mirrors/archlinux-docker
1
0
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/archlinux-docker.git synced 2025-08-07 14:47:14 +02:00
Code Issues Projects Releases Wiki Activity

Better way to build official release

Browse Source
This commit is contained in:
Sven-Hendrik Haase 2020-10-20 01:51:46 +02:00
parent c13ad972f9
commit fe15ce7922
No known key found for this signature in database
GPG Key ID: 39E4B877E62EB915
2 changed files with 46 additions and 43 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

84
.gitlab-ci.yml
View File

@ -55,6 +55,7 @@ rootfs:base:secure:
- master - master
- add-base-devel-tags - add-base-devel-tags
- schedules - schedules
except:
- tags - tags
script: script:
- make $PWD/output/base.tar.xz $PWD/output/Dockerfile.base - make $PWD/output/base.tar.xz $PWD/output/Dockerfile.base
@ -67,6 +68,7 @@ rootfs:base-devel:secure:
- master - master
- add-base-devel-tags - add-base-devel-tags
- schedules - schedules
except:
- tags - tags
script: script:
- make $PWD/output/base-devel.tar.xz $PWD/output/Dockerfile.base-devel - make $PWD/output/base-devel.tar.xz $PWD/output/Dockerfile.base-devel
@ -115,13 +117,14 @@ image:base:secure:
- master - master
- add-base-devel-tags - add-base-devel-tags
- schedules - schedules
except:
- tags - tags
script: script:
- /kaniko/executor - /kaniko/executor
--whitelist-var-run="false" --whitelist-var-run="false"
--context $CI_PROJECT_DIR/output --context $CI_PROJECT_DIR/output
--dockerfile $CI_PROJECT_DIR/output/Dockerfile.base --dockerfile $CI_PROJECT_DIR/output/Dockerfile.base
--destination $CI_REGISTRY_IMAGE:base --destination $CI_REGISTRY_IMAGE:base-$CI_COMMIT_REF_SLUG
image:base-devel:secure: image:base-devel:secure:
extends: .image extends: .image
@ -131,13 +134,44 @@ image:base-devel:secure:
- master - master
- add-base-devel-tags - add-base-devel-tags
- schedules - schedules
except:
- tags - tags
script: script:
- /kaniko/executor - /kaniko/executor
--whitelist-var-run="false" --whitelist-var-run="false"
--context $CI_PROJECT_DIR/output --context $CI_PROJECT_DIR/output
--dockerfile $CI_PROJECT_DIR/output/Dockerfile.base-devel --dockerfile $CI_PROJECT_DIR/output/Dockerfile.base-devel
--destination $CI_REGISTRY_IMAGE:base-devel --destination $CI_REGISTRY_IMAGE:base-devel-$CI_COMMIT_REF_SLUG
image:base:publish:secure:
extends: .image
tags:
- secure
only:
- tags
before_script:
- echo "{\"auths\":{\"index.docker.io\":{\"username\":\"$DOCKER_USERNAME\",\"password\":\"$DOCKER_ACCESS_TOKEN\"}}}" > /kaniko/.docker/config.json
script:
- /kaniko/executor
--whitelist-var-run="false"
--context $CI_PROJECT_DIR/ci/base
--dockerfile $CI_PROJECT_DIR/ci/base/Dockerfile
--destination archlinux/archlinux:base-$BUILD_VERSION
image:base-devel:publish:secure:
extends: .image
tags:
- secure
only:
- tags
before_script:
- echo "{\"auths\":{\"index.docker.io\":{\"username\":\"$DOCKER_USERNAME\",\"password\":\"$DOCKER_ACCESS_TOKEN\"}}}" > /kaniko/.docker/config.json
script:
- /kaniko/executor
--whitelist-var-run="false"
--context $CI_PROJECT_DIR/ci/base-devel
--dockerfile $CI_PROJECT_DIR/ci/base-devel/Dockerfile
--destination archlinux/archlinux:base-devel-$BUILD_VERSION
.test: .test:
dependencies: [] dependencies: []
@ -172,32 +206,6 @@ test:base-devel:
- g++ -v - g++ -v
- make -v - make -v
test:base:secure:
extends: .test
tags:
- secure
only:
- master
- add-base-devel-tags
- schedules
- tags
image: $CI_REGISTRY_IMAGE:base
test:base-devel:secure:
extends: .test
tags:
- secure
only:
- master
- add-base-devel-tags
- schedules
- tags
image: $CI_REGISTRY_IMAGE:base-devel
after_script:
- gcc -v
- g++ -v
- make -v
release: release:
stage: release stage: release
tags: tags:
@ -222,20 +230,14 @@ publish:
entrypoint: [""] entrypoint: [""]
variables: variables:
GIT_STRATEGY: none GIT_STRATEGY: none
before_script:
- echo $CI_REGISTRY_PASSWORD | crane auth login -u $CI_REGISTRY_USER --password-stdin $CI_REGISTRY
- cat $DOCKER_ACCESS_TOKEN | crane auth login -u $DOCKER_USERNAME --password-stdin index.docker.io
script:
- crane cp $CI_REGISTRY_IMAGE:base archlinux/archlinux:base
- crane tag archlinux/archlinux:base latest
- crane tag archlinux/archlinux:base base-$BUILD_VERSION
- crane cp $CI_REGISTRY_IMAGE:base-devel archlinux/archlinux:base-devel
- crane tag archlinux/archlinux:base-devel base-devel-$BUILD_VERSION
only: only:
refs: - tags
- schedules before_script:
variables: - echo $DOCKER_ACCESS_TOKEN | crane auth login -u $DOCKER_USERNAME --password-stdin index.docker.io
- $SCHEDULED_PUBLISH == "TRUE" script:
- crane tag archlinux/archlinux:base-$BUILD_VERSION base
- crane tag archlinux/archlinux:base-$BUILD_VERSION latest
- crane tag archlinux/archlinux:base-devel-$BUILD_VERSION base-devel
# Publish to the official Docker namespace: https://hub.docker.com/_/archlinux # Publish to the official Docker namespace: https://hub.docker.com/_/archlinux
# publish:official: # publish:official:

5
ci/release.py
View File

@ -30,9 +30,10 @@ def upload(name):
template = Path("Dockerfile.template").read_text() template = Path("Dockerfile.template").read_text()
full_url = f"{project_url}{uploaded_url}" full_url = f"{project_url}{uploaded_url}"
replaced = template.replace("TEMPLATE_ROOTFS_URL", full_url) replaced = template.replace("TEMPLATE_ROOTFS_URL", full_url)
hash = f"Path('output/{name}.tar.xz.SHA256').read_text()[0:64] {filename}" rootfs_sha256 = Path('output/{name}.tar.xz.SHA256').read_text()[0:64]
hash_string = f"{rootfs_sha256} {filename}"
replaced = replaced.replace( replaced = replaced.replace(
"TEMPLATE_ROOTFS_HASH", hash "TEMPLATE_ROOTFS_HASH", hash_string
) )
# Remove the line containing TEMPLATE_ROOTFS_FILE # Remove the line containing TEMPLATE_ROOTFS_FILE
replaced = re.sub(".*TEMPLATE_ROOTFS_FILE.*\n", "", replaced) replaced = re.sub(".*TEMPLATE_ROOTFS_FILE.*\n", "", replaced)