2021-09-11 09:37:29 +00:00
name : Update Repository
# Controls when the workflow will run
on :
2023-02-17 14:13:44 +00:00
#push:
2021-09-11 11:38:55 +00:00
# If the configuration has changed, this ensures we apply updates.
2023-02-17 14:13:44 +00:00
#branches: [ main ]
2021-09-11 09:37:29 +00:00
2021-09-11 11:38:55 +00:00
schedule :
# Upstream releases around once per month, so twice a week should be fine.
- cron : '23 14 * * mon,thu'
2021-09-11 09:37:29 +00:00
workflow_dispatch :
jobs :
2023-03-20 16:33:34 +00:00
check-upstream :
name : Check for a new releases upstream
2023-05-12 13:54:06 +00:00
runs-on : ubuntu-latest
2021-09-11 09:37:29 +00:00
2023-02-17 15:01:55 +00:00
outputs :
2023-03-20 16:33:34 +00:00
innernet_release : ${{ steps.check-latest-release.outputs.innernet_release }}
2023-05-01 07:25:15 +00:00
innernet_version : ${{ steps.check-latest-release.outputs.innernet_version }}
2023-03-20 16:33:34 +00:00
tarball_url : ${{ steps.check-latest-release.outputs.tarball_url }}
new_release_exists : ${{ steps.check-repo-release.outputs.new_release_exists }}
2023-05-01 07:25:15 +00:00
2021-09-11 09:37:29 +00:00
steps :
2023-02-17 14:13:44 +00:00
- name : Install Distro Dependencies
2023-03-20 16:33:34 +00:00
run : sudo env DEBIAN_FRONTEND=noninteractive apt-get install --no-install-recommends --yes jq liblzma-dev reprepro
2023-02-17 14:13:44 +00:00
2023-05-01 07:25:15 +00:00
- name : Set Ubuntu Release Name
id : set-ubuntu-release-name
run : |
echo "ubuntu_release=$(lsb_release --short --codename)" >>"$GITHUB_OUTPUT"
2023-03-20 16:33:34 +00:00
- name : Check Latest Release
id : check-latest-release
2023-02-17 14:13:44 +00:00
run : |
wget -O- \
-H'Accept : application/json' \
2023-02-17 14:15:02 +00:00
"https://api.github.com/repos/tonarino/innernet/releases/latest" \
2023-02-17 14:13:44 +00:00
| jq -r '(.name + " " + .tarball_url)' \
| (
read release tarball_url
echo "innernet_release=$release" >>"$GITHUB_OUTPUT"
2023-05-01 07:25:15 +00:00
echo "innernet_version=${release#v}" >>"$GITHUB_OUTPUT"
2023-03-20 16:33:34 +00:00
echo "tarball_url=$tarball_url" >>"$GITHUB_OUTPUT"
2023-03-20 16:59:36 +00:00
echo "Latest release: $release"
2023-02-17 14:13:44 +00:00
)
2023-03-20 16:37:50 +00:00
- name : Checkout
2024-05-17 09:44:02 +00:00
uses : actions/checkout@v4
2023-03-20 16:37:50 +00:00
with :
# See https://github.com/marketplace/actions/github-push
persist-credentials : false
fetch-depth : 0
2023-03-20 16:33:34 +00:00
- name : Check Repo Release
id : check-repo-release
run : |
2023-07-30 12:37:03 +00:00
declare -a new_release_exists
2024-05-17 09:44:02 +00:00
ver_codenames=( $(python3 -c 'import json; import yaml; import sys; json.dump(yaml.safe_load(open(sys.argv[1])), sys.stdout)' .github/workflows/main.yml | jq -r '.jobs."build-deb".strategy.matrix.include[] | .os+"/"+.codename') )
2023-07-30 12:37:03 +00:00
for arch in amd64 armhf arm64; do
2024-05-17 09:44:02 +00:00
for ver_codename in "${ver_codenames[@]}"; do
2023-07-30 12:37:03 +00:00
ver=${ver_codename%/*}
codename=${ver_codename##*/}
# Note the leading v to match the Git tag.
indexed=v$(reprepro -A "$arch" -b debian --list-format '${version}\n' listmatched "$codename" innernet)
upstream="${{ steps.check-latest-release.outputs.innernet_release }}-0ubuntu0~$codename"
echo "Repo release in $codename/$arch: $indexed"
if [ "x$indexed" != "x$upstream" ]; then
new_release_exists+=( "\"$ver\"" )
fi
done
2023-05-12 13:54:06 +00:00
done
2023-07-30 12:37:03 +00:00
(IFS=$'\n' ; echo "new_release_exists=[$(echo -n "${new_release_exists[*]}" | sort -u | tr '\n' , | sed -e 's;,$;;')]" >>"$GITHUB_OUTPUT")
2023-05-01 07:25:15 +00:00
2023-03-20 16:54:26 +00:00
- name : Show Output
id : show-output
run : |
echo "## Job Outputs" >>"$GITHUB_STEP_SUMMARY"
2023-03-20 17:05:33 +00:00
echo "* \`innernet_release=${{ steps.check-latest-release.outputs.innernet_release }}\`" >>"$GITHUB_STEP_SUMMARY"
2023-05-01 07:25:15 +00:00
echo "* \`innernet_version=${{ steps.check-latest-release.outputs.innernet_version }}\`" >>"$GITHUB_STEP_SUMMARY"
2023-07-30 12:37:03 +00:00
echo "* \`tarball_url=${{ steps.check-latest-release.outputs.tarball_url }}\`" >>"$GITHUB_STEP_SUMMARY"
2023-03-20 17:05:33 +00:00
echo "* \`new_release_exists=${{ steps.check-repo-release.outputs.new_release_exists }}\`" >>"$GITHUB_STEP_SUMMARY"
2023-03-20 16:33:34 +00:00
build-deb :
2023-07-30 12:37:03 +00:00
name : Build DEB Packages ${{ matrix.os }}/${{ matrix.arch }}
2023-03-20 16:33:34 +00:00
needs : [ check-upstream]
2023-05-15 15:20:48 +00:00
if : "fromJson(needs.check-upstream.outputs.new_release_exists)[0] != null"
2024-01-05 08:29:30 +00:00
runs-on : ubuntu-latest
container :
image : ${{ matrix.image }}
2023-05-01 07:25:15 +00:00
strategy :
matrix :
2024-01-05 08:29:30 +00:00
arch : [ amd64]
2023-05-12 14:08:56 +00:00
os : ${{ fromJson(needs.check-upstream.outputs.new_release_exists) }}
2023-07-30 12:37:03 +00:00
include :
2024-05-17 09:39:31 +00:00
- os : ubuntu-24.04
codename : noble
image : ubuntu:24.04
2023-07-30 12:37:03 +00:00
- os : ubuntu-22.04
codename : jammy
2024-01-05 08:29:30 +00:00
image : ubuntu:22.04
2023-07-30 12:37:03 +00:00
- os : ubuntu-20.04
codename : focal
2024-01-05 08:29:30 +00:00
image : ubuntu:20.04
2023-03-20 16:33:34 +00:00
steps :
- name : Install Distro Dependencies
2024-01-05 08:29:30 +00:00
run : |
apt-get update
DEBIAN_FRONTEND=noninteractive apt-get install --no-install-recommends --yes build-essential ca-certificates dpkg-dev liblzma-dev wget
2023-03-20 16:33:34 +00:00
- name : Download Latest Release
id : download-release
run : |
wget -O- "${{ needs.check-upstream.outputs.tarball_url }}" | tar xz
mv tonarino-innernet-*/* .
rm -fr tonarino-innernet-*
2024-01-05 08:29:30 +00:00
sed -i -e '/^readme =/ d' server/Cargo.toml
2023-03-20 16:33:34 +00:00
2023-02-17 14:13:44 +00:00
- name : Install Rust
uses : actions-rs/toolchain@v1
with :
2023-02-17 14:18:38 +00:00
toolchain : stable
2023-02-17 14:13:44 +00:00
profile : minimal
override : true
- name : Install cargo-deb
run : |
2023-07-30 12:37:03 +00:00
type -p cargo-deb >/dev/null || cargo install cargo-deb
2023-02-17 14:13:44 +00:00
2023-02-17 14:51:29 +00:00
- name : Set Up Rust Cache
2023-07-30 12:37:03 +00:00
uses : Swatinem/rust-cache@v2
2023-05-01 07:25:15 +00:00
with :
2023-07-30 12:37:03 +00:00
key : ${{ matrix.os }}-amd64
2023-05-01 07:25:15 +00:00
2023-02-17 14:13:44 +00:00
- name : Build Client DEB
2024-05-17 09:44:02 +00:00
run : cargo deb -p client --deb-version=${{ needs.check-upstream.outputs.innernet_version }}-0ubuntu0~${{ matrix.codename }}
2023-05-01 07:25:15 +00:00
2023-02-17 14:13:44 +00:00
- name : Build Server DEB
2024-05-17 09:44:02 +00:00
run : cargo deb -p server --deb-version=${{ needs.check-upstream.outputs.innernet_version }}-0ubuntu0~${{ matrix.codename }}
2021-09-11 09:37:29 +00:00
2023-02-17 14:13:44 +00:00
- name : Upload DEBs
2024-05-17 09:44:02 +00:00
uses : actions/upload-artifact@v4
2021-09-11 09:37:29 +00:00
with :
2023-07-30 12:37:03 +00:00
# Syntax: https://github.com/actions/upload-artifact/issues/22
name : deb ${{ matrix.codename }} ${{ matrix.arch }}
2023-02-17 14:51:29 +00:00
path : target/debian/*.deb
2023-05-01 07:25:15 +00:00
2023-07-30 12:37:03 +00:00
build-cross-deb :
name : Build DEB Packages ${{ matrix.os }}/${{ matrix.arch }} (Cross-Compiled)
needs : [ check-upstream]
2023-05-15 15:23:15 +00:00
if : "fromJson(needs.check-upstream.outputs.new_release_exists)[0] != null"
2023-05-01 07:25:15 +00:00
runs-on : ${{ matrix.os }}
strategy :
matrix :
2023-05-12 14:08:56 +00:00
os : ${{ fromJson(needs.check-upstream.outputs.new_release_exists) }}
2023-07-30 12:37:03 +00:00
arch :
- armhf
- arm64
include :
- arch : armhf
target : armv7-unknown-linux-gnueabihf
target_prefix : arm-linux-gnueabihf-
- arch : arm64
target : aarch64-unknown-linux-gnu
target_prefix : aarch64-linux-gnu-
steps :
2024-01-05 08:29:30 +00:00
- name : Infer Configuration
id : config
run : |
case "${{ matrix.os }}" in
ubuntu-22.04)
echo "codename=jammy" >>"$GITHUB_OUTPUT"
;;
ubuntu-20.04)
echo "codename=focal" >>"$GITHUB_OUTPUT"
;;
*)
if [ "ubuntu-$(lsb_release -sr)" = "${{ matrix.os }}" ]; then
echo "codename=$(lsb_release -sc)" >>"$GITHUB_OUTPUT"
else
echo "unknown matrix.os: ${{ matrix.os }}" >&2
exit 1
fi
;;
esac
2023-07-30 12:37:03 +00:00
- name : Install Distro Dependencies
run : |
2024-01-05 08:29:30 +00:00
sudo sed -i -e 's;^\(deb\(-src\)\?\)\(\s\+\)\(\(https\?://azure\.archive\.ubuntu\.com\|https\?://archive\.ubuntu\.com\|https\?://security\.ubuntu\.com\)/\|mirror+file:/etc/apt/apt-mirrors\.txt\);\1\3[arch=amd64,i386]\3\4;' /etc/apt/sources.list /etc/apt/sources.list.d/*.list
2024-05-17 09:39:31 +00:00
for f in /etc/apt/sources.list.d/*.sources; do
# -i inplace doesn't work with END.
sudo awk 'BEGIN { FS = ": +"; } END { if (found) print "Architectures: amd64 i386" archs; } found && !$0 { print "Architectures: amd64 i386" archs; } !$0 { found = 0; archs = ""; } $1 == "URIs" && $2 ~ /azure\.archive\.ubuntu\.com/ { found = 1; } $1 == "Architectures" { archs = " " $2; next; } { print; }' "$f" | sudo tee "$f.tmp" >/dev/null
sudo mv "$f.tmp" "$f"
done
2023-07-30 12:37:03 +00:00
sudo dpkg --add-architecture "${{ matrix.arch }}"
2024-01-05 08:29:30 +00:00
# apt-get install goes into an infinite loop (use -o Debug::pkgAcquire=true to see it) if we use apt-mirrors.txt, like GitHub does for the host architecture.
# So we just limit the mirrors file and use our trusty sources.list overrides.
echo "deb [arch=armhf,arm64,riscv64] http://ports.ubuntu.com/ ${{ steps.config.outputs.codename }} main universe" | sudo tee /etc/apt/sources.list.d/ports.list >/dev/null
echo "deb [arch=armhf,arm64,riscv64] http://ports.ubuntu.com/ ${{ steps.config.outputs.codename }}-security main universe" | sudo tee -a /etc/apt/sources.list.d/ports.list >/dev/null
echo "deb [arch=armhf,arm64,riscv64] http://ports.ubuntu.com/ ${{ steps.config.outputs.codename }}-updates main universe" | sudo tee -a /etc/apt/sources.list.d/ports.list >/dev/null
2023-07-30 12:37:03 +00:00
sudo apt-get update
sudo env DEBIAN_FRONTEND=noninteractive apt-get install --no-install-recommends --yes dpkg-dev liblzma-dev pkg-config build-essential "crossbuild-essential-${{ matrix.arch }}" libsqlite3-dev:"${{ matrix.arch }}"
- name : Set Up Environment
id : setup-env
run : |
echo "CC_${{ matrix.target }}=${{ matrix.target_prefix }}gcc" >>"$GITHUB_ENV"
echo "HOST_CC=gcc" >>"$GITHUB_ENV"
mkdir -p .cargo
echo "[target.${{ matrix.target }}]" >>.cargo/config
echo "linker = \"${{ matrix.target_prefix }}gcc\"" >>.cargo/config
echo "strip = { path = \"${{ matrix.target_prefix }}strip\" }" >>.cargo/config
echo "objcopy = { path = \"${{ matrix.target_prefix }}objcopy\" }" >>.cargo/config
- name : Download Latest Release
id : download-release
run : |
wget -O- "${{ needs.check-upstream.outputs.tarball_url }}" | tar xz
mv tonarino-innernet-*/* .
rm -fr tonarino-innernet-*
2024-01-05 08:29:30 +00:00
sed -i -e '/^readme =/ d' server/Cargo.toml
2023-07-30 12:37:03 +00:00
- name : Install Rust
uses : actions-rs/toolchain@v1
with :
toolchain : stable
profile : minimal
override : true
target : ${{ matrix.target }}
- name : Set Up Rust Cache
uses : Swatinem/rust-cache@v2
with :
key : ${{ matrix.os }}-${{ matrix.arch }}
- name : Install cargo-deb
run : |
type -p cargo-deb >/dev/null || cargo install cargo-deb
- name : Build Client DEB
2024-05-17 09:44:02 +00:00
run : |
cargo deb -p client --target=${{ matrix.target }} --deb-version=${{ needs.check-upstream.outputs.innernet_version }}-0ubuntu0~${{ steps.config.outputs.codename }}
2023-07-30 12:37:03 +00:00
- name : Build Server DEB
2024-05-17 09:44:02 +00:00
run : |
cargo deb -p server --target=${{ matrix.target }} --deb-version=${{ needs.check-upstream.outputs.innernet_version }}-0ubuntu0~${{ steps.config.outputs.codename }}
2023-07-30 12:37:03 +00:00
- name : Upload DEBs
2024-05-17 09:44:02 +00:00
uses : actions/upload-artifact@v4
2023-07-30 12:37:03 +00:00
with :
# Syntax: https://github.com/actions/upload-artifact/issues/22
2024-01-05 08:29:30 +00:00
name : deb ${{ steps.config.outputs.codename }} ${{ matrix.arch }}
2023-07-30 12:37:03 +00:00
path : target/${{ matrix.target }}/debian/*.deb
test-cross :
2024-01-05 08:29:30 +00:00
name : Test DEB Packages ${{ matrix.image }}/${{ matrix.os }} (QEMU)
needs : [ check-upstream, build-cross-deb]
2023-07-30 12:37:03 +00:00
if : "fromJson(needs.check-upstream.outputs.new_release_exists)[0] != null"
runs-on : ubuntu-latest
strategy :
matrix :
image :
- raspios_lite:latest
- raspios_lite_arm64:latest
include :
- image : raspios_lite:latest
2024-01-05 08:29:30 +00:00
os : ubuntu-22.04
codename : jammy
2023-07-30 12:37:03 +00:00
qemu_cpu : cortex-a7
qemu_cpu_info : cpuinfo/raspberrypi_3b
arch : armhf
- image : raspios_lite_arm64:latest
2024-01-05 08:29:30 +00:00
os : ubuntu-22.04
codename : jammy
2023-07-30 12:37:03 +00:00
qemu_cpu : cortex-a53
qemu_cpu_info : cpuinfo/raspberrypi_4b
arch : arm64
steps :
- name : Download DEBs
2024-01-05 08:29:30 +00:00
if : "contains(needs.check-upstream.outputs.new_release_exists, matrix.os)"
2024-05-17 09:44:02 +00:00
uses : actions/download-artifact@v4
2023-07-30 12:37:03 +00:00
with :
name : deb ${{ matrix.codename }} ${{ matrix.arch }}
path : ./artifacts
- name : Test DEBs
id : test
2024-01-05 08:29:30 +00:00
if : "contains(needs.check-upstream.outputs.new_release_exists, matrix.os)"
2023-07-30 12:37:03 +00:00
uses : pguyot/arm-runner-action@v2
with :
base_image : ${{ matrix.image }}
cpu : ${{ matrix.qemu_cpu }}
cpu_info : ${{ matrix.qemu_cpu_info }}
copy_artifact_path : github_test_summary
debug : false
commands : |
echo "* \`arch=$(dpkg-architecture -q DEB_HOST_ARCH)\`" >>"github_test_summary"
echo "* \`codename=$(lsb_release --short --codename)\`" >>"github_test_summary"
dpkg -i artifacts/innernet_*.deb
dpkg -i artifacts/innernet-server_*.deb
DEBIAN_FRONTEND=noninteractive apt-get update
DEBIAN_FRONTEND=noninteractive apt-get --no-install-recommends --yes --fix-broken install
innernet --version
innernet-server --version
- name : Show Output
id : show-output
2024-01-05 08:29:30 +00:00
if : "contains(needs.check-upstream.outputs.new_release_exists, matrix.os)"
2023-07-30 12:37:03 +00:00
run : |
echo "## Job Outputs" >>"$GITHUB_STEP_SUMMARY"
cat github_test_summary >>"$GITHUB_STEP_SUMMARY"
update-repo :
name : Update Repository
needs : [ check-upstream, build-deb, test-cross]
if : "fromJson(needs.check-upstream.outputs.new_release_exists)[0] != null"
runs-on : ubuntu-latest
2023-02-17 14:13:44 +00:00
steps :
- name : Install Distro Dependencies
2023-02-17 14:51:29 +00:00
run : sudo env DEBIAN_FRONTEND=noninteractive apt-get install --no-install-recommends --yes git gpg reprepro
2021-09-11 09:37:29 +00:00
2023-02-17 14:51:29 +00:00
- name : Set Up GPG Keys
2021-09-11 10:32:50 +00:00
run : |
2021-09-11 11:16:10 +00:00
mkdir -p -m 0700 "$HOME/.gnupg"
2021-09-11 11:19:43 +00:00
echo 'pinentry-mode loopback' >>"$HOME/.gnupg/gpg.conf"
echo 'allow-loopback-pinentry' >>"$HOME/.gnupg/gpg-agent.conf"
echo 'allow-preset-passphrase' >>"$HOME/.gnupg/gpg-agent.conf"
2021-09-11 11:06:31 +00:00
gpgconf --reload gpg-agent
2021-09-11 10:32:50 +00:00
echo "${{ secrets.GPG_SIGNING_KEY }}" | gpg --quiet --batch --yes --import
2021-09-11 11:21:31 +00:00
echo '${{ secrets.GPG_SIGNING_PASSPHRASE }}' | /usr/lib/gnupg/gpg-preset-passphrase --preset 57F0E65446A301CC19914FD61167922350A2D8B2
2023-02-17 14:51:29 +00:00
- name : Checkout
2024-05-17 09:44:02 +00:00
uses : actions/checkout@v4
2023-02-17 14:51:29 +00:00
with :
# See https://github.com/marketplace/actions/github-push
persist-credentials : false
fetch-depth : 0
2023-05-12 14:25:01 +00:00
- name : Download DEBs
2024-05-17 09:44:02 +00:00
uses : actions/download-artifact@v4
2023-02-17 14:13:44 +00:00
with :
2023-02-17 14:51:29 +00:00
path : ./artifacts
2023-05-01 07:25:15 +00:00
2023-07-30 12:37:03 +00:00
- name : Include DEBs
id : include-debs
2023-02-17 14:51:29 +00:00
run : |
2023-07-30 12:37:03 +00:00
declare -a codenames archs
for path in artifacts/deb\ */*.deb; do
codename=${path#artifacts/deb }
arch=${codename##* }
arch=${arch%%/*}
codename=${codename% *}
2023-07-30 13:10:22 +00:00
name="$(dpkg-deb --field "$path" package)"
if [ ! -e "debian/pool/contrib/i/$name/$(basename "$path")" ]; then
reprepro -A "$arch" --export=silent-never -b debian includedeb "$codename" "$path"
codenames+=( "$codename" )
archs+=( "$arch" )
else
echo 'Package $name already exists. Silently ignored.'
fi
2023-02-17 14:51:29 +00:00
done
2023-07-30 12:37:03 +00:00
(IFS=$'\n' ; echo "codenames=$(echo "${codenames[*]}" | sort -u | xargs -r)" >>"$GITHUB_OUTPUT")
(IFS=$'\n' ; echo "archs=$(echo "${archs[*]}" | sort -u | xargs -r)" >>"$GITHUB_OUTPUT")
2023-05-01 07:25:15 +00:00
2023-02-17 14:13:44 +00:00
- name : Update Repository
2023-02-17 14:51:29 +00:00
run : |
has_changes() {
git status --porcelain "$@" | grep -q .
}
if has_changes debian/pool; then
2023-07-30 12:37:03 +00:00
reprepro -b debian export
2023-02-17 14:51:29 +00:00
fi
if has_changes debian/{db,dists,pool}; then
git add debian/{db,dists,pool}
git \
-c 'user.email=41898282+github-actions[bot]@users.noreply.github.com' \
-c 'user.name=github-actions[bot]' \
2023-07-30 12:37:03 +00:00
commit -m "Included release tonarino/innernet@${{ needs.check-upstream.outputs.innernet_release }} in ${{ steps.include-debs.outputs.codenames }} for ${{ steps.include-debs.outputs.archs }}."
2023-02-17 14:51:29 +00:00
else
echo 'No updates to commit.'
fi
2021-09-11 09:37:29 +00:00
- name : Push changes
2023-05-12 13:11:21 +00:00
uses : ad-m/github-push-action@master
2023-05-01 07:25:15 +00:00
if : github.ref_name == 'main'
2021-09-11 09:37:29 +00:00
with :
github_token : ${{ secrets.GITHUB_TOKEN }}
2021-09-11 09:51:17 +00:00
branch : ${{ github.ref }}
2023-05-12 13:11:21 +00:00
2023-07-30 12:37:03 +00:00
- name : Show Output
id : show-output
run : |
echo "## Job Outputs" >>"$GITHUB_STEP_SUMMARY"
echo "* \`codenames=${{ steps.include-debs.outputs.codenames }}\`" >>"$GITHUB_STEP_SUMMARY"
echo "* \`archs=${{ steps.include-debs.outputs.archs }}\`" >>"$GITHUB_STEP_SUMMARY"