Revert "update to go1.21.4" due to regressions / breaking changes.

thaJeztah · thaJeztah · commit 4cf1c50ad174 · 2023-11-09T10:54:54.000+01:00
Unfortunately, the go1.21.4 security update exposed some regressions / breaking changes in moby (docker engine) and containerd. These issues are looked into, but in the meantime we should revert this patch. This temporarily reintroduces CVE-2023-45284 and CVE-2023-45283. This reverts commit 6472dab. Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -63,7 +63,7 @@ jobs:
         name: Set up Go
         uses: actions/setup-go@v4
         with:
-          go-version: 1.21.4
+          go-version: 1.21.3
       -
         name: Test
         run: |
diff --git a/Dockerfile b/Dockerfile
@@ -1,7 +1,7 @@
 # syntax=docker/dockerfile:1
 
 ARG BASE_VARIANT=alpine
-ARG GO_VERSION=1.21.4
+ARG GO_VERSION=1.21.3
 ARG ALPINE_VERSION=3.17
 ARG XX_VERSION=1.2.1
 ARG GOVERSIONINFO_VERSION=v1.3.0
diff --git a/docker-bake.hcl b/docker-bake.hcl
@@ -1,5 +1,5 @@
 variable "GO_VERSION" {
-    default = "1.21.4"
+    default = "1.21.3"
 }
 variable "VERSION" {
     default = ""
diff --git a/dockerfiles/Dockerfile.dev b/dockerfiles/Dockerfile.dev
@@ -1,6 +1,6 @@
 # syntax=docker/dockerfile:1
 
-ARG GO_VERSION=1.21.4
+ARG GO_VERSION=1.21.3
 ARG ALPINE_VERSION=3.17
 
 ARG BUILDX_VERSION=0.11.2
diff --git a/dockerfiles/Dockerfile.lint b/dockerfiles/Dockerfile.lint
@@ -1,6 +1,6 @@
 # syntax=docker/dockerfile:1
 
-ARG GO_VERSION=1.21.4
+ARG GO_VERSION=1.21.3
 ARG ALPINE_VERSION=3.17
 ARG GOLANGCI_LINT_VERSION=v1.55.0
 
diff --git a/dockerfiles/Dockerfile.vendor b/dockerfiles/Dockerfile.vendor
@@ -1,6 +1,6 @@
 # syntax=docker/dockerfile:1
 
-ARG GO_VERSION=1.21.4
+ARG GO_VERSION=1.21.3
 ARG ALPINE_VERSION=3.17
 ARG MODOUTDATED_VERSION=v0.8.0
 
diff --git a/e2e/testdata/Dockerfile.gencerts b/e2e/testdata/Dockerfile.gencerts
@@ -1,6 +1,6 @@
 # syntax=docker/dockerfile:1
 
-ARG GO_VERSION=1.21.4
+ARG GO_VERSION=1.21.3
 
 FROM golang:${GO_VERSION}-alpine AS generated
 ENV GOTOOLCHAIN=local

Original file line number	Diff line number	Diff line change
`@@ -63,7 +63,7 @@ jobs:`
`63`	`63`	`name: Set up Go`
`64`	`64`	`uses: actions/setup-go@v4`
`65`	`65`	`with:`
`66`		`- go-version: 1.21.4`
	`66`	`+ go-version: 1.21.3`
`67`	`67`	`-`
`68`	`68`	`name: Test`
`69`	`69`	`run: \|`
Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,5 @@`
`1`	`1`	`variable "GO_VERSION" {`
`2`		`- default = "1.21.4"`
	`2`	`+ default = "1.21.3"`
`3`	`3`	`}`
`4`	`4`	`variable "VERSION" {`
`5`	`5`	`default = ""`