TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / ci / dockerfiles.git / a89a2b633a47d7324cd37cc459ee76d35a93f805^! / .
commita89a2b633a47d7324cd37cc459ee76d35a93f805[log] [tgz]
authorKelley Spoon <kelley.spoon@linaro.org>Mon Oct 02 17:52:35 2023 -0500
committerKelley Spoon <kelley.spoon@linaro.org>Mon Oct 02 17:52:35 2023 -0500
tree6f84198c3471cfeb5f71a49c1b141527def4a73e
parent1f9f8b46938ce7ded18978e9f48cb5ed1a3bd978 [diff]
jenkins: bump to version 2.414.2 LTS

Upgrade jenkins to latest stable version.

Jenkins docker image has been migrated to bookworm,
so in order to pip install packages we need to
include "--break-system-packages" option

Plugins were upgraded mostly to use latest versions
that are based on dependency version bumps to drop
dependencies on obsoleted plugins.

jobConfigHistory was upgraded to address a CVE
for CSRF vulnerability.

matrix-authorization and rbac plugins were left
untouched due to breaking changes and no time
to introduce massive changes into production.

Signed-off-by: Kelley Spoon <kelley.spoon@linaro.org>
Change-Id: I28620d17c2fd8fcb958b4fd9b9936431eeeecb16

diff --git a/jessie-amd64-jenkins-master/Dockerfile b/jessie-amd64-jenkins-master/Dockerfile
index de95109..261aad7 100644
--- a/jessie-amd64-jenkins-master/Dockerfile
+++ b/jessie-amd64-jenkins-master/Dockerfile

@@ -1,4 +1,4 @@
-FROM jenkins/jenkins:2.387.3-lts-slim
+FROM jenkins/jenkins:2.414.2-lts-slim
 
 ENV JENKINS_JAVA_PARAMETERS="-server -XX:+AlwaysPreTouch -XX:+HeapDumpOnOutOfMemoryError -XX:HeapDumpPath=/var/log/jenkins/heapdump.log -XX:+UseG1GC -XX:+UseStringDeduplication -XX:+ParallelRefProcEnabled -XX:+ExplicitGCInvokesConcurrent -XX:+UnlockDiagnosticVMOptions -XX:G1SummarizeRSetStatsPeriod=1 -XX:MaxMetaspaceExpansion=64M -Djenkins.model.Jenkins.logStartupPerformance=true"
 ENV JAVA_OPTS="$JENKINS_JAVA_PARAMETERS -Djava.awt.headless=true -Dhudson.slaves.WorkspaceList='_' -Dhudson.model.ParametersAction.keepUndefinedParameters=true -Dorg.jenkinsci.plugins.gitclient.Git.timeOut=30 -Dorg.eclipse.jetty.server.Request.maxFormContentSize=1000000"
@@ -30,10 +30,10 @@
   sshpass \
   virtualenv \
   wget \
-  && apt-get clean \
-  && pip install jenkins-job-builder==5.0.3 pyyaml==5.4.1 Jinja2==3.0.1 python-jenkins==1.8.0 \
-  && rm -rf \
-  /var/lib/apt/lists/*
+  && apt-get clean && \
+  pip3 install --break-system-packages \
+  jenkins-job-builder==5.0.3 Jinja2==3.0.1 python-jenkins==1.8.1 \
+  && rm -rf /var/lib/apt/lists/* 
 USER jenkins
 
 # Install jenkins plugins

diff --git a/jessie-amd64-jenkins-master/plugins.txt b/jessie-amd64-jenkins-master/plugins.txt
index aae647c..3579d10 100644
--- a/jessie-amd64-jenkins-master/plugins.txt
+++ b/jessie-amd64-jenkins-master/plugins.txt

@@ -1,49 +1,49 @@
-basic-branch-build-strategies:71.vc1421f89888e
-build-name-setter:2.2.0
-build-timeout:1.28
-blueocean:1.27.5.1
-copyartifact:686.v6fd37018d7c2
-docker-plugin:1.4
+basic-branch-build-strategies:81.v05e333931c7d
+build-name-setter:2.3.0
+build-timeout:1.31
+blueocean:1.27.8
+copyartifact:722.v0662a_9b_e22a_c
+docker-plugin:1.5
 docker-slaves:1.0.7
-ec2:2.0.7
-ec2-fleet:2.5.3
-email-ext:2.97
-envinject:2.901.v0038b_6471582
+ec2:1628.v6d7b_fc58b_a_1d
+ec2-fleet:3.0.1
+email-ext:2.102
+envinject:2.908.v66a_774b_31d93
 envinject-api:1.199.v3ce31253ed13
-extended-read-permission:3.2
+extended-read-permission:53.v6499940139e5
 flexible-publish:0.16.1
-generic-webhook-trigger:1.86.3
-gerrit-trigger:2.39.0
-git-parameter:0.9.18
-github-oauth:0.39
+generic-webhook-trigger:1.87.0
+gerrit-trigger:2.39.3
+git-parameter:0.9.19
+github-oauth:588.vf696a_350572a_
 groovy-postbuild:2.5
-jdk-tool:1.5
+jdk-tool:73.vddf737284550
 jenkins-multijob-plugin:623.v03401733c9a_9
-jobConfigHistory:1191.v168c8c2b_956a
+jobConfigHistory:1229.v3039470161a_d
 leastload:3.0.0
-lockable-resources:1156.v5e9f897ece02
+lockable-resources:1185.v0c528656ce04
 matrix-auth:3.1.7
-monitoring:1.94.1
+monitoring:1.95.0
 multiple-scms:0.8
-parameterized-trigger:2.45
-parameterized-scheduler:1.2
-pipeline-github:2.8-147.3206e8179b1c
+parameterized-trigger:2.46
+parameterized-scheduler:255.v73827fcdf618
+pipeline-github:2.8-155.8eab375ac9f8
 pipeline-github-lib:42.v0739460cda_c4
 pipeline-githubnotify-step:49.vf37bf92d2bc8
-pipeline-utility-steps:2.15.3
-PrioritySorter:4.1.0
-prometheus:2.2.2
-postbuildscript:3.2.0-460.va_fda_0fa_26720
+pipeline-utility-steps:2.16.0
+PrioritySorter:5.0.0
+prometheus:2.3.3
+postbuildscript:3.2.0-550.v88192b_d3e922
 rebuild:320.v5a_0933a_e7d61
 role-strategy:633.v836e5b_3e80a_5
-s3:0.12.3445.vda_704535b_5a_d
-ssh-agent:327.v230ecd01f86f
-ssh-slaves:2.877.v365f5eb_a_b_eec
-slack:631.v40deea_40323b
-timestamper:1.22
-throttle-concurrents:2.11
+s3:466.vf5b_3db_8e3eb_2
+ssh-agent:333.v878b_53c89511
+ssh-slaves:2.916.vd17b_43357ce4
+slack:684.v833089650554
+timestamper:1.26
+throttle-concurrents:2.14
 windows-slaves:1.8.1
-ws-cleanup:0.44
+ws-cleanup:0.45
 yet-another-docker-plugin:0.2.0
 warnings-ng
 analysis-model-api
@@ -51,6 +51,6 @@
 forensics-api
 prism-api
 cloudbees-disk-usage-simple:182.v62ca_0c992a_f3
-ldap:682.v7b_544c9d1512
-config-file-provider:953.v0432a_802e4d2
-github-checks:545.v79a_a_68b_ca_682
+ldap:701.vf8619de9160a_
+config-file-provider:959.vcff671a_4518b_
+github-checks:554.vb_ee03a_000f65