Home Esplora Aiuto
Accedi
kennyh
/
emqx4.3
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Albero (Tree): d2ca4e9f11
Rami (Branch) Tag
emqx4.3
/
.github
/
workflows
/
build_and_push_docker_images.yaml

build_and_push_docker_images.yaml 7.4 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225 
  1. name: Build and push docker images
    2. 

  2. 

  3. concurrency:
    4. 

  4.   group: docker-build-${{ github.event_name }}-${{ github.ref }}
    5. 

  5.   cancel-in-progress: true
    6. 

  6. 

  7. on:
    8. 

  8.   workflow_call:
    9. 

  9.     inputs:
    10. 

  10.       profile:
    11. 

  11.         required: true
    12. 

  12.         type: string
    13. 

  13.       latest:
    14. 

  14.         required: true
    15. 

  15.         type: string
    16. 

  16.       publish:
    17. 

  17.         required: true
    18. 

  18.         type: boolean
    19. 

  19.       otp_vsn:
    20. 

  20.         required: true
    21. 

  21.         type: string
    22. 

  22.       elixir_vsn:
    23. 

  23.         required: true
    24. 

  24.         type: string
    25. 

  25.       builder_vsn:
    26. 

  26.         required: true
    27. 

  27.         type: string
    28. 

  28.     secrets:
    29. 

  29.       DOCKER_HUB_USER:
    30. 

  30.         required: true
    31. 

  31.       DOCKER_HUB_TOKEN:
    32. 

  32.         required: true
    33. 

  33.       AWS_ACCESS_KEY_ID:
    34. 

  34.         required: true
    35. 

  35.       AWS_SECRET_ACCESS_KEY:
    36. 

  36.         required: true
    37. 

  37.   workflow_dispatch:
    38. 

  38.     inputs:
    39. 

  39.       ref:
    40. 

  40.         required: false
    41. 

  41.       profile:
    42. 

  42.         required: false
    43. 

  43.         type: string
    44. 

  44.         default: 'emqx'
    45. 

  45.       latest:
    46. 

  46.         required: false
    47. 

  47.         type: boolean
    48. 

  48.         default: false
    49. 

  49.       publish:
    50. 

  50.         required: false
    51. 

  51.         type: boolean
    52. 

  52.         default: false
    53. 

  53.       otp_vsn:
    54. 

  54.         required: false
    55. 

  55.         type: string
    56. 

  56.         default: '25.3.2-2'
    57. 

  57.       elixir_vsn:
    58. 

  58.         required: false
    59. 

  59.         type: string
    60. 

  60.         default: '1.15.7'
    61. 

  61.       builder_vsn:
    62. 

  62.         required: false
    63. 

  63.         type: string
    64. 

  64.         default: '5.3-5'
    65. 

  65. 

  66. permissions:
    67. 

  67.   contents: read
    68. 

  68. 

  69. jobs:
    70. 

  70.   build:
    71. 

  71.     runs-on: ${{ github.repository_owner == 'emqx' && fromJSON(format('["self-hosted","ephemeral","linux","{0}"]', matrix.arch)) || 'ubuntu-22.04' }}
    72. 

  72.     container: "ghcr.io/emqx/emqx-builder/${{ inputs.builder_vsn }}:${{ inputs.elixir_vsn }}-${{ inputs.otp_vsn }}-debian12"
    73. 

  73.     outputs:
    74. 

  74.       PKG_VSN: ${{ steps.build.outputs.PKG_VSN }}
    75. 

  75. 

  76.     strategy:
    77. 

  77.       fail-fast: false
    78. 

  78.       matrix:
    79. 

  79.         profile:
    80. 

  80.           - ${{ inputs.profile }}
    81. 

  81.           - ${{ inputs.profile }}-elixir
    82. 

  82.         arch:
    83. 

  83.           - x64
    84. 

  84.           - arm64
    85. 

  85. 

  86.     steps:
    87. 

  87.       - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
    88. 

  88.         with:
    89. 

  89.           ref: ${{ github.event.inputs.ref }}
    90. 

  90.       - run: git config --global --add safe.directory "$PWD"
    91. 

  91.       - name: build release tarball
    92. 

  92.         id: build
    93. 

  93.         run: |
    94. 

  94.           make ${{ matrix.profile }}-tgz
    95. 

  95.       - uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
    96. 

  96.         with:
    97. 

  97.           name: "${{ matrix.profile }}-${{ matrix.arch }}.tar.gz"
    98. 

  98.           path: "_packages/emqx*/emqx-*.tar.gz"
    99. 

  99.           retention-days: 7
    100. 

  100.           overwrite: true
    101. 

  101.           if-no-files-found: error
    102. 

  102. 

  103.   docker:
    104. 

  104.     runs-on: ${{ endsWith(github.repository, '/emqx') && 'ubuntu-22.04' || fromJSON('["self-hosted","ephemeral","linux","x64"]') }}
    105. 

  105.     needs:
    106. 

  106.       - build
    107. 

  107.     defaults:
    108. 

  108.       run:
    109. 

  109.         shell: bash
    110. 

  110. 

  111.     strategy:
    112. 

  112.       fail-fast: false
    113. 

  113.       matrix:
    114. 

  114.         profile:
    115. 

  115.           - ["${{ inputs.profile }}", "${{ inputs.profile == 'emqx' && 'docker.io,public.ecr.aws' || 'docker.io' }}"]
    116. 

  116.           - ["${{ inputs.profile }}-elixir", "${{ inputs.profile == 'emqx' && 'docker.io,public.ecr.aws' || 'docker.io' }}"]
    117. 

  117. 

  118.     steps:
    119. 

  119.       - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
    120. 

  120.         with:
    121. 

  121.           ref: ${{ github.event.inputs.ref }}
    122. 

  122.       - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
    123. 

  123.         with:
    124. 

  124.           pattern: "${{ matrix.profile[0] }}-*.tar.gz"
    125. 

  125.           path: _packages
    126. 

  126.           merge-multiple: true
    127. 

  127. 

  128.       - name: Move artifacts to root directory
    129. 

  129.         env:
    130. 

  130.           PROFILE: ${{ inputs.profile }}
    131. 

  131.         run: |
    132. 

  132.           ls -lR _packages/$PROFILE
    133. 

  133.           mv _packages/$PROFILE/*.tar.gz ./
    134. 

  134.       - name: Enable containerd image store on Docker Engine
    135. 

  135.         run: |
    136. 

  136.           echo "$(jq '. += {"features": {"containerd-snapshotter": true}}' /etc/docker/daemon.json)" > daemon.json
    137. 

  137.           sudo mv daemon.json /etc/docker/daemon.json
    138. 

  138.           sudo systemctl restart docker
    139. 

  139. 

  140.       - uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
    141. 

  141.       - uses: docker/setup-buildx-action@2b51285047da1547ffb1b2203d8be4c0af6b1f20 # v3.2.0
    142. 

  142. 

  143.       - name: Login to hub.docker.com
    144. 

  144.         uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 # v3.1.0
    145. 

  145.         if: inputs.publish || github.repository_owner != 'emqx'
    146. 

  146.         with:
    147. 

  147.           username: ${{ secrets.DOCKER_HUB_USER }}
    148. 

  148.           password: ${{ secrets.DOCKER_HUB_TOKEN }}
    149. 

  149. 

  150.       - name: Login to AWS ECR
    151. 

  151.         uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 # v3.1.0
    152. 

  152.         if: inputs.publish || github.repository_owner != 'emqx'
    153. 

  153.         with:
    154. 

  154.           registry: public.ecr.aws
    155. 

  155.           username: ${{ secrets.AWS_ACCESS_KEY_ID }}
    156. 

  156.           password: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
    157. 

  157.           ecr: true
    158. 

  158. 

  159.       - name: Build docker image
    160. 

  160.         env:
    161. 

  161.           PROFILE: ${{ matrix.profile[0] }}
    162. 

  162.           DOCKER_REGISTRY: ${{ matrix.profile[1] }}
    163. 

  163.           DOCKER_ORG: ${{ github.repository_owner }}
    164. 

  164.           DOCKER_LATEST: ${{ inputs.latest }}
    165. 

  165.           DOCKER_PUSH: false
    166. 

  166.           DOCKER_BUILD_NOCACHE: true
    167. 

  167.           DOCKER_PLATFORMS: linux/amd64,linux/arm64
    168. 

  168.           DOCKER_LOAD: true
    169. 

  169.           EMQX_RUNNER: 'public.ecr.aws/debian/debian:12-slim'
    170. 

  170.           EMQX_DOCKERFILE: 'deploy/docker/Dockerfile'
    171. 

  171.           PKG_VSN: ${{ needs.build.outputs.PKG_VSN }}
    172. 

  172.           EMQX_BUILDER_VERSION: ${{ inputs.builder_vsn }}
    173. 

  173.           EMQX_BUILDER_OTP: ${{ inputs.otp_vsn }}
    174. 

  174.           EMQX_BUILDER_ELIXIR: ${{ inputs.elixir_vsn }}
    175. 

  175.           EMQX_SOURCE_TYPE: tgz
    176. 

  176.         run: |
    177. 

  177.           ./build ${PROFILE} docker
    178. 

  178.           echo "Built tags:"
    179. 

  179.           echo "==========="
    180. 

  180.           cat .emqx_docker_image_tags
    181. 

  181.           echo "==========="
    182. 

  182.           echo "_EMQX_DOCKER_IMAGE_TAG=$(head -n 1 .emqx_docker_image_tags)" >> $GITHUB_ENV
    183. 

  183. 

  184.       - name: smoke test
    185. 

  185.         timeout-minutes: 1
    186. 

  186.         run: |
    187. 

  187.           for tag in $(cat .emqx_docker_image_tags); do
    188. 

  188.             CID=$(docker run -d -P $tag)
    189. 

  189.             HTTP_PORT=$(docker inspect --format='{{(index (index .NetworkSettings.Ports "18083/tcp") 0).HostPort}}' $CID)
    190. 

  190.             ./scripts/test/emqx-smoke-test.sh localhost $HTTP_PORT
    191. 

  191.             docker rm -f $CID
    192. 

  192.           done
    193. 

  193.       - name: dashboard tests
    194. 

  194.         working-directory: ./scripts/ui-tests
    195. 

  195.         timeout-minutes: 5
    196. 

  196.         run: |
    197. 

  197.           set -eu
    198. 

  198.           docker compose up --abort-on-container-exit --exit-code-from selenium
    199. 

  199.           docker compose rm -fsv
    200. 

  200.       - name: test node_dump
    201. 

  201.         run: |
    202. 

  202.           CID=$(docker run -d -P $_EMQX_DOCKER_IMAGE_TAG)
    203. 

  203.           docker exec -t -u root -w /root $CID bash -c 'apt-get -y update && apt-get -y install net-tools'
    204. 

  204.           docker exec -t -u root $CID node_dump
    205. 

  205.           docker rm -f $CID
    206. 

  206.       - name: Push docker image
    207. 

  207.         if: inputs.publish || github.repository_owner != 'emqx'
    208. 

  208.         env:
    209. 

  209.           PROFILE: ${{ matrix.profile[0] }}
    210. 

  210.           DOCKER_REGISTRY: ${{ matrix.profile[1] }}
    211. 

  211.           DOCKER_ORG: ${{ github.repository_owner }}
    212. 

  212.           DOCKER_LATEST: ${{ inputs.latest }}
    213. 

  213.           DOCKER_PUSH: true
    214. 

  214.           DOCKER_BUILD_NOCACHE: false
    215. 

  215.           DOCKER_PLATFORMS: linux/amd64,linux/arm64
    216. 

  216.           DOCKER_LOAD: false
    217. 

  217.           EMQX_RUNNER: 'public.ecr.aws/debian/debian:12-slim'
    218. 

  218.           EMQX_DOCKERFILE: 'deploy/docker/Dockerfile'
    219. 

  219.           PKG_VSN: ${{ needs.build.outputs.PKG_VSN }}
    220. 

  220.           EMQX_BUILDER_VERSION: ${{ inputs.builder_vsn }}
    221. 

  221.           EMQX_BUILDER_OTP: ${{ inputs.otp_vsn }}
    222. 

  222.           EMQX_BUILDER_ELIXIR: ${{ inputs.elixir_vsn }}
    223. 

  223.           EMQX_SOURCE_TYPE: tgz
    224. 

  224.         run: |
    225. 

  225.           ./build ${PROFILE} docker
    226.