From a1dc1cfdfbc211efce99a9981ceda3cb8d43714a Mon Sep 17 00:00:00 2001
From: Tuomo Tanskanen <tuomo.tanskanen@est.tech>
Date: Wed, 29 Jan 2025 08:30:19 +0200
Subject: [PATCH] bump golang to 1.23.5

Golang stdlib has issue in crypto/x509, fixed in golang 1.23.5.
https://osv.dev/GO-2025-3373

Golang stdlib has issue in net/http, fixed in golang 1.23.5.
https://osv.dev/vulnerability/GO-2025-3420

Both codepaths are used in the code.

Signed-off-by: Tuomo Tanskanen <tuomo.tanskanen@est.tech>
---
 Dockerfile            | 2 +-
 Makefile              | 2 +-
 hack/e2e/ensure_go.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index e7b9cbd1aa..7ec4b3ebc8 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,5 +1,5 @@
 # Support FROM override
-ARG BUILD_IMAGE=docker.io/golang:1.23.4@sha256:574185e5c6b9d09873f455a7c205ea0514bfd99738c5dc7750196403a44ed4b7
+ARG BUILD_IMAGE=docker.io/golang:1.23.5@sha256:8c10f21bec412f08f73aa7b97ca5ac5f28a39d8a88030ad8a339fd0a781d72b4
 ARG BASE_IMAGE=gcr.io/distroless/static:nonroot@sha256:9ecc53c269509f63c69a266168e4a687c7eb8c0cfd753bd8bfcaa4f58a90876f
 
 # Build the manager binary
diff --git a/Makefile b/Makefile
index dd9d8ae055..fe04eb44cf 100644
--- a/Makefile
+++ b/Makefile
@@ -2,7 +2,7 @@ RUN_NAMESPACE = metal3
 GO_TEST_FLAGS = $(TEST_FLAGS)
 DEBUG = --debug
 COVER_PROFILE = cover.out
-GO_VERSION ?= 1.23.4
+GO_VERSION ?= 1.23.5
 
 ROOT_DIR := $(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
 
diff --git a/hack/e2e/ensure_go.sh b/hack/e2e/ensure_go.sh
index b778d44094..8e79861f32 100755
--- a/hack/e2e/ensure_go.sh
+++ b/hack/e2e/ensure_go.sh
@@ -2,7 +2,7 @@
 
 set -eux
 
-MINIMUM_GO_VERSION=go1.23.4
+MINIMUM_GO_VERSION=go1.23.5
 
 # Ensure the go tool exists and is a viable version, or installs it
 verify_go_version()