Skip to content

Upgrade buildx #1041

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 9 commits into from
Aug 12, 2025
Merged

Upgrade buildx #1041

merged 9 commits into from
Aug 12, 2025

Conversation

JackPGreen
Copy link
Collaborator

@JackPGreen JackPGreen commented Jul 30, 2025
edited
Loading

This buildx version is 5 years old - and not managed by Dependabot.

We could update to a newer specific version, but that's still not easily maintainable - instead we should just use latest and trust the post-build image smoke tests.

Example execution.

Fixes: #1043

@JackPGreen
Centralise Docker setup actions (qemu + buildx)
4e5f9fa 
The `docker/setup-buildx-action@v3` with `version: v0.5.1` is duplicated in 7 actions. The version used for the build system should be specified only once - extracted.

Note - this version is [old](https://github.com/docker/buildx/releases/tag/v0.5.1) which is what prompted centralising to make it easier to explore upgrading in future.
@JackPGreen
Update branch ref
9a6ad5d
@JackPGreen
Upgrade buildx
621a3e0 
This `buildx` version is [5 years old](https://github.com/docker/buildx/releases/tag/v0.5.1) - and not managed by Dependabot.

We _could_ update to a newer specific version, but that's still not easily maintainable - instead we should just use `latest` and trust the post-build image smoke tests.
@JackPGreen
Merge branch 'master' into upgrade-buildx
f934b18
@JackPGreen JackPGreen closed this Aug 7, 2025
@JackPGreen JackPGreen reopened this Aug 8, 2025
@JackPGreen JackPGreen self-assigned this Aug 8, 2025
@JackPGreen JackPGreen marked this pull request as ready for review August 8, 2025 10:58
@JackPGreen JackPGreen requested a review from a team as a code owner August 8, 2025 10:58
nishaatr
nishaatr approved these changes Aug 11, 2025
View reviewed changes
Copy link
Contributor

@nishaatr nishaatr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Makes sense
I see job is stuck?
image

@JackPGreen
Copy link
Collaborator Author

see job is stuck? image

I don't see that?

@nishaatr
Copy link
Contributor

Actually, why not dependabot?
I am thinking might cause issue with releases? Likely rare but we update other actions via dependabot

@JackPGreen
Copy link
Collaborator Author

Likely rare but we update other actions via dependabot

This isn't an action - it's the configuration of an action. Not something dependabot supports.

ldziedziul
ldziedziul reviewed Aug 11, 2025
View reviewed changes
@JackPGreen JackPGreen requested a review from ldziedziul August 11, 2025 15:17
@JackPGreen JackPGreen enabled auto-merge (squash) August 12, 2025 11:28
@JackPGreen JackPGreen merged commit 823bdf8 into master Aug 12, 2025
17 checks passed
@JackPGreen JackPGreen deleted the upgrade-buildx branch August 12, 2025 12:39
JackPGreen added a commit that referenced this pull request Aug 19, 2025
@JackPGreen
Disable build provenance to fix RHEL publish
9c01e32 
In #1041, `buildx` was upgraded.

[`v10` introduced a breaking change](https://github.com/docker/buildx/releases/tag/v0.10.0), the introduction of `provenance` - this caused the [RedHat publish requests to fail](https://github.com/hazelcast/hazelcast-docker/actions/runs/17074139914/job/48411435645):
```
+ echo 'Publishing the image 68a4987ed81a02dbf3d1a549...'
++ curl --fail --silent --show-error --retry 5 --retry-all-errors --request POST --header 'X-API-KEY: ***' --header 'Cache-Control: no-cache' --header 'Content-Type: application/json' --data '{"image_id":"68a4987ed81a02dbf3d1a549" , "operation" : "publish" }' https://catalog.redhat.com/api/containers/v1/projects/certification/id/***/requests/images
Publishing the image 68a4987ed81a02dbf3d1a549...
curl: (22) The requested URL returned error: 400
```

Disabling `provenance` addresses this issue.

Example execution.
@JackPGreen JackPGreen mentioned this pull request Aug 19, 2025
Merged
JackPGreen added a commit that referenced this pull request Aug 21, 2025
@JackPGreen
Disable build provenance to fix RHEL publish (#1055)
f4dca4f 
In #1041, `buildx` was
upgraded.

[`v10` introduced a breaking
change](https://github.com/docker/buildx/releases/tag/v0.10.0), the
introduction of `provenance` - this caused the [RedHat publish requests
to
fail](https://github.com/hazelcast/hazelcast-docker/actions/runs/17074139914/job/48411435645):
```
+ echo 'Publishing the image 68a4987ed81a02dbf3d1a549...'
++ curl --fail --silent --show-error --retry 5 --retry-all-errors --request POST --header 'X-API-KEY: ***' --header 'Cache-Control: no-cache' --header 'Content-Type: application/json' --data '{"image_id":"68a4987ed81a02dbf3d1a549" , "operation" : "publish" }' https://catalog.redhat.com/api/containers/v1/projects/certification/id/***/requests/images
Publishing the image 68a4987ed81a02dbf3d1a549...
curl: (22) The requested URL returned error: 400
```

Disabling `provenance` addresses this issue.

The root cause of the issue with `provenance` has not been investigated
further.

[Example
execution](https://github.com/hazelcast/hazelcast-docker/actions/runs/17083589973/job/48443063887).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ldziedziul ldziedziul ldziedziul approved these changes

@nishaatr nishaatr nishaatr approved these changes

Assignees

@JackPGreen JackPGreen

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Upgrade buildx
3 participants
@JackPGreen @nishaatr @ldziedziul