Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CI: Publish binaries with ORAS #731

Merged
merged 8 commits into from
Oct 4, 2024
Merged

CI: Publish binaries with ORAS #731

merged 8 commits into from
Oct 4, 2024

Commits on Oct 2, 2024

  1. CI: publish artifacts via ORAS 

    Pushing artifacts as binaries to the project's GHCR. The build job is
split between AA and CDH+ASR. AA has specific build and runtime
requirements depending on the TEE, while the CDH+ASR are generic per
arch.

Hence AA is tagged with $sha-$tee ($arch is implicit in $tee) while
CDH+ASR are tagged with $sha-$arch.

AA-$sha-none is a multiarch image for amd64 & s390x.

Signed-off-by: Magnus Kulke <magnuskulke@microsoft.com>
    @mkulke
    mkulke committed Oct 2, 2024
    Configuration menu
    Copy the full SHA
    f6d898f View commit details
    Browse the repository at this point in the history

  2. CI: use composite action for tdx dep installation 

    To reduce duplucation among the workflows

Signed-off-by: Magnus Kulke <magnuskulke@microsoft.com>
    @mkulke
    mkulke committed Oct 2, 2024
    Configuration menu
    Copy the full SHA
    b46838c View commit details
    Browse the repository at this point in the history

  3. CI: add attestation to ORAS artifacts 

    If consumers retrieve guest-components via OCI instead of building them
themselves, it makes sense to add attestations so we can assert on the
consumer side that they have been built from untampered upstream
sources on github runners.

Signed-off-by: Magnus Kulke <magnuskulke@microsoft.com>
    @mkulke
    mkulke committed Oct 2, 2024
    Configuration menu
    Copy the full SHA
    e1c0bcc View commit details
    Browse the repository at this point in the history

  4. CI: flatten matrix into table 

    putting each permutation into an array is a more legible represenation.

Signed-off-by: Magnus Kulke <magnuskulke@microsoft.com>
    @mkulke
    mkulke committed Oct 2, 2024
    Configuration menu
    Copy the full SHA
    08870d0 View commit details
    Browse the repository at this point in the history

Commits on Oct 3, 2024

  1. Update .github/workflows/publish-artifacts.yml 

    Co-authored-by: Dan <dan.middleton@intel.com>
Signed-off-by: Magnus Kulke <mkulke@gmail.com>
    @mkulke @dcmiddle
    mkulke and dcmiddle authored Oct 3, 2024
    Configuration menu
    Copy the full SHA
    0b2ca9b View commit details
    Browse the repository at this point in the history

  2. Update .github/workflows/publish-artifacts.yml 

    Co-authored-by: Dan <dan.middleton@intel.com>
Signed-off-by: Magnus Kulke <mkulke@gmail.com>
    @mkulke @dcmiddle
    mkulke and dcmiddle authored Oct 3, 2024
    Configuration menu
    Copy the full SHA
    23f7e25 View commit details
    Browse the repository at this point in the history

  3. Update .github/workflows/publish-artifacts.yml 

    Co-authored-by: Dan <dan.middleton@intel.com>
Signed-off-by: Magnus Kulke <mkulke@gmail.com>
    @mkulke @dcmiddle
    mkulke and dcmiddle authored Oct 3, 2024
    Configuration menu
    Copy the full SHA
    72c21e9 View commit details
    Browse the repository at this point in the history

Commits on Oct 4, 2024

  1. Update .github/actions/install-intel-dcap/action.yml 

    Co-authored-by: Mikko Ylinen <mikko.ylinen@intel.com>
Signed-off-by: Magnus Kulke <mkulke@gmail.com>
    @mkulke @mythi
    mkulke and mythi authored Oct 4, 2024
    Configuration menu
    Copy the full SHA
    d856d17 View commit details
    Browse the repository at this point in the history