diff --git a/.github/workflows/update-docker-buildx-version.yml b/.github/workflows/update-docker-buildx-version.yml new file mode 100644 index 0000000000..006e15ab7d --- /dev/null +++ b/.github/workflows/update-docker-buildx-version.yml @@ -0,0 +1,60 @@ +name: "update-docker-buildx-version" +on: + workflow_dispatch: + schedule: + # every Monday at around 3 am pacific/10 am UTC + - cron: "0 10 * * 1" +env: + GOPROXY: https://proxy.golang.org + GO_VERSION: '1.20.5' +permissions: + contents: read + +jobs: + bump-docker-buildx-version: + runs-on: ubuntu-20.04 + steps: + - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 + - uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 + with: + go-version: ${{env.GO_VERSION}} + cache-dependency-path: ./go.sum + - name: Bump docker-buildx Version + id: bumpDockerBuildx + run: | + echo "OLD_VERSION=$(DEP=docker-buildx make get-dependency-version)" >> $GITHUB_OUTPUT + make update-docker-buildx-version + echo "NEW_VERSION=$(DEP=docker-buildx make get-dependency-version)" >> $GITHUB_OUTPUT + # The following is to support multiline with GITHUB_OUTPUT, see https://docs.github.com/en/actions/using-workflows/workflow-commands-for-github-actions#multiline-strings + echo "changes<> $GITHUB_OUTPUT + echo "$(git status --porcelain)" >> $GITHUB_OUTPUT + echo "EOF" >> $GITHUB_OUTPUT + - name: Create PR + id: createPR + if: ${{ steps.bumpDockerBuildx.outputs.changes != '' }} + uses: peter-evans/create-pull-request@153407881ec5c347639a548ade7d8ad1d6740e38 + with: + token: ${{ secrets.MINIKUBE_BOT_PAT }} + commit-message: 'ISO: Update docker-buildx from ${{ steps.bumpDockerBuildx.outputs.OLD_VERSION }} to ${{ steps.bumpDockerBuildx.outputs.NEW_VERSION }}' + committer: minikube-bot + author: minikube-bot + branch: auto_bump_docker_buildx_version + branch-suffix: short-commit-hash + push-to-fork: minikube-bot/minikube + base: master + delete-branch: true + title: 'ISO: Update docker-buildx from ${{ steps.bumpDockerBuildx.outputs.OLD_VERSION }} to ${{ steps.bumpDockerBuildx.outputs.NEW_VERSION }}' + body: | + The docker-buildx project released a [new version](https://github.com/docker/buildx/releases) + + This PR was auto-generated by `make update-docker-buildx-version` using [update-docker-buildx-version.yml](https://github.com/kubernetes/minikube/tree/master/.github/workflows/update-docker-buildx-version.yml) CI Workflow. + - uses: actions/github-script@d7906e4ad0b1822421a7e6a35d5ca353c962f410 + with: + github-token: ${{ secrets.MINIKUBE_BOT_PAT }} + script: | + github.rest.issues.createComment({ + issue_number: ${{ steps.createPR.outputs.pull-request-number }}, + owner: context.repo.owner, + repo: context.repo.repo, + body: 'ok-to-build-iso' + }) diff --git a/Makefile b/Makefile index 94c35f4925..3bfea01f0d 100644 --- a/Makefile +++ b/Makefile @@ -1151,6 +1151,11 @@ update-go-github-version: (cd hack/update/go_github_version && \ go run update_go_github_version.go) +.PHONY: update-docker-buildx-version +update-docker-buildx-version: + (cd hack/update/docker_buildx_version && \ + go run update_docker_buildx_version.go) + .PHONY: get-dependency-verison get-dependency-version: @(cd hack/update/get_version && \ diff --git a/hack/update/docker_buildx_version/update_docker_buildx_version.go b/hack/update/docker_buildx_version/update_docker_buildx_version.go new file mode 100644 index 0000000000..b484736a3a --- /dev/null +++ b/hack/update/docker_buildx_version/update_docker_buildx_version.go @@ -0,0 +1,112 @@ +/* +Copyright 2023 The Kubernetes Authors All rights reserved. + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ + +package main + +import ( + "context" + "crypto/sha256" + "fmt" + "io" + "net/http" + "os" + "strings" + "time" + + "k8s.io/klog/v2" + "k8s.io/minikube/hack/update" +) + +var ( + schema = map[string]update.Item{ + "deploy/iso/minikube-iso/arch/aarch64/package/docker-buildx-aarch64/docker-buildx.mk": { + Replace: map[string]string{ + `DOCKER_BUILDX_AARCH64_VERSION = .*`: `DOCKER_BUILDX_AARCH64_VERSION = {{.Version}}`, + `DOCKER_BUILDX_AARCH64_COMMIT = .*`: `DOCKER_BUILDX_AARCH64_COMMIT = {{.Commit}}`, + }, + }, + "deploy/iso/minikube-iso/arch/x86_64/package/docker-buildx/docker-buildx.mk": { + Replace: map[string]string{ + `DOCKER_BUILDX_VERSION = .*`: `DOCKER_BUILDX_VERSION = {{.Version}}`, + `DOCKER_BUILDX_COMMIT = .*`: `DOCKER_BUILDX_COMMIT = {{.Commit}}`, + }, + }, + } +) + +type Data struct { + Version string + Commit string +} + +func main() { + ctx, cancel := context.WithTimeout(context.Background(), 1*time.Minute) + defer cancel() + + stable, _, _, err := update.GHReleases(ctx, "docker", "buildx") + if err != nil { + klog.Fatalf("Unable to get stable version: %v", err) + } + + data := Data{Version: stable.Tag, Commit: stable.Commit} + + update.Apply(schema, data) + + if err := updateHashFiles(data.Version); err != nil { + klog.Fatalf("failed to update hash files: %v", err) + } +} + +func updateHashFiles(version string) error { + r, err := http.Get(fmt.Sprintf("https://github.com/docker/buildx/archive/%s.tar.gz", version)) + if err != nil { + return fmt.Errorf("failed to download source code: %v", err) + } + defer r.Body.Close() + b, err := io.ReadAll(r.Body) + if err != nil { + return fmt.Errorf("failed to read response body: %v", err) + } + sum := sha256.Sum256(b) + if err := updateHashFile(version, "aarch64", "-aarch64", sum); err != nil { + return fmt.Errorf("aarch64: %v", err) + } + if err := updateHashFile(version, "x86_64", "", sum); err != nil { + return fmt.Errorf("x86_64: %v", err) + } + return nil +} + +func updateHashFile(version, arch, folderSuffix string, shaSum [sha256.Size]byte) error { + filePath := fmt.Sprintf("../../../deploy/iso/minikube-iso/arch/%s/package/docker-buildx%s/docker-buildx.hash", arch, folderSuffix) + b, err := os.ReadFile(filePath) + if err != nil { + return fmt.Errorf("failed to read hash file: %v", err) + } + if strings.Contains(string(b), version) { + klog.Infof("hash file already contains %q", version) + return nil + } + f, err := os.OpenFile(filePath, os.O_APPEND|os.O_WRONLY, 0644) + if err != nil { + return fmt.Errorf("failed to open hash file: %v", err) + } + defer f.Close() + if _, err := f.WriteString(fmt.Sprintf("sha256 %x %s.tar.gz\n", shaSum, version)); err != nil { + return fmt.Errorf("failed to write to hash file: %v", err) + } + return nil +}