From d5571b4679722d22aafc0c27703f4c4174cd697b Mon Sep 17 00:00:00 2001 From: Dmitrii Sharshakov Date: Mon, 24 Feb 2025 21:02:41 +0100 Subject: [PATCH] feat: update various extensions Updated Gvisor, Kata-containers, crun, Glib, Glibc, libseccomp, Open-iSCSI, mdadm, ecr-credential-provider, qemu-guest-agent, tailscale, as well as pkgs and wolfi-base base images Use tools instead of base Signed-off-by: Dmitrii Sharshakov --- .kres.yaml | 8 +++++++- Makefile | 8 ++++++-- container-runtime/vars.yaml | 8 ++++---- guest-agents/vars.yaml | 4 ++-- hack/release.toml | 14 +++++++++++--- internal/base/pkg.yaml | 2 +- misc/glibc/vars.yaml | 2 +- misc/vars.yaml | 2 +- network/vars.yaml | 2 +- .../nvidia-container-runtime-wrapper/go.mod | 2 +- .../nvidia-container-runtime-wrapper/go.sum | 2 ++ .../nvidia-persistenced-wrapper/go.mod | 2 +- .../nvidia-persistenced-wrapper/go.sum | 2 ++ nvidia-gpu/vars.yaml | 4 ++-- storage/iscsi-tools/vars.yaml | 2 +- storage/vars.yaml | 2 +- storage/zfs/zfs-service/go.mod | 2 +- storage/zfs/zfs-service/go.sum | 2 ++ 18 files changed, 47 insertions(+), 23 deletions(-) diff --git a/.kres.yaml b/.kres.yaml index 669113e8..89c84ed9 100644 --- a/.kres.yaml +++ b/.kres.yaml @@ -62,14 +62,20 @@ spec: - TAG - PKGS - PKGS_PREFIX + - TOOLS + - TOOLS_PREFIX makefile: extraVariables: - name: EXTENSIONS_IMAGE_REF defaultValue: $(REGISTRY_AND_USERNAME)/extensions:$(TAG) - name: PKGS - defaultValue: v1.10.0-alpha.0-40-ge1f11f0 + defaultValue: v1.10.0-alpha.0-44-g7774b08 - name: PKGS_PREFIX defaultValue: ghcr.io/siderolabs + - name: TOOLS + defaultValue: v1.10.0-alpha.0-17-g6a71711 + - name: TOOLS_PREFIX + defaultValue: ghcr.io/siderolabs useBldrPkgTagResolver: true --- kind: common.Build diff --git a/Makefile b/Makefile index afbf23d1..8d2ac30c 100644 --- a/Makefile +++ b/Makefile @@ -1,6 +1,6 @@ # THIS FILE WAS AUTOMATICALLY GENERATED, PLEASE DO NOT EDIT. # -# Generated on 2025-02-20T20:33:13Z by kres 8a48729. +# Generated on 2025-02-25T07:49:52Z by kres 1281806. # common variables @@ -44,12 +44,16 @@ COMMON_ARGS += --build-arg=SOURCE_DATE_EPOCH=$(SOURCE_DATE_EPOCH) COMMON_ARGS += --build-arg=TAG="$(TAG)" COMMON_ARGS += --build-arg=PKGS="$(PKGS)" COMMON_ARGS += --build-arg=PKGS_PREFIX="$(PKGS_PREFIX)" +COMMON_ARGS += --build-arg=TOOLS="$(TOOLS)" +COMMON_ARGS += --build-arg=TOOLS_PREFIX="$(TOOLS_PREFIX)" # extra variables EXTENSIONS_IMAGE_REF ?= $(REGISTRY_AND_USERNAME)/extensions:$(TAG) -PKGS ?= v1.10.0-alpha.0-40-ge1f11f0 +PKGS ?= v1.10.0-alpha.0-44-g7774b08 PKGS_PREFIX ?= ghcr.io/siderolabs +TOOLS ?= v1.10.0-alpha.0-17-g6a71711 +TOOLS_PREFIX ?= ghcr.io/siderolabs # targets defines all the available targets diff --git a/container-runtime/vars.yaml b/container-runtime/vars.yaml index 1ef194bd..ad4e53d2 100644 --- a/container-runtime/vars.yaml +++ b/container-runtime/vars.yaml @@ -1,14 +1,14 @@ # renovate: datasource=github-tags extractVersion=^release-(?.*)$ depName=google/gvisor -GVISOR_VERSION: 20241118.0 +GVISOR_VERSION: 20250217.0 # renovate: datasource=github-releases depName=containerd/stargz-snapshotter STARGZ_SNAPSHOTTER_VERSION: v0.16.3 # renovate: datasource=github-releases depName=kubernetes/cloud-provider-aws -CLOUD_PROVIDER_AWS_VERSION: v1.32.0 +CLOUD_PROVIDER_AWS_VERSION: v1.32.1 # renovate: datasource=git-tags extractVersion=^containerd-shim-wasmedge\/(?.*)$ depName=https://github.com/containerd/runwasi.git WASMEDGE_VERSION: v0.5.0 # renovate: datasource=git-tags depName=https://github.com/spinkube/containerd-shim-spin.git SPIN_VERSION: v0.18.0 # renovate: datasource=github-releases depName=kata-containers/kata-containers -KATA_CONTAINERS_VERSION: 3.3.0 +KATA_CONTAINERS_VERSION: 3.14.0 # renovate: datasource=github-releases depName=containers/crun -CRUN_VERSION: 1.19.1 +CRUN_VERSION: 1.20 diff --git a/guest-agents/vars.yaml b/guest-agents/vars.yaml index 60eeaefd..12e5bbf1 100644 --- a/guest-agents/vars.yaml +++ b/guest-agents/vars.yaml @@ -1,7 +1,7 @@ # renovate: datasource=git-tags extractVersion=^v(?.*)$ depName=https://github.com/qemu/qemu.git -QEMU_VERSION: 9.2.0 +QEMU_VERSION: 9.2.1 # renovate: datasource=git-tags depName=https://gitlab.gnome.org/GNOME/glib.git -GLIB_VERSION: 2.83.2 +GLIB_VERSION: 2.83.4 # renovate: datasource=github-releases extractVersion=^pcre2-(?.*)$ depName=PCRE2Project/pcre2 PCRE2_VERSION: 10.42 # renovate: datasource=git-tags depName=https://gitlab.com/xen-project/xen-guest-agent.git diff --git a/hack/release.toml b/hack/release.toml index b6b4b372..d87b7d6f 100644 --- a/hack/release.toml +++ b/hack/release.toml @@ -21,17 +21,25 @@ See [Talos Linux documentation](https://www.talos.dev/v1.10/talos-guides/configu description = """\ Linux Firmware: 20250211 stargz-snapshotter: 0.16.3 -ecr-credential-provider: 1.32.0 +ecr-credential-provider: 1.32.1 wasm-edge: 0.5.0 crun: 1.19.1 spin: 0.18.0 -qemu-guest-agent: 9.2.0 -Tailscale: 1.78.1 +qemu-guest-agent: 9.2.1 +Tailscale: 1.80.0 ZFS: 2.3.0 NVIDIA LTS: 535.230.02 NVIDIA Production: 550.144.03 NVIDIA Container Toolkit: 1.17.4 Intel u-code: 20250211 +Gvisor: 20250217.0 +Kata-containers: 3.14.0 +crun: 1.20 +Glib: 2.83.4 +Glibc: 2.41 +libseccomp: 2.6.0 +Open-iSCSI: 2.1.11 +mdadm: 4.4 """ [notes.nebula] diff --git a/internal/base/pkg.yaml b/internal/base/pkg.yaml index 4d6b5f61..3e88e12f 100644 --- a/internal/base/pkg.yaml +++ b/internal/base/pkg.yaml @@ -2,7 +2,7 @@ name: base variant: scratch shell: /bin/bash dependencies: - - image: "{{ .BUILD_ARG_PKGS_PREFIX }}/base:{{ .BUILD_ARG_PKGS }}" + - image: "{{ .BUILD_ARG_TOOLS_PREFIX }}/tools:{{ .BUILD_ARG_TOOLS }}" - image: ghcr.io/siderolabs/extensions-validator:7d4395d finalize: - from: / diff --git a/misc/glibc/vars.yaml b/misc/glibc/vars.yaml index 0f0a4d61..b2ec1a81 100644 --- a/misc/glibc/vars.yaml +++ b/misc/glibc/vars.yaml @@ -1,4 +1,4 @@ # renovate: datasource=docker versioning=docker depName=cgr.dev/chainguard/wolfi-base -WOLFI_BASE_REF: sha256:4f12c90f259bd273ed698660bc983053c5f4d2d2617beb0d481d4ec43d7cbbbd +WOLFI_BASE_REF: sha256:274f9fe3078a2f9757516d149a3eee9d227be39925ecdb1a56b0e796882d70a6 VERSION: {{ .GLIBC_VERSION }} diff --git a/misc/vars.yaml b/misc/vars.yaml index e99da6bf..578eb468 100644 --- a/misc/vars.yaml +++ b/misc/vars.yaml @@ -1,2 +1,2 @@ # renovate: datasource=git-tags extractVersion=^glibc-(?.*)$ depName=https://sourceware.org/git/glibc.git -GLIBC_VERSION: 2.40 +GLIBC_VERSION: 2.41 diff --git a/network/vars.yaml b/network/vars.yaml index d19e09ba..9de44b6c 100644 --- a/network/vars.yaml +++ b/network/vars.yaml @@ -1,5 +1,5 @@ # renovate: datasource=github-releases extractVersion=^v(?.*)$ depName=tailscale/tailscale -TAILSCALE_VERSION: 1.78.1 +TAILSCALE_VERSION: 1.80.0 # renovate: datasource=github-releases depName=lldpd/lldpd LLDPD_VERSION: 1.0.19 # renovate: datasource=github-releases depName=cloudflare/cloudflared diff --git a/nvidia-gpu/nvidia-container-toolkit/nvidia-container-runtime-wrapper/go.mod b/nvidia-gpu/nvidia-container-toolkit/nvidia-container-runtime-wrapper/go.mod index e42a2826..21cf1ba4 100644 --- a/nvidia-gpu/nvidia-container-toolkit/nvidia-container-runtime-wrapper/go.mod +++ b/nvidia-gpu/nvidia-container-toolkit/nvidia-container-runtime-wrapper/go.mod @@ -2,4 +2,4 @@ module nvidia-container-runtime-wrapper go 1.23.0 -require golang.org/x/sys v0.29.0 +require golang.org/x/sys v0.30.0 diff --git a/nvidia-gpu/nvidia-container-toolkit/nvidia-container-runtime-wrapper/go.sum b/nvidia-gpu/nvidia-container-toolkit/nvidia-container-runtime-wrapper/go.sum index 0664caa9..49c64f10 100644 --- a/nvidia-gpu/nvidia-container-toolkit/nvidia-container-runtime-wrapper/go.sum +++ b/nvidia-gpu/nvidia-container-toolkit/nvidia-container-runtime-wrapper/go.sum @@ -1,2 +1,4 @@ golang.org/x/sys v0.29.0 h1:TPYlXGxvx1MGTn2GiZDhnjPA9wZzZeGKHHmKhHYvgaU= golang.org/x/sys v0.29.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/sys v0.30.0 h1:QjkSwP/36a20jFYWkSue1YwXzLmsV5Gfq7Eiy72C1uc= +golang.org/x/sys v0.30.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= diff --git a/nvidia-gpu/nvidia-container-toolkit/nvidia-persistenced-wrapper/go.mod b/nvidia-gpu/nvidia-container-toolkit/nvidia-persistenced-wrapper/go.mod index 6db6f423..6c0d5e51 100644 --- a/nvidia-gpu/nvidia-container-toolkit/nvidia-persistenced-wrapper/go.mod +++ b/nvidia-gpu/nvidia-container-toolkit/nvidia-persistenced-wrapper/go.mod @@ -2,4 +2,4 @@ module nvidia-persistenced-wrapper go 1.23.0 -require golang.org/x/sys v0.29.0 +require golang.org/x/sys v0.30.0 diff --git a/nvidia-gpu/nvidia-container-toolkit/nvidia-persistenced-wrapper/go.sum b/nvidia-gpu/nvidia-container-toolkit/nvidia-persistenced-wrapper/go.sum index 0664caa9..49c64f10 100644 --- a/nvidia-gpu/nvidia-container-toolkit/nvidia-persistenced-wrapper/go.sum +++ b/nvidia-gpu/nvidia-container-toolkit/nvidia-persistenced-wrapper/go.sum @@ -1,2 +1,4 @@ golang.org/x/sys v0.29.0 h1:TPYlXGxvx1MGTn2GiZDhnjPA9wZzZeGKHHmKhHYvgaU= golang.org/x/sys v0.29.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/sys v0.30.0 h1:QjkSwP/36a20jFYWkSue1YwXzLmsV5Gfq7Eiy72C1uc= +golang.org/x/sys v0.30.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= diff --git a/nvidia-gpu/vars.yaml b/nvidia-gpu/vars.yaml index f1ff1f7f..353a75b5 100644 --- a/nvidia-gpu/vars.yaml +++ b/nvidia-gpu/vars.yaml @@ -14,9 +14,9 @@ LIBNVIDIA_CONTAINER_REF: f23e5e55ea27b3680aef363436d4bcf7659e0bfc LIBNVIDIA_CONTAINER_SHA256: dca982cb83a5937c4533e707dc8fb1070496dff989d71319b64e698519b3a0b9 LIBNVIDIA_CONTAINER_SHA512: a5edb4eec8cc4a9bd221c3cbb14515656854700b1a6aef7b47147d96b67511d5cfcae38c740fd946452768da0f993edf6c656697cd01189de88b67a4ae00aae5 # renovate: datasource=docker versioning=docker depName=cgr.dev/chainguard/wolfi-base -WOLFI_BASE_REF: sha256:4f12c90f259bd273ed698660bc983053c5f4d2d2617beb0d481d4ec43d7cbbbd +WOLFI_BASE_REF: sha256:274f9fe3078a2f9757516d149a3eee9d227be39925ecdb1a56b0e796882d70a6 # renovate: datasource=github-tags extractVersion=^v(?.*)$ depName=seccomp/libseccomp -LIBSECCOMP_VERSION: 2.5.5 +LIBSECCOMP_VERSION: 2.6.0 # renovate: datasource=git-tags extractVersion=^libcap-(?.*)$ depName=git://git.kernel.org/pub/scm/libs/libcap/libcap.git LIBCAP_VERSION: 2.73 # renovate: datasource=git-tags extractVersion=^elfutils-(?.*)$ depName=git://sourceware.org/git/elfutils.git diff --git a/storage/iscsi-tools/vars.yaml b/storage/iscsi-tools/vars.yaml index 97b84a4d..ba2980cf 100644 --- a/storage/iscsi-tools/vars.yaml +++ b/storage/iscsi-tools/vars.yaml @@ -1,3 +1,3 @@ VERSION: v0.2.0 # renovate: datasource=github-tags depName=open-iscsi/open-iscsi -OPEN_ISCSI_VERSION: 2.1.10 +OPEN_ISCSI_VERSION: 2.1.11 diff --git a/storage/vars.yaml b/storage/vars.yaml index 50716ccc..0539009c 100644 --- a/storage/vars.yaml +++ b/storage/vars.yaml @@ -1,4 +1,4 @@ # renovate: datasource=github-releases extractVersion=^fuse-(?.*)$ depName=libfuse/libfuse FUSE3_VERSION: 3.16.2 # renovate: datasource=git-tags extractVersion=^mdadm-(?.*)$ depName=git://git.kernel.org/pub/scm/utils/mdadm/mdadm.git -MDADM_VERSION: 4.3 +MDADM_VERSION: 4.4 diff --git a/storage/zfs/zfs-service/go.mod b/storage/zfs/zfs-service/go.mod index 86e894e8..17838d11 100644 --- a/storage/zfs/zfs-service/go.mod +++ b/storage/zfs/zfs-service/go.mod @@ -2,4 +2,4 @@ module zfs-service go 1.23.0 -require golang.org/x/sys v0.29.0 +require golang.org/x/sys v0.30.0 diff --git a/storage/zfs/zfs-service/go.sum b/storage/zfs/zfs-service/go.sum index 0664caa9..49c64f10 100644 --- a/storage/zfs/zfs-service/go.sum +++ b/storage/zfs/zfs-service/go.sum @@ -1,2 +1,4 @@ golang.org/x/sys v0.29.0 h1:TPYlXGxvx1MGTn2GiZDhnjPA9wZzZeGKHHmKhHYvgaU= golang.org/x/sys v0.29.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/sys v0.30.0 h1:QjkSwP/36a20jFYWkSue1YwXzLmsV5Gfq7Eiy72C1uc= +golang.org/x/sys v0.30.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=