ci: build reusable workflow #771
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: ci | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref }} | |
| cancel-in-progress: true | |
| on: | |
| schedule: | |
| - cron: '0 8 */6 * *' # every 6 days | |
| workflow_dispatch: | |
| push: | |
| branches: | |
| - master | |
| pull_request: | |
| env: | |
| REPO_SLUG: tonistiigi/binfmt | |
| CACHE_GHA_SCOPE: binfmt | |
| jobs: | |
| prepare: | |
| runs-on: ubuntu-24.04 | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| target: | |
| - mainline | |
| - buildkit | |
| - desktop | |
| steps: | |
| - | |
| name: Checkout | |
| uses: actions/checkout@v4 | |
| - | |
| name: Expose GitHub Runtime | |
| uses: crazy-max/ghaction-github-runtime@v3 | |
| - | |
| name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v3 | |
| - | |
| name: Warm cache | |
| run: | | |
| ./hack/warm-cache ${{ matrix.target }} | |
| env: | |
| CACHE_FROM: type=gha,scope=${{ env.CACHE_GHA_SCOPE }}-${{ matrix.target }} | |
| CACHE_TO: type=gha,scope=${{ env.CACHE_GHA_SCOPE }}-${{ matrix.target }} | |
| validate: | |
| runs-on: ubuntu-24.04 | |
| needs: | |
| - prepare | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| script: | |
| - ./hack/lint | |
| - ./hack/validate-vendor | |
| - ./hack/install-and-test | |
| steps: | |
| - | |
| name: Checkout | |
| uses: actions/checkout@v4 | |
| - | |
| name: Expose GitHub Runtime | |
| uses: crazy-max/ghaction-github-runtime@v3 | |
| - | |
| name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v3 | |
| - | |
| name: Run | |
| run: | | |
| ${{ matrix.script }} | |
| env: | |
| CACHE_FROM: type=gha,scope=${{ env.CACHE_GHA_SCOPE }}-mainline | |
| test: | |
| runs-on: ubuntu-24.04 | |
| needs: | |
| - prepare | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| target: | |
| - mainline | |
| - buildkit | |
| - desktop | |
| steps: | |
| - | |
| name: Checkout | |
| uses: actions/checkout@v4 | |
| - | |
| name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v3 | |
| - | |
| name: Test buildkit | |
| if: matrix.target == 'buildkit' | |
| uses: docker/bake-action@v5 | |
| with: | |
| targets: buildkit-test | |
| set: | | |
| *.cache-from=type=gha,scope=${{ env.CACHE_GHA_SCOPE }}-${{ matrix.target }} | |
| - | |
| name: Load mainline for testing | |
| if: matrix.target == 'mainline' | |
| uses: docker/bake-action@v5 | |
| with: | |
| targets: mainline | |
| load: true | |
| set: | | |
| *.cache-from=type=gha,scope=${{ env.CACHE_GHA_SCOPE }}-${{ matrix.target }} | |
| mainline.tags=tonistiigi/binfmt:test | |
| - | |
| name: Test mainline | |
| if: matrix.target == 'mainline' | |
| run: | | |
| docker run --rm --privileged tonistiigi/binfmt:test --uninstall qemu-* | |
| docker run --rm --privileged tonistiigi/binfmt:test --install all | |
| docker run --rm --platform linux/arm64 alpine uname -a | |
| docker run --rm --platform linux/arm/v7 alpine uname -a | |
| docker run --rm --platform linux/ppc64le alpine uname -a | |
| docker run --rm --platform linux/s390x alpine uname -a | |
| docker run --rm --platform linux/riscv64 alpine uname -a | |
| docker run --rm --platform linux/loong64 registry.alpinelinux.org/img/alpine uname -a | |
| docker run --rm --platform linux/s390x ubuntu apt update | |
| docker run --rm --platform linux/ppc64le ubuntu apt update | |
| docker run --rm --platform linux/arm64 ubuntu apt update | |
| - | |
| name: Test Syscalls | |
| if: matrix.target == 'mainline' | |
| run: | | |
| set -x | |
| docker buildx build --platform=linux/amd64,linux/arm64,linux/386,linux/arm,linux/ppc64le,linux/s390x --target=run --allow security.insecure --build-arg CONFIG_RT_GROUP_SCHED=false ./test | |
| e2e: | |
| runs-on: ubuntu-24.04 | |
| needs: | |
| - prepare | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| target: | |
| - mainline | |
| - desktop | |
| dockerfile: | |
| - pip-youtube-dl | |
| - webpack | |
| platform: | |
| - linux/arm/v7 | |
| include: | |
| - target: mainline | |
| dockerfile: ejabberd | |
| platform: linux/arm64 | |
| - target: desktop | |
| dockerfile: tini | |
| platform: linux/arm64 | |
| run_args: --rm | |
| - target: desktop | |
| dockerfile: postgis | |
| platform: linux/arm64 | |
| run_args: -d --name postgis | |
| logs_ctn_name: postgis | |
| logs_check: "UTC [1] LOG: database system is ready to accept connections" | |
| steps: | |
| - name: Prepare | |
| run: | | |
| if [ "$RUNNER_DEBUG" = "1" ]; then | |
| echo "QEMU_STRACE=1" >> $GITHUB_ENV | |
| fi | |
| - | |
| name: Checkout | |
| uses: actions/checkout@v4 | |
| - | |
| name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v3 | |
| - | |
| name: Load for testing | |
| uses: docker/bake-action@v5 | |
| with: | |
| targets: ${{ matrix.target }} | |
| load: true | |
| set: | | |
| *.cache-from=type=gha,scope=${{ env.CACHE_GHA_SCOPE }}-${{ matrix.target }} | |
| *.tags=tonistiigi/binfmt:test | |
| - | |
| name: Set up QEMU | |
| run: | | |
| docker run --privileged --rm tonistiigi/binfmt --uninstall qemu-* | |
| docker run --rm --privileged tonistiigi/binfmt:test --install all | |
| - | |
| name: Test | |
| working-directory: test/dockerfiles/${{ matrix.dockerfile }} | |
| run: | | |
| docker buildx build --build-arg QEMU_STRACE --platform ${{ matrix.platform }} --output type=cacheonly . | |
| - | |
| name: Load image | |
| if: ${{ matrix.run_args != '' }} | |
| working-directory: test/dockerfiles/${{ matrix.dockerfile }} | |
| run: | | |
| docker buildx build --build-arg QEMU_STRACE --platform ${{ matrix.platform }} -t ${{ matrix.dockerfile }}:local --load . | |
| - | |
| name: Run | |
| if: ${{ matrix.run_args != '' }} | |
| working-directory: test/dockerfiles/${{ matrix.dockerfile }} | |
| run: | | |
| docker run ${{ matrix.run_args }} --env QEMU_STRACE --platform ${{ matrix.platform }} ${{ matrix.dockerfile }}:local | |
| - | |
| name: Check container logs | |
| if: ${{ matrix.logs_ctn_name != '' && matrix.logs_check != '' }} | |
| uses: crazy-max/.github/.github/actions/container-logs-check@main | |
| with: | |
| container_name: ${{ matrix.logs_ctn_name }} | |
| log_check: ${{ matrix.logs_check }} | |
| timeout: 120 | |
| build: | |
| uses: ./.github/workflows/.build.yml | |
| secrets: inherit | |
| needs: | |
| - validate | |
| - test | |
| - e2e | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| target: | |
| - mainline | |
| - buildkit | |
| - desktop | |
| with: | |
| target: ${{ matrix.target }} |