Skip to content

Different workaround for default user/group in 24.04 #452

Different workaround for default user/group in 24.04

Different workaround for default user/group in 24.04 #452

Workflow file for this run

name: Build ubuntu images
on:
schedule:
- cron: 0 12 */7 * *
push:
paths:
- '.github/workflows/build-ubuntu.yml'
- 'linux/ubuntu/**'
- 'build.ps1'
branches:
- 'master'
pull_request:
paths:
- '.github/workflows/build-ubuntu.yml'
- 'linux/ubuntu/**'
- 'build.ps1'
workflow_dispatch:
env:
IMAGE_LABEL_OWNER: ${{ github.repository_owner }}
IMAGE_LABEL_REPO: ${{ github.repository }}
SLUG: ${{ github.repository_owner }}/ubuntu
DISTRO: ubuntu
NODE: '16 18 20'
BUILD_REF: ${{ github.sha }}
SKIP_TEST: false
PUSH_GHCR: ${{ github.repository == (github.event.pull_request.head.repo.full_name || github.repository) && '1' || '' }}
PUSH_QUAY: ${{ secrets.QUAY_USER && secrets.QUAY_TOKEN && '1' || '' }}
PUSH_DOCKER_HUB: ${{ secrets.DOCKER_USER && secrets.DOCKER_TOKEN && '1' || '' }}
LATEST_TAG: 22.04
defaults:
run:
shell: sh
jobs:
build-base:
name: Build base ${{ matrix.TAG }}
if: "!contains(github.event.pull_request.body, '[skip build-base]')"
runs-on: ubuntu-latest
env:
PLATFORMS: ${{ matrix.PLATFORMS }}
strategy:
fail-fast: true
max-parallel: 4
matrix:
PLATFORMS:
- linux/amd64,linux/arm64,linux/arm/v7
TAG:
- 24.04
- 22.04
- 20.04
steps:
- uses: actions/setup-go@v5
with:
go-version: '>=1.21.0'
- name: Setup buildah
run: |
sudo apt-get -y -qq update
sudo apt-get -y install bats btrfs-progs git go-md2man golang libapparmor-dev libglib2.0-dev libgpgme11-dev libseccomp-dev libselinux1-dev make skopeo
git clone https://github.com/containers/buildah buildah
git -C buildah checkout v1.35.0
make -C buildah buildah
sudo mkdir -p /usr/local/bin/
sudo cp "$PWD/buildah/bin"/* /usr/local/bin/
sudo apt install protobuf-compiler
git clone https://github.com/containers/netavark
make -C netavark/
sudo mkdir -p /usr/local/libexec/podman/
sudo cp "$PWD/netavark/bin"/* /usr/local/libexec/podman/
curl -L https://github.com/containers/crun/releases/download/1.14.3/crun-1.14.3-linux-amd64 --output crun
chmod +x crun
sudo cp crun /usr/local/bin/crun
echo "BUILDAH_RUNTIME=/usr/local/bin/crun" >> $GITHUB_ENV
git clone https://passt.top/passt
make -C passt
sudo make -C passt install
- name: Force SLUG to lowercase
uses: actions/github-script@v6
with:
github-token: n/a
script: |
core.exportVariable('SLUG', process.env.SLUG.toLowerCase());
- name: Login to GitHub Container Registry
if: env.PUSH_GHCR
run: exec buildah login -u ${{ github.actor }} -p ${{ github.token }} ghcr.io
- name: Login to Quay
if: env.PUSH_QUAY
run: exec buildah login -u ${{ secrets.QUAY_USER }} -p ${{ secrets.QUAY_TOKEN }} quay.io
- name: Login to Docker Hub
if: env.PUSH_DOCKER_HUB
run: exec buildah login -u ${{ secrets.DOCKER_USER }} -p ${{ secrets.DOCKER_TOKEN }} docker.io
- name: Print tag
run: |
if ${{ ( github.event_name == 'schedule' || github.event_name == 'workflow_dispatch' ) }} ; then
echo "PART_TAG=$(date +%Y%m%d)" | tee -a "$GITHUB_ENV"
else
echo "PART_TAG=dev" | tee -a "$GITHUB_ENV"
fi
- name: Set Ubuntu version to RELEASE
run: |
if [ "$LATEST_TAG" = "${{ matrix.TAG }}" ]; then
echo "RELEASE_TAG=$(lsb_release -rs)" | tee -a "$GITHUB_ENV"
else
echo "RELEASE_TAG=${{ matrix.TAG }}" | tee -a "$GITHUB_ENV"
fi
- name: Set up QEMU
uses: docker/setup-qemu-action@v2
- uses: actions/checkout@v3
- name: Build and push ${{ env.DISTRO }}:${{ env.TAG }}
shell: buildah unshare pwsh "{0}"
env:
RUNNER: root
TAG: act-${{ matrix.TAG }}
LATEST_TAG: act-latest
TYPE: act
FROM_IMAGE: buildpack-deps
FROM_TAG: ${{ env.RELEASE_TAG }}
BUILD_TAG_VERSION: ${{ env.PART_TAG }}
BUILD_TAG: act-${{ matrix.TAG }}
PUSH_LATEST: ${{ env.LATEST_TAG == matrix.TAG && '1' || '' }}
PUSH_DEFAULT: ${{ ( github.event_name != 'pull_request' && github.event_name != 'push' && !env.ACT ) && '1' || '' }}
run: |
$tags = @()
$tagNames = @( "$env:TAG-$env:PART_TAG" )
if($env:PUSH_LATEST) {
$tagNames += "$env:LATEST_TAG-$env:PART_TAG"
}
if($env:PUSH_DEFAULT) {
$tagNames += $env:TAG
if($env:PUSH_LATEST) {
$tagNames += $env:LATEST_TAG
}
}
foreach($tagName in $tagNames) {
if($env:PUSH_GHCR) {
$tags += "ghcr.io/${env:SLUG}:$tagName"
}
if($env:PUSH_QUAY) {
$tags += "quay.io/${env:SLUG}:$tagName"
}
if($env:PUSH_DOCKER_HUB) {
$tags += "docker.io/${env:SLUG}:$tagName"
}
}
echo $tags
./build.ps1 `
-push `
-tags $tags
- name: Build and push ${{ env.DISTRO }}:${{ env.TAG }}
shell: buildah unshare pwsh "{0}"
env:
RUNNER: runner
TAG: runner-${{ matrix.TAG }}
LATEST_TAG: runner-latest
TYPE: runner
FROM_IMAGE: ghcr.io/${{ env.SLUG }}
FROM_TAG: act-${{ matrix.TAG }}-${{ env.PART_TAG }}
BUILD_TAG_VERSION: ${{ env.PART_TAG }}
BUILD_TAG: runner-${{ matrix.TAG }}
PUSH_LATEST: ${{ env.LATEST_TAG == matrix.TAG && '1' || '' }}
PUSH_DEFAULT: ${{ ( github.event_name != 'pull_request' && github.event_name != 'push' && !env.ACT ) && '1' || '' }}
run: |
$tags = @()
$tagNames = @( "$env:TAG-$env:PART_TAG" )
if($env:PUSH_LATEST) {
$tagNames += "$env:LATEST_TAG-$env:PART_TAG"
}
if($env:PUSH_DEFAULT) {
$tagNames += $env:TAG
if($env:PUSH_LATEST) {
$tagNames += $env:LATEST_TAG
}
}
foreach($tagName in $tagNames) {
if($env:PUSH_GHCR) {
$tags += "ghcr.io/${env:SLUG}:$tagName"
}
if($env:PUSH_QUAY) {
$tags += "quay.io/${env:SLUG}:$tagName"
}
if($env:PUSH_DOCKER_HUB) {
$tags += "docker.io/${env:SLUG}:$tagName"
}
}
echo $tags
./build.ps1 `
-push `
-tags $tags
- if: ${{ !env.SKIP_TEST }}
uses: actions/setup-go@v3
with:
go-version: '^1.16'
- if: ${{ !env.SKIP_TEST }}
uses: actions/checkout@v3
with:
repository: nektos/act
path: act
- if: ${{ !env.SKIP_TEST }}
env:
ACT_TEST_IMAGE: ghcr.io/${{ env.SLUG }}:act-${{ matrix.TAG }}-${{ env.PART_TAG }}
run: |
cd act/
go test ./...
build-flavours:
name: Build ${{ matrix.TYPE }}:${{ matrix.TAG }}
if: (!cancelled() && !failure())
runs-on: ubuntu-latest
needs: [build-base]
env:
PLATFORMS: ${{ matrix.PLATFORMS }}
BUILD_TAG: ${{ matrix.TYPE }}-${{ matrix.TAG }}
TYPE: ${{ matrix.TYPE }}
strategy:
fail-fast: false
max-parallel: 8
matrix:
TAG:
- 24.04
- 22.04
- 20.04
TYPE:
- go
- js
- pwsh
- rust
- dotnet
- java-tools
- gh
- custom
include:
- PLATFORMS: linux/amd64,linux/arm64
TYPE: go
- PLATFORMS: linux/amd64,linux/arm64
TYPE: js
- PLATFORMS: linux/amd64,linux/arm64
TYPE: pwsh
- PLATFORMS: linux/amd64,linux/arm64
TYPE: rust
- PLATFORMS: linux/amd64,linux/arm64
TYPE: dotnet
- PLATFORMS: linux/amd64,linux/arm64
TYPE: java-tools
- PLATFORMS: linux/amd64,linux/arm64,linux/arm/v7
TYPE: gh
- PLATFORMS: linux/amd64,linux/arm64
TYPE: custom
steps:
- uses: actions/setup-go@v5
with:
go-version: '>=1.21.0'
- name: Setup buildah
run: |
sudo apt-get -y -qq update
sudo apt-get -y install bats btrfs-progs git go-md2man golang libapparmor-dev libglib2.0-dev libgpgme11-dev libseccomp-dev libselinux1-dev make skopeo
git clone https://github.com/containers/buildah buildah
git -C buildah checkout v1.35.0
make -C buildah buildah
sudo mkdir -p /usr/local/bin/
sudo cp "$PWD/buildah/bin"/* /usr/local/bin/
sudo apt install protobuf-compiler
git clone https://github.com/containers/netavark
make -C netavark/
sudo mkdir -p /usr/local/libexec/podman/
sudo cp "$PWD/netavark/bin"/* /usr/local/libexec/podman/
curl -L https://github.com/containers/crun/releases/download/1.14.3/crun-1.14.3-linux-amd64 --output crun
chmod +x crun
sudo cp crun /usr/local/bin/crun
echo "BUILDAH_RUNTIME=/usr/local/bin/crun" >> $GITHUB_ENV
git clone https://passt.top/passt
make -C passt
sudo make -C passt install
- name: Cleanup
run: |
docker rmi -f $(docker images -aq) || :
rm -r "$RUNNER_TOOL_CACHE" || :
rm -r "$RUNNER_TOOLSDIRECTORY" || :
rm -r "$AGENT_TOOLSDIRECTORY" || :
shell: bash
- name: Force SLUG to lowercase
uses: actions/github-script@v6
with:
github-token: n/a
script: |
core.exportVariable('SLUG', process.env.SLUG.toLowerCase());
- name: Login to GitHub Container Registry
if: env.PUSH_GHCR
run: exec buildah login -u ${{ github.actor }} -p ${{ github.token }} ghcr.io
- name: Login to Quay
if: env.PUSH_QUAY
run: exec buildah login -u ${{ secrets.QUAY_USER }} -p ${{ secrets.QUAY_TOKEN }} quay.io
- name: Login to Docker Hub
if: env.PUSH_DOCKER_HUB
run: exec buildah login -u ${{ secrets.DOCKER_USER }} -p ${{ secrets.DOCKER_TOKEN }} docker.io
- name: Print tag
run: |
if ${{ ( github.event_name == 'schedule' || github.event_name == 'workflow_dispatch' ) }} ; then
echo "PART_TAG=$(date +%Y%m%d)" | tee -a "$GITHUB_ENV"
else
echo "PART_TAG=dev" | tee -a "$GITHUB_ENV"
fi
- name: Set Ubuntu version to RELEASE
run: |
if [ "$LATEST_TAG" = "${{ matrix.TAG }}" ]; then
echo "RELEASE_TAG=$(lsb_release -rs)" | tee -a "$GITHUB_ENV"
else
echo "RELEASE_TAG=${{ matrix.TAG }}" | tee -a "$GITHUB_ENV"
fi
- name: Set up QEMU
uses: docker/setup-qemu-action@v2
- uses: actions/checkout@v3
- name: Build and push ${{ env.DISTRO }}:${{ env.TAG }}
shell: buildah unshare pwsh "{0}"
env:
TAG: ${{ matrix.TYPE }}-${{ matrix.TAG }}
LATEST_TAG: ${{ matrix.TYPE }}-latest
FROM_IMAGE: ghcr.io/${{ env.SLUG }}
FROM_TAG: act-${{ matrix.TAG }}-${{ env.PART_TAG }}
BUILD_TAG_VERSION: ${{ env.PART_TAG }}
PUSH_LATEST: ${{ env.LATEST_TAG == matrix.TAG && '1' || '' }}
PUSH_DEFAULT: ${{ ( github.event_name != 'pull_request' && github.event_name != 'push' && !env.ACT ) && '1' || '' }}
run: |
$tags = @()
$tagNames = @( "$env:TAG-$env:PART_TAG" )
if($env:PUSH_LATEST) {
$tagNames += "$env:LATEST_TAG-$env:PART_TAG"
}
if($env:PUSH_DEFAULT) {
$tagNames += $env:TAG
if($env:PUSH_LATEST) {
$tagNames += $env:LATEST_TAG
}
}
foreach($tagName in $tagNames) {
if($env:PUSH_GHCR) {
$tags += "ghcr.io/${env:SLUG}:$tagName"
}
if($env:PUSH_QUAY) {
$tags += "quay.io/${env:SLUG}:$tagName"
}
if($env:PUSH_DOCKER_HUB) {
$tags += "docker.io/${env:SLUG}:$tagName"
}
}
echo $tags
./build.ps1 `
-push `
-tags $tags