dustin
/
sshca-cli
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: dustin:34048fc4d07f31ec190814bb4838e34235762a68
Branches Tags
dustin:master
dustin:dev/auto-reload
..
compare: dustin:4fdc95e60cffbf52e2cb1dd0dabeecf99dddcae5
Branches Tags
dustin:master
dustin:dev/auto-reload

2 Commits
34048fc4d0 ... 4fdc95e60c

Author SHA1 Message Date
Dustin 4fdc95e60c xxx
dustin/sshca-cli/pipeline/pr-master There was a failure building this commit Details
2024-01-17 22:13:48 -06:00
Dustin ae33082022 ci: Build container image 
In addition to building an RPM package for regular Fedora machines, we
now build a container image containing a statically-linked `sshca-cli`
executable.
 2024-01-17 22:13:48 -06:00
3 changed files with 51 additions and 28 deletions
Show Stats Expand all files Collapse all files

62
ci/Jenkinsfile vendored
View File

@ -3,7 +3,7 @@ pipeline {
stages {
stage('Container') {
stage('Build Container') {
matrix {
axes {
axis {
@ -12,7 +12,7 @@ pipeline {
}
}
stages {
stage('Build Container') {
stage('Container') {
agent {
kubernetes {
yamlFile 'ci/podTemplate-container.yaml'
@ -26,35 +26,47 @@ pipeline {
stage('Build') {
steps {
sh '. ci/build-container.sh'
}
}
stage('Publish') {
environment {
REGISTRY_AUTH_FILE = "${env.WORKSPACE_TMP}/auth.json"
}
steps {
withCredentials([usernamePassword(
credentialsId: 'jenkins-packages',
usernameVariable: 'BUILDAH_USERNAME',
passwordVariable: 'BUILDAH_PASSWORD',
)]) {
sh """
buildah login \
--username \${BUILDAH_USERNAME} \
--password \${BUILDAH_PASSWORD} \
git.pyrocufflink.net
"""
}
sh '. ci/publish-container.sh'
stash name: env.ARCH, includes: "*.oci.tar"
}
}
}
}
}
}
}
stage('Publish Container') {
agent {
kubernetes {
yamlFile 'ci/podTemplate-container.yaml'
yamlMergeStrategy merge()
defaultContainer 'buildah'
}
}
environment {
REGISTRY_AUTH_FILE = "${env.WORKSPACE_TMP}/auth.json"
}
steps {
unstash 'amd64'
unstash 'arm64'
withCredentials([usernamePassword(
credentialsId: 'jenkins-packages',
usernameVariable: 'BUILDAH_USERNAME',
passwordVariable: 'BUILDAH_PASSWORD',
)]) {
sh """
buildah login \
--username \${BUILDAH_USERNAME} \
--password \${BUILDAH_PASSWORD} \
git.pyrocufflink.net
"""
}
sh '. ci/publish.sh'
}
}
}
}

3
ci/build-container.sh
View File

@ -1,3 +1,6 @@
. ci/common.sh
buildah build -t "${IMAGE_NAME}:${TAG}" .
buildah push \
"${IMAGE_NAME}:${TAG}" \
oci-archive:"${PWD}/${NAME}-${ARCH}.oci.tar:${IMAGE_NAME}:${TAG}"

14
ci/publish-container.sh
View File

@ -1,7 +1,15 @@
. ci/common.sh
buildah push "${IMAGE_NAME}:${TAG}"
buildah push "${IMAGE_NAME}:${TAG}" "${IMAGE_NAME}:${TAG}-${BUILD_NUMBER}"
buildah manifest create "${IMAGE_NAME}:${TAG}"
for arch in amd64 arm64; do
buildah manifest add "${IMAGE_NAME}:${TAG}" \
oci-archive:"${PWD}/${NAME}-${arch}.oci.tar:${IMAGE_NAME}:${TAG}"
done
buildah manifest push --all "${IMAGE_NAME}:${TAG}" \
"docker://${IMAGE_NAME}:${TAG}-${BUILD_NUMBER}"
buildah manifest push "${IMAGE_NAME}:${TAG}" "docker://${IMAGE_NAME}:${TAG}"
if [ ${BRANCH_NAME} = master ]; then
buildah push "${IMAGE_NAME}:${TAG}" "${IMAGE_NAME}:latest"
buildah manifest push "${IMAGE_NAME}:${TAG}" \
"docker://${IMAGE_NAME}:latest"
fi