zecfoundation
/
zebra
mirror of https://github.com/ZcashFoundation/zebra.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

feat(build): use Docker Build Cloud for image build (#8374) 

* feat(build): use Docker Build Cloud for image build

* fix(build): secrets, runner and conditional login

* ref(build): avoid using an external cache with Docker Build Cloud

* fix(build): `buildx` setup must be after registry login

* fix: merge

* fix(login): always login to Docker

* fix(build): remove extra build steps
This commit is contained in:
Gustavo Valverde 2024-06-12 08:18:18 -04:00 committed by GitHub
parent 158d6879fc
commit 139e1c3ed7
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
3 changed files with 16 additions and 23 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.github/workflows/cd-deploy-nodes-gcp.yml vendored
View File

@ -136,6 +136,8 @@ jobs:
image_name: zebrad image_name: zebrad
no_cache: ${{ inputs.no_cache || false }} no_cache: ${{ inputs.no_cache || false }}
rust_log: info rust_log: info
# This step needs access to Docker Hub secrets to run successfully
secrets: inherit
# Test that Zebra works using the default config with the latest Zebra version. # Test that Zebra works using the default config with the latest Zebra version.
test-configuration-file: test-configuration-file:

2
.github/workflows/ci-tests.yml vendored
View File

@ -130,6 +130,8 @@ jobs:
rust_backtrace: full rust_backtrace: full
rust_lib_backtrace: full rust_lib_backtrace: full
rust_log: info rust_log: info
# This step needs access to Docker Hub secrets to run successfully
secrets: inherit
# Runs Zebra unit tests # Runs Zebra unit tests
unit-tests: unit-tests:

35
.github/workflows/sub-build-docker-image.yml vendored
View File

@ -68,7 +68,7 @@ jobs:
build: build:
name: Build images name: Build images
timeout-minutes: 210 timeout-minutes: 210
runs-on: ubuntu-latest-xl runs-on: ubuntu-latest
outputs: outputs:
image_digest: ${{ steps.docker_build.outputs.digest }} image_digest: ${{ steps.docker_build.outputs.digest }}
image_name: ${{ fromJSON(steps.docker_build.outputs.metadata)['image.name'] }} image_name: ${{ fromJSON(steps.docker_build.outputs.metadata)['image.name'] }}
@ -92,6 +92,8 @@ jobs:
uses: docker/metadata-action@v5.5.1 uses: docker/metadata-action@v5.5.1
with: with:
# list of Docker images to use as base name for tags # list of Docker images to use as base name for tags
# We only publish images to DockerHub if a release is not a pre-release
# Ref: https://github.com/orgs/community/discussions/26281#discussioncomment-3251177
images: | images: |
us-docker.pkg.dev/${{ vars.GCP_PROJECT }}/zebra/${{ inputs.image_name }} us-docker.pkg.dev/${{ vars.GCP_PROJECT }}/zebra/${{ inputs.image_name }}
zfnd/${{ inputs.image_name }},enable=${{ github.event_name == 'release' && !github.event.release.prerelease }} zfnd/${{ inputs.image_name }},enable=${{ github.event_name == 'release' && !github.event.release.prerelease }}
@ -118,11 +120,6 @@ jobs:
type=edge,enable={{is_default_branch}} type=edge,enable={{is_default_branch}}
type=schedule type=schedule
# Setup Docker Buildx to allow use of docker cache layers from GH
- name: Set up Docker Buildx
id: buildx
uses: docker/setup-buildx-action@v3
- name: Authenticate to Google Cloud - name: Authenticate to Google Cloud
id: auth id: auth
uses: google-github-actions/auth@v2.1.3 uses: google-github-actions/auth@v2.1.3
@ -144,14 +141,20 @@ jobs:
password: ${{ steps.auth.outputs.access_token }} password: ${{ steps.auth.outputs.access_token }}
- name: Login to DockerHub - name: Login to DockerHub
# We only publish images to DockerHub if a release is not a pre-release
# Ref: https://github.com/orgs/community/discussions/26281#discussioncomment-3251177
if: ${{ github.event_name == 'release' && !github.event.release.prerelease }}
uses: docker/login-action@v3.2.0 uses: docker/login-action@v3.2.0
with: with:
username: ${{ secrets.DOCKERHUB_USERNAME }} username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }} password: ${{ secrets.DOCKERHUB_TOKEN }}
# Setup Docker Buildx to use Docker Build Cloud
- name: Set up Docker Buildx
id: buildx
uses: docker/setup-buildx-action@v3
with:
version: "lab:latest"
driver: cloud
endpoint: "zfnd/zebra"
# Build and push image to Google Artifact Registry, and possibly DockerHub # Build and push image to Google Artifact Registry, and possibly DockerHub
- name: Build & push - name: Build & push
id: docker_build id: docker_build
@ -171,17 +174,3 @@ jobs:
# Don't read from the cache if the caller disabled it. # Don't read from the cache if the caller disabled it.
# https://docs.docker.com/engine/reference/commandline/buildx_build/#options # https://docs.docker.com/engine/reference/commandline/buildx_build/#options
no-cache: ${{ inputs.no_cache }} no-cache: ${{ inputs.no_cache }}
# To improve build speeds, for each branch we push an additional image to the registry,
# to be used as the caching layer, using the `max` caching mode.
#
# We use multiple cache sources to confirm a cache hit, starting from a per-branch cache.
# If there's no hit, we continue with a `main` branch cache, which helps us avoid
# rebuilding cargo-chef, most dependencies, and possibly some Zebra crates.
#
# The caches are tried in top-down order, the first available cache is used:
# https://github.com/moby/moby/pull/26839#issuecomment-277383550
cache-from: |
type=registry,ref=us-docker.pkg.dev/${{ vars.GCP_PROJECT }}/zebra-caching/${{ inputs.image_name }}${{ inputs.tag_suffix }}:${{ env.GITHUB_REF_SLUG_URL }}-cache
type=registry,ref=us-docker.pkg.dev/${{ vars.GCP_PROJECT }}/zebra-caching/${{ inputs.image_name }}${{ inputs.tag_suffix }}:main-cache
cache-to: |
type=registry,ref=us-docker.pkg.dev/${{ vars.GCP_PROJECT }}/zebra-caching/${{ inputs.image_name }}${{ inputs.tag_suffix }}:${{ env.GITHUB_REF_SLUG_URL }}-cache,mode=max