Skip to content

Commit

Permalink
Build arm64 packages for Debian and RPM (#3503)
Browse files Browse the repository at this point in the history
  • Loading branch information
Nuru authored Apr 2, 2023
1 parent a8073cc commit fa982e7
Show file tree
Hide file tree
Showing 221 changed files with 6,732 additions and 2,373 deletions.
3 changes: 3 additions & 0 deletions .github/auto-label.yml
Original file line number Diff line number Diff line change
Expand Up @@ -41,6 +41,9 @@ vendor/atmos:
vendor/awless:
- any: ["vendor/awless/**"]
all: ["!bin/**", "!tasks/**"]
vendor/aws-copilot-cli:
- any: ["vendor/aws-copilot-cli/**"]
all: ["!bin/**", "!tasks/**"]
vendor/aws-iam-authenticator:
- any: ["vendor/aws-iam-authenticator/**"]
all: ["!bin/**", "!tasks/**"]
Expand Down
46 changes: 43 additions & 3 deletions .github/package-template.yml
Original file line number Diff line number Diff line change
Expand Up @@ -28,13 +28,30 @@ on:
- vendor/%PACKAGE_NAME%/**
- .github/workflows/%PACKAGE_NAME%.yml

#bridgecrew:skip=BC_REPO_GITHUB_ACTION_7:The whole point of the workflow dispatch is to feed in a version
workflow_dispatch:
inputs:
package_version_override:
description: 'Version of %PACKAGE_NAME% package to build. Defaults to vendor/%PACKAGE_NAME%/VERSION.'
required: false
type: string
release_number_override:
description: 'Zero-based release number of %PACKAGE_NAME% package to publish. Defaults to vendor/%PACKAGE_NAME%/RELEASE.'
required: false
type: string

env:
%PACKAGE_NAME%_VERSION: ${{ github.event.inputs.package_version_override }}
%PACKAGE_NAME%_RELEASE: ${{ github.event.inputs.release_number_override }}

jobs:
matrix:
if: github.event_name != 'schedule'
runs-on: ubuntu-latest
outputs:
package-enabled: ${{ steps.info.outputs.package_enabled }}
package-matrix: ${{steps.info.outputs.package_matrix}}
arch-matrix: ${{steps.info.outputs.arch_matrix}}
apk-enabled: ${{ steps.info.outputs.package_enabled == 'true' && steps.info.outputs.apk_package_enabled == 'true' }}
steps:
- uses: actions/checkout@v3
Expand Down Expand Up @@ -71,7 +88,12 @@ jobs:
PACKAGER_PRIVKEY: /dev/shm/ops@cloudposse.com.rsa
PACKAGER_PUBKEY: ${{github.workspace}}/artifacts/ops@cloudposse.com.rsa.pub

container: cloudposse/packages-apkbuild:${{matrix.alpine}}
container:
image: cloudposse/packages-apkbuild:${{matrix.alpine}}
credentials:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}

steps:
# Checkout the packages repo so we can build the packages as a monorepo
- name: "Checkout source code at current commit"
Expand Down Expand Up @@ -138,12 +160,25 @@ jobs:
github.event_name != 'schedule' && needs.matrix.outputs.package-enabled != 'false'
&& needs.matrix.outputs.package-matrix != '[]' && needs.matrix.outputs.package-matrix != '["apk"]'
runs-on: ubuntu-latest
strategy:
matrix:
package-type: ${{ fromJSON(needs.matrix.outputs.package-matrix) }}
arch: ${{ fromJSON(needs.matrix.outputs.arch-matrix) }}
exclude:
- package-type: 'apk'
include:
# Default value for runs-on. Original matrix values will not be overridden, but added ones (like runs-on) can be.
# See https://docs.github.com/en/actions/using-jobs/using-a-matrix-for-your-jobs#expanding-or-adding-matrix-configurations
- runs-on:
- "self-hosted"
- "arm64"
# By including `arch: amd64` here, we override the `runs-on` value `arch` is `amd64`.
# This also forces the matrix to include `arch: amd64` even if it is not in the original matrix.
# This is why we do not default for amd64 and then override for arm64.
- arch: amd64
runs-on:
- "ubuntu-latest"
runs-on: ${{ matrix.runs-on }}
env:
# We are in a bit of a bind here because of how GitHub actions work as of 2020-11-19
# Although the "workspace" is mounted to the container, it is not mounted
Expand All @@ -159,7 +194,12 @@ jobs:
PACKAGE_RELPATH: artifacts/${{matrix.package-type}}/any-version

# Unfortunately, there is no reasonable way to configure the docker image tag based on the package-type
container: cloudposse/packages-${{matrix.package-type}}build:latest
container:
image: cloudposse/packages-${{matrix.package-type}}build:latest
credentials:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}

steps:
# Checkout the packages repo so we can build the packages as a monorepo
- name: "Checkout source code at current commit"
Expand Down
46 changes: 43 additions & 3 deletions .github/workflows/amazon-ecr-credential-helper.yml
Original file line number Diff line number Diff line change
Expand Up @@ -28,13 +28,30 @@ on:
- vendor/amazon-ecr-credential-helper/**
- .github/workflows/amazon-ecr-credential-helper.yml

#bridgecrew:skip=BC_REPO_GITHUB_ACTION_7:The whole point of the workflow dispatch is to feed in a version
workflow_dispatch:
inputs:
package_version_override:
description: 'Version of amazon-ecr-credential-helper package to build. Defaults to vendor/amazon-ecr-credential-helper/VERSION.'
required: false
type: string
release_number_override:
description: 'Zero-based release number of amazon-ecr-credential-helper package to publish. Defaults to vendor/amazon-ecr-credential-helper/RELEASE.'
required: false
type: string

env:
amazon-ecr-credential-helper_VERSION: ${{ github.event.inputs.package_version_override }}
amazon-ecr-credential-helper_RELEASE: ${{ github.event.inputs.release_number_override }}

jobs:
matrix:
if: github.event_name != 'schedule'
runs-on: ubuntu-latest
outputs:
package-enabled: ${{ steps.info.outputs.package_enabled }}
package-matrix: ${{steps.info.outputs.package_matrix}}
arch-matrix: ${{steps.info.outputs.arch_matrix}}
apk-enabled: ${{ steps.info.outputs.package_enabled == 'true' && steps.info.outputs.apk_package_enabled == 'true' }}
steps:
- uses: actions/checkout@v3
Expand Down Expand Up @@ -71,7 +88,12 @@ jobs:
PACKAGER_PRIVKEY: /dev/shm/ops@cloudposse.com.rsa
PACKAGER_PUBKEY: ${{github.workspace}}/artifacts/ops@cloudposse.com.rsa.pub

container: cloudposse/packages-apkbuild:${{matrix.alpine}}
container:
image: cloudposse/packages-apkbuild:${{matrix.alpine}}
credentials:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}

steps:
# Checkout the packages repo so we can build the packages as a monorepo
- name: "Checkout source code at current commit"
Expand Down Expand Up @@ -138,12 +160,25 @@ jobs:
github.event_name != 'schedule' && needs.matrix.outputs.package-enabled != 'false'
&& needs.matrix.outputs.package-matrix != '[]' && needs.matrix.outputs.package-matrix != '["apk"]'
runs-on: ubuntu-latest
strategy:
matrix:
package-type: ${{ fromJSON(needs.matrix.outputs.package-matrix) }}
arch: ${{ fromJSON(needs.matrix.outputs.arch-matrix) }}
exclude:
- package-type: 'apk'
include:
# Default value for runs-on. Original matrix values will not be overridden, but added ones (like runs-on) can be.
# See https://docs.github.com/en/actions/using-jobs/using-a-matrix-for-your-jobs#expanding-or-adding-matrix-configurations
- runs-on:
- "self-hosted"
- "arm64"
# By including `arch: amd64` here, we override the `runs-on` value `arch` is `amd64`.
# This also forces the matrix to include `arch: amd64` even if it is not in the original matrix.
# This is why we do not default for amd64 and then override for arm64.
- arch: amd64
runs-on:
- "ubuntu-latest"
runs-on: ${{ matrix.runs-on }}
env:
# We are in a bit of a bind here because of how GitHub actions work as of 2020-11-19
# Although the "workspace" is mounted to the container, it is not mounted
Expand All @@ -159,7 +194,12 @@ jobs:
PACKAGE_RELPATH: artifacts/${{matrix.package-type}}/any-version

# Unfortunately, there is no reasonable way to configure the docker image tag based on the package-type
container: cloudposse/packages-${{matrix.package-type}}build:latest
container:
image: cloudposse/packages-${{matrix.package-type}}build:latest
credentials:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}

steps:
# Checkout the packages repo so we can build the packages as a monorepo
- name: "Checkout source code at current commit"
Expand Down
46 changes: 43 additions & 3 deletions .github/workflows/amtool.yml
Original file line number Diff line number Diff line change
Expand Up @@ -28,13 +28,30 @@ on:
- vendor/amtool/**
- .github/workflows/amtool.yml

#bridgecrew:skip=BC_REPO_GITHUB_ACTION_7:The whole point of the workflow dispatch is to feed in a version
workflow_dispatch:
inputs:
package_version_override:
description: 'Version of amtool package to build. Defaults to vendor/amtool/VERSION.'
required: false
type: string
release_number_override:
description: 'Zero-based release number of amtool package to publish. Defaults to vendor/amtool/RELEASE.'
required: false
type: string

env:
amtool_VERSION: ${{ github.event.inputs.package_version_override }}
amtool_RELEASE: ${{ github.event.inputs.release_number_override }}

jobs:
matrix:
if: github.event_name != 'schedule'
runs-on: ubuntu-latest
outputs:
package-enabled: ${{ steps.info.outputs.package_enabled }}
package-matrix: ${{steps.info.outputs.package_matrix}}
arch-matrix: ${{steps.info.outputs.arch_matrix}}
apk-enabled: ${{ steps.info.outputs.package_enabled == 'true' && steps.info.outputs.apk_package_enabled == 'true' }}
steps:
- uses: actions/checkout@v3
Expand Down Expand Up @@ -71,7 +88,12 @@ jobs:
PACKAGER_PRIVKEY: /dev/shm/ops@cloudposse.com.rsa
PACKAGER_PUBKEY: ${{github.workspace}}/artifacts/ops@cloudposse.com.rsa.pub

container: cloudposse/packages-apkbuild:${{matrix.alpine}}
container:
image: cloudposse/packages-apkbuild:${{matrix.alpine}}
credentials:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}

steps:
# Checkout the packages repo so we can build the packages as a monorepo
- name: "Checkout source code at current commit"
Expand Down Expand Up @@ -138,12 +160,25 @@ jobs:
github.event_name != 'schedule' && needs.matrix.outputs.package-enabled != 'false'
&& needs.matrix.outputs.package-matrix != '[]' && needs.matrix.outputs.package-matrix != '["apk"]'
runs-on: ubuntu-latest
strategy:
matrix:
package-type: ${{ fromJSON(needs.matrix.outputs.package-matrix) }}
arch: ${{ fromJSON(needs.matrix.outputs.arch-matrix) }}
exclude:
- package-type: 'apk'
include:
# Default value for runs-on. Original matrix values will not be overridden, but added ones (like runs-on) can be.
# See https://docs.github.com/en/actions/using-jobs/using-a-matrix-for-your-jobs#expanding-or-adding-matrix-configurations
- runs-on:
- "self-hosted"
- "arm64"
# By including `arch: amd64` here, we override the `runs-on` value `arch` is `amd64`.
# This also forces the matrix to include `arch: amd64` even if it is not in the original matrix.
# This is why we do not default for amd64 and then override for arm64.
- arch: amd64
runs-on:
- "ubuntu-latest"
runs-on: ${{ matrix.runs-on }}
env:
# We are in a bit of a bind here because of how GitHub actions work as of 2020-11-19
# Although the "workspace" is mounted to the container, it is not mounted
Expand All @@ -159,7 +194,12 @@ jobs:
PACKAGE_RELPATH: artifacts/${{matrix.package-type}}/any-version

# Unfortunately, there is no reasonable way to configure the docker image tag based on the package-type
container: cloudposse/packages-${{matrix.package-type}}build:latest
container:
image: cloudposse/packages-${{matrix.package-type}}build:latest
credentials:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}

steps:
# Checkout the packages repo so we can build the packages as a monorepo
- name: "Checkout source code at current commit"
Expand Down
46 changes: 43 additions & 3 deletions .github/workflows/argocd.yml
Original file line number Diff line number Diff line change
Expand Up @@ -28,13 +28,30 @@ on:
- vendor/argocd/**
- .github/workflows/argocd.yml

#bridgecrew:skip=BC_REPO_GITHUB_ACTION_7:The whole point of the workflow dispatch is to feed in a version
workflow_dispatch:
inputs:
package_version_override:
description: 'Version of argocd package to build. Defaults to vendor/argocd/VERSION.'
required: false
type: string
release_number_override:
description: 'Zero-based release number of argocd package to publish. Defaults to vendor/argocd/RELEASE.'
required: false
type: string

env:
argocd_VERSION: ${{ github.event.inputs.package_version_override }}
argocd_RELEASE: ${{ github.event.inputs.release_number_override }}

jobs:
matrix:
if: github.event_name != 'schedule'
runs-on: ubuntu-latest
outputs:
package-enabled: ${{ steps.info.outputs.package_enabled }}
package-matrix: ${{steps.info.outputs.package_matrix}}
arch-matrix: ${{steps.info.outputs.arch_matrix}}
apk-enabled: ${{ steps.info.outputs.package_enabled == 'true' && steps.info.outputs.apk_package_enabled == 'true' }}
steps:
- uses: actions/checkout@v3
Expand Down Expand Up @@ -71,7 +88,12 @@ jobs:
PACKAGER_PRIVKEY: /dev/shm/ops@cloudposse.com.rsa
PACKAGER_PUBKEY: ${{github.workspace}}/artifacts/ops@cloudposse.com.rsa.pub

container: cloudposse/packages-apkbuild:${{matrix.alpine}}
container:
image: cloudposse/packages-apkbuild:${{matrix.alpine}}
credentials:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}

steps:
# Checkout the packages repo so we can build the packages as a monorepo
- name: "Checkout source code at current commit"
Expand Down Expand Up @@ -138,12 +160,25 @@ jobs:
github.event_name != 'schedule' && needs.matrix.outputs.package-enabled != 'false'
&& needs.matrix.outputs.package-matrix != '[]' && needs.matrix.outputs.package-matrix != '["apk"]'
runs-on: ubuntu-latest
strategy:
matrix:
package-type: ${{ fromJSON(needs.matrix.outputs.package-matrix) }}
arch: ${{ fromJSON(needs.matrix.outputs.arch-matrix) }}
exclude:
- package-type: 'apk'
include:
# Default value for runs-on. Original matrix values will not be overridden, but added ones (like runs-on) can be.
# See https://docs.github.com/en/actions/using-jobs/using-a-matrix-for-your-jobs#expanding-or-adding-matrix-configurations
- runs-on:
- "self-hosted"
- "arm64"
# By including `arch: amd64` here, we override the `runs-on` value `arch` is `amd64`.
# This also forces the matrix to include `arch: amd64` even if it is not in the original matrix.
# This is why we do not default for amd64 and then override for arm64.
- arch: amd64
runs-on:
- "ubuntu-latest"
runs-on: ${{ matrix.runs-on }}
env:
# We are in a bit of a bind here because of how GitHub actions work as of 2020-11-19
# Although the "workspace" is mounted to the container, it is not mounted
Expand All @@ -159,7 +194,12 @@ jobs:
PACKAGE_RELPATH: artifacts/${{matrix.package-type}}/any-version

# Unfortunately, there is no reasonable way to configure the docker image tag based on the package-type
container: cloudposse/packages-${{matrix.package-type}}build:latest
container:
image: cloudposse/packages-${{matrix.package-type}}build:latest
credentials:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}

steps:
# Checkout the packages repo so we can build the packages as a monorepo
- name: "Checkout source code at current commit"
Expand Down
Loading

0 comments on commit fa982e7

Please sign in to comment.