chore: upgrade tidb CI image for go1.25

[hawkingrei]

revert #3989

[ti-chi-bot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign purelind for approval. For more information see the Code Review Process.
Please ensure that each of them provides their approval before proceeding.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• jenkins/OWNERS
• pipelines/OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[ti-chi-bot]

I have already done a preliminary review for you, and I hope to help you do a better job.

Summary

This pull request upgrades the Go version used in various CI pipeline configurations from go1.23 to go1.25 by updating the container image references across multiple YAML and Groovy files. The approach is straightforward: replacing the image tag in all relevant files. While the changes are mechanical and low-risk, the description lacks context on why the upgrade is necessary, such as compatibility improvements or resolving specific issues in the CI environment. The PR is generally well-executed but could benefit from enhanced documentation and validation steps.

---

Critical Issues

None Identified

---

Code Improvements

• Context for Upgrading Go Version:
  • Files: All modified files
  • Issue: The PR description does not explain why the upgrade to go1.25 is required. This lack of context might confuse reviewers or future contributors who need to audit the change.
  • Suggestion: Update the PR description to include the rationale for upgrading the Go version (e.g., new features, bug fixes, security patches, or compatibility improvements).

---

Best Practices

• Missing Validation of New Image:

  • Files: All modified files
  • Issue: The PR does not mention whether the new image (tidb_image:go12520261210) has been tested or validated to ensure compatibility with the current CI pipelines.
  • Suggestion: Add a note in the PR description or comments indicating that the new image has been verified and tested. If this hasn't been done, ensure that tests are run to confirm compatibility.

• Documentation for Future Updates:

  • Files: pipelines/pingcap/tidb/latest/pod-ghpr_unit_test.yaml, pipelines/pingcap/tidb/latest/pod-merged_unit_test.yaml, and similar
  • Issue: Several files contain TODO comments about switching to a standard Bazel build image. This PR does not address these comments, leaving technical debt untouched.
  • Suggestion: Evaluate whether these TODOs can be resolved within this or a future PR. If resolving them is out of scope, ensure they are tracked in an issue or backlog.

• Testing Coverage Details:

  • Files: All modified files
  • Issue: There is no indication of how these changes impact CI workflows or test coverage.
  • Suggestion: Ensure that pipeline tests are re-run after merging the PR to verify the functionality of CI pipelines using the new Go image.

---

Suggested Description Update

This PR updates the Go version used in multiple CI pipeline configurations from `go1.23` to `go1.25`. The change involves replacing the container image tag across all relevant YAML and Groovy files. The upgrade is aimed at leveraging the latest features, performance improvements, and bug fixes in Go 1.25. Validation of the new image should ensure compatibility across all CI workflows.

[gemini-code-assist]

Summary of Changes

Hello @hawkingrei, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request performs a routine but essential infrastructure update by upgrading the continuous integration (CI) environment for TiDB. It systematically updates the Docker image reference across numerous pipeline configuration files to a newer version that incorporates Go 1.25. This ensures that all TiDB builds, checks, and tests are executed against an up-to-date Go runtime, which is crucial for maintaining compatibility, leveraging performance enhancements, and preparing for future Go language features.

Highlights

• CI Image Upgrade: The pull request updates the Docker image used for the TiDB continuous integration pipelines. The image tag has been changed from "hub.pingcap.net/wangweizhen/tidb_image:go12320241009" to "hub.pingcap.net/wangweizhen/tidb_image:go12520261210" across all affected CI configuration files.
• Go Version Update: This upgrade effectively transitions the CI environment to use Go 1.25, ensuring compatibility with the latest Go language features, performance improvements, and security updates for the TiDB project.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request upgrades the TiDB CI image to a version supporting Go 1.25 by updating the image tag across numerous pipeline configuration files. While the update is necessary, the implementation reveals two key areas for improvement. Firstly, the new image is hosted in a personal namespace, which poses potential security and reliability risks for the CI pipeline. It is strongly recommended to use images from an official, organization-managed repository. Secondly, the image tag is hardcoded and duplicated in over 20 files, which makes maintenance difficult. Centralizing this configuration, for example by using variables or templates, would significantly improve maintainability. My review comments provide more details on these points.

[gemini-code-assist]

This image definition raises two concerns:

1. Use of personal image: The image hub.pingcap.net/wangweizhen/tidb_image:go12520261210 is from a personal namespace (wangweizhen). For security and reliability, production CI pipelines should use images from an official, organization-managed repository. This ensures proper image provenance, security scanning, and availability.
2. Hardcoded value: The image tag is hardcoded here and duplicated across many other files. This makes future updates difficult and error-prone.

I recommend moving the image to an official repository and defining the image name as a variable within the script to be reused. For example:

final TIDB_CI_IMAGE = "hub.pingcap.net/official-repo/tidb_image:go1.25-latest" // Example official image

final podYaml = """
  ...
  containers:
    - name: golang
      image: "${TIDB_CI_IMAGE}"
  ...
"""

[gemini-code-assist]

This image definition has two issues:

1. Use of personal image: The image is from a personal namespace (wangweizhen). For production CI, images should be sourced from an official, organization-managed repository to guarantee security, provenance, and availability.
2. Hardcoded value: The image tag is hardcoded and duplicated across numerous configuration files. This makes maintenance difficult and error-prone.

To improve this, the image should be moved to an official repository. Furthermore, the image tag should be parameterized instead of being hardcoded. This can be achieved through templating (e.g., Helm, Kustomize) or by using environment variable substitution in the Jenkins pipeline that processes this YAML file.

[ti-chi-bot]

I have already done a preliminary review for you, and I hope to help you do a better job.

Summary
This PR reverts the previous upgrade of the TiDB CI image from Go 1.23 to Go 1.25 by changing the container image tags in multiple Kubernetes pod spec files. The approach is a straightforward replacement of the image tag strings, reverting them back to the prior Go version. The overall changes are mechanical and consistent across files, reducing risk of breaking unrelated functionality. However, the PR does not explain why the revert is needed, which diminishes clarity.

---

Code Improvements

• Lack of explanation for revert

  • Files: All modified YAML and Groovy files (e.g., jenkins/pipelines/ci/tidb/tidb_ghpr_coverage.groovy, pipelines/pingcap/tidb/latest/*.yaml)
  • Issue: The PR description says it reverts a previous PR but does not explain the reason for reverting the Go 1.25 upgrade (e.g., build failures, incompatibilities, or performance issues). This lack of context may confuse reviewers or future maintainers.
  • Suggestion: Add a brief note in the PR description or commit message explaining why the revert is necessary to improve traceability and maintainability. For example:

    Revert Go 1.25 upgrade due to [specific issue], switching back to Go 1.23 images until resolved.
    

• Image tag hardcoding repeated across multiple files

  • Files: Multiple pod spec YAML files and one Groovy pipeline file
  • Issue: The Go image tag is repeated verbatim in many places, increasing maintenance overhead and risk of inconsistent updates in the future.
  • Suggestion: Consider centralizing the image tag into a single variable or config file referenced by these pipeline definitions to simplify future upgrades and avoid drift.

---

Best Practices

• PR description clarity

  • File: PR metadata (description)
  • Issue: The PR description is minimal and does not clarify the impact or reasoning behind the revert. This can lead to confusion when auditing history.
  • Suggestion: Follow best practices by describing why the revert is happening, what issues prompted it, and the plan for reapplying the upgrade if any.

• Testing coverage and verification

  • Files: Not explicitly shown in the diff, but implied pipeline files
  • Issue: No mention if the reverted image has been tested to ensure it resolves the issues that prompted this revert. Without verification, this revert might reintroduce old bugs or fail to fix current problems.
  • Suggestion: Ensure the revert is accompanied by successful CI runs or test results demonstrating that the Go 1.23 image works correctly, and document that in the PR or commit.

---

No critical bugs or security issues are evident since this is a rollback of version tags in CI image references. The main improvements revolve around documentation and maintainability.

[lybcodes]

Replay Test Job

pingcap/tidb latest

✅ Success

• ghpr_build/43630
• ghpr_check/43921
• pull_build_next_gen/9077
• pull_integration_realcluster_test_next_gen/7113

❌ Failed

• ghpr_check2/45880
• ghpr_unit_test/46866
• merged_unit_test/4718
• periodics_integration_test/17425
• pull_unit_test_next_gen/6689

---

pingcap/tidb release-8.5

✅ Success

• pull_build/3479
• pull_check/3532

❌ Failed

• pull_check2/3905
• pull_unit_test/4405

---

pingcap/tidb release-8.5-hotfix

✅ Success

• pull_build/3480

❌ Failed

• pull_check/3543
• pull_check2/3906
• pull_unit_test/4406

---

pingcap-inc

• latest: pr-verify/98
• release-8.5: pr-verify/99
• release-8.1: pr-verify/97
• release-7.5: pr-verify/89

[lybcodes]

flaky test list

ghpr_check2/46056

• flaky test TestLogRestoreFineGrainedSchedulerPausing pingcap/tidb#65202

ghpr_unit_test/46866

• flaky test TestMemTracker4InsertAndReplaceExec pingcap/tidb#65220
• flaky test TestInstancePlanCacheConcurrencySysbench pingcap/tidb#65221
• flaky test TestAuditPluginRetrying pingcap/tidb#65222

pull_unit_test_next_gen/6689

• flaky test TestResourceGroupRunawayExceedTiDBSide pingcap/tidb#65223
• flaky test TestLocalTempKVDirCheckBasic pingcap/tidb#65224
• flaky test TestResourceGroupRunawayExceedTiDBSide pingcap/tidb#65225
• flaky test TestIssue31129 pingcap/tidb#65226
• flaky test TestBatchDropBindings pingcap/tidb#65227
• flaky test TestIssue57531 pingcap/tidb#65228
• flaky test TestFlightRecorder pingcap/tidb#65230
• flaky test TestIssue48756 pingcap/tidb#65231

[ti-chi-bot]

I have already done a preliminary review for you, and I hope to help you do a better job.

Summary:
This PR reverts the previously upgraded TiDB CI images from Go 1.23 to Go 1.25 by changing the container image tags in various Kubernetes pod specs back to use the Go 1.25 images. The changes are straightforward, involving only image tag updates across multiple YAML and Groovy pipeline files. The PR is small, mechanical, and low risk, but it lacks any verification steps or notes on validation of the new images.

---

Code Improvements

• Lack of Verification or Testing Notes (Multiple files)

  • Files: All .yaml and .groovy files where images are updated, e.g., jenkins/pipelines/ci/tidb/tidb_ghpr_coverage.groovy (line 11), pipelines/pingcap-inc/enterprise-extensions/latest/pod-pr-verify.yaml (line 6), etc.
  • Issue: The PR simply updates image tags without any indication of testing or validation of the new images. This is important to ensure compatibility and prevent CI breakage.
  • Suggestion: Add comments or PR description notes about how the new Go 1.25 images were tested or validated in the CI environment, or reference related test results. Consider adding smoke tests or pipeline job runs results in the PR description to increase confidence.

• Duplication Across Multiple Files

  • Files: Many YAML pod specs and the Groovy pipeline script.
  • Issue: The same image tag update is repeated across many files, which can be error-prone and hard to maintain.
  • Suggestion: If not already implemented, consider centralizing the image version in a single config file or environment variable that all pipelines reference. This would simplify future upgrades and reduce duplication.

---

Best Practices

• PR Description Clarity

  • File: PR description
  • Issue: The description just states "revert #3989" without context.
  • Suggestion: Provide a brief reason why this revert is necessary (e.g., stability issues with Go 1.25 images, bugs found, etc.) to help reviewers and future maintainers understand the motivation.

• Consistent Commenting in YAML files

  • Files: Several pod YAML files contain TODO comments (e.g., pod-ghpr_unit_test.yaml line 8).
  • Issue: The TODOs reference using a standard bazel image for size reduction but remain unaddressed.
  • Suggestion: Consider opening a follow-up issue or PR to address these TODOs or add a comment about planned timelines to improve clarity.

---

No critical issues found since this is a low-impact image tag update, but adding validation info and improving maintainability would enhance the quality of this change.