[0.11] buildinfo: mark as deprecated

.golangci.yml

@@ -67,3 +67,6 @@ issues:
     - linters:
         - revive
       text: "stutters"
+    - linters:
+        - staticcheck
+      text: "SA1019: .*Build information is deprecated: https://github.com/moby/buildkit/blob/master/docs/deprecated.md"

README.md

@@ -257,8 +257,8 @@ Keys supported by image output:
 * `compression=<uncompressed|gzip|estargz|zstd>`: choose compression type for layers newly created and cached, gzip is default value. estargz should be used with `oci-mediatypes=true`.
 * `compression-level=<value>`: compression level for gzip, estargz (0-9) and zstd (0-22)
 * `force-compression=true`: forcefully apply `compression` option to all layers (including already existing layers)
-* `buildinfo=true`: attach inline build info in [image config](docs/build-repro.md#image-config) (default `true`)
-* `buildinfo-attrs=true`: attach inline build info attributes in [image config](docs/build-repro.md#image-config) (default `false`)
+* `buildinfo=true`: attach inline build info in [image config](docs/buildinfo.md#image-config) (default `true`)
+* `buildinfo-attrs=true`: attach inline build info attributes in [image config](docs/buildinfo.md#image-config) (default `false`)
 * `store=true`: store the result images to the worker's (e.g. containerd) image store as well as ensures that the image has all blobs in the content store (default `true`). Ignored if the worker doesn't have image store (e.g. OCI worker).
 * `annotation.<key>=<value>`: attach an annotation with the respective `key` and `value` to the built image
   * Using the extended syntaxes, `annotation-<type>.<key>=<value>`, `annotation[<platform>].<key>=<value>` and both combined with `annotation-<type>[<platform>].<key>=<value>`, allows configuring exactly where to attach the annotation.
@@ -269,6 +269,12 @@ Keys supported by image output:
 If credentials are required, `buildctl` will attempt to read Docker configuration file `$DOCKER_CONFIG/config.json`.
 `$DOCKER_CONFIG` defaults to `~/.docker`.
 
+> **Warning**
+>
+> Build information along `buildinfo` and `buildinfo-attrs` attributes are
+> deprecated and will be removed in the next release. See the [Deprecated features page](./docs/deprecated.md)
+> for status and alternative recommendation about this feature.
+
 #### Local directory
 
 The local client will copy the files directly to the client. This is useful if BuildKit is being used for building something else than container images.
@@ -575,26 +581,6 @@ jq '.' metadata.json
 ```
 ```json
 {
-  "containerimage.buildinfo": {
-    "frontend": "dockerfile.v0",
-    "attrs": {
-      "context": "https://github.com/crazy-max/buildkit-buildsources-test.git#master",
-      "filename": "Dockerfile",
-      "source": "docker/dockerfile:master"
-    },
-    "sources": [
-      {
-        "type": "docker-image",
-        "ref": "docker.io/docker/buildx-bin:0.6.1@sha256:a652ced4a4141977c7daaed0a074dcd9844a78d7d2615465b12f433ae6dd29f0",
-        "pin": "sha256:a652ced4a4141977c7daaed0a074dcd9844a78d7d2615465b12f433ae6dd29f0"
-      },
-      {
-        "type": "docker-image",
-        "ref": "docker.io/library/alpine:3.13",
-        "pin": "sha256:026f721af4cf2843e07bba648e158fb35ecc876d822130633cc49f707f0fc88c"
-      }
-    ]
-  },
   "containerimage.config.digest": "sha256:2937f66a9722f7f4a2df583de2f8cb97fc9196059a410e7f00072fc918930e66",
   "containerimage.descriptor": {
     "annotations": {

control/control.go

@@ -337,6 +337,15 @@ func (c *Controller) Solve(ctx context.Context, req *controlapi.SolveRequest) (*
 		}
 	}
 
+	if v, ok := req.FrontendAttrs["build-arg:BUILDKIT_BUILDINFO"]; ok && v != "" {
+		if _, ok := req.ExporterAttrs["buildinfo"]; !ok {
+			if req.ExporterAttrs == nil {
+				req.ExporterAttrs = make(map[string]string)
+			}
+			req.ExporterAttrs["buildinfo"] = v
+		}
+	}
+
 	if req.Exporter != "" {
 		exp, err := w.Exporter(req.Exporter, c.opt.SessionManager)
 		if err != nil {

docs/build-repro.md

@@ -1,134 +1,6 @@
 # Build reproducibility
 
-## Build dependencies
-
-Build dependencies are generated when your image has been built. These
-dependencies include versions of used images, git repositories and HTTP URLs
-used by LLB `Source` operation as well as build request attributes.
-
-The structure is base64 encoded and has the following format when decoded:
-
-```json
-{
-  "frontend": "dockerfile.v0",
-  "attrs": {
-    "build-arg:foo": "bar",
-    "context": "https://github.com/crazy-max/buildkit-buildsources-test.git#master",
-    "filename": "Dockerfile",
-    "platform": "linux/amd64,linux/arm64",
-    "source": "crazymax/dockerfile:master"
-  },
-  "sources": [
-    {
-      "type": "docker-image",
-      "ref": "docker.io/docker/buildx-bin:0.6.1@sha256:a652ced4a4141977c7daaed0a074dcd9844a78d7d2615465b12f433ae6dd29f0",
-      "pin": "sha256:a652ced4a4141977c7daaed0a074dcd9844a78d7d2615465b12f433ae6dd29f0"
-    },
-    {
-      "type": "docker-image",
-      "ref": "docker.io/library/alpine:3.13",
-      "pin": "sha256:1d30d1ba3cb90962067e9b29491fbd56997979d54376f23f01448b5c5cd8b462"
-    },
-    {
-      "type": "git",
-      "ref": "https://github.com/crazy-max/buildkit-buildsources-test.git#master",
-      "pin": "259a5aa5aa5bb3562d12cc631fe399f4788642c1"
-    },
-    {
-      "type": "http",
-      "ref": "https://raw.githubusercontent.com/moby/moby/v20.10.21/README.md",
-      "pin": "sha256:419455202b0ef97e480d7f8199b26a721a417818bc0e2d106975f74323f25e6c"
-    }
-  ]
-}
-```
-
-* `frontend` defines the frontend used to build.
-* `attrs` defines build request attributes.
-* `sources` defines build sources.
-  * `type` defines the source type (`docker-image`, `git` or `http`).
-  * `ref` is the reference of the source.
-  * `pin` is the source digest.
-* `deps` defines build dependencies of input contexts.
-
-### Image config
-
-A new field similar to the one for inline cache has been added to the image
-configuration to embed build dependencies:
-
-```json
-{
-  "moby.buildkit.buildinfo.v0": "<base64>"
-}
-```
-
-By default, the build dependencies are inlined in the image configuration. You
-can disable this behavior with the [`buildinfo` attribute](../README.md#imageregistry).
-
-### Exporter response (metadata)
-
-The solver response (`ExporterResponse`) also contains a new key
-`containerimage.buildinfo` with the same structure as image config encoded in
-base64:
-
-```json
-{
-  "ExporterResponse": {
-    "containerimage.buildinfo": "<base64>",
-    "containerimage.digest": "sha256:..."
-  }
-}
-```
-
-If multi-platforms are specified, they will be suffixed with the corresponding
-platform:
-
-```json
-{
-  "ExporterResponse": {
-    "containerimage.buildinfo/linux/amd64": "<base64>",
-    "containerimage.buildinfo/linux/arm64": "<base64>",
-    "containerimage.digest": "sha256:..."
-  }
-}
-```
-
-### Metadata JSON output
-
-If you're using the `--metadata-file` flag with [`buildctl`](../README.md#metadata),
-[`buildx build`](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md)
-or [`buildx bake`](https://github.com/docker/buildx/blob/master/docs/reference/buildx_bake.md):
-
-```shell
-jq '.' metadata.json
-```
-```json
-{
-  "containerimage.buildinfo": {
-    "frontend": "dockerfile.v0",
-    "attrs": {
-      "context": "https://github.com/crazy-max/buildkit-buildsources-test.git#master",
-      "filename": "Dockerfile",
-      "source": "docker/dockerfile:master"
-    },
-    "sources": [
-      {
-        "type": "docker-image",
-        "ref": "docker.io/docker/buildx-bin:0.6.1@sha256:a652ced4a4141977c7daaed0a074dcd9844a78d7d2615465b12f433ae6dd29f0",
-        "pin": "sha256:a652ced4a4141977c7daaed0a074dcd9844a78d7d2615465b12f433ae6dd29f0"
-      },
-      {
-        "type": "docker-image",
-        "ref": "docker.io/library/alpine:3.13",
-        "pin": "sha256:026f721af4cf2843e07bba648e158fb35ecc876d822130633cc49f707f0fc88c"
-      }
-    ]
-  },
-  "containerimage.digest": "sha256:..."
-}
-```
-
-### Reproducing the pinned dependencies
+## Reproducing the pinned dependencies
 
 Reproducing the pinned dependencies is supported since BuildKit v0.11.
 

docs/buildinfo.md

@@ -0,0 +1,141 @@
+# Build information
+
+> **Warning**
+>
+> Build information is deprecated and will be removed in the next release. See
+> the [Deprecated features page](https://github.com/moby/buildkit/blob/master/docs/deprecated.md)
+> for status and alternative recommendation about this feature.
+
+Build information structures are generated with build metadata that allows you
+to see all the sources (images, git repositories) that were used by the build
+with their exact versions and also the configuration that was passed to the
+build. This information is also embedded into the image configuration if one
+is generated.
+
+## Build dependencies
+
+Build dependencies are generated when your image has been built. These
+dependencies include versions of used images, git repositories and HTTP URLs
+used by LLB `Source` operation as well as build request attributes.
+
+The structure is base64 encoded and has the following format when decoded:
+
+```json
+{
+  "frontend": "dockerfile.v0",
+  "attrs": {
+    "build-arg:foo": "bar",
+    "context": "https://github.com/crazy-max/buildkit-buildsources-test.git#master",
+    "filename": "Dockerfile",
+    "platform": "linux/amd64,linux/arm64",
+    "source": "crazymax/dockerfile:master"
+  },
+  "sources": [
+    {
+      "type": "docker-image",
+      "ref": "docker.io/docker/buildx-bin:0.6.1@sha256:a652ced4a4141977c7daaed0a074dcd9844a78d7d2615465b12f433ae6dd29f0",
+      "pin": "sha256:a652ced4a4141977c7daaed0a074dcd9844a78d7d2615465b12f433ae6dd29f0"
+    },
+    {
+      "type": "docker-image",
+      "ref": "docker.io/library/alpine:3.13",
+      "pin": "sha256:1d30d1ba3cb90962067e9b29491fbd56997979d54376f23f01448b5c5cd8b462"
+    },
+    {
+      "type": "git",
+      "ref": "https://github.com/crazy-max/buildkit-buildsources-test.git#master",
+      "pin": "259a5aa5aa5bb3562d12cc631fe399f4788642c1"
+    },
+    {
+      "type": "http",
+      "ref": "https://raw.githubusercontent.com/moby/moby/v20.10.21/README.md",
+      "pin": "sha256:419455202b0ef97e480d7f8199b26a721a417818bc0e2d106975f74323f25e6c"
+    }
+  ]
+}
+```
+
+* `frontend` defines the frontend used to build.
+* `attrs` defines build request attributes.
+* `sources` defines build sources.
+  * `type` defines the source type (`docker-image`, `git` or `http`).
+  * `ref` is the reference of the source.
+  * `pin` is the source digest.
+* `deps` defines build dependencies of input contexts.
+
+### Image config
+
+A new field similar to the one for inline cache has been added to the image
+configuration to embed build dependencies:
+
+```json
+{
+  "moby.buildkit.buildinfo.v0": "<base64>"
+}
+```
+
+By default, the build dependencies are inlined in the image configuration. You
+can disable this behavior with the [`buildinfo` attribute](../README.md#imageregistry).
+
+### Exporter response (metadata)
+
+The solver response (`ExporterResponse`) also contains a new key
+`containerimage.buildinfo` with the same structure as image config encoded in
+base64:
+
+```json
+{
+  "ExporterResponse": {
+    "containerimage.buildinfo": "<base64>",
+    "containerimage.digest": "sha256:..."
+  }
+}
+```
+
+If multi-platforms are specified, they will be suffixed with the corresponding
+platform:
+
+```json
+{
+  "ExporterResponse": {
+    "containerimage.buildinfo/linux/amd64": "<base64>",
+    "containerimage.buildinfo/linux/arm64": "<base64>",
+    "containerimage.digest": "sha256:..."
+  }
+}
+```
+
+### Metadata JSON output
+
+If you're using the `--metadata-file` flag with [`buildctl`](../README.md#metadata),
+[`buildx build`](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md)
+or [`buildx bake`](https://github.com/docker/buildx/blob/master/docs/reference/buildx_bake.md):
+
+```shell
+jq '.' metadata.json
+```
+```json
+{
+  "containerimage.buildinfo": {
+    "frontend": "dockerfile.v0",
+    "attrs": {
+      "context": "https://github.com/crazy-max/buildkit-buildsources-test.git#master",
+      "filename": "Dockerfile",
+      "source": "docker/dockerfile:master"
+    },
+    "sources": [
+      {
+        "type": "docker-image",
+        "ref": "docker.io/docker/buildx-bin:0.6.1@sha256:a652ced4a4141977c7daaed0a074dcd9844a78d7d2615465b12f433ae6dd29f0",
+        "pin": "sha256:a652ced4a4141977c7daaed0a074dcd9844a78d7d2615465b12f433ae6dd29f0"
+      },
+      {
+        "type": "docker-image",
+        "ref": "docker.io/library/alpine:3.13",
+        "pin": "sha256:026f721af4cf2843e07bba648e158fb35ecc876d822130633cc49f707f0fc88c"
+      }
+    ]
+  },
+  "containerimage.digest": "sha256:..."
+}
+```