Skip to content

Commit

Permalink
aarch64 Nix builds in CI (#14)
Browse files Browse the repository at this point in the history
  • Loading branch information
@cofob
cofob authored Aug 31, 2024
1 parent bc8826d commit 7d24762
Showing 1 changed file with 98 additions and 103 deletions.
201 changes: 98 additions & 103 deletions .github/workflows/ci.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,9 @@ jobs:
build-nix:
name: Build Nix
runs-on: ubuntu-latest
strategy:
matrix:
target: [x86_64, aarch64]
needs: test
steps:
- name: Checkout
Expand All @@ -50,18 +53,22 @@ jobs:
with:
name: cofob
authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}"
- name: Set up QEMU
uses: docker/setup-qemu-action@v3
with:
platforms: aarch64

- name: Build derivations
- name: Build derivation
run: |
nix build .#fastside
nix --system ${{ matrix.target }}-linux build .#fastside
build-linux:
name: Build Linux
runs-on: ubuntu-latest
needs: test
strategy:
matrix:
target: [x86_64-unknown-linux-gnu, x86_64-unknown-linux-musl]
target: [x86_64-unknown-linux-gnu, x86_64-unknown-linux-musl, aarch64-unknown-linux-musl]
steps:
- name: Checkout
uses: actions/checkout@v4
Expand All @@ -78,8 +85,17 @@ jobs:
sudo apt-get update
sudo apt-get install -y musl-tools
- name: Build ${{ matrix.target }}
run: cargo build --release --bins --target ${{ matrix.target }}
- name: Build
run: |
if [[ "${{ matrix.target }}" == "x86_64-unknown-linux-gnu" || "${{ matrix.target }}" == "x86_64-unknown-linux-musl" ]]; then
cargo build --release --bins --target ${{ matrix.target }}
elif [[ "${{ matrix.target }}" == "aarch64-unknown-linux-musl" ]]; then
docker run \
--rm \
-v "$(pwd)":/home/rust/src \
messense/rust-musl-cross:aarch64-musl \
cargo build --color always --release --bins --target aarch64-unknown-linux-musl
fi
- name: Collect artifacts
run: |
Expand All @@ -92,73 +108,10 @@ jobs:
with:
name: fastside-${{ matrix.target }}
path: dist-${{ matrix.target }}

build-linux-aarch64:
name: Build Linux (aarch64-unknown-linux-musl)
runs-on: ubuntu-latest
needs: test
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Pull Docker image
run: docker pull messense/rust-musl-cross:aarch64-musl
- name: Cache Rust
uses: Swatinem/rust-cache@v2
with:
prefix-key: "v0-rust-aarch64-unknown-linux-musl"

- name: Build aarch64
run: |
docker run \
--rm \
-v "$(pwd)":/home/rust/src \
messense/rust-musl-cross:aarch64-musl \
cargo build --color always --release --bins --target aarch64-unknown-linux-musl
- name: Collect artifacts
run: |
mkdir dist-aarch64-unknown-linux-musl
cp target/aarch64-unknown-linux-musl/release/fastside dist-aarch64-unknown-linux-musl/
cp target/aarch64-unknown-linux-musl/release/fastside-actualizer dist-aarch64-unknown-linux-musl/
- name: Upload artifact
uses: actions/upload-artifact@v4
with:
name: fastside-aarch64-unknown-linux-musl
path: dist-aarch64-unknown-linux-musl

test-services:
name: Test services
runs-on: ubuntu-latest
needs: build-nix
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Path filter
uses: dorny/paths-filter@v3
id: filter
with:
filters: |
services:
- 'services.json'
- name: Setup Nix
if: steps.filter.outputs.services == 'true'
uses: cachix/install-nix-action@v25
with:
nix_path: "${{ env.nix_path }}"
- name: Setup cachix
if: steps.filter.outputs.services == 'true'
uses: cachix/cachix-action@v14
with:
name: cofob
authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}"

- name: Run tests
if: steps.filter.outputs.services == 'true'
run: nix run . -- validate
compression-level: 9

docker:
name: Build Docker container
name: Build Docker containers
runs-on: ubuntu-latest
needs: build-nix
permissions:
Expand All @@ -176,6 +129,10 @@ jobs:
with:
name: cofob
authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}"
- name: Set up QEMU
uses: docker/setup-qemu-action@v3
with:
platforms: aarch64

- name: Login to GitHub Container Registry
uses: docker/login-action@v3
Expand All @@ -194,10 +151,7 @@ jobs:
id: meta
uses: docker/metadata-action@v5
with:
# list of Docker images to use as base name for tags
images: |
ghcr.io/${{ steps.repo.outputs.lowercase }}
# generate Docker tags based on the following events/attributes
images: ghcr.io/${{ steps.repo.outputs.lowercase }}
tags: |
type=schedule
type=ref,event=pr
Expand All @@ -207,45 +161,86 @@ jobs:
type=sha
type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', 'master') }}
- name: Docker meta
id: meta2
uses: docker/metadata-action@v5
with:
# list of Docker images to use as base name for tags
images: |
ghcr.io/${{ steps.repo.outputs.lowercase }}/baked
# generate Docker tags based on the following events/attributes
tags: |
type=schedule
type=ref,event=pr
type=semver,pattern={{version}}
type=semver,pattern={{major}}.{{minor}}
type=semver,pattern={{major}}
type=sha
type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', 'master') }}
- name: Docker manifest tag
id: manifest-tag
run: echo "manifest_tag=ghcr.io/${{ steps.repo.outputs.lowercase }}:manifest-$(git rev-parse HEAD | cut -c1-20)" >> $GITHUB_ENV

- name: Build remote
- name: Build remote (x86_64)
run: |
nix build .#fastside-docker
nix --system x86_64-linux build .#fastside-docker
docker load < result
docker tag fastside ${{ env.manifest_tag }}-x86_64
docker push ${{ env.manifest_tag }}-x86_64
- name: Push to registry
- name: Build remote (aarch64)
run: |
tags="${{ steps.meta.outputs.tags }}"
for tag in $tags; do
docker tag fastside $tag
docker push $tag
done
nix --system aarch64-linux build .#fastside-docker
docker load < result
docker tag fastside ${{ env.manifest_tag }}-aarch64
docker push ${{ env.manifest_tag }}-aarch64
- name: Build baked
- name: Build baked (x86_64)
run: |
nix build .#fastside-docker-baked-services
nix --system x86_64-linux build .#fastside-docker-baked-services
docker load < result
docker tag fastside ${{ env.manifest_tag }}-x86_64-baked
docker push ${{ env.manifest_tag }}-x86_64-baked
- name: Build baked (aarch64)
run: |
nix --system aarch64-linux build .#fastside-docker-baked-services
docker load < result
docker tag fastside ${{ env.manifest_tag }}-aarch64-baked
docker push ${{ env.manifest_tag }}-aarch64-baked
- name: Push to registry
run: |
tags="${{ steps.meta2.outputs.tags }}"
tags="${{ steps.meta.outputs.tags }}"
for tag in $tags; do
docker tag fastside $tag
docker push $tag
echo "Pushing $tag"
docker manifest create \
$tag \
--amend ${{ env.manifest_tag }}-x86_64 \
--amend ${{ env.manifest_tag }}-aarch64
docker manifest push $tag
done
for tag in $tags; do
mod_tag="$tag-baked"
echo "Pushing $mod_tag"
docker manifest create \
$mod_tag \
--amend ${{ env.manifest_tag }}-x86_64 \
--amend ${{ env.manifest_tag }}-aarch64
docker manifest push $mod_tag
done
test-services:
name: Test services
runs-on: ubuntu-latest
needs: build-nix
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Path filter
uses: dorny/paths-filter@v3
id: filter
with:
filters: |
services:
- 'services.json'
- name: Setup Nix
if: steps.filter.outputs.services == 'true'
uses: cachix/install-nix-action@v25
with:
nix_path: "${{ env.nix_path }}"
- name: Setup cachix
if: steps.filter.outputs.services == 'true'
uses: cachix/cachix-action@v14
with:
name: cofob
authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}"

- name: Run tests
if: steps.filter.outputs.services == 'true'
run: nix run . -- validate

0 comments on commit 7d24762

Please sign in to comment.