AKS Engine uses a continuous delivery approach for creating releases. Every merged commit that passes testing results in a deliverable that can be given a semantic version tag and shipped.
The master git branch of a project should always work. Only changes considered ready to be
released publicly are merged.
AKS Engine depends on components that release new versions as often as needed. Fixing a high priority bug requires the project maintainer to create a new patch release. Merging a backward-compatible feature implies a minor release.
By releasing often, each release becomes a safe and routine event. This makes it faster and easier for users to obtain specific fixes. Continuous delivery also reduces the work necessary to release a product such as AKS Engine, which depends on several external projects.
AKS Engine releases new versions when the team of maintainers determine it is needed. This usually amounts to one or more releases each month.
Minor versions—for example, v0.65.0—are created from the master branch whenever important features or changes have been merged and CI testing shows it to be stable over time.
Patch versions—for example, v0.64.1—are based on the previous release and created on demand whenever important bug fixes arrive.
See "Creating a New Release" for more detail.
Releases of the aks-engine binary comply with semantic versioning, with the "public API" broadly
defined as:
- REST, gRPC, or other API that is network-accessible
- Library or framework API intended for public use
- "Pluggable" socket-level protocols users can redirect
- CLI commands and output formats
- Integration with Azure public APIs such as ARM
In general, changes to anything a user might reasonably link to, customize, or integrate with should
be backward-compatible, or else require a major release. aks-engine users can be confident that upgrading
to a patch or to a minor release will not break anything.
Let's go through the process of creating a new release of the aks-engine binary.
We will use v0.65.0 as an example herein. You should replace this with the new version you're releasing.
For a minor release, we will release from master. For a patch, we will create a new branch at the Azure/ git origin from the previous release branch and use git cherry-pick to apply specific commits.
Once your source branch is prepared for a release, we run the "Create Release Branch" GitHub Action to automatically validate and create the destination release branch:
Use the full "v"-prefixed semver release string in the field with the description "Which version are we creating a release branch for?", for example v0.65.0.
Use the source branch (master for minor releases, or a curated branch with cherry-picked commits for patch releases, for example patch-release-v0.64.1) in the field with the description "Which branch to source release branch from?".
Click "Run Workflow" to initiate the process of validating and creating our release branch. This automation will perform the following:
- Checkout the source commit.
- Run well-known "no egress" tests to validate that the base set of default components are pre-installed onto the default Linux and Windows VHDs.
- Create a new branch at the
Azure/git origin named "release-", for examplerelease-v0.65.0for thev0.65.0release. - Generate automated release notes using the
git-chglogtool. - Create a PR with the generated release notes as a potential commit to the destination release branch.
If the "Create Release Branch" GitHub Action ran successfully, there will be a new PR in the Azure/aks-engine queue named "release: CHANGELOG", for example release: v0.65.0 CHANGELOG for the v0.65.0 release.
At this time project maintainers should review the CHANGELOG PR for the following:
- Does the generated list of changes meet with the desired set of changes to include in this release?
- Is there anything that can be improved with manual, human changes to the CHANGELOG markdown?
- If so, edit the
.mdfile in-place in the PR
- If so, edit the
Ensure that at least two maintainers lgtm the final proposed CHANGELOG. Once this PR is merged to the release branch, a GitHub Action will perform the actual release publication.
By merging the CHANGELOG PR, you will initiate the final stage in the release process:
- Validate that the release branch has the expected CHANGELOG.
- Validate well-known "no egress" tests against the final release commit build.
- Validate well-known E2E tests against the final release commit build.
- Tag the release commit (for example,
v0.65.0for thev0.65.0release). - Build binaries for Linux, MacOS, and Windows.
- Create the release using the generated CHANGELOG, and upload the binaries.
Note: because the test validations above may be subject to environmental failures, it may be appropriate to retry the "Release" GitHub Action job if it fails for this reason. It's critical to investigate the failure and ensure that it's appropriate for retrying — failures that indicate a regression in the AKS Engine-generated ARM template should definitely block a release!
Finally, let's make the new aks-engine release easy to install.
Create a pull request to add the new release to brew through our homebrew tap repository. Update the macOS sha256 checksum with this command:
$ shasum -a 256 _dist/aks-engine-$RELEASE-darwin-amd64.tar.gz
The PR will look very similar to this one.
The gofish package manager has automation in place to create an update when AKS Engine creates a release. Check the fish-food repository to see that a pull request was created.
Adding new versions to choco is automated, but you can check the status of package approval and publishing at the aks-engine chocolatey page.