Initial docker image creation workflows. #9368
Conversation
aarlt
force-pushed
the
docker-workflow
branch
2 times, most recently
from
636941e to
5df8715
Compare
|
We should probably document the process at least in some README or in some other appropriate place by the way. |
aarlt
force-pushed
the
docker-workflow
branch
3 times, most recently
from
028791b to
a9a06f3
Compare
|
Once this is ok, I will increment the versions to create the first official docker images. |
|
So just to be clear: the actions failing now is by design and intentional - they'll start working on the next PR that increments the version - and @aarlt has a fork in which that was already demonstrated do work (haven't you ;-))? |
|
@ekpyron yes sure :) See: aarlt#22 .. the failure shown there right now is there because I set the version back to version zero.. https://github.com/aarlt/solidity/pull/22/commits |
There was a problem hiding this comment.
Ok, so at the time of writing aarlt#23 almost went through demonstrating how this will work in the end.
It shows what happens once we merge this and update the versions labels in the dockerfiles to 1 - it will build test and push each one and post it's SHA256 hash in the PR for us to use in CircleCI.
I'm approving this now, but I'd like someone to have a second eye on it to confirm that we can work with this now? (@chriseth, @cameel)
EDIT: As explaination of the Actions in this PR failing: they only work when the VERSION label in the dockerfiles are increased by one - we intentionally have them abort here, where there's no previous dockerfile with such a label in the repo (we create them with VERSION="0" as part of the PR).
scripts/ci/docker_upgrade.sh
Outdated
|
|
||
| if [[ $((PREV_VERSION + 1)) != $((NEXT_VERSION)) ]]; then | ||
| echo "" | ||
| echo "ERROR: Version label in Dockerfile was not incremented. You may need to change 'LABEL version' in '${DOCKERFILE}'. Aborting." |
There was a problem hiding this comment.
The current message is technically correct when taken literally but if I saw it, it would make me think that version was unchanged, not just different from expectation. Maybe it could be reworded a bit? Or maybe there should be a separate one if version was just not changed at all?
aarlt
force-pushed
the
docker-workflow
branch
3 times, most recently
from
77e80d0 to
b55d2b8
Compare
|
I really think one workflow per image with a proper trigger is nicer than unifying them with the strategy matrix and will avoid a lot of confusion down the road, so I think that's worth the duplication and I'd suggest to change that back. We could also have the update script in the action only run, if the corresponding docker file has any changes, but that will result in succeeding action runs on the PR for unchanged docker images - that's equally confusing. I expect github actions will - at some point in the future - provide some nicer means to avoid duplication like that (I saw some issue in that direction), but for now I would just keep it at separate actions. |
aarlt
force-pushed
the
docker-workflow
branch
5 times, most recently
from
05aaff2 to
05ee728
Compare
|
There's trailing whitespace in the README though, bothering the style check script ;-). |
Closes #9213. Replaces #9254.
scripts/docker/buildpack-deps/README.mdbuildpack-deps docker images
The
buildpack-depsdocker images are used to compile and test solidity within our CI.GitHub Workflow
The creation of the images are triggered by a single workflow, defined in
.github/workflows/buildpack-deps.yml. For each resultingbuildpack-depsdocker image a strategy is defined in the workflow file - the image variant. The workflow gets triggered, if any Dockerfile defined inscripts/docker/buildpack-deps/Dockerfile.*were changed within the PR.Versioning
The version of the docker images can be defined within the Dockerfile with
LABEL version. A new docker image will only be created and pushed, if the new version is incremented by1compared with the version of the Dockerfile located indevelop.Build, Test & Push
Note that the whole workflow - including all defined strategies (image variants) - will be triggered, even if only a single Dockerfile was change. The full workflow will only gets executed, if the corresponding Dockerfile was changed. The execution of workflows of unchanged Dockerfiles will not continue and just return success. See
scripts/ci/docker_upgrade.sh.If the version check was successful, the docker image will be built using the Dockerfile located in
scripts/docker/buildpack-deps/Dockerfile.*.The resulting docker image will be tested by executing the corresponding
scripts/ci/buildpack-deps_test_*scripts. These scripts are normally symlinked toscripts/ci/build.sh, except for thebuildpack-deps ubuntu1604.clang.ossfuzzdocker image, that is symlinked toscripts/ci/build_ossfuzz.sh. These scriptsscripts/ci/build.shandscripts/ci/build_ossfuzz.share also used by CircleCI, see.circleci/config.yml.If the tests passed successfully, the docker image will get tagged by the version defined within the corresponding
Dockerfile. Finally, a comment will be added to the PR that contains the full repository, version and repository digest of the freshly created docker image.