Release unionpd static binary and docker image (closes #4) (#5)

cor · web-flow · commit 15c60427490c · 2023-05-17T21:28:10.000+02:00
Example release: https://github.com/unionfi/union/releases/tag/4-include-unionpd-in-release unionpd image: https://github.com/unionfi/union/pkgs/container/unionpd
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -10,51 +10,52 @@ jobs:
     secrets:
       nixbuild_token: ${{ secrets.nixbuild_token }}
     with:
-      filter_builds: '(.top_attr == "packages") and (.system == "x86_64-linux" or .system == "aarch64-linux") and (.attr == "uniond" or .attr == "uniond-image")' # ensure to append this list if you want to release more artifacts
+      filter_builds: '(.top_attr == "packages") and (.system == "x86_64-linux" or .system == "aarch64-linux") and (.attr == "uniond" or .attr == "unionpd" or .attr == "uniond-image" or .attr == "unionpd-image")' # ensure to append this list if you want to release more artifacts
 
-  download-docker-images:
+  dl-images:
     runs-on: ubuntu-latest
     needs: [build]
     permissions: write-all
     strategy:
       matrix:
-        package: [ uniond-image ]
+        package: [ uniond, unionpd ]
         system: [ aarch64-linux, x86_64-linux ]
     steps: 
       - uses: actions/download-artifact@v3
         with:
-          name: packages.${{ matrix.system }}.${{ matrix.package }}
+          name: packages.${{ matrix.system }}.${{ matrix.package }}-image
       - uses: nixbuild/nix-quick-install-action@v22
       - uses: nixbuild/nixbuild-action@v17
         with:
           nixbuild_token: ${{ secrets.nixbuild_token }}
       - run: mkdir ${{ matrix.system }}
-      - run: nix copy --to file://`pwd`/${{ matrix.system }} --from ssh-ng://eu.nixbuild.net `cat result.json | jq -r '.packages."${{ matrix.system }}"."${{ matrix.package }}".outputs.out'` --extra-experimental-features nix-command
-      - run: cat ${{ matrix.system }}/nar/*.nar.xz | xz -dc | nix-store --restore ${{ matrix.system }}.${{ matrix.package }}
+      - run: nix copy --to file://`pwd`/${{ matrix.system }} --from ssh-ng://eu.nixbuild.net `cat result.json | jq -r '.packages."${{ matrix.system }}"."${{ matrix.package }}-image".outputs.out'` --extra-experimental-features nix-command
+      - run: cat ${{ matrix.system }}/nar/*.nar.xz | xz -dc | nix-store --restore ${{ matrix.system }}.${{ matrix.package }}-image
       - uses: actions/upload-artifact@v3
         with:
-          name: ${{ matrix.system }}.${{ matrix.package }}
-          path: ${{ matrix.system }}.${{ matrix.package }}
+          name: ${{ matrix.system }}.${{ matrix.package }}-image
+          path: ${{ matrix.system }}.${{ matrix.package }}-image
       - uses: docker/login-action@v2
         with:
           registry: ghcr.io
           username: ${{ github.actor }}
           password: ${{ secrets.GITHUB_TOKEN }}
-      - run: docker load < ${{ matrix.system }}.uniond-image
-      - run: docker tag `docker images -q uniond` ghcr.io/unionfi/uniond:${{ github.ref_name }}-${{ matrix.system }}
-      - run: docker push ghcr.io/unionfi/uniond:${{ github.ref_name }}-${{ matrix.system }}
+      - run: docker load < ${{ matrix.system }}.${{ matrix.package }}-image
+      - run: docker tag `docker images -q ${{ matrix.package }}` ghcr.io/unionfi/${{ matrix.package }}:${{ github.ref_name }}-${{ matrix.system }}
+      - run: docker push ghcr.io/unionfi/${{ matrix.package }}:${{ github.ref_name }}-${{ matrix.system }}
 
-  download-static-binaries:
+  dl-bins:
     runs-on: ubuntu-latest
     needs: [build]
     permissions: write-all
     strategy:
       matrix:
         system: [ aarch64-linux, x86_64-linux ]
+        package: [ uniond, unionpd ]
     steps: 
       - uses: actions/download-artifact@v3
         with:
-          name: packages.${{ matrix.system }}.uniond
+          name: packages.${{ matrix.system }}.${{ matrix.package }}
       - uses: nixbuild/nix-quick-install-action@v22
       - uses: nixbuild/nixbuild-action@v17
         with:
@@ -64,54 +65,61 @@ jobs:
       - run: ls -la ${{ matrix.system }}
       - run: |
           echo "Getting OUTPUT and NARINFO_NAME"
-          OUTPUT=`cat result.json | jq -r '.packages."${{ matrix.system }}".uniond.outputs.out'`
-          prefix="/nix/store/"
-          suffix="-uniond" # <- HACK: suffix is hardcoded, change when you want to build a different package
-          trimmed=${OUTPUT#$prefix}
-          trimmed=${trimmed%$suffix}
-          NARINFO_NAME=$trimmed
+          pwd
+          cat result.json
+          OUTPUT=`cat result.json | jq -r '.packages."${{ matrix.system }}"."${{ matrix.package }}".outputs.out'`
+          NARINFO_NAME=$(basename "$OUTPUT" | cut -d'-' -f1)
+          echo "OUTPUT = $OUTPUT"
+          echo "NARINFO_NAME = $NARINFO_NAME"
+        
         
           echo "Copying artifacts from nixbuild.net"
           nix copy --to file://`pwd`/${{ matrix.system }} --from ssh-ng://eu.nixbuild.net $OUTPUT --extra-experimental-features nix-command
+
+          echo "TREE v"
+          tree
         
           echo "Get the NAR_URL"
           nar_url_line=$(cat ./${{ matrix.system }}/${NARINFO_NAME}.narinfo | grep "URL:")
           NAR_URL=$(echo "$nar_url_line" | cut -d " " -f 2-)
 
           echo "Restore the package from the NAR_URL archive"
-          cat ${{ matrix.system }}/${NAR_URL} | xz -dc | nix-store --restore ${{ matrix.system }}.uniond
-          mv ${{ matrix.system }}.uniond/bin/uniond uniond-${{ matrix.system }}
+          cat ${{ matrix.system }}/${NAR_URL} | xz -dc | nix-store --restore ${{ matrix.system }}.${{ matrix.package }}
+          mv ${{ matrix.system }}.${{ matrix.package }}/bin/${{ matrix.package }} ${{ matrix.package }}-${{ matrix.system }}
 
           echo "DEBUG"
           ls -la 
           tree
       - uses: actions/upload-artifact@v3
         with:
-          name: uniond-${{ matrix.system }}
-          path: uniond-${{ matrix.system }}
+          name: ${{ matrix.package }}-${{ matrix.system }}
+          path: ${{ matrix.package }}-${{ matrix.system }}
 
-  create-docker-manifest:
+  docker-manifest:
     runs-on: ubuntu-latest
-    needs: [download-docker-images]
+    needs: [ dl-images ]
     permissions: write-all
+    strategy:
+      matrix:
+        package: [ uniond, unionpd ]
     steps:
       - uses: docker/login-action@v2
         with:
           registry: ghcr.io
           username: ${{ github.actor }}
           password: ${{ secrets.GITHUB_TOKEN }}
-      - run: docker pull ghcr.io/unionfi/uniond:${{ github.ref_name }}-aarch64-linux
-      - run: docker pull ghcr.io/unionfi/uniond:${{ github.ref_name }}-x86_64-linux
+      - run: docker pull ghcr.io/unionfi/${{ matrix.package }}:${{ github.ref_name }}-aarch64-linux
+      - run: docker pull ghcr.io/unionfi/${{ matrix.package }}:${{ github.ref_name }}-x86_64-linux
       - run: |
           docker manifest create \
-          ghcr.io/unionfi/uniond:${{ github.ref_name }} \
-          --amend ghcr.io/unionfi/uniond:${{ github.ref_name }}-aarch64-linux \
-          --amend ghcr.io/unionfi/uniond:${{ github.ref_name }}-x86_64-linux \
-      - run: docker manifest push ghcr.io/unionfi/uniond:${{ github.ref_name }}
+          ghcr.io/unionfi/${{ matrix.package }}:${{ github.ref_name }} \
+          --amend ghcr.io/unionfi/${{ matrix.package }}:${{ github.ref_name }}-aarch64-linux \
+          --amend ghcr.io/unionfi/${{ matrix.package }}:${{ github.ref_name }}-x86_64-linux \
+      - run: docker manifest push ghcr.io/unionfi/${{ matrix.package }}:${{ github.ref_name }}
     
   release:
     runs-on: ubuntu-latest
-    needs: [create-docker-manifest, download-static-binaries]
+    needs: [ docker-manifest, dl-bins ]
     permissions: write-all
     steps:
       - uses: actions/download-artifact@v3
@@ -129,6 +137,8 @@ jobs:
           files: |
             uniond-aarch64-linux
             uniond-x86_64-linux
+            unionpd-aarch64-linux
+            unionpd-x86_64-linux
       - if: "!contains(github.ref_name, 'rc')"
         name: 'Create Release'
         uses: marvinpinto/action-automatic-releases@v1.2.1
@@ -140,3 +150,5 @@ jobs:
           files: |
             uniond-aarch64-linux
             uniond-x86_64-linux
+            unionpd-aarch64-linux
+            unionpd-x86_64-linux
diff --git a/.ignore b/.ignore
@@ -1 +1,2 @@
-uniond/vendor
+uniond/vendor
+unionpd/vendor
diff --git a/uniond/uniond.nix b/uniond/uniond.nix
@@ -38,7 +38,7 @@
             pathsToLink = [ "/bin" ];
           };
           config = {
-            Entrypoint = [ "${self'.packages.uniond}/bin/uniond" ];
+            Entrypoint = [ (pkgs.lib.getExe self'.packages.uniond) ];
             Env = [ "SSL_CERT_FILE=${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt" ];
           };
         };
diff --git a/unionpd/unionpd.nix b/unionpd/unionpd.nix
@@ -15,6 +15,21 @@
         ];
       } else { }));
 
+
+      unionpd-image = pkgs.dockerTools.buildImage {
+        name = "unionpd";
+
+        copyToRoot = pkgs.buildEnv {
+          name = "image-root";
+          paths = [ pkgs.coreutils-full pkgs.cacert ];
+          pathsToLink = [ "/bin" ];
+        };
+        config = {
+          Entrypoint = [ (pkgs.lib.getExe self'.packages.unionpd) ];
+          Env = [ "SSL_CERT_FILE=${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt" ];
+        };
+      };
+
       generate-prover-proto = pkgs.writeShellApplication {
         name = "generate-prover-proto";
         runtimeInputs =

Original file line number	Diff line number	Diff line change
`@@ -1 +1,2 @@`
`1`		`-uniond/vendor`
	`1`	`+uniond/vendor`
	`2`	`+unionpd/vendor`