Página Principal Explorar Ajuda
Iniciar Sessão
kennyh
/
emqx4.3
1
0
Fork 0
Ficheiros Problemas 0 Pull Requests 0 Wiki
Árvore: 855937b281
Ramos Etiquetas
emqx4.3
/
.github
/
workflows
/
build_and_push_docker_images.yaml

build_and_push_docker_images.yaml 7.5 KB
Histórico Em bruto

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224 
  1. name: Build and push docker images
    2. 

  2. 

  3. concurrency:
    4. 

  4.   group: docker-build-${{ github.event_name }}-${{ inputs.profile }}-${{ github.ref }}
    5. 

  5.   cancel-in-progress: true
    6. 

  6. 

  7. on:
    8. 

  8.   workflow_call:
    9. 

  9.     inputs:
    10. 

  10.       profile:
    11. 

  11.         required: true
    12. 

  12.         type: string
    13. 

  13.       latest:
    14. 

  14.         required: false
    15. 

  15.         type: string
    16. 

  16.         default: false
    17. 

  17.       publish:
    18. 

  18.         required: false
    19. 

  19.         type: boolean
    20. 

  20.         default: false
    21. 

  21.     secrets:
    22. 

  22.       DOCKER_HUB_USER:
    23. 

  23.         required: false
    24. 

  24.       DOCKER_HUB_TOKEN:
    25. 

  25.         required: false
    26. 

  26.       AWS_ACCESS_KEY_ID:
    27. 

  27.         required: false
    28. 

  28.       AWS_SECRET_ACCESS_KEY:
    29. 

  29.         required: false
    30. 

  30.   workflow_dispatch:
    31. 

  31.     inputs:
    32. 

  32.       ref:
    33. 

  33.         required: false
    34. 

  34.       profile:
    35. 

  35.         required: false
    36. 

  36.         type: string
    37. 

  37.         default: 'emqx'
    38. 

  38.       latest:
    39. 

  39.         required: false
    40. 

  40.         type: boolean
    41. 

  41.         default: false
    42. 

  42.       publish:
    43. 

  43.         required: false
    44. 

  44.         type: boolean
    45. 

  45.         default: false
    46. 

  46. 

  47. permissions:
    48. 

  48.   contents: read
    49. 

  49. 

  50. jobs:
    51. 

  51.   build:
    52. 

  52.     runs-on: ${{ github.repository_owner == 'emqx' && fromJSON(format('["self-hosted","ephemeral","linux","{0}"]', matrix.arch)) || 'ubuntu-22.04' }}
    53. 

  53.     outputs:
    54. 

  54.       PKG_VSN: ${{ steps.build.outputs.PKG_VSN }}
    55. 

  55. 

  56.     strategy:
    57. 

  57.       fail-fast: false
    58. 

  58.       matrix:
    59. 

  59.         profile:
    60. 

  60.           - ${{ inputs.profile }}
    61. 

  61.           - ${{ inputs.profile }}-elixir
    62. 

  62.         arch:
    63. 

  63.           - x64
    64. 

  64.           - arm64
    65. 

  65. 

  66.     steps:
    67. 

  67.       - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
    68. 

  68.         with:
    69. 

  69.           ref: ${{ github.event.inputs.ref }}
    70. 

  70.       - name: build release tarball
    71. 

  71.         id: build
    72. 

  72.         env:
    73. 

  73.           BUILDER_SYSTEM: force_docker
    74. 

  74.         run: |
    75. 

  75.           source ./env.sh
    76. 

  76.           ./scripts/buildx.sh --profile ${{ matrix.profile }} --pkgtype tgz --builder "$EMQX_DOCKER_BUILD_FROM"
    77. 

  77.           PKG_VSN=$(docker run --rm -v $(pwd):$(pwd) -w $(pwd) -u $(id -u) "$EMQX_DOCKER_BUILD_FROM" ./pkg-vsn.sh "${{ matrix.profile }}")
    78. 

  78.           echo "PKG_VSN=$PKG_VSN" >> "$GITHUB_OUTPUT"
    79. 

  79.       - uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5
    80. 

  80.         with:
    81. 

  81.           name: "${{ matrix.profile }}-${{ matrix.arch == 'x64' && 'amd64' || 'arm64' }}.tar.gz"
    82. 

  82.           path: "_packages/emqx*/emqx-*.tar.gz"
    83. 

  83.           retention-days: 7
    84. 

  84.           overwrite: true
    85. 

  85.           if-no-files-found: error
    86. 

  86. 

  87.   docker:
    88. 

  88.     runs-on: ${{ endsWith(github.repository, '/emqx') && 'ubuntu-22.04' || fromJSON('["self-hosted","ephemeral","linux","x64"]') }}
    89. 

  89.     needs:
    90. 

  90.       - build
    91. 

  91.     defaults:
    92. 

  92.       run:
    93. 

  93.         shell: bash
    94. 

  94. 

  95.     strategy:
    96. 

  96.       fail-fast: false
    97. 

  97.       matrix:
    98. 

  98.         profile:
    99. 

  99.           - ["${{ inputs.profile }}", "${{ inputs.profile == 'emqx' && 'docker.io,public.ecr.aws' || 'docker.io' }}"]
    100. 

  100.           - ["${{ inputs.profile }}-elixir", "${{ inputs.profile == 'emqx' && 'docker.io,public.ecr.aws' || 'docker.io' }}"]
    101. 

  101. 

  102.     env:
    103. 

  103.       PROFILE: ${{ matrix.profile[0] }}
    104. 

  104.       DOCKER_REGISTRY: ${{ matrix.profile[1] }}
    105. 

  105.       DOCKER_ORG: ${{ github.repository_owner }}
    106. 

  106.       DOCKER_LATEST: ${{ inputs.latest }}
    107. 

  107.       PKG_VSN: ${{ needs.build.outputs.PKG_VSN }}
    108. 

  108.       EMQX_SOURCE_TYPE: tgz
    109. 

  109. 

  110.     steps:
    111. 

  111.       - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
    112. 

  112.         with:
    113. 

  113.           ref: ${{ github.event.inputs.ref }}
    114. 

  114.       - uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
    115. 

  115.         with:
    116. 

  116.           pattern: "${{ matrix.profile[0] }}-*.tar.gz"
    117. 

  117.           path: _packages
    118. 

  118.           merge-multiple: true
    119. 

  119. 

  120.       - name: Move artifacts to root directory
    121. 

  121.         env:
    122. 

  122.           PROFILE: ${{ inputs.profile }}
    123. 

  123.         run: |
    124. 

  124.           ls -lR _packages/$PROFILE
    125. 

  125.           mv _packages/$PROFILE/*.tar.gz ./
    126. 

  126. 

  127.       - name: Enable containerd image store on Docker Engine
    128. 

  128.         run: |
    129. 

  129.           echo "$(sudo cat /etc/docker/daemon.json | jq '. += {"features": {"containerd-snapshotter": true}}')" > daemon.json
    130. 

  130.           sudo mv daemon.json /etc/docker/daemon.json
    131. 

  131.           sudo systemctl restart docker
    132. 

  132. 

  133.       - uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
    134. 

  134.       - uses: docker/setup-buildx-action@988b5a0280414f521da01fcc63a27aeeb4b104db # v3.6.1
    135. 

  135. 

  136.       - name: Login to hub.docker.com
    137. 

  137.         uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
    138. 

  138.         if: inputs.publish && contains(matrix.profile[1], 'docker.io')
    139. 

  139.         with:
    140. 

  140.           username: ${{ secrets.DOCKER_HUB_USER }}
    141. 

  141.           password: ${{ secrets.DOCKER_HUB_TOKEN }}
    142. 

  142. 

  143.       - name: Login to AWS ECR
    144. 

  144.         uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
    145. 

  145.         if: inputs.publish && contains(matrix.profile[1], 'public.ecr.aws')
    146. 

  146.         with:
    147. 

  147.           registry: public.ecr.aws
    148. 

  148.           username: ${{ secrets.AWS_ACCESS_KEY_ID }}
    149. 

  149.           password: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
    150. 

  150.           ecr: true
    151. 

  151. 

  152.       - name: Build docker image
    153. 

  153.         env:
    154. 

  154.           DOCKER_PUSH: false
    155. 

  155.           DOCKER_BUILD_NOCACHE: true
    156. 

  156.         run: |
    157. 

  157.           ./build ${PROFILE} docker
    158. 

  158.           echo "Built tags:"
    159. 

  159.           echo "==========="
    160. 

  160.           cat .emqx_docker_image_tags
    161. 

  161.           echo "==========="
    162. 

  162.           echo "_EMQX_DOCKER_IMAGE_TAG=$(head -n 1 .emqx_docker_image_tags)" >> $GITHUB_ENV
    163. 

  163. 

  164.       - name: Verify that size of docker image is less than 300 MB
    165. 

  165.         run: |
    166. 

  166.           docker image inspect $_EMQX_DOCKER_IMAGE_TAG --format='{{.Size}}' | xargs -I {} test {} -lt 300000000
    167. 

  167. 

  168.       - name: smoke test
    169. 

  169.         timeout-minutes: 1
    170. 

  170.         run: |
    171. 

  171.           for tag in $(cat .emqx_docker_image_tags); do
    172. 

  172.             CID=$(docker run -d -p 18083:18083 $tag)
    173. 

  173.             HTTP_PORT=$(docker inspect --format='{{(index (index .NetworkSettings.Ports "18083/tcp") 0).HostPort}}' $CID)
    174. 

  174.             ./scripts/test/emqx-smoke-test.sh localhost $HTTP_PORT
    175. 

  175.             docker rm -f $CID
    176. 

  176.           done
    177. 

  177. 

  178.       - name: dashboard tests
    179. 

  179.         working-directory: ./scripts/ui-tests
    180. 

  180.         timeout-minutes: 5
    181. 

  181.         run: |
    182. 

  182.           set -eu
    183. 

  183.           docker compose up --abort-on-container-exit --exit-code-from selenium
    184. 

  184.           docker compose rm -fsv
    185. 

  185. 

  186.       - name: test node_dump
    187. 

  187.         run: |
    188. 

  188.           CID=$(docker run -d -P $_EMQX_DOCKER_IMAGE_TAG)
    189. 

  189.           docker exec -t -u root -w /root $CID bash -c 'apt-get -y update && apt-get -y install net-tools'
    190. 

  190.           docker exec -t -u root $CID node_dump
    191. 

  191.           docker rm -f $CID
    192. 

  192. 

  193.       - name: export docker image
    194. 

  194.         run: |
    195. 

  195.           docker save "${_EMQX_DOCKER_IMAGE_TAG}" | gzip > $PROFILE-docker-$PKG_VSN.tar.gz
    196. 

  196. 

  197.       - uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5
    198. 

  198.         with:
    199. 

  199.           name: "${{ env.PROFILE }}-docker"
    200. 

  200.           path: "${{ env.PROFILE }}-docker-${{ env.PKG_VSN }}.tar.gz"
    201. 

  201.           retention-days: 7
    202. 

  202. 

  203.       - name: Publish docker image
    204. 

  204.         if: inputs.publish || github.repository_owner != 'emqx'
    205. 

  205.         env:
    206. 

  206.           DOCKER_PUSH: true
    207. 

  207.           DOCKER_BUILD_NOCACHE: false
    208. 

  208.           DOCKER_PLATFORMS: linux/amd64,linux/arm64
    209. 

  209.           DOCKER_LOAD: false
    210. 

  210.         run: |
    211. 

  211.           ./build ${PROFILE} docker
    212. 

  212. 

  213.       - name: Build and publish docker image with Snowflake ODBC driver
    214. 

  214.         if: (inputs.publish || github.repository_owner != 'emqx') && matrix.profile[0] == 'emqx-enterprise'
    215. 

  215.         env:
    216. 

  216.           DOCKER_PUSH: true
    217. 

  217.           DOCKER_BUILD_NOCACHE: false
    218. 

  218.           DOCKER_PLATFORMS: linux/amd64,linux/arm64
    219. 

  219.           DOCKER_LOAD: false
    220. 

  220.           EMQX_DOCKERFILE: deploy/docker/Dockerfile.sfodbc
    221. 

  221.         run: |
    222. 

  222.           export BUILD_FROM="${_EMQX_DOCKER_IMAGE_TAG}"
    223. 

  223.           export EMQX_IMAGE_TAG="${_EMQX_DOCKER_IMAGE_TAG##docker.io/}-sf"
    224. 

  224.           ./build ${PROFILE} docker
    225.