From 9a0f4179806a69299e65ab3add3595ed215cf621 Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:07:16 -0700 Subject: [PATCH 01/14] change ubuntu name to debian in code base --- ...-version.yml => update-debian-version.yml} | 20 +++++++++---------- .../workflows/update-iso-image-versions.yml | 4 ++-- Makefile | 6 +++--- deploy/kicbase/Dockerfile | 4 ++-- hack/update/ubuntu_version/ubuntu_version.go | 2 +- 5 files changed, 18 insertions(+), 18 deletions(-) rename .github/workflows/{update-ubuntu-version.yml => update-debian-version.yml} (69%) diff --git a/.github/workflows/update-ubuntu-version.yml b/.github/workflows/update-debian-version.yml similarity index 69% rename from .github/workflows/update-ubuntu-version.yml rename to .github/workflows/update-debian-version.yml index 3c5a194153..7dc60b12e4 100644 --- a/.github/workflows/update-ubuntu-version.yml +++ b/.github/workflows/update-debian-version.yml @@ -1,4 +1,4 @@ -name: "update-ubuntu-version" +name: "update-debian-version" on: workflow_dispatch: schedule: @@ -19,10 +19,10 @@ jobs: with: go-version: ${{env.GO_VERSION}} - name: Bump Ubuntu version - id: bumpUbuntu + id: bumpBaseOsImage run: | echo "OLD_VERSION=$(DEP=ubuntu make get-dependency-version)" >> "$GITHUB_OUTPUT" - make update-ubuntu-version + make update-debian-version echo "NEW_VERSION=$(DEP=ubuntu make get-dependency-version)" >> "$GITHUB_OUTPUT" # The following is to support multiline with GITHUB_OUTPUT, see https://docs.github.com/en/actions/using-workflows/workflow-commands-for-github-actions#multiline-strings echo "changes<> "$GITHUB_OUTPUT" @@ -30,24 +30,24 @@ jobs: echo "EOF" >> "$GITHUB_OUTPUT" - name: Create PR id: createPR - if: ${{ steps.bumpUbuntu.outputs.changes != '' }} + if: ${{ steps.bumpBaseOsImage.outputs.changes != '' }} uses: peter-evans/create-pull-request@271a8d0340265f705b14b6d32b9829c1cb33d45e with: token: ${{ secrets.MINIKUBE_BOT_PAT }} - commit-message: 'Kicbase: Bump ubuntu:jammy from ${{ steps.bumpUbuntu.outputs.OLD_VERSION }} to ${{ steps.bumpUbuntu.outputs.NEW_VERSION }}' + commit-message: 'Kicbase: Bump debian:bookworm from ${{ steps.bumpBaseOsImage.outputs.OLD_VERSION }} to ${{ steps.bumpBaseOsImage.outputs.NEW_VERSION }}' committer: minikube-bot author: minikube-bot - branch: auto_bump_ubuntu_version + branch: auto_bump_debian_version push-to-fork: minikube-bot/minikube base: master delete-branch: true - title: 'Kicbase: Bump ubuntu:jammy from ${{ steps.bumpUbuntu.outputs.OLD_VERSION }} to ${{ steps.bumpUbuntu.outputs.NEW_VERSION }}' + title: 'Kicbase: Bump debian:bookworm from ${{ steps.bumpBaseOsImage.outputs.OLD_VERSION }} to ${{ steps.bumpBaseOsImage.outputs.NEW_VERSION }}' body: | - The ubuntu:jammy image released a new version + The debian:bookworm image released a new version - This PR was auto-generated by `make update-ubuntu-version` using [update-ubuntu-version.yml](https://github.com/kubernetes/minikube/tree/master/.github/workflows/update-ubuntu-version.yml) CI Workflow. + This PR was auto-generated by `make update-debian-version` using [update-debian-version.yml](https://github.com/kubernetes/minikube/tree/master/.github/workflows/update-debian-version.yml) CI Workflow. - uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd - if: ${{ steps.bumpUbuntu.outputs.changes != '' }} + if: ${{ steps.bumpBaseOsImage.outputs.changes != '' }} with: github-token: ${{ secrets.MINIKUBE_BOT_PAT }} script: | diff --git a/.github/workflows/update-iso-image-versions.yml b/.github/workflows/update-iso-image-versions.yml index 1c74a2e67f..2f4fc51fb0 100644 --- a/.github/workflows/update-iso-image-versions.yml +++ b/.github/workflows/update-iso-image-versions.yml @@ -7,8 +7,8 @@ on: description: "Comma-separated list of make targets to run (e.g., update-buildkit-version,update-cni-plugins-version)" required: true # Uncomment after crictl/cri-o issue resolved: https://github.com/kubernetes/minikube/issues/18359 - # default: "update-buildkit-version,update-cni-plugins-version,update-containerd-version,update-cri-o-version,update-crictl-version,update-crun-version,update-docker-version,update-docker-buildx-version,update-golang-version,update-nerdctl-version,update-nerdctld-version,update-runc-version,update-ubuntu-version" - default: "update-buildkit-version,update-cni-plugins-version,update-crun-version,update-docker-version,update-golang-version,update-runc-version,update-ubuntu-version" + # default: "update-buildkit-version,update-cni-plugins-version,update-containerd-version,update-cri-o-version,update-crictl-version,update-crun-version,update-docker-version,update-docker-buildx-version,update-golang-version,update-nerdctl-version,update-nerdctld-version,update-runc-version,update-debian-version" + default: "update-buildkit-version,update-cni-plugins-version,update-crun-version,update-docker-version,update-golang-version,update-runc-version,update-debian-version" env: GOPROXY: https://proxy.golang.org GO_VERSION: '1.24.6' diff --git a/Makefile b/Makefile index ca1540371a..2d61a8582c 100644 --- a/Makefile +++ b/Makefile @@ -1133,9 +1133,9 @@ update-runc-version: update-docker-version: cd hack && go run update/docker_version/docker_version.go -.PHONY: update-ubuntu-version -update-ubuntu-version: - cd hack && go run update/ubuntu_version/ubuntu_version.go +.PHONY: update-debian-version +update-debian-version: + cd hack && go run update/debian_version/debian_version.go .PHONY: update-cni-plugins-version update-cni-plugins-version: diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index 853951cfef..36191dca68 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -19,7 +19,7 @@ # this ARG needs to be global to use it in `FROM` & is updated for new versions of ubuntu:jammy-* -ARG UBUNTU_JAMMY_IMAGE="ubuntu:jammy-20250819" +ARG KICBASE_IMAGE="bookworm-20250908-slim" # multi-stage docker build so we can build auto-pause for arm64 FROM golang:1.24.6 as auto-pause WORKDIR /src @@ -39,7 +39,7 @@ RUN if [ "$PREBUILT_AUTO_PAUSE" != "true" ]; then cd ./cmd/auto-pause/ && go bui # start from ubuntu 22.04, this image is reasonably small as a starting point # for a kubernetes node image, it doesn't contain much we don't need -FROM ${UBUNTU_JAMMY_IMAGE} as kicbase +FROM ${KICBASE_IMAGE} as kicbase ARG BUILDKIT_VERSION="v0.18.1" ARG CRIO_VERSION="1.24" diff --git a/hack/update/ubuntu_version/ubuntu_version.go b/hack/update/ubuntu_version/ubuntu_version.go index 84746e2f22..d76c0945b7 100644 --- a/hack/update/ubuntu_version/ubuntu_version.go +++ b/hack/update/ubuntu_version/ubuntu_version.go @@ -29,7 +29,7 @@ var ( schema = map[string]update.Item{ "deploy/kicbase/Dockerfile": { Replace: map[string]string{ - `UBUNTU_JAMMY_IMAGE=.*`: `UBUNTU_JAMMY_IMAGE="{{.LatestVersion}}"`, + `KICBASE_IMAGE=.*`: `KICBASE_IMAGE="{{.LatestVersion}}"`, }, }, } From cc08ece78e34404ce91c7d8a86abf0a702241c50 Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:26:13 -0700 Subject: [PATCH 02/14] update automation update tool for kicbase --- .../debian_version.go} | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) rename hack/update/{ubuntu_version/ubuntu_version.go => debian_version/debian_version.go} (77%) diff --git a/hack/update/ubuntu_version/ubuntu_version.go b/hack/update/debian_version/debian_version.go similarity index 77% rename from hack/update/ubuntu_version/ubuntu_version.go rename to hack/update/debian_version/debian_version.go index d76c0945b7..ed7d135398 100644 --- a/hack/update/ubuntu_version/ubuntu_version.go +++ b/hack/update/debian_version/debian_version.go @@ -40,25 +40,25 @@ type Data struct { LatestVersion string } -func latestJammyTag(tags []string) (string, error) { +func latestBookwormSlimTag(tags []string) (string, error) { for _, tag := range tags { - if strings.Contains(tag, "jammy-") { + if strings.Contains(tag, "bookworm-slim") { return tag, nil } } - return "", fmt.Errorf("no tag found that matches: jammy-") + return "", fmt.Errorf("no tag found that matches: bookworm-slim") } func main() { - tags, err := update.ImageTagsFromDockerHub("library/ubuntu") + tags, err := update.ImageTagsFromDockerHub("library/debian") if err != nil { klog.Fatal(err) } - jammyTag, err := latestJammyTag(tags) + tag, err := latestBookwormSlimTag(tags) if err != nil { klog.Fatal(err) } - data := Data{LatestVersion: fmt.Sprintf("ubuntu:%s", jammyTag)} + data := Data{LatestVersion: fmt.Sprintf("debian:%s", tag)} update.Apply(schema, data) } From 2ec7296806b415117c625b5a1f56617fd19cc086 Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:29:56 -0700 Subject: [PATCH 03/14] update comment --- deploy/kicbase/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index 36191dca68..c361c70af2 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -18,7 +18,7 @@ # https://systemd.io/CONTAINER_INTERFACE/ -# this ARG needs to be global to use it in `FROM` & is updated for new versions of ubuntu:jammy-* +# this ARG needs to be global to use it in `FROM` & is updated for new versions of debian:bookworm-slim-* ARG KICBASE_IMAGE="bookworm-20250908-slim" # multi-stage docker build so we can build auto-pause for arm64 FROM golang:1.24.6 as auto-pause From 86b38f9b798e4dea94145a55533b4c37b86e7c19 Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:31:16 -0700 Subject: [PATCH 04/14] capitalize AS in Docker instructions --- deploy/kicbase/Dockerfile | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index c361c70af2..3b57252b06 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -21,7 +21,7 @@ # this ARG needs to be global to use it in `FROM` & is updated for new versions of debian:bookworm-slim-* ARG KICBASE_IMAGE="bookworm-20250908-slim" # multi-stage docker build so we can build auto-pause for arm64 -FROM golang:1.24.6 as auto-pause +FROM golang:1.24.6 AS auto-pause WORKDIR /src # auto-pause depends on core minikube code so we need to pass the whole source code as the context # copy in the minimal amount of source code possible @@ -39,7 +39,7 @@ RUN if [ "$PREBUILT_AUTO_PAUSE" != "true" ]; then cd ./cmd/auto-pause/ && go bui # start from ubuntu 22.04, this image is reasonably small as a starting point # for a kubernetes node image, it doesn't contain much we don't need -FROM ${KICBASE_IMAGE} as kicbase +FROM ${KICBASE_IMAGE} AS kicbase ARG BUILDKIT_VERSION="v0.18.1" ARG CRIO_VERSION="1.24" From f01a45dbf7482e5345f6b4c567e26a607b948820 Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:31:42 -0700 Subject: [PATCH 05/14] update comment --- deploy/kicbase/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index 3b57252b06..68a70cba16 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -37,7 +37,7 @@ ENV GOARCH=${TARGETARCH} ARG PREBUILT_AUTO_PAUSE RUN if [ "$PREBUILT_AUTO_PAUSE" != "true" ]; then cd ./cmd/auto-pause/ && go build -o auto-pause-${TARGETARCH}; fi -# start from ubuntu 22.04, this image is reasonably small as a starting point +# start from debin 12, this image is reasonably small as a starting point # for a kubernetes node image, it doesn't contain much we don't need FROM ${KICBASE_IMAGE} AS kicbase From 3f92e1314b7a61a58bae59336daab284c4c3bd2f Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:37:20 -0700 Subject: [PATCH 06/14] enable RSA1 support in sshd config in debian dockerfile --- deploy/kicbase/Dockerfile | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index 68a70cba16..39fa755851 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -140,6 +140,16 @@ RUN clean-install \ # libglib2.0-0 is required for conmon, which is required for podman libglib2.0-0 +# Add support for rsa1 in sshd +# modern debian-based OSs dont support rsa1 by default, so we need to enable it to support older ssh clients +# TODO: remove after https://github.com/kubernetes/minikube/issues/21543 is solved +RUN cat <> /etc/ssh/sshd_config +PubkeyAcceptedAlgorithms +ssh-rsa +HostkeyAlgorithms +ssh-rsa +PubkeyAuthentication yes +PasswordAuthentication no +EOF + # Install nerdctl and nerdctld RUN export ARCH=$(dpkg --print-architecture) \ && if [ "$ARCH" = 'amd64' ] || [ "$ARCH" = 'arm64' ]; then \ From 5489ea6d3de9137783fc6bce564ab5da5e9aef0b Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:40:53 -0700 Subject: [PATCH 07/14] config Docker user for Passwordless login and add to corect groups --- deploy/kicbase/Dockerfile | 11 ++++++++--- 1 file changed, 8 insertions(+), 3 deletions(-) diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index 39fa755851..a0a0de29c8 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -264,11 +264,16 @@ RUN sed -ri 's/dns files/files dns/g' /etc/nsswitch.conf EXPOSE 22 # create docker user for minikube ssh. to match VM using "docker" as username -RUN adduser --ingroup docker --disabled-password --gecos '' docker -RUN adduser docker sudo +# Ensure 'docker' group exists; create a 'docker' user with a shell +## ref: https://docs.docker.com/engine/install/linux-postinstall/ +RUN groupadd -f docker \ + && useradd -m -s /bin/bash -g docker -G sudo docker +# Ensure the account is usable for key-only SSH - unlock the account, and disable password +RUN usermod -p '*' docker && passwd -u docker && passwd -d docker +RUN echo '%sudo ALL=(ALL) NOPASSWD:ALL' > /etc/sudoers.d/20-passwordless-sudo \ + && chmod 0440 /etc/sudoers.d/20-passwordless-sudo RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/') && if [ "$ARCH" != "ppc64le" ]; then adduser docker podman; fi RUN adduser docker buildkit -RUN echo '%sudo ALL=(ALL) NOPASSWD:ALL' >> /etc/sudoers USER docker RUN mkdir /home/docker/.ssh USER root From 2894185d8e59cc27f497be22416c143ec99ccebf Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:51:45 -0700 Subject: [PATCH 08/14] install latst version of crio available in debian repos --- deploy/kicbase/Dockerfile | 36 ++++++++++++++++++++++-------------- 1 file changed, 22 insertions(+), 14 deletions(-) diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index a0a0de29c8..1d50d9c409 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -42,7 +42,7 @@ RUN if [ "$PREBUILT_AUTO_PAUSE" != "true" ]; then cd ./cmd/auto-pause/ && go bui FROM ${KICBASE_IMAGE} AS kicbase ARG BUILDKIT_VERSION="v0.18.1" -ARG CRIO_VERSION="1.24" +ARG CRIO_VERSION="v1.34" ARG CRI_DOCKERD_VERSION="v0.4.0" ARG CRI_DOCKERD_COMMIT="b9b889355f3002c01db294427964e454dfbc3feb" ARG CNI_PLUGINS_VERSION="v1.4.0" @@ -199,15 +199,15 @@ RUN clean-install podman && \ # install cri-o dependencies: RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/') && \ - sh -c "echo 'deb https://downloadcontent.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/xUbuntu_22.04/ /' > /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list" && \ - curl -LO https://downloadcontent.opensuse.org/repositories/devel:kubic:libcontainers:stable/xUbuntu_22.04/Release.key && \ - apt-key add - < Release.key && \ + mkdir -p /etc/apt/keyrings && \ + curl -fsSL https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/Debian_12/Release.key | \ + gpg --dearmor --yes -o /etc/apt/keyrings/libcontainers-archive-keyring.gpg && \ + sh -c "echo 'deb [signed-by=/etc/apt/keyrings/libcontainers-archive-keyring.gpg] https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/Debian_12/ /' > /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list" && \ if [ "$ARCH" != "ppc64le" ]; then \ - clean-install catatonit conmon cri-tools crun; \ + clean-install catatonit crun; \ else \ - clean-install conmon crun; \ + clean-install crun; \ fi - # install containernetworking-plugins RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/' | sed 's/armhf/arm/') && \ curl -LO "https://github.com/containernetworking/plugins/releases/download/${CNI_PLUGINS_VERSION}/cni-plugins-linux-$ARCH-${CNI_PLUGINS_VERSION}.tgz" && \ @@ -215,12 +215,20 @@ RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/' | sed 's/ tar -xf "cni-plugins-linux-$ARCH-${CNI_PLUGINS_VERSION}.tgz" -C /opt/cni/bin && \ rm "cni-plugins-linux-$ARCH-${CNI_PLUGINS_VERSION}.tgz" -# install cri-o based on https://github.com/cri-o/cri-o/blob/release-1.24/README.md#installing-cri-o +# install cri-o from the OBS repositories RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/' | sed 's/armhf/arm-v7/') && \ - if [ "$ARCH" != "ppc64le" ] && [ "$ARCH" != "arm-v7" ]; then sh -c "echo 'deb https://downloadcontent.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/${CRIO_VERSION}/xUbuntu_22.04/ /' > /etc/apt/sources.list.d/devel:kubic:libcontainers:stable:cri-o:${CRIO_VERSION}.list" && \ - curl -LO https://downloadcontent.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/${CRIO_VERSION}/xUbuntu_22.04/Release.key && \ - apt-key add - < Release.key && \ - clean-install cri-o cri-o-runc; fi + if [ "$ARCH" != "ppc64le" ] && [ "$ARCH" != "arm-v7" ]; then \ + mkdir -p /etc/apt/sources.list.d /etc/apt/trusted.gpg.d && \ + echo 'deb http://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/Debian_12/ /' \ + > /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list && \ + curl -fsSL https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/Debian_12/Release.key \ + | gpg --dearmor --yes -o /etc/apt/trusted.gpg.d/devel_kubic_libcontainers_stable.gpg && \ + echo "deb http://download.opensuse.org/repositories/isv:/cri-o:/stable:/${CRIO_VERSION}:/build/deb/ /" \ + > "/etc/apt/sources.list.d/isv:cri-o:stable:${CRIO_VERSION}:build.list" && \ + curl -fsSL "https://download.opensuse.org/repositories/isv:cri-o:stable:${CRIO_VERSION}:build/deb/Release.key" \ + | gpg --dearmor --yes -o "/etc/apt/trusted.gpg.d/isv_cri-o_stable_${CRIO_VERSION}_build.gpg" && \ + clean-install cri-o; \ + fi # install NVIDIA container toolkit RUN export ARCH=$(dpkg --print-architecture) && \ @@ -246,11 +254,11 @@ COPY deploy/kicbase/scheduled-stop/minikube-scheduled-stop /var/lib/minikube/sch COPY deploy/kicbase/scheduled-stop/minikube-scheduled-stop.service /usr/lib/systemd/system/minikube-scheduled-stop.service RUN chmod +x /var/lib/minikube/scheduled-stop/minikube-scheduled-stop -# disable non-docker runtimes by default +# disable non-docker runtimes by default (since cri-dockerd is default in minikube) RUN systemctl disable containerd # disable crio for archs that support it RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/' | sed 's/armhf/arm-v7/') && \ - if [ "$ARCH" != "ppc64le" ] && [ "$ARCH" != "arm-v7" ]; then systemctl disable crio && rm /etc/crictl.yaml; fi + if [ "$ARCH" != "ppc64le" ] && [ "$ARCH" != "arm-v7" ]; then systemctl disable crio && rm -f /etc/crictl.yaml; fi # enable podman socket on archs that support it RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/') && if [ "$ARCH" != "ppc64le" ]; then systemctl enable podman.socket; fi # enable docker which is default From 37ebc8576430bd20002c076eee67bdaec2127704 Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:53:50 -0700 Subject: [PATCH 09/14] update docker installation for debian based on docker docs --- deploy/kicbase/Dockerfile | 13 +++++++++---- 1 file changed, 9 insertions(+), 4 deletions(-) diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index 1d50d9c409..1291a9f609 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -163,10 +163,15 @@ RUN export ARCH=$(dpkg --print-architecture) \ fi # install docker -RUN sh -c "echo 'deb https://download.docker.com/linux/ubuntu jammy stable' > /etc/apt/sources.list.d/docker.list" && \ - curl -L https://download.docker.com/linux/ubuntu/gpg -o docker.key && \ - apt-key add - < docker.key && \ - clean-install docker-ce docker-ce-cli containerd.io docker-buildx-plugin +## ref: https://docs.docker.com/engine/install/debian/#install-using-the-repository +RUN install -m 0755 -d /etc/apt/keyrings \ + && curl -fsSL https://download.docker.com/linux/debian/gpg -o /etc/apt/keyrings/docker.asc \ + && chmod a+r /etc/apt/keyrings/docker.asc \ + && echo \ + "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/debian \ + $(. /etc/os-release && echo "$VERSION_CODENAME") stable" | \ + tee /etc/apt/sources.list.d/docker.list > /dev/null \ + && clean-install docker-ce docker-ce-cli containerd.io docker-buildx-plugin # install buildkit RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/' | sed 's/armhf/arm-v7/') \ From 46536b45fca9e78a5098073447c2a238fdd31b4e Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:55:27 -0700 Subject: [PATCH 10/14] add crictl installation seprately since it is no longer shipped with crio --- deploy/kicbase/Dockerfile | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index 1291a9f609..63649bc5a7 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -43,6 +43,7 @@ FROM ${KICBASE_IMAGE} AS kicbase ARG BUILDKIT_VERSION="v0.18.1" ARG CRIO_VERSION="v1.34" +ARG CRICTL_VERSION="v1.34.0" ARG CRI_DOCKERD_VERSION="v0.4.0" ARG CRI_DOCKERD_COMMIT="b9b889355f3002c01db294427964e454dfbc3feb" ARG CNI_PLUGINS_VERSION="v1.4.0" @@ -202,6 +203,25 @@ RUN clean-install podman && \ echo "d /run/podman 0770 root podman" > /etc/tmpfiles.d/podman.conf && \ systemd-tmpfiles --create + # install crictl +RUN export ARCH=$(dpkg --print-architecture) && \ + case "$ARCH" in \ + amd64) CRICTL_ARCH="amd64" ;; \ + arm64) CRICTL_ARCH="arm64" ;; \ + armhf) CRICTL_ARCH="armhf" ;; \ + ppc64el) CRICTL_ARCH="ppc64le" ;; \ + s390x) CRICTL_ARCH="s390x" ;; \ + *) echo "Unsupported architecture for crictl: $ARCH" && exit 1 ;; \ + esac && \ + if [ "$CRICTL_ARCH" != "armhf" ]; then \ + curl -fsSL --retry 5 --output /tmp/crictl.tgz "https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${CRICTL_ARCH}.tar.gz" && \ + tar -C /usr/local/bin -xzvf /tmp/crictl.tgz && \ + rm -f /tmp/crictl.tgz && \ + chmod +x /usr/local/bin/crictl && \ + if [ -f /usr/local/bin/critest ]; then chmod +x /usr/local/bin/critest; fi; \ + else \ + echo "Skipping crictl install for armhf: No asset available in v1.34.0"; \ + fi # install cri-o dependencies: RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/') && \ mkdir -p /etc/apt/keyrings && \ From fd1867bf7fd0b0fd6388fe7322338392be7759bf Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 13:59:16 -0700 Subject: [PATCH 11/14] remove old workarrounds --- deploy/kicbase/Dockerfile | 4 ---- 1 file changed, 4 deletions(-) diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index 63649bc5a7..d1ad09b477 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -288,10 +288,6 @@ RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/' | sed 's/ RUN export ARCH=$(dpkg --print-architecture | sed 's/ppc64el/ppc64le/') && if [ "$ARCH" != "ppc64le" ]; then systemctl enable podman.socket; fi # enable docker which is default RUN systemctl enable docker.service -# making SSH work for docker container -# based on https://github.com/rastasheep/ubuntu-sshd/blob/master/18.04/Dockerfile -RUN mkdir /var/run/sshd -RUN sed -ri 's/UsePAM yes/#UsePAM yes/g' /etc/ssh/sshd_config # minikube relies on /etc/hosts for control-plane discovery. This prevents nefarious DNS servers from breaking it. RUN sed -ri 's/dns files/files dns/g' /etc/nsswitch.conf From 2edb857b3ee8c62a4921a6442268797f3d1bc99e Mon Sep 17 00:00:00 2001 From: Medya Ghazizadeh Date: Fri, 26 Sep 2025 14:22:21 -0700 Subject: [PATCH 12/14] missed debian word --- deploy/kicbase/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deploy/kicbase/Dockerfile b/deploy/kicbase/Dockerfile index d1ad09b477..81d6b90941 100644 --- a/deploy/kicbase/Dockerfile +++ b/deploy/kicbase/Dockerfile @@ -19,7 +19,7 @@ # this ARG needs to be global to use it in `FROM` & is updated for new versions of debian:bookworm-slim-* -ARG KICBASE_IMAGE="bookworm-20250908-slim" +ARG KICBASE_IMAGE="debian:bookworm-20250908-slim" # multi-stage docker build so we can build auto-pause for arm64 FROM golang:1.24.6 AS auto-pause WORKDIR /src From 78f48548a4ca4ab745eb92dbc29b63ad13b47ba3 Mon Sep 17 00:00:00 2001 From: minikube-bot Date: Fri, 26 Sep 2025 22:36:28 +0000 Subject: [PATCH 13/14] Updating kicbase image to v0.0.48-1758924984-21643 --- hack/kicbase_version/os-package-list.txt | 469 ++++++++++++----------- pkg/drivers/kic/types.go | 8 +- site/content/en/docs/commands/start.md | 2 +- 3 files changed, 240 insertions(+), 239 deletions(-) diff --git a/hack/kicbase_version/os-package-list.txt b/hack/kicbase_version/os-package-list.txt index 60292fac81..c0c0421489 100644 --- a/hack/kicbase_version/os-package-list.txt +++ b/hack/kicbase_version/os-package-list.txt @@ -1,237 +1,238 @@ Desired=Unknown/Install/Remove/Purge/Hold | Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend |/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad) -||/ Name Version Architecture Description -+++-===============================-=======================================-============-================================================================================ -ii adduser 3.118ubuntu5 all add and remove users and groups -ii apt 2.4.14 amd64 commandline package manager -ii base-files 12ubuntu4.7 amd64 Debian base system miscellaneous files -ii base-passwd 3.5.52build1 amd64 Debian base system master password and group files -ii bash 5.1-6ubuntu1.1 amd64 GNU Bourne Again SHell -ii bind9-dnsutils 1:9.18.30-0ubuntu0.22.04.2 amd64 Clients provided with BIND 9 -ii bind9-host 1:9.18.30-0ubuntu0.22.04.2 amd64 DNS Lookup Utility -ii bind9-libs:amd64 1:9.18.30-0ubuntu0.22.04.2 amd64 Shared Libraries used by BIND 9 -ii bsdutils 1:2.37.2-4ubuntu3.4 amd64 basic utilities from 4.4BSD-Lite -ii ca-certificates 20240203~22.04.1 all Common CA certificates -ii catatonit 0.1.7-1 amd64 init process for containers -ii conmon 100:2.1.2~0 amd64 OCI container runtime monitor -ii conntrack 1:1.4.6-2build2 amd64 Program to modify the conntrack tables -ii containerd.io 1.7.27-1 amd64 An open and reliable container runtime -ii containernetworking-plugins 0.9.1+ds1-1ubuntu0.1 amd64 standard networking plugins - binaries -ii coreutils 8.32-4.1ubuntu1.2 amd64 GNU core utilities -ii cri-o 1.24.6~0 amd64 OCI-based implementation of Kubernetes Container Runtime Interface. -ii cri-o-runc 1.1.12~0 amd64 Open Container Project - runtime -ii cri-tools 1.25.0~0 amd64 A command line tool used for creating OCI images. -ii criu 4.1.1-3 amd64 checkpoint and restore in userspace -ii crun 100:1.2-2 amd64 OCI runtime written in C -ii curl 7.81.0-1ubuntu1.20 amd64 command line tool for transferring data with URL syntax -ii dash 0.5.11+git20210903+057cd650a4ed-3build1 amd64 POSIX-compliant shell -ii debconf 1.5.79ubuntu1 all Debian configuration management system -ii debianutils 5.5-1ubuntu2 amd64 Miscellaneous utilities specific to Debian -ii diffutils 1:3.8-0ubuntu2 amd64 File comparison utilities -ii dirmngr 2.2.27-3ubuntu2.4 amd64 GNU privacy guard - network certificate management service -ii dnsutils 1:9.18.30-0ubuntu0.22.04.2 all Transitional package for bind9-dnsutils -ii docker-buildx-plugin 0.27.0-1~ubuntu.22.04~jammy amd64 Docker Buildx cli plugin. -ii docker-ce 5:28.4.0-1~ubuntu.22.04~jammy amd64 Docker: the open-source application container engine -ii docker-ce-cli 5:28.4.0-1~ubuntu.22.04~jammy amd64 Docker CLI: the open-source application container engine -ii dpkg 1.21.1ubuntu2.3 amd64 Debian package management system -ii e2fsprogs 1.46.5-2ubuntu1.2 amd64 ext2/ext3/ext4 file system utilities -ii ebtables 2.0.11-4build2 amd64 Ethernet bridge frame table administration -ii ethtool 1:5.16-1ubuntu0.2 amd64 display or change Ethernet device settings -ii findutils 4.8.0-1ubuntu3 amd64 utilities for finding files--find, xargs -ii gcc-12-base:amd64 12.3.0-1ubuntu1~22.04.2 amd64 GCC, the GNU Compiler Collection (base package) -ii gnupg 2.2.27-3ubuntu2.4 all GNU privacy guard - a free PGP replacement -ii gnupg-l10n 2.2.27-3ubuntu2.4 all GNU privacy guard - localization files -ii gnupg-utils 2.2.27-3ubuntu2.4 amd64 GNU privacy guard - utility programs -ii golang-github-containers-common 0.44.4+ds1-1 all Common files for github.com/containers repositories -ii golang-github-containers-image 5.16.0-3 all Configuration files and manpages for github.com/containers repositories -ii gpg 2.2.27-3ubuntu2.4 amd64 GNU Privacy Guard -- minimalist public key operations -ii gpg-agent 2.2.27-3ubuntu2.4 amd64 GNU privacy guard - cryptographic agent -ii gpg-wks-client 2.2.27-3ubuntu2.4 amd64 GNU privacy guard - Web Key Service client -ii gpg-wks-server 2.2.27-3ubuntu2.4 amd64 GNU privacy guard - Web Key Service server -ii gpgconf 2.2.27-3ubuntu2.4 amd64 GNU privacy guard - core configuration utilities -ii gpgsm 2.2.27-3ubuntu2.4 amd64 GNU privacy guard - S/MIME version -ii gpgv 2.2.27-3ubuntu2.4 amd64 GNU privacy guard - signature verification tool -ii grep 3.7-1build1 amd64 GNU grep, egrep and fgrep -ii gzip 1.10-4ubuntu4.1 amd64 GNU compression utilities -ii hostname 3.23ubuntu2 amd64 utility to set/show the host name or domain name -ii init-system-helpers 1.62 all helper tools for all init systems -ii iproute2 5.15.0-1ubuntu2 amd64 networking and traffic control tools -ii iptables 1.8.7-1ubuntu5.2 amd64 administration tools for packet filtering and NAT -ii iputils-ping 3:20211215-1ubuntu0.1 amd64 Tools to test the reachability of network hosts -ii keyutils 1.6.1-2ubuntu3 amd64 Linux Key Management Utilities -ii kmod 29-1ubuntu1 amd64 tools for managing Linux kernel modules -ii libacl1:amd64 2.3.1-1 amd64 access control list - shared library -ii libapparmor1:amd64 3.0.4-2ubuntu2.4 amd64 changehat AppArmor library -ii libapt-pkg6.0:amd64 2.4.14 amd64 package management runtime library -ii libargon2-1:amd64 0~20171227-0.3 amd64 memory-hard hashing function - runtime library -ii libassuan0:amd64 2.5.5-1build1 amd64 IPC library for the GnuPG components -ii libattr1:amd64 1:2.5.1-1build1 amd64 extended attribute handling - shared library -ii libaudit-common 1:3.0.7-1build1 all Dynamic library for security auditing - common files -ii libaudit1:amd64 1:3.0.7-1build1 amd64 Dynamic library for security auditing -ii libblkid1:amd64 2.37.2-4ubuntu3.4 amd64 block device ID library -ii libbpf0:amd64 1:0.5.0-1ubuntu22.04.1 amd64 eBPF helper library (shared library) -ii libbrotli1:amd64 1.0.9-2build6 amd64 library implementing brotli encoder and decoder (shared libraries) -ii libbsd0:amd64 0.11.5-1 amd64 utility functions from BSD systems - shared library -ii libbz2-1.0:amd64 1.0.8-5build1 amd64 high-quality block-sorting file compressor library - runtime -ii libc-bin 2.35-0ubuntu3.10 amd64 GNU C Library: Binaries -ii libc6:amd64 2.35-0ubuntu3.10 amd64 GNU C Library: Shared libraries -ii libcap-ng0:amd64 0.7.9-2.2build3 amd64 An alternate POSIX capabilities library -ii libcap2:amd64 1:2.44-1ubuntu0.22.04.2 amd64 POSIX 1003.1e capabilities (library) -ii libcap2-bin 1:2.44-1ubuntu0.22.04.2 amd64 POSIX 1003.1e capabilities (utilities) -ii libcbor0.8:amd64 0.8.0-2ubuntu1 amd64 library for parsing and generating CBOR (RFC 7049) -ii libcom-err2:amd64 1.46.5-2ubuntu1.2 amd64 common error description library -ii libcrypt1:amd64 1:4.4.27-1 amd64 libcrypt shared library -ii libcryptsetup12:amd64 2:2.4.3-1ubuntu1.3 amd64 disk encryption support - shared library -ii libcurl4:amd64 7.81.0-1ubuntu1.20 amd64 easy-to-use client-side URL transfer library (OpenSSL flavour) -ii libdb5.3:amd64 5.3.28+dfsg1-0.8ubuntu3 amd64 Berkeley v5.3 Database Libraries [runtime] -ii libdebconfclient0:amd64 0.261ubuntu1 amd64 Debian Configuration Management System (C-implementation library) -ii libdevmapper1.02.1:amd64 2:1.02.175-2.1ubuntu5 amd64 Linux Kernel Device Mapper userspace library -ii libedit2:amd64 3.1-20210910-1build1 amd64 BSD editline and history libraries -ii libelf1:amd64 0.186-1ubuntu0.1 amd64 library to read and write ELF files -ii libevent-core-2.1-7:amd64 2.1.12-stable-1build3 amd64 Asynchronous event notification library (core) -ii libexpat1:amd64 2.4.7-1ubuntu0.6 amd64 XML parsing C library - runtime library -ii libext2fs2:amd64 1.46.5-2ubuntu1.2 amd64 ext2/ext3/ext4 file system libraries -ii libffi8:amd64 3.4.2-4 amd64 Foreign Function Interface library runtime -ii libfido2-1:amd64 1.10.0-1 amd64 library for generating and verifying FIDO 2.0 objects -ii libgcc-s1:amd64 12.3.0-1ubuntu1~22.04.2 amd64 GCC support library -ii libgcrypt20:amd64 1.9.4-3ubuntu3 amd64 LGPL Crypto library - runtime library -ii libglib2.0-0:amd64 2.72.4-0ubuntu2.6 amd64 GLib library of C routines -ii libgmp10:amd64 2:6.2.1+dfsg-3ubuntu1 amd64 Multiprecision arithmetic library -ii libgnutls30:amd64 3.7.3-4ubuntu1.7 amd64 GNU TLS library - main runtime library -ii libgpg-error0:amd64 1.43-3 amd64 GnuPG development runtime library -ii libgpgme11:amd64 1.16.0-1.2ubuntu4.2 amd64 GPGME - GnuPG Made Easy (library) -ii libgssapi-krb5-2:amd64 1.19.2-2ubuntu0.7 amd64 MIT Kerberos runtime libraries - krb5 GSS-API Mechanism -ii libhogweed6:amd64 3.7.3-1build2 amd64 low level cryptographic library (public-key cryptos) -ii libicu70:amd64 70.1-2 amd64 International Components for Unicode -ii libidn2-0:amd64 2.3.2-2build1 amd64 Internationalized domain names (IDNA2008/TR46) library -ii libip4tc2:amd64 1.8.7-1ubuntu5.2 amd64 netfilter libip4tc library -ii libip6tc2:amd64 1.8.7-1ubuntu5.2 amd64 netfilter libip6tc library -ii libjansson4:amd64 2.13.1-1.1build3 amd64 C library for encoding, decoding and manipulating JSON data -ii libjson-c5:amd64 0.15-3~ubuntu1.22.04.2 amd64 JSON manipulation library - shared library -ii libk5crypto3:amd64 1.19.2-2ubuntu0.7 amd64 MIT Kerberos runtime libraries - Crypto Library -ii libkeyutils1:amd64 1.6.1-2ubuntu3 amd64 Linux Key Management Utilities (library) -ii libkmod2:amd64 29-1ubuntu1 amd64 libkmod shared library -ii libkrb5-3:amd64 1.19.2-2ubuntu0.7 amd64 MIT Kerberos runtime libraries -ii libkrb5support0:amd64 1.19.2-2ubuntu0.7 amd64 MIT Kerberos runtime libraries - Support library -ii libksba8:amd64 1.6.0-2ubuntu0.2 amd64 X.509 and CMS support library -ii libldap-2.5-0:amd64 2.5.19+dfsg-0ubuntu0.22.04.1 amd64 OpenLDAP libraries -ii liblmdb0:amd64 0.9.24-1build2 amd64 Lightning Memory-Mapped Database shared library -ii liblz4-1:amd64 1.9.3-2build2 amd64 Fast LZ compression algorithm library - runtime -ii liblzma5:amd64 5.2.5-2ubuntu1 amd64 XZ-format compression library -ii libmaxminddb0:amd64 1.5.2-1build2 amd64 IP geolocation database library -ii libmd0:amd64 1.0.4-1build1 amd64 message digest functions from BSD systems - shared library -ii libmnl0:amd64 1.0.4-3build2 amd64 minimalistic Netlink communication library -ii libmount1:amd64 2.37.2-4ubuntu3.4 amd64 device mounting library -ii libmpdec3:amd64 2.5.1-2build2 amd64 library for decimal floating point arithmetic (runtime library) -ii libncurses6:amd64 6.3-2ubuntu0.1 amd64 shared libraries for terminal handling -ii libncursesw6:amd64 6.3-2ubuntu0.1 amd64 shared libraries for terminal handling (wide character support) -ii libnet1:amd64 1.1.6+dfsg-3.1build3 amd64 library for the construction and handling of network packets -ii libnetfilter-conntrack3:amd64 1.0.9-1 amd64 Netfilter netlink-conntrack library -ii libnettle8:amd64 3.7.3-1build2 amd64 low level cryptographic library (symmetric and one-way cryptos) -ii libnfnetlink0:amd64 1.0.1-3build3 amd64 Netfilter netlink library -ii libnfsidmap1:amd64 1:2.6.1-1ubuntu1.2 amd64 NFS idmapping library -ii libnftables1:amd64 1.0.2-1ubuntu3 amd64 Netfilter nftables high level userspace API library -ii libnftnl11:amd64 1.2.1-1build1 amd64 Netfilter nftables userspace API library -ii libnghttp2-14:amd64 1.43.0-1ubuntu0.2 amd64 library implementing HTTP/2 protocol (shared library) -ii libnl-3-200:amd64 3.5.0-0.1 amd64 library for dealing with netlink sockets -ii libnpth0:amd64 1.6-3build2 amd64 replacement for GNU Pth using system threads -ii libnsl2:amd64 1.3.0-2build2 amd64 Public client interface for NIS(YP) and NIS+ -ii libnvidia-container-tools 1.17.8-1 amd64 NVIDIA container runtime library (command-line tools) -ii libnvidia-container1:amd64 1.17.8-1 amd64 NVIDIA container runtime library -ii libp11-kit0:amd64 0.24.0-6build1 amd64 library for loading and coordinating access to PKCS#11 modules - runtime -ii libpam-modules:amd64 1.4.0-11ubuntu2.6 amd64 Pluggable Authentication Modules for PAM -ii libpam-modules-bin 1.4.0-11ubuntu2.6 amd64 Pluggable Authentication Modules for PAM - helper binaries -ii libpam-runtime 1.4.0-11ubuntu2.6 all Runtime support for the PAM library -ii libpam0g:amd64 1.4.0-11ubuntu2.6 amd64 Pluggable Authentication Modules library -ii libpcre2-8-0:amd64 10.39-3ubuntu0.1 amd64 New Perl Compatible Regular Expression Library- 8 bit runtime files -ii libpcre3:amd64 2:8.39-13ubuntu0.22.04.1 amd64 Old Perl 5 Compatible Regular Expression Library - runtime files -ii libpopt0:amd64 1.18-3build1 amd64 lib for parsing cmdline parameters -ii libprocps8:amd64 2:3.3.17-6ubuntu2.1 amd64 library for accessing process information from /proc -ii libprotobuf-c1:amd64 1.3.3-1ubuntu2.1 amd64 Protocol Buffers C shared library (protobuf-c) -ii libprotobuf23:amd64 3.12.4-1ubuntu7.22.04.4 amd64 protocol buffers C++ library -ii libpsl5:amd64 0.21.0-1.2build2 amd64 Library for Public Suffix List (shared libraries) -ii libpython3-stdlib:amd64 3.10.6-1~22.04.1 amd64 interactive high-level object-oriented language (default python3 version) -ii libpython3.10-minimal:amd64 3.10.12-1~22.04.11 amd64 Minimal subset of the Python language (version 3.10) -ii libpython3.10-stdlib:amd64 3.10.12-1~22.04.11 amd64 Interactive high-level object-oriented language (standard library, version 3.10) -ii libreadline8:amd64 8.1.2-1 amd64 GNU readline and history libraries, run-time libraries -ii librtmp1:amd64 2.4+20151223.gitfa8646d.1-2build4 amd64 toolkit for RTMP streams (shared library) -ii libsasl2-2:amd64 2.1.27+dfsg2-3ubuntu1.2 amd64 Cyrus SASL - authentication abstraction library -ii libsasl2-modules-db:amd64 2.1.27+dfsg2-3ubuntu1.2 amd64 Cyrus SASL - pluggable authentication modules (DB) -ii libseccomp2:amd64 2.5.3-2ubuntu3~22.04.1 amd64 high level interface to Linux seccomp filter -ii libselinux1:amd64 3.3-1build2 amd64 SELinux runtime shared libraries -ii libsemanage-common 3.3-1build2 all Common files for SELinux policy management libraries -ii libsemanage2:amd64 3.3-1build2 amd64 SELinux policy management library -ii libsepol2:amd64 3.3-1build1 amd64 SELinux library for manipulating binary security policies -ii libsmartcols1:amd64 2.37.2-4ubuntu3.4 amd64 smart column output alignment library -ii libsqlite3-0:amd64 3.37.2-2ubuntu0.5 amd64 SQLite 3 shared library -ii libss2:amd64 1.46.5-2ubuntu1.2 amd64 command-line interface parsing library -ii libssh-4:amd64 0.9.6-2ubuntu0.22.04.4 amd64 tiny C SSH library (OpenSSL flavor) -ii libssl3:amd64 3.0.2-0ubuntu1.19 amd64 Secure Sockets Layer toolkit - shared libraries -ii libstdc++6:amd64 12.3.0-1ubuntu1~22.04.2 amd64 GNU Standard C++ Library v3 -ii libsystemd0:amd64 249.11-0ubuntu3.16 amd64 systemd utility library -ii libtasn1-6:amd64 4.18.0-4ubuntu0.1 amd64 Manage ASN.1 structures (runtime) -ii libtinfo6:amd64 6.3-2ubuntu0.1 amd64 shared low-level terminfo library for terminal handling -ii libtirpc-common 1.3.2-2ubuntu0.1 all transport-independent RPC library - common files -ii libtirpc3:amd64 1.3.2-2ubuntu0.1 amd64 transport-independent RPC library -ii libudev1:amd64 249.11-0ubuntu3.16 amd64 libudev shared library -ii libunistring2:amd64 1.0-1 amd64 Unicode string library for C -ii libuuid1:amd64 2.37.2-4ubuntu3.4 amd64 Universally Unique ID library -ii libuv1:amd64 1.43.0-1ubuntu0.1 amd64 asynchronous event notification library - runtime library -ii libwrap0:amd64 7.6.q-31build2 amd64 Wietse Venema's TCP wrappers library -ii libxml2:amd64 2.9.13+dfsg-1ubuntu0.8 amd64 GNOME XML library -ii libxtables12:amd64 1.8.7-1ubuntu5.2 amd64 netfilter xtables library -ii libxxhash0:amd64 0.8.1-1 amd64 shared library for xxhash -ii libyajl2:amd64 2.1.0-3ubuntu0.22.04.1 amd64 Yet Another JSON Library -ii libzstd1:amd64 1.4.8+dfsg-3build1 amd64 fast lossless compression algorithm -ii login 1:4.8.1-2ubuntu2.2 amd64 system login tools -ii logsave 1.46.5-2ubuntu1.2 amd64 save the output of a command in a log file -ii lsb-base 11.1.0ubuntu4 all Linux Standard Base init script functionality -ii lz4 1.9.3-2build2 amd64 Fast LZ compression algorithm library - tool -ii mawk 1.3.4.20200120-3 amd64 Pattern scanning and text processing language -ii media-types 7.0.0 all List of standard media types and their usual file extension -ii mount 2.37.2-4ubuntu3.4 amd64 tools for mounting and manipulating filesystems -ii ncurses-base 6.3-2ubuntu0.1 all basic terminal type definitions -ii ncurses-bin 6.3-2ubuntu0.1 amd64 terminal-related programs and man pages -ii netbase 6.3 all Basic TCP/IP networking system -ii netcat-openbsd 1.218-4ubuntu1 amd64 TCP/IP swiss army knife -ii nfs-common 1:2.6.1-1ubuntu1.2 amd64 NFS support files common to client and server -ii nvidia-container-toolkit 1.17.8-1 amd64 NVIDIA Container toolkit -ii nvidia-container-toolkit-base 1.17.8-1 amd64 NVIDIA Container Toolkit Base -ii openssh-client 1:8.9p1-3ubuntu0.13 amd64 secure shell (SSH) client, for secure access to remote machines -ii openssh-server 1:8.9p1-3ubuntu0.13 amd64 secure shell (SSH) server, for secure access from remote machines -ii openssh-sftp-server 1:8.9p1-3ubuntu0.13 amd64 secure shell (SSH) sftp server module, for SFTP access from remote machines -ii openssl 3.0.2-0ubuntu1.19 amd64 Secure Sockets Layer toolkit - cryptographic utility -ii passwd 1:4.8.1-2ubuntu2.2 amd64 change and administer password and group data -ii perl-base 5.34.0-3ubuntu1.5 amd64 minimal Perl system -ii pigz 2.6-1 amd64 Parallel Implementation of GZip -ii pinentry-curses 1.1.1-1build2 amd64 curses-based PIN or pass-phrase entry dialog for GnuPG -ii podman 3.4.4+ds1-1ubuntu1.22.04.3 amd64 engine to run OCI-based containers in Pods -ii procps 2:3.3.17-6ubuntu2.1 amd64 /proc file system utilities -ii python3 3.10.6-1~22.04.1 amd64 interactive high-level object-oriented language (default python3 version) -ii python3-minimal 3.10.6-1~22.04.1 amd64 minimal subset of the Python language (default python3 version) -ii python3-pkg-resources 59.6.0-1.2ubuntu0.22.04.3 all Package Discovery and Resource Access using pkg_resources -ii python3-protobuf 3.12.4-1ubuntu7.22.04.4 amd64 Python 3 bindings for protocol buffers -ii python3-six 1.16.0-3ubuntu1 all Python 2 and 3 compatibility library (Python 3 interface) -ii python3.10 3.10.12-1~22.04.11 amd64 Interactive high-level object-oriented language (version 3.10) -ii python3.10-minimal 3.10.12-1~22.04.11 amd64 Minimal subset of the Python language (version 3.10) -ii readline-common 8.1.2-1 all GNU readline and history libraries, common files -ii rpcbind 1.2.6-2build1 amd64 converts RPC program numbers into universal addresses -ii rsync 3.2.7-0ubuntu0.22.04.4 amd64 fast, versatile, remote (and local) file-copying tool -ii sed 4.8-1ubuntu2 amd64 GNU stream editor for filtering/transforming text -ii sensible-utils 0.0.17 all Utilities for sensible alternative selection -ii socat 1.7.4.1-3ubuntu4 amd64 multipurpose relay for bidirectional data transfer -ii sudo 1.9.9-1ubuntu2.5 amd64 Provide limited super user privileges to specific users -ii systemd 249.11-0ubuntu3.16 amd64 system and service manager -ii sysvinit-utils 3.01-1ubuntu1 amd64 System-V-like utilities -ii tar 1.34+dfsg-1ubuntu0.1.22.04.2 amd64 GNU version of the tar archiving utility -ii tzdata 2025b-0ubuntu0.22.04.1 all time zone and daylight-saving time data -ii ubuntu-keyring 2021.03.26 all GnuPG keys of the Ubuntu archive -ii ucf 3.0043 all Update Configuration File(s): preserve user changes to config files -ii udev 249.11-0ubuntu3.16 amd64 /dev/ and hotplug management daemon -ii usrmerge 25ubuntu2 all Convert the system to the merged /usr directories scheme -ii util-linux 2.37.2-4ubuntu3.4 amd64 miscellaneous system utilities -ii vim-common 2:8.2.3995-1ubuntu2.24 all Vi IMproved - Common files -ii vim-tiny 2:8.2.3995-1ubuntu2.24 amd64 Vi IMproved - enhanced vi editor - compact version -ii xxd 2:8.2.3995-1ubuntu2.24 amd64 tool to make (or reverse) a hex dump -ii zlib1g:amd64 1:1.2.11.dfsg-2ubuntu9.2 amd64 compression library - runtime +||/ Name Version Architecture Description ++++-===============================-==============================-============-======================================================================================== +ii adduser 3.134 all add and remove users and groups +ii apt 2.6.1 amd64 commandline package manager +ii base-files 12.4+deb12u12 amd64 Debian base system miscellaneous files +ii base-passwd 3.6.1 amd64 Debian base system master password and group files +ii bash 5.2.15-2+b9 amd64 GNU Bourne Again SHell +ii bind9-dnsutils 1:9.18.33-1~deb12u2 amd64 Clients provided with BIND 9 +ii bind9-host 1:9.18.33-1~deb12u2 amd64 DNS Lookup Utility +ii bind9-libs:amd64 1:9.18.33-1~deb12u2 amd64 Shared Libraries used by BIND 9 +ii bsdutils 1:2.38.1-5+deb12u3 amd64 basic utilities from 4.4BSD-Lite +ii ca-certificates 20230311+deb12u1 all Common CA certificates +ii catatonit 0.1.7-1+b2 amd64 init process for containers +ii conmon 2.1.6+ds1-1 amd64 OCI container runtime monitor +ii conntrack 1:1.4.7-1+b2 amd64 Program to modify the conntrack tables +ii containerd.io 1.7.28-0~debian.12~bookworm amd64 An open and reliable container runtime +ii containernetworking-plugins 1.1.1+ds1-3+b5 amd64 standard networking plugins - binaries +ii coreutils 9.1-1 amd64 GNU core utilities +ii cri-o 1.34.0-1.1 amd64 Open Container Initiative-based implementation of Kubernetes Container Runtime Interface +ii criu 4.1.1-3 amd64 checkpoint and restore in userspace +ii crun 100:1.2-2 amd64 OCI runtime written in C +ii curl 7.88.1-10+deb12u14 amd64 command line tool for transferring data with URL syntax +ii dash 0.5.12-2 amd64 POSIX-compliant shell +ii debconf 1.5.82 all Debian configuration management system +ii debian-archive-keyring 2023.3+deb12u2 all GnuPG archive keys of the Debian archive +ii debianutils 5.7-0.5~deb12u1 amd64 Miscellaneous utilities specific to Debian +ii diffutils 1:3.8-4 amd64 File comparison utilities +ii dirmngr 2.2.40-1.1+deb12u1 amd64 GNU privacy guard - network certificate management service +ii dmsetup 2:1.02.185-2 amd64 Linux Kernel Device Mapper userspace library +ii dnsutils 1:9.18.33-1~deb12u2 all Transitional package for bind9-dnsutils +ii docker-buildx-plugin 0.28.0-0~debian.12~bookworm amd64 Docker Buildx plugin extends build capabilities with BuildKit. +ii docker-ce 5:28.4.0-1~debian.12~bookworm amd64 Docker: the open-source application container engine +ii docker-ce-cli 5:28.4.0-1~debian.12~bookworm amd64 Docker CLI: the open-source application container engine +ii dpkg 1.21.22 amd64 Debian package management system +ii e2fsprogs 1.47.0-2+b2 amd64 ext2/ext3/ext4 file system utilities +ii ebtables 2.0.11-5 amd64 Ethernet bridge frame table administration +ii ethtool 1:6.1-1 amd64 display or change Ethernet device settings +ii findutils 4.9.0-4 amd64 utilities for finding files--find, xargs +ii gcc-12-base:amd64 12.2.0-14+deb12u1 amd64 GCC, the GNU Compiler Collection (base package) +ii gnupg 2.2.40-1.1+deb12u1 all GNU privacy guard - a free PGP replacement +ii gnupg-l10n 2.2.40-1.1+deb12u1 all GNU privacy guard - localization files +ii gnupg-utils 2.2.40-1.1+deb12u1 amd64 GNU privacy guard - utility programs +ii golang-github-containers-common 0.50.1+ds1-4 all Common files for github.com/containers repositories +ii golang-github-containers-image 5.23.1-4 all Configuration files and manpages for github.com/containers repositories +ii gpg 2.2.40-1.1+deb12u1 amd64 GNU Privacy Guard -- minimalist public key operations +ii gpg-agent 2.2.40-1.1+deb12u1 amd64 GNU privacy guard - cryptographic agent +ii gpg-wks-client 2.2.40-1.1+deb12u1 amd64 GNU privacy guard - Web Key Service client +ii gpg-wks-server 2.2.40-1.1+deb12u1 amd64 GNU privacy guard - Web Key Service server +ii gpgconf 2.2.40-1.1+deb12u1 amd64 GNU privacy guard - core configuration utilities +ii gpgsm 2.2.40-1.1+deb12u1 amd64 GNU privacy guard - S/MIME version +ii gpgv 2.2.40-1.1+deb12u1 amd64 GNU privacy guard - signature verification tool +ii grep 3.8-5 amd64 GNU grep, egrep and fgrep +ii gzip 1.12-1 amd64 GNU compression utilities +ii hostname 3.23+nmu1 amd64 utility to set/show the host name or domain name +ii init-system-helpers 1.65.2+deb12u1 all helper tools for all init systems +ii iproute2 6.1.0-3 amd64 networking and traffic control tools +ii iptables 1.8.9-2 amd64 administration tools for packet filtering and NAT +ii iputils-ping 3:20221126-1+deb12u1 amd64 Tools to test the reachability of network hosts +ii keyutils 1.6.3-2 amd64 Linux Key Management Utilities +ii kmod 30+20221128-1 amd64 tools for managing Linux kernel modules +ii libacl1:amd64 2.3.1-3 amd64 access control list - shared library +ii libapparmor1:amd64 3.0.8-3 amd64 changehat AppArmor library +ii libapt-pkg6.0:amd64 2.6.1 amd64 package management runtime library +ii libargon2-1:amd64 0~20171227-0.3+deb12u1 amd64 memory-hard hashing function - runtime library +ii libassuan0:amd64 2.5.5-5 amd64 IPC library for the GnuPG components +ii libattr1:amd64 1:2.5.1-4 amd64 extended attribute handling - shared library +ii libaudit-common 1:3.0.9-1 all Dynamic library for security auditing - common files +ii libaudit1:amd64 1:3.0.9-1 amd64 Dynamic library for security auditing +ii libblkid1:amd64 2.38.1-5+deb12u3 amd64 block device ID library +ii libbpf1:amd64 1:1.1.2-0+deb12u1 amd64 eBPF helper library (shared library) +ii libbrotli1:amd64 1.0.9-2+b6 amd64 library implementing brotli encoder and decoder (shared libraries) +ii libbsd0:amd64 0.11.7-2 amd64 utility functions from BSD systems - shared library +ii libbz2-1.0:amd64 1.0.8-5+b1 amd64 high-quality block-sorting file compressor library - runtime +ii libc-bin 2.36-9+deb12u13 amd64 GNU C Library: Binaries +ii libc6:amd64 2.36-9+deb12u13 amd64 GNU C Library: Shared libraries +ii libcap-ng0:amd64 0.8.3-1+b3 amd64 alternate POSIX capabilities library +ii libcap2:amd64 1:2.66-4+deb12u2 amd64 POSIX 1003.1e capabilities (library) +ii libcap2-bin 1:2.66-4+deb12u2 amd64 POSIX 1003.1e capabilities (utilities) +ii libcbor0.8:amd64 0.8.0-2+b1 amd64 library for parsing and generating CBOR (RFC 7049) +ii libcom-err2:amd64 1.47.0-2+b2 amd64 common error description library +ii libcrypt1:amd64 1:4.4.33-2 amd64 libcrypt shared library +ii libcryptsetup12:amd64 2:2.6.1-4~deb12u2 amd64 disk encryption support - shared library +ii libcurl4:amd64 7.88.1-10+deb12u14 amd64 easy-to-use client-side URL transfer library (OpenSSL flavour) +ii libdb5.3:amd64 5.3.28+dfsg2-1 amd64 Berkeley v5.3 Database Libraries [runtime] +ii libdebconfclient0:amd64 0.270 amd64 Debian Configuration Management System (C-implementation library) +ii libdevmapper1.02.1:amd64 2:1.02.185-2 amd64 Linux Kernel Device Mapper userspace library +ii libedit2:amd64 3.1-20221030-2 amd64 BSD editline and history libraries +ii libelf1:amd64 0.188-2.1 amd64 library to read and write ELF files +ii libevent-core-2.1-7:amd64 2.1.12-stable-8 amd64 Asynchronous event notification library (core) +ii libexpat1:amd64 2.5.0-1+deb12u2 amd64 XML parsing C library - runtime library +ii libext2fs2:amd64 1.47.0-2+b2 amd64 ext2/ext3/ext4 file system libraries +ii libfdisk1:amd64 2.38.1-5+deb12u3 amd64 fdisk partitioning library +ii libffi8:amd64 3.4.4-1 amd64 Foreign Function Interface library runtime +ii libfido2-1:amd64 1.12.0-2+b1 amd64 library for generating and verifying FIDO 2.0 objects +ii libfstrm0:amd64 0.6.1-1 amd64 Frame Streams (fstrm) library +ii libgcc-s1:amd64 12.2.0-14+deb12u1 amd64 GCC support library +ii libgcrypt20:amd64 1.10.1-3 amd64 LGPL Crypto library - runtime library +ii libglib2.0-0:amd64 2.74.6-2+deb12u7 amd64 GLib library of C routines +ii libgmp10:amd64 2:6.2.1+dfsg1-1.1 amd64 Multiprecision arithmetic library +ii libgnutls30:amd64 3.7.9-2+deb12u5 amd64 GNU TLS library - main runtime library +ii libgpg-error0:amd64 1.46-1 amd64 GnuPG development runtime library +ii libgpgme11:amd64 1.18.0-3+b1 amd64 GPGME - GnuPG Made Easy (library) +ii libgssapi-krb5-2:amd64 1.20.1-2+deb12u4 amd64 MIT Kerberos runtime libraries - krb5 GSS-API Mechanism +ii libhogweed6:amd64 3.8.1-2 amd64 low level cryptographic library (public-key cryptos) +ii libicu72:amd64 72.1-3+deb12u1 amd64 International Components for Unicode +ii libidn2-0:amd64 2.3.3-1+b1 amd64 Internationalized domain names (IDNA2008/TR46) library +ii libip4tc2:amd64 1.8.9-2 amd64 netfilter libip4tc library +ii libip6tc2:amd64 1.8.9-2 amd64 netfilter libip6tc library +ii libjansson4:amd64 2.14-2 amd64 C library for encoding, decoding and manipulating JSON data +ii libjemalloc2:amd64 5.3.0-1 amd64 general-purpose scalable concurrent malloc(3) implementation +ii libjson-c5:amd64 0.16-2 amd64 JSON manipulation library - shared library +ii libk5crypto3:amd64 1.20.1-2+deb12u4 amd64 MIT Kerberos runtime libraries - Crypto Library +ii libkeyutils1:amd64 1.6.3-2 amd64 Linux Key Management Utilities (library) +ii libkmod2:amd64 30+20221128-1 amd64 libkmod shared library +ii libkrb5-3:amd64 1.20.1-2+deb12u4 amd64 MIT Kerberos runtime libraries +ii libkrb5support0:amd64 1.20.1-2+deb12u4 amd64 MIT Kerberos runtime libraries - Support library +ii libksba8:amd64 1.6.3-2 amd64 X.509 and CMS support library +ii libldap-2.5-0:amd64 2.5.13+dfsg-5 amd64 OpenLDAP libraries +ii liblmdb0:amd64 0.9.24-1 amd64 Lightning Memory-Mapped Database shared library +ii liblz4-1:amd64 1.9.4-1 amd64 Fast LZ compression algorithm library - runtime +ii liblzma5:amd64 5.4.1-1 amd64 XZ-format compression library +ii libmaxminddb0:amd64 1.7.1-1 amd64 IP geolocation database library +ii libmd0:amd64 1.0.4-2 amd64 message digest functions from BSD systems - shared library +ii libmnl0:amd64 1.0.4-3 amd64 minimalistic Netlink communication library +ii libmount1:amd64 2.38.1-5+deb12u3 amd64 device mounting library +ii libncursesw6:amd64 6.4-4 amd64 shared libraries for terminal handling (wide character support) +ii libnet1:amd64 1.1.6+dfsg-3.2 amd64 library for the construction and handling of network packets +ii libnetfilter-conntrack3:amd64 1.0.9-3 amd64 Netfilter netlink-conntrack library +ii libnettle8:amd64 3.8.1-2 amd64 low level cryptographic library (symmetric and one-way cryptos) +ii libnfnetlink0:amd64 1.0.2-2 amd64 Netfilter netlink library +ii libnfsidmap1:amd64 1:2.6.2-4+deb12u1 amd64 NFS idmapping library +ii libnftables1:amd64 1.0.6-2+deb12u2 amd64 Netfilter nftables high level userspace API library +ii libnftnl11:amd64 1.2.4-2 amd64 Netfilter nftables userspace API library +ii libnghttp2-14:amd64 1.52.0-1+deb12u2 amd64 library implementing HTTP/2 protocol (shared library) +ii libnl-3-200:amd64 3.7.0-0.2+b1 amd64 library for dealing with netlink sockets +ii libnpth0:amd64 1.6-3 amd64 replacement for GNU Pth using system threads +ii libnsl2:amd64 1.3.0-2 amd64 Public client interface for NIS(YP) and NIS+ +ii libnvidia-container-tools 1.17.8-1 amd64 NVIDIA container runtime library (command-line tools) +ii libnvidia-container1:amd64 1.17.8-1 amd64 NVIDIA container runtime library +ii libp11-kit0:amd64 0.24.1-2 amd64 library for loading and coordinating access to PKCS#11 modules - runtime +ii libpam-modules:amd64 1.5.2-6+deb12u1 amd64 Pluggable Authentication Modules for PAM +ii libpam-modules-bin 1.5.2-6+deb12u1 amd64 Pluggable Authentication Modules for PAM - helper binaries +ii libpam-runtime 1.5.2-6+deb12u1 all Runtime support for the PAM library +ii libpam0g:amd64 1.5.2-6+deb12u1 amd64 Pluggable Authentication Modules library +ii libpcre2-8-0:amd64 10.42-1 amd64 New Perl Compatible Regular Expression Library- 8 bit runtime files +ii libpopt0:amd64 1.19+dfsg-1 amd64 lib for parsing cmdline parameters +ii libproc2-0:amd64 2:4.0.2-3 amd64 library for accessing process information from /proc +ii libprotobuf-c1:amd64 1.4.1-1+b1 amd64 Protocol Buffers C shared library (protobuf-c) +ii libprotobuf32:amd64 3.21.12-3 amd64 protocol buffers C++ library +ii libpsl5:amd64 0.21.2-1 amd64 Library for Public Suffix List (shared libraries) +ii libpython3-stdlib:amd64 3.11.2-1+b1 amd64 interactive high-level object-oriented language (default python3 version) +ii libpython3.11-minimal:amd64 3.11.2-6+deb12u6 amd64 Minimal subset of the Python language (version 3.11) +ii libpython3.11-stdlib:amd64 3.11.2-6+deb12u6 amd64 Interactive high-level object-oriented language (standard library, version 3.11) +ii libreadline8:amd64 8.2-1.3 amd64 GNU readline and history libraries, run-time libraries +ii librtmp1:amd64 2.4+20151223.gitfa8646d.1-2+b2 amd64 toolkit for RTMP streams (shared library) +ii libsasl2-2:amd64 2.1.28+dfsg-10 amd64 Cyrus SASL - authentication abstraction library +ii libsasl2-modules-db:amd64 2.1.28+dfsg-10 amd64 Cyrus SASL - pluggable authentication modules (DB) +ii libseccomp2:amd64 2.5.4-1+deb12u1 amd64 high level interface to Linux seccomp filter +ii libselinux1:amd64 3.4-1+b6 amd64 SELinux runtime shared libraries +ii libsemanage-common 3.4-1 all Common files for SELinux policy management libraries +ii libsemanage2:amd64 3.4-1+b5 amd64 SELinux policy management library +ii libsepol2:amd64 3.4-2.1 amd64 SELinux library for manipulating binary security policies +ii libsmartcols1:amd64 2.38.1-5+deb12u3 amd64 smart column output alignment library +ii libsqlite3-0:amd64 3.40.1-2+deb12u2 amd64 SQLite 3 shared library +ii libss2:amd64 1.47.0-2+b2 amd64 command-line interface parsing library +ii libssh2-1:amd64 1.10.0-3+b1 amd64 SSH2 client-side library +ii libssl3:amd64 3.0.17-1~deb12u2 amd64 Secure Sockets Layer toolkit - shared libraries +ii libstdc++6:amd64 12.2.0-14+deb12u1 amd64 GNU Standard C++ Library v3 +ii libsubid4:amd64 1:4.13+dfsg1-1+deb12u1 amd64 subordinate id handling library -- shared library +ii libsystemd-shared:amd64 252.39-1~deb12u1 amd64 systemd shared private library +ii libsystemd0:amd64 252.39-1~deb12u1 amd64 systemd utility library +ii libtasn1-6:amd64 4.19.0-2+deb12u1 amd64 Manage ASN.1 structures (runtime) +ii libtinfo6:amd64 6.4-4 amd64 shared low-level terminfo library for terminal handling +ii libtirpc-common 1.3.3+ds-1 all transport-independent RPC library - common files +ii libtirpc3:amd64 1.3.3+ds-1 amd64 transport-independent RPC library +ii libudev1:amd64 252.39-1~deb12u1 amd64 libudev shared library +ii libunistring2:amd64 1.0-2 amd64 Unicode string library for C +ii libuuid1:amd64 2.38.1-5+deb12u3 amd64 Universally Unique ID library +ii libuv1:amd64 1.44.2-1+deb12u1 amd64 asynchronous event notification library - runtime library +ii libwrap0:amd64 7.6.q-32 amd64 Wietse Venema's TCP wrappers library +ii libxml2:amd64 2.9.14+dfsg-1.3~deb12u4 amd64 GNOME XML library +ii libxtables12:amd64 1.8.9-2 amd64 netfilter xtables library +ii libxxhash0:amd64 0.8.1-1 amd64 shared library for xxhash +ii libyajl2:amd64 2.1.0-3+deb12u2 amd64 Yet Another JSON Library +ii libzstd1:amd64 1.5.4+dfsg2-5 amd64 fast lossless compression algorithm +ii login 1:4.13+dfsg1-1+deb12u1 amd64 system login tools +ii logsave 1.47.0-2+b2 amd64 save the output of a command in a log file +ii lz4 1.9.4-1 amd64 Fast LZ compression algorithm library - tool +ii mawk 1.3.4.20200120-3.1 amd64 Pattern scanning and text processing language +ii media-types 10.0.0 all List of standard media types and their usual file extension +ii mount 2.38.1-5+deb12u3 amd64 tools for mounting and manipulating filesystems +ii ncurses-base 6.4-4 all basic terminal type definitions +ii ncurses-bin 6.4-4 amd64 terminal-related programs and man pages +ii netbase 6.4 all Basic TCP/IP networking system +ii netcat-openbsd 1.219-1 amd64 TCP/IP swiss army knife +ii nfs-common 1:2.6.2-4+deb12u1 amd64 NFS support files common to client and server +ii nvidia-container-toolkit 1.17.8-1 amd64 NVIDIA Container toolkit +ii nvidia-container-toolkit-base 1.17.8-1 amd64 NVIDIA Container Toolkit Base +ii openssh-client 1:9.2p1-2+deb12u7 amd64 secure shell (SSH) client, for secure access to remote machines +ii openssh-server 1:9.2p1-2+deb12u7 amd64 secure shell (SSH) server, for secure access from remote machines +ii openssh-sftp-server 1:9.2p1-2+deb12u7 amd64 secure shell (SSH) sftp server module, for SFTP access from remote machines +ii openssl 3.0.17-1~deb12u2 amd64 Secure Sockets Layer toolkit - cryptographic utility +ii passwd 1:4.13+dfsg1-1+deb12u1 amd64 change and administer password and group data +ii perl-base 5.36.0-7+deb12u3 amd64 minimal Perl system +ii pigz 2.6-1 amd64 Parallel Implementation of GZip +ii pinentry-curses 1.2.1-1 amd64 curses-based PIN or pass-phrase entry dialog for GnuPG +ii podman 4.3.1+ds1-8+deb12u1+b1 amd64 engine to run OCI-based containers in Pods +ii procps 2:4.0.2-3 amd64 /proc file system utilities +ii python3 3.11.2-1+b1 amd64 interactive high-level object-oriented language (default python3 version) +ii python3-minimal 3.11.2-1+b1 amd64 minimal subset of the Python language (default python3 version) +ii python3-protobuf 3.21.12-3 amd64 Python 3 bindings for protocol buffers +ii python3.11 3.11.2-6+deb12u6 amd64 Interactive high-level object-oriented language (version 3.11) +ii python3.11-minimal 3.11.2-6+deb12u6 amd64 Minimal subset of the Python language (version 3.11) +ii readline-common 8.2-1.3 all GNU readline and history libraries, common files +ii rpcbind 1.2.6-6+b1 amd64 converts RPC program numbers into universal addresses +ii rsync 3.2.7-1+deb12u2 amd64 fast, versatile, remote (and local) file-copying tool +ii runit-helper 2.15.2 all dh-runit implementation detail +ii sed 4.9-1 amd64 GNU stream editor for filtering/transforming text +ii sensible-utils 0.0.17+nmu1 all Utilities for sensible alternative selection +ii sgml-base 1.31 all SGML infrastructure and SGML catalog file support +ii socat 1.7.4.4-2 amd64 multipurpose relay for bidirectional data transfer +ii sudo 1.9.13p3-1+deb12u2 amd64 Provide limited super user privileges to specific users +ii systemd 252.39-1~deb12u1 amd64 system and service manager +ii systemd-sysv 252.39-1~deb12u1 amd64 system and service manager - SysV compatibility symlinks +ii sysvinit-utils 3.06-4 amd64 System-V-like utilities +ii tar 1.34+dfsg-1.2+deb12u1 amd64 GNU version of the tar archiving utility +ii tzdata 2025b-0+deb12u2 all time zone and daylight-saving time data +ii ucf 3.0043+nmu1+deb12u1 all Update Configuration File(s): preserve user changes to config files +ii udev 252.39-1~deb12u1 amd64 /dev/ and hotplug management daemon +ii usr-is-merged 37~deb12u1 all Transitional package to assert a merged-/usr system +ii util-linux 2.38.1-5+deb12u3 amd64 miscellaneous system utilities +ii util-linux-extra 2.38.1-5+deb12u3 amd64 interactive login tools +ii vim-common 2:9.0.1378-2+deb12u2 all Vi IMproved - Common files +ii vim-tiny 2:9.0.1378-2+deb12u2 amd64 Vi IMproved - enhanced vi editor - compact version +ii zlib1g:amd64 1:1.2.13.dfsg-1 amd64 compression library - runtime diff --git a/pkg/drivers/kic/types.go b/pkg/drivers/kic/types.go index 780f7c0e45..820515e146 100644 --- a/pkg/drivers/kic/types.go +++ b/pkg/drivers/kic/types.go @@ -24,14 +24,14 @@ import ( const ( // Version is the current version of kic - Version = "v0.0.48" + Version = "v0.0.48-1758924984-21643" // SHA of the kic base image - baseImageSHA = "7171c97a51623558720f8e5878e4f4637da093e2f2ed589997bedc6c1549b2b1" + baseImageSHA = "12433197697c1a9f70970adda12fee59bd2f46856ae7a7e15af5dd5ea11c0b9f" // The name of the GCR kicbase repository - gcrRepo = "gcr.io/k8s-minikube/kicbase" + gcrRepo = "gcr.io/k8s-minikube/kicbase-builds" // The name of the Dockerhub kicbase repository - dockerhubRepo = "docker.io/kicbase/stable" + dockerhubRepo = "docker.io/kicbase/build" ) var ( diff --git a/site/content/en/docs/commands/start.md b/site/content/en/docs/commands/start.md index e1b1e3fea2..cd26774b8c 100644 --- a/site/content/en/docs/commands/start.md +++ b/site/content/en/docs/commands/start.md @@ -27,7 +27,7 @@ minikube start [flags] --apiserver-port int The apiserver listening port (default 8443) --auto-pause-interval duration Duration of inactivity before the minikube VM is paused (default 1m0s) (default 1m0s) --auto-update-drivers If set, automatically updates drivers to the latest version. Defaults to true. (default true) - --base-image string The base image to use for docker/podman drivers. Intended for local development. (default "gcr.io/k8s-minikube/kicbase:v0.0.48@sha256:7171c97a51623558720f8e5878e4f4637da093e2f2ed589997bedc6c1549b2b1") + --base-image string The base image to use for docker/podman drivers. Intended for local development. (default "gcr.io/k8s-minikube/kicbase-builds:v0.0.48-1758924984-21643@sha256:12433197697c1a9f70970adda12fee59bd2f46856ae7a7e15af5dd5ea11c0b9f") --binary-mirror string Location to fetch kubectl, kubelet, & kubeadm binaries from. --cache-images If true, cache docker images for the current bootstrapper and load them into the machine. Always false with --driver=none. (default true) --cert-expiration duration Duration until minikube certificate expiration, defaults to three years (26280h). (default 26280h0m0s) From cc42fd2f8cec8fa883ff6f7397a2f6141c487062 Mon Sep 17 00:00:00 2001 From: minikube-bot Date: Thu, 2 Oct 2025 05:46:14 +0000 Subject: [PATCH 14/14] Updating kicbase image to v0.0.48-1759382731-21643 --- hack/kicbase_version/os-package-list.txt | 8 ++++---- pkg/drivers/kic/types.go | 4 ++-- site/content/en/docs/commands/start.md | 2 +- 3 files changed, 7 insertions(+), 7 deletions(-) diff --git a/hack/kicbase_version/os-package-list.txt b/hack/kicbase_version/os-package-list.txt index c0c0421489..a09d9146bf 100644 --- a/hack/kicbase_version/os-package-list.txt +++ b/hack/kicbase_version/os-package-list.txt @@ -19,7 +19,7 @@ ii conntrack 1:1.4.7-1+b2 amd64 ii containerd.io 1.7.28-0~debian.12~bookworm amd64 An open and reliable container runtime ii containernetworking-plugins 1.1.1+ds1-3+b5 amd64 standard networking plugins - binaries ii coreutils 9.1-1 amd64 GNU core utilities -ii cri-o 1.34.0-1.1 amd64 Open Container Initiative-based implementation of Kubernetes Container Runtime Interface +ii cri-o 1.34.1-1.1 amd64 Open Container Initiative-based implementation of Kubernetes Container Runtime Interface ii criu 4.1.1-3 amd64 checkpoint and restore in userspace ii crun 100:1.2-2 amd64 OCI runtime written in C ii curl 7.88.1-10+deb12u14 amd64 command line tool for transferring data with URL syntax @@ -31,7 +31,7 @@ ii diffutils 1:3.8-4 amd64 ii dirmngr 2.2.40-1.1+deb12u1 amd64 GNU privacy guard - network certificate management service ii dmsetup 2:1.02.185-2 amd64 Linux Kernel Device Mapper userspace library ii dnsutils 1:9.18.33-1~deb12u2 all Transitional package for bind9-dnsutils -ii docker-buildx-plugin 0.28.0-0~debian.12~bookworm amd64 Docker Buildx plugin extends build capabilities with BuildKit. +ii docker-buildx-plugin 0.29.0-0~debian.12~bookworm amd64 Docker Buildx plugin extends build capabilities with BuildKit. ii docker-ce 5:28.4.0-1~debian.12~bookworm amd64 Docker: the open-source application container engine ii docker-ce-cli 5:28.4.0-1~debian.12~bookworm amd64 Docker CLI: the open-source application container engine ii dpkg 1.21.22 amd64 Debian package management system @@ -167,7 +167,7 @@ ii libsmartcols1:amd64 2.38.1-5+deb12u3 amd64 ii libsqlite3-0:amd64 3.40.1-2+deb12u2 amd64 SQLite 3 shared library ii libss2:amd64 1.47.0-2+b2 amd64 command-line interface parsing library ii libssh2-1:amd64 1.10.0-3+b1 amd64 SSH2 client-side library -ii libssl3:amd64 3.0.17-1~deb12u2 amd64 Secure Sockets Layer toolkit - shared libraries +ii libssl3:amd64 3.0.17-1~deb12u3 amd64 Secure Sockets Layer toolkit - shared libraries ii libstdc++6:amd64 12.2.0-14+deb12u1 amd64 GNU Standard C++ Library v3 ii libsubid4:amd64 1:4.13+dfsg1-1+deb12u1 amd64 subordinate id handling library -- shared library ii libsystemd-shared:amd64 252.39-1~deb12u1 amd64 systemd shared private library @@ -202,7 +202,7 @@ ii nvidia-container-toolkit-base 1.17.8-1 amd64 ii openssh-client 1:9.2p1-2+deb12u7 amd64 secure shell (SSH) client, for secure access to remote machines ii openssh-server 1:9.2p1-2+deb12u7 amd64 secure shell (SSH) server, for secure access from remote machines ii openssh-sftp-server 1:9.2p1-2+deb12u7 amd64 secure shell (SSH) sftp server module, for SFTP access from remote machines -ii openssl 3.0.17-1~deb12u2 amd64 Secure Sockets Layer toolkit - cryptographic utility +ii openssl 3.0.17-1~deb12u3 amd64 Secure Sockets Layer toolkit - cryptographic utility ii passwd 1:4.13+dfsg1-1+deb12u1 amd64 change and administer password and group data ii perl-base 5.36.0-7+deb12u3 amd64 minimal Perl system ii pigz 2.6-1 amd64 Parallel Implementation of GZip diff --git a/pkg/drivers/kic/types.go b/pkg/drivers/kic/types.go index 820515e146..503b0a9e33 100644 --- a/pkg/drivers/kic/types.go +++ b/pkg/drivers/kic/types.go @@ -24,10 +24,10 @@ import ( const ( // Version is the current version of kic - Version = "v0.0.48-1758924984-21643" + Version = "v0.0.48-1759382731-21643" // SHA of the kic base image - baseImageSHA = "12433197697c1a9f70970adda12fee59bd2f46856ae7a7e15af5dd5ea11c0b9f" + baseImageSHA = "ca1b4db171879edd6bbb9546a4b1afac2eb5be94a0f5528496e62d2ff99de37d" // The name of the GCR kicbase repository gcrRepo = "gcr.io/k8s-minikube/kicbase-builds" // The name of the Dockerhub kicbase repository diff --git a/site/content/en/docs/commands/start.md b/site/content/en/docs/commands/start.md index cd26774b8c..6b1143a8ff 100644 --- a/site/content/en/docs/commands/start.md +++ b/site/content/en/docs/commands/start.md @@ -27,7 +27,7 @@ minikube start [flags] --apiserver-port int The apiserver listening port (default 8443) --auto-pause-interval duration Duration of inactivity before the minikube VM is paused (default 1m0s) (default 1m0s) --auto-update-drivers If set, automatically updates drivers to the latest version. Defaults to true. (default true) - --base-image string The base image to use for docker/podman drivers. Intended for local development. (default "gcr.io/k8s-minikube/kicbase-builds:v0.0.48-1758924984-21643@sha256:12433197697c1a9f70970adda12fee59bd2f46856ae7a7e15af5dd5ea11c0b9f") + --base-image string The base image to use for docker/podman drivers. Intended for local development. (default "gcr.io/k8s-minikube/kicbase-builds:v0.0.48-1759382731-21643@sha256:ca1b4db171879edd6bbb9546a4b1afac2eb5be94a0f5528496e62d2ff99de37d") --binary-mirror string Location to fetch kubectl, kubelet, & kubeadm binaries from. --cache-images If true, cache docker images for the current bootstrapper and load them into the machine. Always false with --driver=none. (default true) --cert-expiration duration Duration until minikube certificate expiration, defaults to three years (26280h). (default 26280h0m0s)