CI/E2E: (Re)move redunant setup steps

This commit is contained in:
Nils Hanke 2022-09-14 15:14:26 +02:00 committed by Nils Hanke
parent c6f85ec4b6
commit 7338563d14
36 changed files with 252 additions and 189 deletions

View File

@ -2,27 +2,11 @@ name: Azure login
description: "Login to Azure & configure az CLI."
inputs:
azure_credentials:
description: 'Credentials authorized to create Constellation on Azure.'
description: "Credentials authorized to create Constellation on Azure."
required: true
runs:
using: 'composite'
using: "composite"
steps:
- name: Install az CLI
run: |
echo "::group::Install build dependencies"
sudo apt-get update
sudo apt-get install ca-certificates curl apt-transport-https lsb-release gnupg -y
curl -sL https://packages.microsoft.com/keys/microsoft.asc |
gpg --dearmor |
sudo tee /etc/apt/trusted.gpg.d/microsoft.gpg > /dev/null
AZ_REPO=$(lsb_release -cs)
echo "deb [arch=amd64] https://packages.microsoft.com/repos/azure-cli/ $AZ_REPO main" |
sudo tee /etc/apt/sources.list.d/azure-cli.list
sudo apt-get update
sudo apt-get install azure-cli -y
az help
echo "::endgroup::"
shell: bash
# As described at:
# https://github.com/Azure/login#configure-deployment-credentials
- name: Login to Azure

View File

@ -7,19 +7,10 @@ inputs:
default: "./bootstrapper"
required: true
# Linux runner only (Docker required)
runs:
using: "composite"
steps:
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@dc7b9719a96d48369863986a06765841d7ea23f6
- name: Install Dependencies
shell: bash
run: |
echo "::group::Install build dependencies"
sudo apt-get update && sudo apt-get -y install cmake make
echo "::endgroup::"
- name: Build the bootstrapper
shell: bash
run: |

View File

@ -31,27 +31,12 @@ inputs:
runs:
using: "composite"
steps:
- name: Install build dependencies
run: |
echo "::group::Install build dependencies"
sudo apt-get update
sudo apt-get install \
build-essential cmake \
-y
echo "::endgroup::"
shell: bash
# https://github.blog/2022-04-12-git-security-vulnerability-announced/
- name: Mark repository safe
run: |
git config --global --add safe.directory /__w/constellation/constellation
shell: bash
- name: Install Go
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Build CLI
run: |
echo "::group::Build CLI"

View File

@ -7,22 +7,10 @@ inputs:
default: "./debugd"
required: true
# Linux runner only
runs:
using: "composite"
steps:
- name: Install Go
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Install Dependencies
shell: bash
run: |
echo "::group::Install build dependencies"
sudo apt-get update
sudo apt-get -y install cmake make
echo "::endgroup::"
- name: Build debugd
shell: bash
run: |

View File

@ -3,23 +3,14 @@ description: Build the Constellation disk-mapper binary
inputs:
outputPath:
description: 'Output path of the binary'
default: './disk-mapper'
description: "Output path of the binary"
default: "./disk-mapper"
required: true
# Linux runner only (Docker required)
runs:
using: 'composite'
using: "composite"
steps:
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@dc7b9719a96d48369863986a06765841d7ea23f6
- name: Install Dependencies
shell: bash
run: |
echo "::group::Install build dependencies"
sudo apt-get update && sudo apt-get -y install cmake make
echo "::endgroup::"
- name: Build the disk-mapper
shell: bash
run: |

View File

@ -2,23 +2,23 @@ name: Build micro service
description: Build and upload a container image for a Constellation micro-service
inputs:
name:
description: 'Name of the micro-service'
description: "Name of the micro-service"
required: true
projectVersion:
description: 'Version of the micro-service'
default: '0.0.0'
description: "Version of the micro-service"
default: "0.0.0"
required: false
dockerfile:
description: 'Path to the services Dockerfile'
description: "Path to the services Dockerfile"
required: true
pushTag:
description: 'Use this image tag'
description: "Use this image tag"
required: false
githubToken:
description: 'GitHub authorization token'
description: "GitHub authorization token"
required: true
# Linux runner only (Docker required)
runs:
using: "composite"
steps:
@ -37,11 +37,6 @@ runs:
type=raw,value=${{ inputs.pushTag }},enable=${{ '' != inputs.pushTag }}
type=raw,value=${{ steps.pseudo-version.outputs.pseudoVersion }},enable=${{ '' != steps.pseudo-version.outputs.pseudoVersion }}
type=ref,event=branch
- name: Set up Docker Buildx
id: docker-setup
uses: docker/setup-buildx-action@f211e3e9ded2d9377c8cadc4489a4e38014bc4c9
- name: Log in to the Container registry
id: docker-login
uses: docker/login-action@dd4fa0671be5250ee6f50aedf4cb05514abda2c7

View File

@ -2,19 +2,19 @@ name: Build operator
description: Build and upload a container image for a Constellation operator
inputs:
name:
description: 'Name of the operator'
description: "Name of the operator"
required: true
sourceDir:
description: 'Path to the operators source directory'
description: "Path to the operators source directory"
required: true
pushTag:
description: 'Use this image tag'
description: "Use this image tag"
required: false
githubToken:
description: 'GitHub authorization token'
description: "GitHub authorization token"
required: true
# Linux runner only (Docker required)
runs:
using: "composite"
steps:
@ -27,10 +27,6 @@ runs:
with:
version: v1.22.2
- name: Set up Docker Buildx
id: docker-setup
uses: docker/setup-buildx-action@f211e3e9ded2d9377c8cadc4489a4e38014bc4c9
- name: Log in to the Container registry
id: docker-login
uses: docker/login-action@dd4fa0671be5250ee6f50aedf4cb05514abda2c7
@ -51,7 +47,6 @@ runs:
type=raw,value=${{ steps.pseudo-version.outputs.pseudoVersion }},enable=${{ '' != steps.pseudo-version.outputs.pseudoVersion }}
type=ref,event=branch
- name: Build and push container image
uses: docker/build-push-action@ac9327eae2b366085ac7f6a2d02df8aa8ead720a
with:

View File

@ -43,15 +43,6 @@ runs:
curl -sLO https://dl.k8s.io/release/v1.23.0/bin/linux/amd64/kubectl
install kubectl /usr/local/bin
shell: bash
- name: Install yq jq
run: |
echo "::group::Install dependencies"
sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys CC86BB64
sudo add-apt-repository ppa:rmescandon/yq
sudo apt update
sudo apt install yq jq -y
echo "::endgroup::"
shell: bash
- name: Constellation config generate
run: |

View File

@ -95,13 +95,6 @@ runs:
COSIGN_PASSWORD: ${{ inputs.cosignPassword }}
if: ${{ inputs.cosignPublicKey != '' && inputs.cosignPrivateKey != '' && inputs.cosignPassword != '' }}
- name: Install AWS CLI
run: |
echo "::group::Install AWS CLI"
sudo apt-get update && sudo apt-get -y install awscli
echo "::endgroup::"
shell: bash
if: ${{ inputs.awsAccessKeyID != '' && inputs.awsSecretAccessKey != '' && inputs.awsDefaultRegion != '' && inputs.awsBucketName != '' }}
- name: Upload to S3
run: |
IMAGE=$(yq e ".provider.${CSP}.image" constellation-conf.yaml)

View File

@ -2,10 +2,10 @@ name: GCP login
description: "Login to GCP & configure gcloud CLI."
inputs:
gcp_service_account_json:
description: 'Service account with permissions to create Constellation on GCP.'
description: "Service account with permissions to create Constellation on GCP."
required: true
runs:
using: 'composite'
using: "composite"
steps:
# As described at:
# https://github.com/google-github-actions/setup-gcloud#service-account-key-json
@ -13,8 +13,3 @@ runs:
uses: google-github-actions/auth@ceee102ec2387dd9e844e01b530ccd4ec87ce955
with:
credentials_json: ${{ inputs.gcp_service_account_json }}
- name: Set up Cloud SDK
uses: google-github-actions/setup-gcloud@877d4953d2c70a0ba7ef3290ae968eb24af233bb
- name: Verify logged in
run: gcloud info
shell: bash

View File

@ -6,17 +6,8 @@ inputs:
description: "Version of the operator-sdk to install"
required: true
runs:
using: 'composite'
using: "composite"
steps:
- name: Install curl gpg
shell: bash
run: |
echo "::group::Install dependencies"
sudo apt update
sudo apt install curl gpg -y
echo "::endgroup::"
- name: Install operator-sdk
shell: bash
run: |

View File

@ -18,14 +18,10 @@ outputs:
description: "Branch name"
value: ${{ steps.pseudo-version.outputs.branchName }}
# Linux runner only (homedir trick does not work on macOS, required for private runner)
runs:
using: "composite"
steps:
- name: Install Go
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: get pseudo version
id: pseudo-version
run: |

57
.github/actions/setup_linux/action.yml vendored Normal file
View File

@ -0,0 +1,57 @@
name: Setup Linux build environment
description: "Setup a Linux Build environment (for self-hosted runners)"
runs:
using: "composite"
steps:
- name: Setup custom apt repositories (azure-cli & yq)
shell: bash
run: |
sudo apt-get update
sudo apt-get install ca-certificates curl apt-transport-https lsb-release gnupg -y
curl -sL https://packages.microsoft.com/keys/microsoft.asc |
gpg --dearmor |
sudo tee /etc/apt/trusted.gpg.d/microsoft.gpg > /dev/null
AZ_REPO=$(lsb_release -cs)
echo "deb [arch=amd64] https://packages.microsoft.com/repos/azure-cli/ $AZ_REPO main" |
sudo tee /etc/apt/sources.list.d/azure-cli.list
sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys CC86BB64
sudo add-apt-repository ppa:rmescandon/yq
- name: Update apt repository information
shell: bash
run: |
sudo apt-get update
- name: Install build-essential & CMake
shell: bash
run: |
sudo apt-get install \
build-essential cmake \
-y
- name: Install curl gpg
shell: bash
run: |
sudo apt-get install curl gpg -y
- name: Install yq jq
run: |
sudo apt-get install yq jq -y
shell: bash
- name: Install AWS CLI
run: |
sudo apt-get -y install awscli
shell: bash
- name: Install az CLI
run: |
sudo apt-get install azure-cli -y
shell: bash
- name: Set up gcloud CLI
uses: google-github-actions/setup-gcloud@877d4953d2c70a0ba7ef3290ae968eb24af233bb
- name: Set up Docker Buildx
id: docker-setup
uses: docker/setup-buildx-action@f211e3e9ded2d9377c8cadc4489a4e38014bc4c9

View File

@ -32,9 +32,6 @@ jobs:
tags: |
type=raw,value=latest,enable={{is_default_branch}}
type=ref,event=branch
- name: Set up Docker Buildx
id: docker-setup
uses: docker/setup-buildx-action@f211e3e9ded2d9377c8cadc4489a4e38014bc4c9
- name: Log in to the Container registry
id: docker-login

View File

@ -23,6 +23,11 @@ jobs:
id: checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Build and upload access-manager container image
id: build-and-upload
uses: ./.github/actions/build_micro_service

View File

@ -21,27 +21,55 @@ jobs:
build-bootstrapper:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Check out repository
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Build the bootstrapper
uses: ./.github/actions/build_bootstrapper
build-debugd:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Check out repository
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Build debugd
uses: ./.github/actions/build_debugd
build-disk-mapper:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Check out repository
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Build disk-mapper
uses: ./.github/actions/build_disk_mapper
build-cli:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Check out repository
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Build CLI
uses: ./.github/actions/build_cli

View File

@ -38,9 +38,7 @@ jobs:
type=semver,pattern=v{{version}},value=${{ matrix.version }}
type=semver,pattern=v{{major}}.{{minor}},value=${{ matrix.version }}
type=semver,pattern=v{{major}},value=${{ matrix.version }}
- name: Set up Docker Buildx
id: docker-setup
uses: docker/setup-buildx-action@dc7b9719a96d48369863986a06765841d7ea23f6
- name: Log in to the Container registry
id: docker-login
uses: docker/login-action@49ed152c8eca782a232dede0303416e8f356c37b

View File

@ -19,6 +19,11 @@ jobs:
id: checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Build and upload constellation-node-operator container image
uses: ./.github/actions/build_operator
with:

View File

@ -31,6 +31,15 @@ jobs:
submodules: recursive
token: ${{ secrets.CI_GITHUB_REPOSITORY }}
- name: Install build packages
id: install-packages
uses: ./.github/actions/setup_linux
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Build bootstrapper
if: ${{ inputs.debug == false }}
uses: ./.github/actions/build_bootstrapper
@ -59,10 +68,9 @@ jobs:
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Install Azure CLI
- name: Install AzCopy
shell: bash
run: |
curl -sL https://aka.ms/InstallAzureCLIDeb | sudo bash
wget -q https://aka.ms/downloadazcopy-v10-linux -O azcopy.tar.gz
tar --strip-components 1 -xf azcopy.tar.gz
rm azcopy.tar.gz

View File

@ -41,9 +41,7 @@ jobs:
latest=${{ matrix.latest || false }}
tags: |
type=raw,value=${{ matrix.version }}
- name: Set up Docker Buildx
id: docker-setup
uses: docker/setup-buildx-action@dc7b9719a96d48369863986a06765841d7ea23f6
- name: Log in to the Container registry
id: docker-login
uses: docker/login-action@49ed152c8eca782a232dede0303416e8f356c37b

View File

@ -25,11 +25,16 @@ jobs:
id: checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Build and upload join-service container image
id: build-and-upload
uses: ./.github/actions/build_micro_service
with:
name: join-service
projectVersion: '0.0.0'
projectVersion: "0.0.0"
dockerfile: joinservice/Dockerfile
githubToken: ${{ secrets.GITHUB_TOKEN }}

View File

@ -24,11 +24,16 @@ jobs:
id: checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Build and upload KMS server container image
id: build-and-upload
uses: ./.github/actions/build_micro_service
with:
name: kmsserver
projectVersion: '0.0.0'
projectVersion: "0.0.0"
dockerfile: kms/Dockerfile
githubToken: ${{ secrets.GITHUB_TOKEN }}

View File

@ -4,23 +4,23 @@ on:
workflow_dispatch:
inputs:
microService:
description: 'Name of the micro-service image to build'
description: "Name of the micro-service image to build"
type: choice
options:
- 'access-manager'
- 'join-service'
- 'kmsserver'
- 'verification-service'
- "access-manager"
- "join-service"
- "kmsserver"
- "verification-service"
required: true
default: 'access-manager'
default: "access-manager"
imageTag:
description: 'Container image tag'
description: "Container image tag"
required: true
default: 'manual-build'
default: "manual-build"
version:
description: 'Version of the image to build'
description: "Version of the image to build"
required: true
default: '0.0.0'
default: "0.0.0"
jobs:
build-micro-service:
@ -33,6 +33,11 @@ jobs:
id: checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
# choose the correct Dockerfile depending on what micro-service is being build
- name: Set Dockerfile variable
id: set-variable

View File

@ -19,6 +19,11 @@ jobs:
id: checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Build and upload constellation-node-operator container image
uses: ./.github/actions/build_operator
with:

View File

@ -21,11 +21,16 @@ jobs:
id: checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Build and upload verification-service container image
id: build-and-upload
uses: ./.github/actions/build_micro_service
with:
name: verification-service
projectVersion: '0.0.0'
projectVersion: "0.0.0"
dockerfile: verify/Dockerfile
githubToken: ${{ secrets.GITHUB_TOKEN }}

View File

@ -17,7 +17,7 @@ jobs:
- name: Checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Install Go
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"

View File

@ -18,6 +18,11 @@ jobs:
with:
fetch-depth: 0
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Login to Azure
uses: ./.github/actions/azure_login
with:

View File

@ -13,6 +13,11 @@ jobs:
with:
fetch-depth: 0
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Login to Azure
uses: ./.github/actions/azure_login
with:
@ -81,6 +86,11 @@ jobs:
with:
fetch-depth: 0
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Login to Azure
uses: ./.github/actions/azure_login
with:

View File

@ -18,6 +18,11 @@ jobs:
with:
fetch-depth: 0
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Run GCP E2E test
uses: ./.github/actions/e2e_test
with:

View File

@ -13,6 +13,11 @@ jobs:
with:
fetch-depth: 0
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Run GCP E2E test
uses: ./.github/actions/e2e_test
with:
@ -56,6 +61,11 @@ jobs:
with:
fetch-depth: 0
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Run GCP E2E test
uses: ./.github/actions/e2e_test
with:

View File

@ -54,6 +54,11 @@ jobs:
- name: Check out repository
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Login to Azure
if: ${{ github.event.inputs.cloudProvider == 'azure' }}
uses: ./.github/actions/azure_login

View File

@ -27,6 +27,11 @@ jobs:
- name: Check out repository
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Login to Azure
if: ${{ github.event.inputs.cloudProvider == 'azure' }}
uses: ./.github/actions/azure_login

View File

@ -11,6 +11,11 @@ jobs:
id: checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: "1.19.1"
- name: Build cli-linux-amd64
uses: ./.github/actions/build_cli
with:

View File

@ -25,6 +25,7 @@ jobs:
steps:
- name: Checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:

View File

@ -26,14 +26,14 @@ jobs:
- name: Checkout
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Set up Go
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: 1.18
go-version: "1.19.1"
cache: true
- name: Install Dependencies
run: sudo apt-get update && sudo apt-get install -y pkg-config libcryptsetup12 libcryptsetup-dev cmake libvirt-dev
run: sudo apt-get update && sudo apt-get install -y pkg-config libcryptsetup12 libcryptsetup-dev libvirt-dev
- name: Create and populate build folder
run: mkdir build && cd build && cmake ..

View File

@ -17,10 +17,11 @@ jobs:
- name: Checkout Constellation
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- name: Set up Go
- name: Setup Go environment
uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f
with:
go-version: 1.18
go-version: "1.19.1"
cache: true
- name: Generate reference docs
run: go run . | cat header.md - > ../../cli.md