-
Notifications
You must be signed in to change notification settings - Fork 7
140 lines (120 loc) · 4 KB
/
release.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
name: Release
on:
create:
tags:
- v*
pull_request:
branches:
- "main"
env:
GOPRIVATE: "${{secrets.SOURCE_REPO_GIT}}"
SOURCE_REPO_GIT: "${{secrets.SOURCE_REPO_GIT}}"
permissions:
contents: write
jobs:
release:
if: startsWith(github.ref, 'refs/tags/v')
runs-on: [self-hosted, regular]
container:
image: ubuntu:22.04
steps:
- name: Install dependency for linux-amd64 dist
env:
DEBIAN_FRONTEND: noninteractive
run: apt-get update && apt-get install -y apt-utils libbtrfs-dev file git gcc
- name: Checkout
uses: actions/checkout@v4
with:
fetch-depth: 0 # To use `git describe --tags`
- name: Setup Go
uses: actions/setup-go@v5
with:
go-version: "1.23"
cache: false # Cache download takes longer that a build from scratch
- name: Setup Task
uses: arduino/setup-task@v2
- name: Start ssh-agent
uses: webfactory/ssh-agent@v0.9.0
with:
ssh-private-key: |
${{secrets.SOURCE_REPO_SSH_KEY}}
- name: Add ssh_known_hosts
run: |
HOST=${{ secrets.SOURCE_REPO_GIT }}
echo "::add-mask::$HOST"
apt -y install dnsutils
IPS=$(nslookup "$HOST" | awk '/^Address: / { print $2 }')
for IP in $IPS; do
echo "::add-mask::$IP"
done
mkdir -p ~/.ssh
touch ~/.ssh/known_hosts
HOST_KEYS=$(ssh-keyscan -H "$HOST" 2>/dev/null)
echo "$HOST_KEYS" | while IFS= read -r KEY_LINE; do
CONSTANT_PART=$(echo "$KEY_LINE" | awk '{print $2, $3}')
if ! grep -q "$CONSTANT_PART" ~/.ssh/known_hosts; then
echo "$KEY_LINE" >> ~/.ssh/known_hosts
fi
done
- name: Setup git
run: |
git config --global url."ssh://git@${PRIVATE_REPO}/".insteadOf "https://flant.internal/"
git config --global --add safe.directory '*'
- name: Build and package
run: task build-and-package
- name: Release
uses: softprops/action-gh-release@v2
with:
files: |
dist/**/*.tar.gz
dist/**/*.tar.gz.sha256sum
test:
if: github.event_name == 'pull_request'
runs-on: [self-hosted, regular]
container:
image: ubuntu:22.04
steps:
- name: Install dependency for linux-amd64 dist
env:
DEBIAN_FRONTEND: noninteractive
run: apt-get update && apt-get install -y apt-utils libbtrfs-dev file git gcc
- name: Checkout
uses: actions/checkout@v4
with:
fetch-depth: 0 # To use `git describe --tags`
- name: Setup Go
uses: actions/setup-go@v5
with:
go-version: "1.23"
cache: false # Cache download takes longer that a build from scratch
- name: Setup Task
uses: arduino/setup-task@v2
- name: Start ssh-agent
uses: webfactory/ssh-agent@v0.9.0
with:
ssh-private-key: |
${{secrets.SOURCE_REPO_SSH_KEY}}
- name: Add ssh_known_hosts
run: |
HOST=${{ secrets.SOURCE_REPO_GIT }}
echo "::add-mask::$HOST"
apt -y install dnsutils
IPS=$(nslookup "$HOST" | awk '/^Address: / { print $2 }')
for IP in $IPS; do
echo "::add-mask::$IP"
done
mkdir -p ~/.ssh
touch ~/.ssh/known_hosts
HOST_KEYS=$(ssh-keyscan -H "$HOST" 2>/dev/null)
echo "$HOST_KEYS" | while IFS= read -r KEY_LINE; do
CONSTANT_PART=$(echo "$KEY_LINE" | awk '{print $2, $3}')
if ! grep -q "$CONSTANT_PART" ~/.ssh/known_hosts; then
echo "$KEY_LINE" >> ~/.ssh/known_hosts
fi
done
- name: Setup git
run: |
git config --global url."ssh://git@${SOURCE_REPO_GIT}/".insteadOf "https://flant.internal/"
git config --global --add safe.directory '*'
- name: Run tests
run: task test