Page MenuHomePhabricator
Create Task
Maniphest T393731

buildkit v0.21.1 released
Closed, ResolvedPublic
Actions

Description

Notable changes back to v0.20.0:

v0.21.1:
Builtin Dockerfile frontend has been updated to v1.15.1.
Fix buildctl --tlsdir for non-cert-manager.io tls certificate naming. #5950
Fix panic when null cache options were sent using solve grpc API. #5925

v0.21.0:
Builtin Dockerfile frontend has been updated to v1.15.0. changelog
Runc container runtime has been updated to v1.2.6. #5845
The cache manifest created by --cache-to now defaults to OCI artifact manifest (instead of OCI image index). For old behavior, set image-manifest=false. #5864
The cache timeout for registry credentials has been reduced from 10 min to 5 min. #5859
Buildctl --tlsdir option now allows filenames compatible with cert-manager.io. #5886
Update free-space filter GC/prune filter to not remove all data when no max-space value is set. #5827
Mitigate GitHub Actions cache v2 flakiness. #5805
Add autoallow and entitlements support to CDI devices. #5742
Support authentication in LLB for Git and HTTP. #5733
Support for adding additional request header fields for HTTP sources. #5732
OpenTelemetry traces now contain spans for layer extraction. #5831
containerd image exporter creates dangling images by default. #5858
Add support for bind and cache mounts for WCOW. #5708
Add session exporter capability. #5907 #5908
Add metadata-only transfer option for local source. #5897
Fix X mode to be Linux-compatible for file operations using chmod. #5850
Fix --chmod when applied to parent directories. #5788
Fix missing user-agent when buildkit requests layers from the registry. #5834
Fix missing user-agent for GitHub Actions importer. #5759 #5760
Fix reading secrets from any session on parallel build requests. #5833
Fix race condition causing "file used by another process" errors with WCOW. #5885

v0.20.2:
Fix possible UID overflow when setting user for container #5844 GHSA-265r-hfxg-fhmg
update RootlessKit to v2.3.4 #5825

v0.20.1:
Builtin Dockerfile frontend has been updated to v1.14.1
Fix panic during CDI manager initialization. #5769 cncf-tags/container-device-interface#254
Fix gRPC message size when writing SBOMs. #5798 containerd/containerd#11457
Fix possible panic with libc-bin emulation in QEMU v9.2.0. #5808
Update azblob client retries for GitHub Actions cache backend. #5797 tonistiigi/go-actions-cache#33

Upgrade areas:

  • gitlab-cloud-runners
  • WMCS and Trusted runners
  • buildctl referenced by kokkuri

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
Use buildkit wmf-v0.21.1 on WMCS and trusted runnersoperations/puppetproduction+4 -4
Customize query in gerrit
Related Changes in GitLab:
TitleReferenceAuthorSource BranchDest Branch
blubber.yaml: Use buildkit:wmf-v0.21.1repos/releng/kokkuri!122dancymain-I3026c19f64df04bdb26d11c368324396b94aa113main
Chart.yaml 1.6.2: Bump addVersion to v1.15.0repos/releng/reggie!99dancymain-I45554b7faa554c4d23a87f30ebf0ead17817c7ecmain
Add support for application/vnd.oci.image.manifest.v1+jsonrepos/releng/reggie!98dancymain-Ib4576a8c4d16c05237cf557e59b5445a0bae8438main
staging.tfvars: Bump buildkitd_tag to wmf-v0.21.1repos/releng/gitlab-cloud-runner!469dancymain-I64bb7a8fb58d9214764ce574316c41fb7137c7c1main
Customize query in GitLab

Related Objects

Event Timeline

dancy created this task.May 8 2025, 7:05 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMay 8 2025, 7:05 PM
dancy claimed this task.May 8 2025, 7:07 PM
dancy triaged this task as Low priority.
CodeReviewBot added a project: Patch-For-Review.May 8 2025, 7:10 PM

dancy opened https://gitlab.wikimedia.org/repos/releng/gitlab-cloud-runner/-/merge_requests/469

staging.tfvars: Bump buildkitd_tag to wmf-v0.21.1

CodeReviewBot added a comment.May 8 2025, 7:11 PM

dancy merged https://gitlab.wikimedia.org/repos/releng/gitlab-cloud-runner/-/merge_requests/469

staging.tfvars: Bump buildkitd_tag to wmf-v0.21.1

Maintenance_bot removed a project: Patch-For-Review.May 8 2025, 7:30 PM
CodeReviewBot added a project: Patch-For-Review.May 8 2025, 7:54 PM

dancy opened https://gitlab.wikimedia.org/repos/releng/reggie/-/merge_requests/98

Add support for application/vnd.oci.image.manifest.v1+json

CodeReviewBot added a comment.May 8 2025, 7:56 PM

dancy merged https://gitlab.wikimedia.org/repos/releng/reggie/-/merge_requests/98

Add support for application/vnd.oci.image.manifest.v1+json

CodeReviewBot added a comment.May 8 2025, 8:05 PM

dancy opened https://gitlab.wikimedia.org/repos/releng/reggie/-/merge_requests/99

Chart.yaml 1.6.2: Bump addVersion to v1.15.0

CodeReviewBot added a comment.May 8 2025, 8:05 PM

dancy merged https://gitlab.wikimedia.org/repos/releng/reggie/-/merge_requests/99

Chart.yaml 1.6.2: Bump addVersion to v1.15.0

Maintenance_bot removed a project: Patch-For-Review.May 8 2025, 8:31 PM
dancy updated the task description. (Show Details)May 8 2025, 8:31 PM
gerritbot added a comment.May 8 2025, 8:36 PM

Change #1143671 had a related patch set uploaded (by Ahmon Dancy; author: Ahmon Dancy):

[operations/puppet@production] Use buildkit wmf-v0.21.1 on WMCS and trusted runners

https://gerrit.wikimedia.org/r/1143671

gerritbot added a project: Patch-For-Review.May 8 2025, 8:36 PM
gerritbot added a comment.May 9 2025, 11:38 AM

Change #1143671 merged by Jelto:

[operations/puppet@production] Use buildkit wmf-v0.21.1 on WMCS and trusted runners

https://gerrit.wikimedia.org/r/1143671

Maintenance_bot removed a project: Patch-For-Review.May 9 2025, 12:30 PM
dancy updated the task description. (Show Details)May 9 2025, 2:55 PM
CodeReviewBot added a project: Patch-For-Review.May 9 2025, 2:58 PM

dancy opened https://gitlab.wikimedia.org/repos/releng/kokkuri/-/merge_requests/122

blubber.yaml: Use buildkit:wmf-v0.21.1

CodeReviewBot added a comment.May 12 2025, 4:10 PM

dancy merged https://gitlab.wikimedia.org/repos/releng/kokkuri/-/merge_requests/122

blubber.yaml: Use buildkit:wmf-v0.21.1

dancy closed this task as Resolved.May 12 2025, 4:15 PM
dancy updated the task description. (Show Details)
Maintenance_bot removed a project: Patch-For-Review.May 12 2025, 4:31 PM
thcipriani added a project: Essential-Work.May 16 2025, 3:40 AM
dancy added a comment.May 22 2025, 4:40 PM

Since the buildkit 0.21.1 upgrade there have been some cases where buildkit's storage directory has been filling up.

Examples:

This is new behavior. Hopefully the next version of buildkit (T394931) will address this but in the meantime you can use the following to free up space on the buildkit volumes:

for n in $(seq 0 2); do kubectl -n gitlab-runner exec buildkitd-$n -- buildctl --addr localhost:1234 prune; done

This assumes that your kubectl config is pointing to the gitlab-cloud-runner cluster.

dancy added a comment.May 22 2025, 6:23 PM
In T393731#10849368, @dancy wrote:

Since the buildkit 0.21.1 upgrade there have been some cases where buildkit's storage directory has been filling up.

For the record, I don't know that buildkit 0.21.1 is the cause. It could also be an unrelated uptick in buildkitd's workload.

dancy added a comment.May 22 2025, 11:40 PM

The buildkitd volume issue is moved to T395097.

dancy mentioned this in T393856: error: failed to solve: ParseAddr("ns-recursor.openstack.eqiad1.wikimediacloud.org"): unexpected character (at "ns-recursor.openstack.eqiad1.wikimediacloud.org").May 29 2025, 7:19 PM
dancy added a comment.May 29 2025, 7:50 PM

T393856 is a new problem since deploying buildkit 0.21.1.

dancy added a comment.May 29 2025, 7:58 PM

Rolled back to v0.20.0 via https://gerrit.wikimedia.org/r/1152138

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits