Page MenuHomePhabricator
Create Task
Maniphest T410049

Buildkit v0.26.2 released
Closed, ResolvedPublic
Actions

Description

Notable changes (v0.26.0):
Change how file checksum is calculated when wildcards and include/exclude patterns are involved to better align with how they are calculated in the non-wildcard path. #6238
LLB Copy operation now allows specifying required paths to be included in the copy. #6229
Fixed race condition between cache and snapshot for the Git source. #6281
Fixed race condition in HTTP cache key digest computation that could cause duplicate requests and digest mismatch errors. #6292
Runc container runtime has been updated to v1.3.3. #6331
Source metadata requests via ResolveSourceMeta, previously available for image sources, can now be performed for Git sources. This can be used to resolve Git commit and tag checksums and also to access the raw commit and tag objects for further verification. #6283
Source metadata requests via ResolveSourceMeta, previously available for image sources, can now be performed for HTTP sources. This can be used to access artifact checksums, last-modified time etc. #6285
Git sources can now perform verification of GPG or SSH signatures on commits and tags. Enable git signature checks via source policy. #6300 #6344
contentutil package now supports moving referrer objects when using CopyChain function. #6336
Fix fetch by commit for git source when tags change or branch names are updated. #6259
Fix http connection leak when resolving metadata from http source on non-2xx HTTP status codes. #6313
A new type of source policies has been added that supports making policy decisions on the client side via session tunnel. #6276
Add buildkit capability for detecting if source policy decisions can be made via session tunnel. #6345
Avoid intermediate type wrappers for custom fields in provenance. #6275
Add raw commit/tag object access when resolving git source metadata. #6298
Move image source resolver away from the ResolveImageConfig type to ResolveSourceMetadata. #6330 # probably not needed for changelog
Fix inline cache used with multiple exporters. #6263
Fix handling multiple inline cache exporters configured for single build. #6272
Fix handling of annotated Git tags. The pin of the annotated tag should be the SHA of the tag and not the commit it is pointing to. #6251
Fix source policy attributes validation when multiple rules use the same identifier. #6342
Notable changes (v0.26.1):
Fix excessive chunking when fetching blobs #6366
Notable changes (v0.26.2):
Fix possible error when uploading big files to S3 cache exporter #6373

Deployment:

  • gitlab-cloud-runners staging
  • gitlab-cloud-runners production
  • WMCS and Trusted runners

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
buildkitd: Bump buildkit image to wmf-v0.26.2operations/puppetproduction+3 -3
Customize query in gerrit
Related Changes in GitLab:
TitleReferenceAuthorSource BranchDest Branch
Remove instructions to update `buildkitd` puppet classrepos/releng/buildkit!78dduvallreview/remove-mention-of-puppet-module-paramwmf/build
Use buildkit v0.26.2 in staging and productionrepos/releng/gitlab-cloud-runner!532dduvallreview/buildkitd-0.26.2main
Use buildkit v0.26.1 in staging and productionrepos/releng/gitlab-cloud-runner!531dduvallreview/buildkitd-0.26.1main
Customize query in GitLab

Event Timeline

dancy created this task.Thu, Nov 13, 3:30 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptThu, Nov 13, 3:30 PM
dancy renamed this task from Buildkit v0.26.0 released to Buildkit v0.26.1 released.Mon, Nov 17, 6:47 PM
dancy updated the task description. (Show Details)
CodeReviewBot added a comment.Wed, Nov 19, 8:14 PM

dduvall updated https://gitlab.wikimedia.org/repos/releng/gitlab-cloud-runner/-/merge_requests/531

Use buildkit v0.26.1 in staging and production

CodeReviewBot added a comment.Wed, Nov 19, 8:27 PM

dduvall merged https://gitlab.wikimedia.org/repos/releng/gitlab-cloud-runner/-/merge_requests/531

Use buildkit v0.26.1 in staging and production

dancy renamed this task from Buildkit v0.26.1 released to Buildkit v0.26.2 released.Thu, Nov 20, 3:54 PM
dancy updated the task description. (Show Details)
dancy added a subscriber: dduvall.
CodeReviewBot added a project: Patch-For-Review.Thu, Nov 20, 5:53 PM

dduvall opened https://gitlab.wikimedia.org/repos/releng/gitlab-cloud-runner/-/merge_requests/532

Use buildkit v0.26.2 in staging and production

CodeReviewBot added a comment.Thu, Nov 20, 6:37 PM

dduvall merged https://gitlab.wikimedia.org/repos/releng/gitlab-cloud-runner/-/merge_requests/532

Use buildkit v0.26.2 in staging and production

Stashbot added a comment.Thu, Nov 20, 7:57 PM

Mentioned in SAL (#wikimedia-releng) [2025-11-20T19:57:34Z] <dduvall> deploying buildkitd v0.26.2 upgrade (w/ worker resource limits) to gitlab-cloud-runners cluster (T410049)

dduvall updated the task description. (Show Details)Thu, Nov 20, 7:59 PM
dancy changed the task status from Open to In Progress.Fri, Nov 21, 3:47 PM
dancy assigned this task to dduvall.
dancy added a comment.Mon, Dec 1, 5:25 PM

@dduvall Is this ticket effectively resolved?

gerritbot added a comment.Mon, Dec 1, 5:34 PM

Change #1213538 had a related patch set uploaded (by Dduvall; author: Dduvall):

[operations/puppet@production] buildkitd: Bump buildkit image to wmf-v0.26.2

https://gerrit.wikimedia.org/r/1213538

dduvall added a comment.Mon, Dec 1, 5:39 PM

@dancy Not quite. We still need the WMCS/trusted runner changes in puppet.

dancy added a comment.Mon, Dec 1, 5:41 PM
In T410049#11420530, @dduvall wrote:

@dancy Not quite. We still need the WMCS/trusted runner changes in puppet.

Gotcha.

CodeReviewBot added a comment.Mon, Dec 1, 5:45 PM

dduvall opened https://gitlab.wikimedia.org/repos/releng/buildkit/-/merge_requests/78

Remove instructions to update buildkitd puppet class

CodeReviewBot added a comment.Mon, Dec 1, 6:11 PM

dduvall merged https://gitlab.wikimedia.org/repos/releng/buildkit/-/merge_requests/78

Remove instructions to update buildkitd puppet class

gerritbot added a comment.Mon, Dec 1, 6:30 PM

Change #1213538 merged by Dzahn:

[operations/puppet@production] buildkitd: Bump buildkit image to wmf-v0.26.2

https://gerrit.wikimedia.org/r/1213538

dduvall closed this task as Resolved.Mon, Dec 1, 10:22 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits