chore(vector): update versions for 24.11

siegfriedweber · siegfriedweber · commit 02166347cef6 · 2024-09-16T13:03:24.000+02:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -8,7 +8,7 @@ All notable changes to this project will be documented in this file.
 
 - ci: Add mirror workflow, add new helper scripts ([#819]).
 - opa: Add version `0.67.1` ([#797]).
-- vector: Add version `0.40.1` ([#802], [#815]).
+- vector: Add version `0.41.1` ([#802], [#815], [#867]).
 - airflow: Add version `2.9.3` ([#809]).
 - kafka: Add version `3.8.0` ([#813]).
 - hive: Add version `4.0.0` ([#818]).
@@ -54,6 +54,7 @@ All notable changes to this project will be documented in this file.
 [#848]: https://github.com/stackabletech/docker-images/pull/848
 [#851]: https://github.com/stackabletech/docker-images/pull/851
 [#852]: https://github.com/stackabletech/docker-images/pull/852
+[#867]: https://github.com/stackabletech/docker-images/pull/867
 
 ## [24.7.0] - 2024-07-24
 
diff --git a/airflow/versions.py b/airflow/versions.py
@@ -5,14 +5,14 @@
         "git_sync": "v4.2.4",
         "statsd_exporter": "0.26.1",
         "tini": "0.19.0",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
     },
     {
         "product": "2.9.3",
         "python": "3.9",
         "git_sync": "v4.2.4",
         "statsd_exporter": "0.26.1",
         "tini": "0.19.0",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
     },
 ]
diff --git a/java-base/versions.py b/java-base/versions.py
@@ -1,22 +1,22 @@
 versions = [
     {
         "product": "1.8.0",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
     },
     {
         "product": "11",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
     },
     {
         "product": "17",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
     },
     {
         "product": "21",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
     },
     {
         "product": "22",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
     },
 ]
diff --git a/opa/versions.py b/opa/versions.py
@@ -1,13 +1,13 @@
 versions = [
     {
         "product": "0.66.0",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
         "bundle_builder_version": "1.1.2",
         "stackable-base": "1.0.0",
     },
     {
         "product": "0.67.1",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
         "bundle_builder_version": "1.1.2",
         "stackable-base": "1.0.0",
     },
diff --git a/spark-k8s/versions.py b/spark-k8s/versions.py
@@ -11,7 +11,7 @@
         "jackson_dataformat_xml": "2.15.2",  # https://mvnrepository.com/artifact/org.apache.spark/spark-core_2.13/3.5.1
         "stax2_api": "4.2.1",  # https://mvnrepository.com/artifact/com.fasterxml.jackson.dataformat/jackson-dataformat-xml/2.15.2
         "woodstox_core": "6.5.1",  # https://mvnrepository.com/artifact/com.fasterxml.jackson.dataformat/jackson-dataformat-xml/2.15.2
-        "vector": "0.40.1",
+        "vector": "0.41.1",
         "jmx_exporter": "1.0.1",
         "tini": "0.19.0",
     },
@@ -27,7 +27,7 @@
         "jackson_dataformat_xml": "2.15.2",  # https://mvnrepository.com/artifact/org.apache.spark/spark-core_2.13/3.5.1
         "stax2_api": "4.2.1",  # https://mvnrepository.com/artifact/com.fasterxml.jackson.dataformat/jackson-dataformat-xml/2.15.2
         "woodstox_core": "6.5.1",  # https://mvnrepository.com/artifact/com.fasterxml.jackson.dataformat/jackson-dataformat-xml/2.15.2
-        "vector": "0.40.1",
+        "vector": "0.41.1",
         "jmx_exporter": "1.0.1",
         "tini": "0.19.0",
     },
diff --git a/superset/versions.py b/superset/versions.py
@@ -2,28 +2,28 @@
     {
         "product": "2.1.3",
         "python": "3.9",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
         "statsd_exporter": "0.26.1",
         "authlib": "0.15.4",  # https://github.com/dpgaspar/Flask-AppBuilder/blob/v4.3.0/requirements-extra.txt#L10
     },
     {
         "product": "3.1.0",
         "python": "3.9",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
         "statsd_exporter": "0.26.1",
         "authlib": "1.2.1",  # https://github.com/dpgaspar/Flask-AppBuilder/blob/v4.3.10/requirements-extra.txt#L7
     },
     {
         "product": "3.1.3",
         "python": "3.9",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
         "statsd_exporter": "0.26.1",
         "authlib": "1.2.1",  # https://github.com/dpgaspar/Flask-AppBuilder/blob/release/4.4.1/requirements/extra.txt#L7
     },
     {
         "product": "4.0.2",
         "python": "3.9",
-        "vector": "0.40.1",
+        "vector": "0.41.1",
         "statsd_exporter": "0.26.1",
         "authlib": "1.2.1",  # https://github.com/dpgaspar/Flask-AppBuilder/blob/release/4.4.1/requirements/extra.txt#L7
     },
diff --git a/vector/upload_new_vector_version.sh b/vector/upload_new_vector_version.sh
@@ -1,28 +1,57 @@
 #!/usr/bin/env bash
+#
+# Example usage:
+# upload_new_vector_version.sh 0.41.1 1 nexus-username /var/lib/rpm
 
 set -euo pipefail
 
 VERSION=${1:?"Missing version number argument (arg 1)"}
 RELEASE=${2:?"Missing release number argument (arg 2)"}
 NEXUS_USER=${3:?"Missing Nexus username argument (arg 3)"}
+RPM_PACKAGE_DB_PATH=${4:-"/var/lib/rpm"}
 
 ARCHITECTURES=(
     x86_64
     aarch64
 )
 
+major_version="${VERSION%%.*}"
+
 read -r -s -p "Nexus Password: " NEXUS_PASSWORD
 echo ""
 
-# Vector does not currently publish signatures or SBOMs (as of
-# 2023-10-11, latest version at this point 0.33.0)
-# But there are SHA256 sums in Github Releases. Maybe we should download from there?
-
 for arch in "${ARCHITECTURES[@]}"; do
     file="vector-$VERSION-$RELEASE.$arch.rpm"
 
-    echo "Downloading $file from timber.io"
-    curl -LOs "https://packages.timber.io/vector/$VERSION/$file"
+    echo "Downloading $file from yum.vector.dev"
+    curl \
+        --fail \
+        --location \
+        --remote-name \
+        --silent \
+        "https://yum.vector.dev/stable/vector-$major_version/$arch/$file"
+
+    echo "Validating signature"
+    echo "--> NOTE: Make sure you have downloaded and added Datadog's \
+public key (https://keys.datadoghq.com/DATADOG_RPM_KEY_B01082D3.public) \
+to the RPM package database:
+rpmkeys --import --dbpath $RPM_PACKAGE_DB_PATH DATADOG_APT_KEY_CURRENT.public"
+
+    EXIT_STATUS=0
+    # `rpmkeys --checksig` also succeeds if the digests of an unsigned
+    # package are okay. Therefore, test explicitly if the output
+    # contains "digests signatures OK" to ensure that the package is
+    # signed.
+    rpmkeys \
+        --checksig \
+        --dbpath "$RPM_PACKAGE_DB_PATH" \
+        "$file" | \
+        grep "^$file: digests signatures OK\$" || \
+        EXIT_STATUS=$?
+    if [ $EXIT_STATUS -ne 0 ]; then
+      echo "ERROR: The signature could not be verified."
+      exit 1
+    fi
 
     echo "Uploading $file to Nexus"
     curl --fail -u "$NEXUS_USER:$NEXUS_PASSWORD" \
diff --git a/vector/versions.py b/vector/versions.py
@@ -1,6 +1,6 @@
 versions = [
     {
-        "product": "0.40.1",
+        "product": "0.41.1",
         "rpm_release": "1",
         "stackable-base": "1.0.0",
         "inotify_tools": "3.22.1.0-1.el9",

Original file line number	Diff line number	Diff line change
`@@ -1,22 +1,22 @@`
`1`	`1`	`versions = [`
`2`	`2`	`{`
`3`	`3`	`"product": "1.8.0",`
`4`		`- "vector": "0.40.1",`
	`4`	`+ "vector": "0.41.1",`
`5`	`5`	`},`
`6`	`6`	`{`
`7`	`7`	`"product": "11",`
`8`		`- "vector": "0.40.1",`
	`8`	`+ "vector": "0.41.1",`
`9`	`9`	`},`
`10`	`10`	`{`
`11`	`11`	`"product": "17",`
`12`		`- "vector": "0.40.1",`
	`12`	`+ "vector": "0.41.1",`
`13`	`13`	`},`
`14`	`14`	`{`
`15`	`15`	`"product": "21",`
`16`		`- "vector": "0.40.1",`
	`16`	`+ "vector": "0.41.1",`
`17`	`17`	`},`
`18`	`18`	`{`
`19`	`19`	`"product": "22",`
`20`		`- "vector": "0.40.1",`
	`20`	`+ "vector": "0.41.1",`
`21`	`21`	`},`
`22`	`22`	`]`
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`versions = [`
`2`	`2`	`{`
`3`		`- "product": "0.40.1",`
	`3`	`+ "product": "0.41.1",`
`4`	`4`	`"rpm_release": "1",`
`5`	`5`	`"stackable-base": "1.0.0",`
`6`	`6`	`"inotify_tools": "3.22.1.0-1.el9",`