flate.BestCompression + base64.RawStdEncoding, prefixed with tknz:
  • Smart fallback: if compressed output is larger than plain JSON, falls back automatically
  • Fixed pre-existing O_TRUNC bug in file rewrite
• Parse path: pkg/termination/parse.go auto-detects tknz: prefix, decompresses transparently
• Decompression safety: io.LimitReader with 1MB cap + explicit size check
• Entrypoint wiring: ConfigMap → pkg/pod/pod.go → cmd/entrypoint/main.go → Entrypointer
• Zero new dependencies — Go stdlib only

Test coverage

• 18 unit tests: round-trip, size comparison, append, auto-detect, corrupt data, capacity benchmark
• Feature flag tests (default, all-flags-set, invalid value)
• Example TaskRun and Pipeline in examples/v1/*/alpha/

Related Issues

• Relates to Enable larger results without a sidecar on every TaskRun #8448 (enable larger results without sidecar)
• Relates to Results, TerminationMessage and Containers #4808 (results, termination message and containers)
• Relates to Changing the way Result Parameters are stored. #4012 (changing the way result parameters are stored)
• Complements TEP-0127 (larger results via sidecar logs)
• Short-term measure until TEP-0164 (external result storage via OCI/S3/GCS) addresses the underlying 4KB limitation

/kind feature

Submitter Checklist

• Has Docs if any changes are user facing
• Has Tests included if any functionality added or changed
• pre-commit Passed
• Follows the commit message standard
• Meets the Tekton contributor standards
• Has a kind label
• Release notes block below has been updated

Release Notes

Added optional termination message compression (alpha feature flag
enable-termination-message-compression) that uses flate compression to fit
approximately 5.7x more results in the 4KB Kubernetes termination message limit.
The parser auto-detects compressed messages for full backward compatibility.
Zero new dependencies — uses Go stdlib only.

[waveywaves]

E2E Test Results — Kind Cluster (k8s v1.29.2)

Deployed Tekton from this branch via ko apply with KO_DOCKER_REPO=kind.local.

Without compression (baseline)

Results	Termination Message	Status
30	3776 bytes	PASS
35	>4096 bytes	FAIL — Termination message is above max allowed size 4096, caused by large task result.

Max capacity without compression: ~33 results

With compression (enable-termination-message-compression: "true")

Results	Termination Message	Status
35	899 bytes	PASS
100	2241 bytes	PASS
150	3307 bytes	PASS
175	3849 bytes	PASS
180	3952 bytes	PASS
185	4061 bytes	PASS
200	>4096 bytes	FAIL

Max capacity with compression: ~187 results

Summary

Result type: ~100 byte image digest (gcr.io/project/image-NNN@sha256:64-hex-chars)
Without compression: ~33 results
With compression:    ~187 results
Improvement:         5.7x capacity increase

All results verified intact after round-trip (first/last result values checked, result count matched). The tknz: prefix was present in the termination message, confirming compression was active.

[vdemeester]

A few things to address before this can move forward.

Should fix

1. No e2e test with the flag enabled. The unit tests in pkg/termination/ are thorough, but there's no integration test proving the full loop on a real cluster: feature flag → pod builder → entrypoint → compressed write → reconciler parse → results in .status.taskResults. At minimum, add one test to the alpha e2e suite that creates a TaskRun with enough results to exceed 4KB uncompressed and asserts they all appear in status.

2. No tests in pkg/pod/pod_test.go or pkg/entrypoint/entrypointer_test.go for the new flag plumbing. The termination package is well-covered but the integration points aren't.

3. OpenAPI spec not regenerated. EnableTerminationMessageCompression was added to the FeatureFlags struct but openapi_generated.go wasn't updated. Run ./hack/update-openapigen.sh.

4. CRD schema entries missing description. The enableTerminationMessageCompression field is added in 8 places across the CRD YAMLs but without a description, unlike all other feature flags there.

Strategic context

I want to be transparent about the bigger picture here. There is a TEP in progress (TEP-0164) that addresses the root cause — storing results in external backends (OCI/S3/GCS) so the 4KB limit doesn't apply at all. That TEP also unifies results with TEP-0147 artifacts and converges with TEP-0139 trusted artifacts.

That said, TEP-0164 is still in proposal stage and won't land for a while. Users are hitting the 4KB wall today (as the issues you reference show), and this is a reasonable opt-in stop-gap: zero new deps, backward compatible, meaningful capacity improvement.

I'd suggest two things to make the relationship clear:

1. Add a note to the feature flag description (in config-feature-flags.yaml and docs) that this is a short-term measure, and that external result storage (TEP-0164) will address the underlying limitation.
2. Reference TEP-0164 in the PR description alongside the other related issues, so the community can see the full picture.

With the technical items above addressed, I'm supportive of this going in as an alpha feature.

[vdemeester]

Must fix: This exact if compress { WriteCompressed } else { Write } block is duplicated at L478-485 in readResultsFromDisk. Extract a helper to avoid divergence:

func (e Entrypointer) writeTerminationMessage(path string, results []result.RunResult) error {
	if e.CompressTerminationMessage {
		return termination.WriteCompressedMessage(path, results)
	}
	return termination.WriteMessage(path, results)
}

[waveywaves]

Done. Extracted writeTerminationMessage helper method. Both call sites now use it. Added TestWriteTerminationMessage_Compression with 2 subtests (plain vs compressed output).

[vdemeester]

Nit: Unrelated change — github.com/prometheus/common went from // indirect to direct but nothing in the codebase imports it. Looks like an accidental go mod tidy artifact, please revert.

[waveywaves]

Reverted.

[vdemeester]

Nit: On JSON parse failure after decompression, this includes the full decompressed payload in the error message. For large payloads that could produce enormous log entries. Consider truncating to first N bytes.

[waveywaves]

Done. Truncated to 256 bytes with ...(truncated) suffix.

[vdemeester]

Nit: Inconsistent alignment — these two fields have extra whitespace padding that doesn't match the rest of the struct.

[waveywaves]

Fixed.

[khrm]

Isn't 1MB too generous? How much max payload are we expecting? 128 KB? Or is 1 MB really possible except in case of attack?

[waveywaves]

Good question. The pre-compression input is capped at 4KB by Kubernetes (termination message limit). With flate, the theoretical max decompressed output from 4KB compressed is about 64KB for typical JSON.

1MB is a safety net against decompression bombs. 128KB would work for legitimate use — happy to lower it. The key constraint: must be bounded (not unlimited) and larger than any legitimate 4KB-compressed payload could produce.

[khrm]

Let's put it to 128 KB

[waveywaves]

Done — changed to 128KB.

[waveywaves]

/retest

[waveywaves]

/retest

[afrittoli]

Thanks @waveywaves - it looks good, just a few minor comments.

/approve

[waveywaves]

@khrm addressed all review feedback, ready for another look when you get a chance

[tekton-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: afrittoli, vdemeester

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [afrittoli,vdemeester]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[waveywaves]

/retest

[waveywaves]

/retest

[khrm]

/lgtm

[khrm]

/retest

[khrm]

/lgtm

[waveywaves]

/hold

[khrm]

/hold

[waveywaves]

/hold cancel