From 1ea27f4b5359c90844cd1372f5e7c5e346c3056c Mon Sep 17 00:00:00 2001 From: Carly Gundy Date: Mon, 22 Dec 2025 16:37:06 +0100 Subject: [PATCH 01/34] chore(IDX): remove all icos deps --- ci/container/files/packages.common | 23 ----------------------- 1 file changed, 23 deletions(-) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index f6abfc635c7c..f23b34d06932 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -46,26 +46,3 @@ protobuf-compiler llvm liblmdb-dev liblzma-dev - -# IC-OS -fdisk -cryptsetup-bin -dosfstools -fakeroot -faketime -grub-efi-amd64-bin -iasl # to build OVMF -iputils-ping - # Linked in by IC-OS binaries for managing encrypted disks. -libcryptsetup-dev - # Linked in by IC-OS binaries for creating mapped devices. -libdevmapper-dev -libselinux-dev -libsystemd-dev - # Linked in by IC-OS binaries for managing virtual machines programmatically. -libvirt-dev -lsb-release -lvm2 -mtools -nasm # to build OVMF -zstd From 2d77554440348d6781061e5b2afb4babd734802b Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Mon, 22 Dec 2025 15:47:47 +0000 Subject: [PATCH 02/34] Updating container image to sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 Image tag: 4b4dd94876db867377e0011d3afec2f74f9db70761e0858fbafab8b779000bf7 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 090d21427d2a..fb570fd4c917 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3", + "image": "ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index b9ab4232530f..41412de31f67 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 19a84c01b062..d5f3db90f7c7 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 83fb6da76dcb..e2011228011b 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index 1a349788399a..9d050fcb10dd 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 27e8ecf7bb56..d0dd0a4afe87 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index 325fa1683673..9d10b757be34 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index ce44ddb4c407..b1157c098917 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 4184b3f28a1e..7205fa188d8e 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index b5085f903a0d..a2df6fad89ec 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index 265306a907a8..d81feba9c611 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 6daf1259b61d..430281814701 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:30b49530b965954154a44fa703aace501c6d5f6c60eb30f51083213659d5bae3 + image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index eb794f314bad..87fdfb5095df 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -90f5469f25af69167e1535b12c3c0cdc7c06da37c94de68bb08ef12889142a49 +4b4dd94876db867377e0011d3afec2f74f9db70761e0858fbafab8b779000bf7 From add3a7774775d61d42c4f716448a519a6c5929ac Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Mon, 22 Dec 2025 16:57:47 +0100 Subject: [PATCH 03/34] keep --- ci/container/files/packages.common | 3 +++ 1 file changed, 3 insertions(+) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index f23b34d06932..bbf7c572adad 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -46,3 +46,6 @@ protobuf-compiler llvm liblmdb-dev liblzma-dev + +# IC-OS +libsystemd-dev From 571ab3eda365591bed2f697f9bc4504029e451ab Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Mon, 22 Dec 2025 16:07:26 +0000 Subject: [PATCH 04/34] Updating container image to sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c Image tag: 84e5af58830a3f43bbe6eb00920511deb226fb9e60464573888ca217f18eb73e --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index fb570fd4c917..950170b7d9bc 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9", + "image": "ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 41412de31f67..ce50baff7002 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index d5f3db90f7c7..10448345560f 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index e2011228011b..6c4a08f69b7d 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index 9d050fcb10dd..874a1307b632 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index d0dd0a4afe87..8756a58c75f6 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index 9d10b757be34..ee5b595f141b 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index b1157c098917..26702955b28e 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 7205fa188d8e..e994c6b7a6b9 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index a2df6fad89ec..504b46c42f24 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index d81feba9c611..83aff9a78611 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 430281814701..f27f332908af 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:74dabd71fe7737f26899406e34e88da93d01dd71594cb48276984f4737bc32d9 + image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index 87fdfb5095df..53cbca2f97a3 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -4b4dd94876db867377e0011d3afec2f74f9db70761e0858fbafab8b779000bf7 +84e5af58830a3f43bbe6eb00920511deb226fb9e60464573888ca217f18eb73e From 18ba0f3cf43dfe2908ff6e0f7e4a85c952ea50fe Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Mon, 22 Dec 2025 17:39:09 +0100 Subject: [PATCH 05/34] keep Added libvirt-dev for managing virtual machines. --- ci/container/files/packages.common | 2 ++ 1 file changed, 2 insertions(+) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index f928624b2318..f2724736efbc 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -49,6 +49,8 @@ node-json5 # IC-OS libsystemd-dev + # Linked in by IC-OS binaries for managing virtual machines programmatically. +libvirt-dev # Unknown containernetworking-plugins From edcaa66a7224ba961604b4f0b41b0fc943279ccd Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Mon, 22 Dec 2025 16:47:53 +0000 Subject: [PATCH 06/34] Updating container image to sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 Image tag: c2ad2b682172f6cd6dac7a2f114aa801bd150654fe4eebdddf5847c9e04a1631 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 950170b7d9bc..e441f22d3836 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c", + "image": "ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index ce50baff7002..a6838ef45491 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 10448345560f..1e38c477d82a 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 6c4a08f69b7d..d08956306793 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index 874a1307b632..5b26fcff91c6 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 8756a58c75f6..d056e4a1e255 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index ee5b595f141b..6c3ba43db164 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index 26702955b28e..fc3fd925be5c 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index e994c6b7a6b9..89ac88afaadb 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index 504b46c42f24..2a58dbc3ffbc 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index 83aff9a78611..6d3adcc65625 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index f27f332908af..6d69446820e1 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:6bc7aa327a9cfe3913012ca24c2b84c17c13f3de64e0c5357ff16609d25dc93c + image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index 53cbca2f97a3..ac4d34d8d87b 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -84e5af58830a3f43bbe6eb00920511deb226fb9e60464573888ca217f18eb73e +c2ad2b682172f6cd6dac7a2f114aa801bd150654fe4eebdddf5847c9e04a1631 From a7e093964a0c188a79c42837074e66e8319ec5b7 Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 08:17:02 +0100 Subject: [PATCH 07/34] keep these Add dependencies for IC-OS binaries related to disk management and virtual machines. --- ci/container/files/packages.common | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index f2724736efbc..cd60b553d179 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -48,6 +48,11 @@ fish node-json5 # IC-OS + # Linked in by IC-OS binaries for managing encrypted disks. +libcryptsetup-dev + # Linked in by IC-OS binaries for creating mapped devices. +libdevmapper-dev +libselinux-dev libsystemd-dev # Linked in by IC-OS binaries for managing virtual machines programmatically. libvirt-dev From 8bbbf115823e488a448cf88a517c2209b6c0a0d9 Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 07:25:47 +0000 Subject: [PATCH 08/34] Updating container image to sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a Image tag: b2fab3ea896e1ee3be209174ce45c8b7c9fd7d6d4ffe38681852e136fc5372dc --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index e441f22d3836..88ffe80d196b 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295", + "image": "ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index a6838ef45491..7cee71488662 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 1e38c477d82a..9107fe7b94cc 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index d08956306793..5f13d1a411b6 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index 5b26fcff91c6..dd05342595bf 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index d056e4a1e255..083110161926 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index 6c3ba43db164..c8e0d1f442af 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index fc3fd925be5c..b6cc18e14bfa 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 89ac88afaadb..35a1eaaf5152 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index 2a58dbc3ffbc..3cb34cab1f74 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index 6d3adcc65625..5f1e2527475a 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 6d69446820e1..2c6ecec00353 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:42fa39025f3b9552cadf8cf5ef01b6bd8b4327edb0bce06d2ff012d328a24295 + image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index ac4d34d8d87b..4de4a5d08668 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -c2ad2b682172f6cd6dac7a2f114aa801bd150654fe4eebdddf5847c9e04a1631 +b2fab3ea896e1ee3be209174ce45c8b7c9fd7d6d4ffe38681852e136fc5372dc From c153b19ec709e53b44585938ba0ec7666aaddace Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 08:37:39 +0100 Subject: [PATCH 09/34] add it back Add dosfstools package for managing encrypted disks. --- ci/container/files/packages.common | 1 + 1 file changed, 1 insertion(+) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index cd60b553d179..92ba8e5123b1 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -48,6 +48,7 @@ fish node-json5 # IC-OS +dosfstools # Linked in by IC-OS binaries for managing encrypted disks. libcryptsetup-dev # Linked in by IC-OS binaries for creating mapped devices. From 0bd78d59a0caf1fbe9005d4e785844bb12755ad5 Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 07:46:28 +0000 Subject: [PATCH 10/34] Updating container image to sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf Image tag: 3d160cd4d101962859d63eae7194b75fca51a1c24fa1444d82d1924570c3e297 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 88ffe80d196b..eedeb3b25151 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a", + "image": "ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 7cee71488662..7d152613a778 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 9107fe7b94cc..9cf78dff227e 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 5f13d1a411b6..74b3e9c908fe 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index dd05342595bf..29df5f3667ce 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 083110161926..1ba38f674cae 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index c8e0d1f442af..ecb74190cebc 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index b6cc18e14bfa..69d40db38ae4 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 35a1eaaf5152..0978ec4a33f4 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index 3cb34cab1f74..f77422a137be 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index 5f1e2527475a..d854a5ff0089 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 2c6ecec00353..43510f9feb53 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:9d5c65e4bd4bd55d6e55e653bbb2113f336215b4e319cde99c5722f7b33c640a + image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index 4de4a5d08668..138f589296f8 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -b2fab3ea896e1ee3be209174ce45c8b7c9fd7d6d4ffe38681852e136fc5372dc +3d160cd4d101962859d63eae7194b75fca51a1c24fa1444d82d1924570c3e297 From 95db13e1313a710f2420b8abe717655d1dea5193 Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 09:02:01 +0100 Subject: [PATCH 11/34] keep --- ci/container/files/packages.common | 2 ++ 1 file changed, 2 insertions(+) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index 92ba8e5123b1..585a6a0fa044 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -49,6 +49,7 @@ node-json5 # IC-OS dosfstools +faketime # Linked in by IC-OS binaries for managing encrypted disks. libcryptsetup-dev # Linked in by IC-OS binaries for creating mapped devices. @@ -57,6 +58,7 @@ libselinux-dev libsystemd-dev # Linked in by IC-OS binaries for managing virtual machines programmatically. libvirt-dev +zstd # Unknown containernetworking-plugins From 9e05a77db22fdb9a740d914982b81b6dc846084a Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 08:11:33 +0000 Subject: [PATCH 12/34] Updating container image to sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 Image tag: 627dab1fe95c6c963673876c9d92533e0ccd68f5622cab1409a52367b9dde09b --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index eedeb3b25151..66ab5c245ed4 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf", + "image": "ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 7d152613a778..75bb47e88d83 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 9cf78dff227e..ffbe0309b7a5 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 74b3e9c908fe..c7be83159b71 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index 29df5f3667ce..aac7be2ab008 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 1ba38f674cae..6a1ef7a38eb9 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index ecb74190cebc..5947c766ae2c 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index 69d40db38ae4..31c84afe2f1b 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 0978ec4a33f4..cdd207c903e6 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index f77422a137be..b5f60e3ceffa 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index d854a5ff0089..c18c765d35f1 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 43510f9feb53..94eeba33a4d9 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:b49a53d2931b1605af610e43834a344aa9ceac330e52b41f199a844ea0e5f3bf + image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index 138f589296f8..2711005cd7fb 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -3d160cd4d101962859d63eae7194b75fca51a1c24fa1444d82d1924570c3e297 +627dab1fe95c6c963673876c9d92533e0ccd68f5622cab1409a52367b9dde09b From 1548124955ddfca9e4af543dee99b1f76a9cd1f5 Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 09:29:05 +0100 Subject: [PATCH 13/34] add comments Added comments to clarify the purpose of dosfstools and mtools. --- ci/container/files/packages.common | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index 585a6a0fa044..102961a9dc6a 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -48,7 +48,7 @@ fish node-json5 # IC-OS -dosfstools +dosfstools # provides mkfs.vfat faketime # Linked in by IC-OS binaries for managing encrypted disks. libcryptsetup-dev @@ -58,6 +58,7 @@ libselinux-dev libsystemd-dev # Linked in by IC-OS binaries for managing virtual machines programmatically. libvirt-dev +mtools # used for mcopy and mmd zstd # Unknown From 3ef5e1b4fe1e966abcb3f364fd8f5cab287cfeec Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 08:37:40 +0000 Subject: [PATCH 14/34] Updating container image to sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb Image tag: acf4f6d0e4767b55eee1b7a954a1100e4d2821aeb97b9085179aedff96dacc24 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 66ab5c245ed4..c3822ee6df03 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169", + "image": "ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 75bb47e88d83..472eb1c7da40 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index ffbe0309b7a5..a0daffa99942 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index c7be83159b71..2ccd55ff1693 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index aac7be2ab008..56bceedd5bb3 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 6a1ef7a38eb9..60797bc0acc9 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index 5947c766ae2c..42ea16798c32 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index 31c84afe2f1b..12278245e58b 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index cdd207c903e6..cf7dad8fd74f 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index b5f60e3ceffa..75e270aa2f7f 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index c18c765d35f1..c2903a6d07d1 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 94eeba33a4d9..0908573f43b0 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:2850bc94977bd337af14656f13b04d30a9558cdfc7d0afd46fb1c953d7416169 + image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index 2711005cd7fb..3e4a369d097a 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -627dab1fe95c6c963673876c9d92533e0ccd68f5622cab1409a52367b9dde09b +acf4f6d0e4767b55eee1b7a954a1100e4d2821aeb97b9085179aedff96dacc24 From 696d3e828ae90e60aad051ba95a6917a0adc1c8d Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 09:50:13 +0100 Subject: [PATCH 15/34] update packages --- ci/container/files/packages.common | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index 102961a9dc6a..dbacc3c194ef 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -49,7 +49,6 @@ node-json5 # IC-OS dosfstools # provides mkfs.vfat -faketime # Linked in by IC-OS binaries for managing encrypted disks. libcryptsetup-dev # Linked in by IC-OS binaries for creating mapped devices. @@ -59,6 +58,7 @@ libsystemd-dev # Linked in by IC-OS binaries for managing virtual machines programmatically. libvirt-dev mtools # used for mcopy and mmd +nasm # to build OVMF zstd # Unknown From 225164dafd4046515f01a2be5db0c18d18de1ed4 Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 08:58:54 +0000 Subject: [PATCH 16/34] Updating container image to sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a Image tag: b603a3899addfd159cdb20bd0a734523dbfc01298a5bab19bdc5420a54a258cb --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index c3822ee6df03..93fae61277f2 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb", + "image": "ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 472eb1c7da40..d2a6ea022109 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index a0daffa99942..021e5d4722a2 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 2ccd55ff1693..79885726b7de 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index 56bceedd5bb3..efff24586432 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 60797bc0acc9..69fa75040f4c 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index 42ea16798c32..db0beb5465ba 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index 12278245e58b..d194293ebe3f 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index cf7dad8fd74f..19bf2fed1006 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index 75e270aa2f7f..23ce1c72a83d 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index c2903a6d07d1..1a804d4cf442 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 0908573f43b0..c0d161cf86fb 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:5045333a5541ed3021e0d8323bc9422bfd4dab9d4941929ce772fbb7f75732cb + image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index 3e4a369d097a..c7e4453ade2d 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -acf4f6d0e4767b55eee1b7a954a1100e4d2821aeb97b9085179aedff96dacc24 +b603a3899addfd159cdb20bd0a734523dbfc01298a5bab19bdc5420a54a258cb From 7e1e044dd0b6ba64440539af1af8d4659a675309 Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 10:33:07 +0100 Subject: [PATCH 17/34] keep faketime --- ci/container/files/packages.common | 1 + 1 file changed, 1 insertion(+) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index dbacc3c194ef..3b96294f4ffb 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -48,6 +48,7 @@ fish node-json5 # IC-OS +faketime dosfstools # provides mkfs.vfat # Linked in by IC-OS binaries for managing encrypted disks. libcryptsetup-dev From 7ffc5d0b5fee0dee731f02892f9065a626158759 Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 09:41:58 +0000 Subject: [PATCH 18/34] Updating container image to sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb Image tag: 37bab6369974f6d85cc8d13d287f17c428903c8b54f4ce4c3aca8715dab239b5 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 93fae61277f2..975f3f311f3e 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a", + "image": "ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index d2a6ea022109..02876f655109 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 021e5d4722a2..4401999c5ef2 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 79885726b7de..c8ed35245834 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index efff24586432..81e4a103aadb 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 69fa75040f4c..b597541124fd 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index db0beb5465ba..e9398bfed022 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index d194293ebe3f..f6a3b8145b49 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 19bf2fed1006..f6bc79a3767a 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index 23ce1c72a83d..5064d88adc05 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index 1a804d4cf442..6699bac4d33c 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index c0d161cf86fb..59303f1dba78 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:22e1e749043e98f0a894e5662c80a62c8c85a0d652e0d7e65255344a1c3a2f8a + image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index c7e4453ade2d..eb11e3302091 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -b603a3899addfd159cdb20bd0a734523dbfc01298a5bab19bdc5420a54a258cb +37bab6369974f6d85cc8d13d287f17c428903c8b54f4ce4c3aca8715dab239b5 From 28a248bbe64cb96c56cc6df5a5babe55e159031c Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 11:06:10 +0100 Subject: [PATCH 19/34] keep qemu-system-x86 --- ci/container/files/packages.common | 1 + 1 file changed, 1 insertion(+) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index 3b96294f4ffb..b018e6d3220c 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -60,6 +60,7 @@ libsystemd-dev libvirt-dev mtools # used for mcopy and mmd nasm # to build OVMF +qemu-system-x86 # used for guestos zstd # Unknown From 5f6e3b34bd32c2032fa4c80c5910ea61eb26a7f4 Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 10:15:24 +0000 Subject: [PATCH 20/34] Updating container image to sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 Image tag: b7473d32cf656fcf605d1ed9d330a702e364f57f84138b6a36f9e7683b521008 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 975f3f311f3e..4ff6749dd251 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb", + "image": "ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 02876f655109..339cab6d4d5f 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 4401999c5ef2..673c60948b88 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index c8ed35245834..a1a752eed25e 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index 81e4a103aadb..f0241518e14f 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index b597541124fd..1d6be330c750 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index e9398bfed022..142380d6c3e2 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index f6a3b8145b49..4476c751aac0 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index f6bc79a3767a..115dc999220c 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index 5064d88adc05..6af1e829e56e 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index 6699bac4d33c..666945400202 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 59303f1dba78..872fd02b0c32 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:e3286500fc6a8630d0f80e0163b5926f4f9bc73447938b1e4dab05ab9e13eebb + image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index eb11e3302091..fbf721fb5de0 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -37bab6369974f6d85cc8d13d287f17c428903c8b54f4ce4c3aca8715dab239b5 +b7473d32cf656fcf605d1ed9d330a702e364f57f84138b6a36f9e7683b521008 From 167b273708e72a5bd494f2af23cf8f95848900fa Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 13:45:52 +0100 Subject: [PATCH 21/34] add iasl --- ci/container/files/packages.common | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index b018e6d3220c..3adc441d99a8 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -48,8 +48,9 @@ fish node-json5 # IC-OS -faketime dosfstools # provides mkfs.vfat +faketime +iasl # to build OVMF # Linked in by IC-OS binaries for managing encrypted disks. libcryptsetup-dev # Linked in by IC-OS binaries for creating mapped devices. @@ -60,7 +61,6 @@ libsystemd-dev libvirt-dev mtools # used for mcopy and mmd nasm # to build OVMF -qemu-system-x86 # used for guestos zstd # Unknown From de34a4fed4f4d7e5a381a48b765994a87b4be1bf Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 12:54:30 +0000 Subject: [PATCH 22/34] Updating container image to sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f Image tag: 11d2a03bb0973bcfe8247166dd2b471c36f12eb2d2bade1a5c2de18ea1d28bf0 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 4ff6749dd251..29a1ce7529fe 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64", + "image": "ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 339cab6d4d5f..765e7e8fbf11 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 673c60948b88..bb23ab288988 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index a1a752eed25e..127d02767d8a 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index f0241518e14f..c7be7809a567 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 1d6be330c750..15049df028fc 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index 142380d6c3e2..dda2596f74a1 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index 4476c751aac0..b43856e73acb 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 115dc999220c..589d6b7a2e03 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index 6af1e829e56e..cdd1e723f9df 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index 666945400202..3544ec242b9c 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 872fd02b0c32..c25c76549861 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:df7dc790e348e317f9f8c842fbc533ae5de925d0926566d8bd49e840b4d5bc64 + image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index fbf721fb5de0..edb2d9bb0ccc 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -b7473d32cf656fcf605d1ed9d330a702e364f57f84138b6a36f9e7683b521008 +11d2a03bb0973bcfe8247166dd2b471c36f12eb2d2bade1a5c2de18ea1d28bf0 From 7666be96fa44e918da47fab20cd095552212585a Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 14:23:45 +0100 Subject: [PATCH 23/34] need fdisk --- ci/container/files/packages.common | 1 + 1 file changed, 1 insertion(+) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index 3adc441d99a8..156bc9eccd15 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -50,6 +50,7 @@ node-json5 # IC-OS dosfstools # provides mkfs.vfat faketime +fdisk iasl # to build OVMF # Linked in by IC-OS binaries for managing encrypted disks. libcryptsetup-dev From 9dec4b2872862b84aa16ef3ff093ba5b6ffcdd7a Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 13:32:53 +0000 Subject: [PATCH 24/34] Updating container image to sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 Image tag: 3f1ded831124255f64f27f279b958c537c989e131a46a8632750c8fc31878f78 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 29a1ce7529fe..b8d2d03e8363 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f", + "image": "ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 765e7e8fbf11..a5673ce734ac 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index bb23ab288988..4ba37df58319 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 127d02767d8a..5644abdf5018 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index c7be7809a567..456b7de2538d 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 15049df028fc..838c45459baa 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index dda2596f74a1..c6d93bff3f13 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index b43856e73acb..9dc8cebbea2c 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 589d6b7a2e03..7ec8d696d882 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index cdd1e723f9df..28a40fd63b6b 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index 3544ec242b9c..cf2ba094db69 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index c25c76549861..64c58ebdb9b3 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:3cb2afea4afa0a9cbc946c767cce1d42c79ad4f3697d494ee8aa60b903d2cb7f + image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index edb2d9bb0ccc..281c266ed502 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -11d2a03bb0973bcfe8247166dd2b471c36f12eb2d2bade1a5c2de18ea1d28bf0 +3f1ded831124255f64f27f279b958c537c989e131a46a8632750c8fc31878f78 From 96c3bc2dfc574bdc7ca2ca7946a01922568644aa Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 15:36:08 +0100 Subject: [PATCH 25/34] keep fakeroot --- ci/container/files/packages.common | 1 + 1 file changed, 1 insertion(+) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index 156bc9eccd15..fb32dcd8247d 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -49,6 +49,7 @@ node-json5 # IC-OS dosfstools # provides mkfs.vfat +fakeroot faketime fdisk iasl # to build OVMF From 327e43e3c0788afdc0597032b641c57394d01c71 Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 14:45:05 +0000 Subject: [PATCH 26/34] Updating container image to sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b Image tag: 314d46eb5861b5e3ff96984d786883cca13a3da10ef444b0bde84279dd3e1abe --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index b8d2d03e8363..a0247b392aa0 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4", + "image": "ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index a5673ce734ac..cdd693a5c260 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 4ba37df58319..7a2f436c38bc 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 5644abdf5018..89f4ad757719 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index 456b7de2538d..f3aa7a98c370 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 838c45459baa..6a6a10acce12 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index c6d93bff3f13..b8b22f1e5a6f 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index 9dc8cebbea2c..4cada9c8ab41 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 7ec8d696d882..3b73f034f7f5 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index 28a40fd63b6b..fa7d4158da0e 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index cf2ba094db69..51450ac22f16 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 64c58ebdb9b3..dd68b58b67aa 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:35ab3a47f16a90f4cc481f496c07070ef878358a7c5699deed4e81c42327d9d4 + image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index 281c266ed502..072eecff8b83 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -3f1ded831124255f64f27f279b958c537c989e131a46a8632750c8fc31878f78 +314d46eb5861b5e3ff96984d786883cca13a3da10ef444b0bde84279dd3e1abe From 6822b8eede2207930e057ca6e24314c2342d21ba Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 16:24:04 +0100 Subject: [PATCH 27/34] Add cryptsetup-bin and qemu-system-x86 to packages --- ci/container/files/packages.common | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index fb32dcd8247d..bfb405e30291 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -48,8 +48,9 @@ fish node-json5 # IC-OS +cryptsetup-bin dosfstools # provides mkfs.vfat -fakeroot +fakeroot # maybe remove faketime fdisk iasl # to build OVMF @@ -63,6 +64,7 @@ libsystemd-dev libvirt-dev mtools # used for mcopy and mmd nasm # to build OVMF +qemu-system-x86 # used for guestos zstd # Unknown From e93825753966d938cf4a64593cbeeb568d14e683 Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 15:34:03 +0000 Subject: [PATCH 28/34] Updating container image to sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a Image tag: 3cefe4a8d9d68cbe9b7fb9f3ca4c1ecf4f9a2e5dd96106abd473d26a18abe8f9 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index a0247b392aa0..95e823f14276 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b", + "image": "ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index cdd693a5c260..b2bdfc40ecff 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 7a2f436c38bc..2761045a5644 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 89f4ad757719..a98db744af12 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index f3aa7a98c370..50cb93b13576 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 6a6a10acce12..b1376d1b69cd 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index b8b22f1e5a6f..3c2bdaf2802a 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index 4cada9c8ab41..cdc93d5b1c68 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 3b73f034f7f5..919e50593db2 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index fa7d4158da0e..24d2bb702ef8 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index 51450ac22f16..c233ef91f8aa 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index dd68b58b67aa..e5f1f5bdbae3 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:241bf3c42d9cdedce57734f0a4717877f74afd2e8a0dbd6934dd7ad971ac028b + image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index 072eecff8b83..8ce102b6c30b 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -314d46eb5861b5e3ff96984d786883cca13a3da10ef444b0bde84279dd3e1abe +3cefe4a8d9d68cbe9b7fb9f3ca4c1ecf4f9a2e5dd96106abd473d26a18abe8f9 From cab36fab0b387cdaa1619eb775af049feef24571 Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Tue, 23 Dec 2025 17:41:29 +0100 Subject: [PATCH 29/34] remove fakeroot again Removed 'fakeroot' from the list of packages. --- ci/container/files/packages.common | 1 - 1 file changed, 1 deletion(-) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index bfb405e30291..79ea191ece10 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -50,7 +50,6 @@ node-json5 # IC-OS cryptsetup-bin dosfstools # provides mkfs.vfat -fakeroot # maybe remove faketime fdisk iasl # to build OVMF From 997120765a66b74934642615009f5dc36a36e712 Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Tue, 23 Dec 2025 16:51:26 +0000 Subject: [PATCH 30/34] Updating container image to sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 Image tag: e825b8890c27c07fcf0963f75b4070e18cae8935b95f960d1b37f0ef83bfb474 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 95e823f14276..8e9be5f29599 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a", + "image": "ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index b2bdfc40ecff..91aed57c0e61 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 2761045a5644..a916b9565488 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index a98db744af12..9e77a03a5b03 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index 50cb93b13576..0db11c818109 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index b1376d1b69cd..f16ec840621d 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index 3c2bdaf2802a..944181841dd1 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index cdc93d5b1c68..11aea4c20364 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 919e50593db2..2fb255a0f2dd 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index 24d2bb702ef8..d8712c212866 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index c233ef91f8aa..fa61a368e23a 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index e5f1f5bdbae3..64b1578ba46b 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:25f4b50a25154ca181aa14dc8cc24d3a061637618400ea236a2c8fef58f6319a + image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index 8ce102b6c30b..96cea10a236c 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -3cefe4a8d9d68cbe9b7fb9f3ca4c1ecf4f9a2e5dd96106abd473d26a18abe8f9 +e825b8890c27c07fcf0963f75b4070e18cae8935b95f960d1b37f0ef83bfb474 From 527d388c9e1e9043457c6223a4ff56baef61e17b Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Wed, 24 Dec 2025 07:13:59 +0100 Subject: [PATCH 31/34] Remove cryptsetup-bin --- ci/container/files/packages.common | 1 - 1 file changed, 1 deletion(-) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index 79ea191ece10..bb1cd6f73d86 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -48,7 +48,6 @@ fish node-json5 # IC-OS -cryptsetup-bin dosfstools # provides mkfs.vfat faketime fdisk From dfd7aa41de048848307fd3f79c0010f93fd0ddc7 Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Wed, 24 Dec 2025 06:23:08 +0000 Subject: [PATCH 32/34] Updating container image to sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 Image tag: 7b8aac7023321f4a27877e4ac2603da221c8ac83116eaf085ffada890ccc034b --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 8e9be5f29599..82aa710d678b 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640", + "image": "ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 91aed57c0e61..9215403a72c4 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index a916b9565488..0fb317c461a4 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 9e77a03a5b03..689ca04de077 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index 0db11c818109..aaf269142be3 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index f16ec840621d..1958f791f813 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index 944181841dd1..09cacb4550fc 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index 11aea4c20364..10ab79577814 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 2fb255a0f2dd..34f175f02939 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index d8712c212866..1d5d660f0550 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index fa61a368e23a..4e1611892967 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 64b1578ba46b..2536d88f8c9d 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:9fd66d7d50a28448a27a5818f39a43f51c4dd381e5b69897f5ec889852bc9640 + image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index 96cea10a236c..f41135c6ac17 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -e825b8890c27c07fcf0963f75b4070e18cae8935b95f960d1b37f0ef83bfb474 +7b8aac7023321f4a27877e4ac2603da221c8ac83116eaf085ffada890ccc034b From 207ccb473051bcd61d88fe488398a261ea16de84 Mon Sep 17 00:00:00 2001 From: Carly Gundy <47304080+cgundy@users.noreply.github.com> Date: Wed, 24 Dec 2025 14:20:28 +0100 Subject: [PATCH 33/34] switch --- ci/container/files/packages.common | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ci/container/files/packages.common b/ci/container/files/packages.common index bb1cd6f73d86..b3f1e5adb1d7 100644 --- a/ci/container/files/packages.common +++ b/ci/container/files/packages.common @@ -48,6 +48,7 @@ fish node-json5 # IC-OS +cryptsetup-bin dosfstools # provides mkfs.vfat faketime fdisk @@ -62,7 +63,6 @@ libsystemd-dev libvirt-dev mtools # used for mcopy and mmd nasm # to build OVMF -qemu-system-x86 # used for guestos zstd # Unknown From c43fa30e5f98d8b0afc55c46519663f9d8801f4d Mon Sep 17 00:00:00 2001 From: IDX GitHub Automation <> Date: Wed, 24 Dec 2025 13:28:54 +0000 Subject: [PATCH 34/34] Updating container image to sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f Image tag: f90ae49b734a7727048d91917a4fec0fe45faf1ca64833964bb572811b705064 --- .devcontainer/devcontainer.json | 2 +- .github/workflows/ci-main.yml | 2 +- .github/workflows/ci-pr-only.yml | 2 +- .github/workflows/pocket-ic-tests-windows.yml | 2 +- .github/workflows/rate-limits-backend-release.yml | 2 +- .github/workflows/release-testing.yml | 2 +- .github/workflows/rosetta-release.yml | 2 +- .github/workflows/salt-sharing-canister-release.yml | 2 +- .github/workflows/schedule-daily.yml | 2 +- .github/workflows/schedule-rust-bench.yml | 2 +- .github/workflows/schedule-weekly.yml | 2 +- .github/workflows/update-mainnet-canister-revisions.yaml | 2 +- ci/container/TAG | 2 +- 13 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 82aa710d678b..933aa90b4446 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -1,5 +1,5 @@ { - "image": "ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062", + "image": "ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f", "remoteUser": "ubuntu", "privileged": true, "runArgs": [ diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 9215403a72c4..92cdf49a7b42 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -26,7 +26,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/ci-pr-only.yml b/.github/workflows/ci-pr-only.yml index 0fb317c461a4..3bf24a2f88bf 100644 --- a/.github/workflows/ci-pr-only.yml +++ b/.github/workflows/ci-pr-only.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-small-setup labels: dind-small container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" steps: diff --git a/.github/workflows/pocket-ic-tests-windows.yml b/.github/workflows/pocket-ic-tests-windows.yml index 689ca04de077..a71786634ec1 100644 --- a/.github/workflows/pocket-ic-tests-windows.yml +++ b/.github/workflows/pocket-ic-tests-windows.yml @@ -45,7 +45,7 @@ jobs: bazel-build-pocket-ic: name: Bazel Build PocketIC container: - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 90 diff --git a/.github/workflows/rate-limits-backend-release.yml b/.github/workflows/rate-limits-backend-release.yml index aaf269142be3..cadac44b7b64 100644 --- a/.github/workflows/rate-limits-backend-release.yml +++ b/.github/workflows/rate-limits-backend-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/release-testing.yml b/.github/workflows/release-testing.yml index 1958f791f813..76b2a7708290 100644 --- a/.github/workflows/release-testing.yml +++ b/.github/workflows/release-testing.yml @@ -32,7 +32,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 180 diff --git a/.github/workflows/rosetta-release.yml b/.github/workflows/rosetta-release.yml index 09cacb4550fc..007bfd986286 100644 --- a/.github/workflows/rosetta-release.yml +++ b/.github/workflows/rosetta-release.yml @@ -22,7 +22,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" environment: DockerHub diff --git a/.github/workflows/salt-sharing-canister-release.yml b/.github/workflows/salt-sharing-canister-release.yml index 10ab79577814..309ec9c8e958 100644 --- a/.github/workflows/salt-sharing-canister-release.yml +++ b/.github/workflows/salt-sharing-canister-release.yml @@ -32,7 +32,7 @@ jobs: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" diff --git a/.github/workflows/schedule-daily.yml b/.github/workflows/schedule-daily.yml index 34f175f02939..86957f999f3f 100644 --- a/.github/workflows/schedule-daily.yml +++ b/.github/workflows/schedule-daily.yml @@ -20,7 +20,7 @@ jobs: runs-on: &dind-large-setup labels: dind-large container: &container-setup - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f options: >- -e NODE_NAME --privileged --cgroupns host --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-rust-bench.yml b/.github/workflows/schedule-rust-bench.yml index 1d5d660f0550..a44f7e57b649 100644 --- a/.github/workflows/schedule-rust-bench.yml +++ b/.github/workflows/schedule-rust-bench.yml @@ -24,7 +24,7 @@ jobs: # see linux-x86-64 runner group labels: rust-benchmarks container: - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f # running on bare metal machine using ubuntu user options: --user ubuntu --mount type=tmpfs,target="/home/ubuntu/.local/share/containers" timeout-minutes: 720 # 12 hours diff --git a/.github/workflows/schedule-weekly.yml b/.github/workflows/schedule-weekly.yml index 4e1611892967..3d9fd50cfdf8 100644 --- a/.github/workflows/schedule-weekly.yml +++ b/.github/workflows/schedule-weekly.yml @@ -10,7 +10,7 @@ jobs: runs-on: labels: dind-large container: - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f options: >- -e NODE_NAME --mount type=tmpfs,target="/home/buildifier/.local/share/containers" timeout-minutes: 60 # 1 hour diff --git a/.github/workflows/update-mainnet-canister-revisions.yaml b/.github/workflows/update-mainnet-canister-revisions.yaml index 2536d88f8c9d..0ecd0d589844 100644 --- a/.github/workflows/update-mainnet-canister-revisions.yaml +++ b/.github/workflows/update-mainnet-canister-revisions.yaml @@ -21,7 +21,7 @@ jobs: labels: dind-small environment: CREATE_PR container: - image: ghcr.io/dfinity/ic-build@sha256:545a047c1e7258b010de83b74f6cf25b5f2e5320760687dd65e9a323f1bdb062 + image: ghcr.io/dfinity/ic-build@sha256:fab0aadaabca3ac87408e0f09ea73190fc294058bddf215838b7f48c40abbf2f options: >- -e NODE_NAME --privileged --cgroupns host -v /var/tmp:/var/tmp -v /ceph-s3-info:/ceph-s3-info --mount type=tmpfs,target="/home/buildifier/.local/share/containers" env: diff --git a/ci/container/TAG b/ci/container/TAG index f41135c6ac17..766afebefe94 100644 --- a/ci/container/TAG +++ b/ci/container/TAG @@ -1 +1 @@ -7b8aac7023321f4a27877e4ac2603da221c8ac83116eaf085ffada890ccc034b +f90ae49b734a7727048d91917a4fec0fe45faf1ca64833964bb572811b705064