Skip to content

Merge pull request #394 from cbgbt/install-golang-ci #67

Merge pull request #394 from cbgbt/install-golang-ci

Merge pull request #394 from cbgbt/install-golang-ci #67

Workflow file for this run

# Copyright 2022-2023, axodotdev
# SPDX-License-Identifier: MIT or Apache-2.0
#
# CI that:
#
# * checks for a Git Tag that looks like a release
# * creates a Github Release™ and fills in its text
# * builds artifacts with cargo-dist (executable-zips, installers)
# * uploads those artifacts to the Github Release™
#
# Note that the Github Release™ will be created before the artifacts,
# so there will be a few minutes where the release has no artifacts
# and then they will slowly trickle in, possibly failing. To make
# this more pleasant we mark the release as a "draft" until all
# artifacts have been successfully uploaded. This allows you to
# choose what to do with partial successes and avoids spamming
# anyone with notifications before the release is actually ready.
name: Release
permissions:
contents: write
# This task will run whenever you push a git tag that looks like a version
# like "v1", "v1.2.0", "v0.1.0-prerelease01", "my-app-v1.0.0", etc.
# The version will be roughly parsed as ({PACKAGE_NAME}-)?v{VERSION}, where
# PACKAGE_NAME must be the name of a Cargo package in your workspace, and VERSION
# must be a Cargo-style SemVer Version.
#
# If PACKAGE_NAME is specified, then we will create a Github Release™ for that
# package (erroring out if it doesn't have the given version or isn't cargo-dist-able).
#
# If PACKAGE_NAME isn't specified, then we will create a Github Release™ for all
# (cargo-dist-able) packages in the workspace with that version (this is mode is
# intended for workspaces with only one dist-able package, or with all dist-able
# packages versioned/released in lockstep).
#
# If you push multiple tags at once, separate instances of this workflow will
# spin up, creating an independent Github Release™ for each one.
#
# If there's a prerelease-style suffix to the version then the Github Release™
# will be marked as a prerelease.
on:
push:
tags:
- "*-?v[0-9]+*"
jobs:
# Create the Github Release™ so the packages have something to be uploaded to
create-release:
if: github.repository == 'bottlerocket-os/twoliter'
environment: release
runs-on:
group: bottlerocket
labels: bottlerocket_ubuntu-latest_16-core
outputs:
has-releases: ${{ steps.create-release.outputs.has-releases }}
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
GITHUB_REF_NAME: ${{ github.ref_name }}
steps:
- uses: actions/checkout@v3
with:
submodules: recursive
- uses: actions/setup-go@v5
with:
go-version: "^1.18"
- name: Install cargo-dist
run: |
cargo install --locked \
--git "https://github.com/webern/cargo-dist" \
--rev "3dcbe823db0c4068f38db790d996a4af54e68b3e"
- id: create-release
run: |
export PATH=$CARGO_HOME/bin:$PATH
cargo dist plan --tag="${GITHUB_REF_NAME}" --output-format=json > dist-manifest.json
echo "dist plan ran successfully"
cat dist-manifest.json
# Create the Github Release™ based on what cargo-dist thinks it should be
ANNOUNCEMENT_TITLE=$(jq --raw-output ".announcement_title" dist-manifest.json)
IS_PRERELEASE=$(jq --raw-output ".announcement_is_prerelease" dist-manifest.json)
jq --raw-output ".announcement_github_body" dist-manifest.json > new_dist_announcement.md
gh release create "${GITHUB_REF_NAME}" --draft --prerelease="$IS_PRERELEASE" --title="$ANNOUNCEMENT_TITLE" --notes-file=new_dist_announcement.md
echo "created announcement!"
# Upload the manifest to the Github Release™
gh release upload "${GITHUB_REF_NAME}" dist-manifest.json
echo "uploaded manifest!"
# Disable all the upload-artifacts tasks if we have no actual releases
HAS_RELEASES=$(jq --raw-output ".releases != null" dist-manifest.json)
echo "has-releases=$HAS_RELEASES" >> "$GITHUB_OUTPUT"
# Build and packages all the things
upload-artifacts:
# Let the initial task tell us to not run (currently very blunt)
needs: create-release
if: >-
${{ needs.create-release.outputs.has-releases == 'true'
&& github.repository == 'bottlerocket-os/twoliter'
}}
strategy:
fail-fast: false
matrix:
# For these target platforms
include:
- dist-args: "--artifacts=local --target=x86_64-unknown-linux-musl"
install-dist: |
cargo install --locked \
--git "https://github.com/webern/cargo-dist" \
--rev "3dcbe823db0c4068f38db790d996a4af54e68b3e"
- dist-args: "--artifacts=local --target=aarch64-unknown-linux-musl"
install-dist: |
cargo install --locked \
--git "https://github.com/webern/cargo-dist" \
--rev "3dcbe823db0c4068f38db790d996a4af54e68b3e"
runs-on:
group: bottlerocket
labels: bottlerocket_ubuntu-latest_16-core
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
MATRIX_DIST_ARGS: ${{ matrix.dist-args }}
GITHUB_REF_NAME: ${{ github.ref_name }}
steps:
- uses: actions/checkout@v3
with:
submodules: recursive
- name: Install cargo-dist
run: ${{ matrix.install-dist }}
- name: Install Cross
# Pin cargo cross to a version that we know is working for us.
run: |
cargo install cross --git https://github.com/cross-rs/cross/ --rev 7b79041 --locked
- name: Run cargo-dist
# This logic is a bit janky because it's trying to be a polyglot between
# powershell and bash since this will run on windows, macos, and linux!
# The two platforms don't agree on how to talk about env vars but they
# do agree on 'cat' and '$()' so we use that to marshal values between commands.
run: |
export PATH=$CARGO_HOME/bin:$PATH
# Actually do builds and make zips and whatnot
cargo dist build --tag="${GITHUB_REF_NAME}" --output-format=json ${MATRIX_DIST_ARGS} > dist-manifest.json
echo "dist ran successfully"
cat dist-manifest.json
# Parse out what we just built and upload it to the Github Release™
jq --raw-output ".artifacts[]?.path | select( . != null )" dist-manifest.json > uploads.txt
echo "uploading..."
cat uploads.txt
gh release upload "${GITHUB_REF_NAME}" $(cat uploads.txt)
echo "uploaded!"
# Upload dependency attributions
upload-attributions:
needs: [create-release, upload-artifacts]
if: >-
${{ needs.create-release.outputs.has-releases == 'true'
&& github.repository == 'bottlerocket-os/twoliter'
}}
runs-on: ubuntu-latest
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
GITHUB_REF_NAME: ${{ github.ref_name }}
steps:
- uses: actions/checkout@v3
with:
submodules: recursive
- name: Upload attributions
run: |
make attributions
gh release upload "${GITHUB_REF_NAME}" twoliter-attributions.tar.gz
# Mark the Github Release™ as a non-draft now that everything has succeeded!
publish-release:
# Only run after all the other tasks, but it's ok if upload-artifacts was skipped
needs: [create-release, upload-artifacts, upload-attributions]
if: >-
${{ github.repository == 'bottlerocket-os/twoliter'
&& always()
&& needs.create-release.result == 'success'
&& (needs.upload-artifacts.result == 'skipped'
|| needs.upload-artifacts.result == 'success')
}}
runs-on: ubuntu-latest
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
GITHUB_REF_NAME: ${{ github.ref_name }}
steps:
- uses: actions/checkout@v3
with:
submodules: recursive
- name: mark release as non-draft
run: |
gh release edit "${GITHUB_REF_NAME}" --draft=false