Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Refactor project build process #445

Merged
merged 1 commit into from
Apr 13, 2023
Merged

Refactor project build process #445

merged 1 commit into from
Apr 13, 2023

Conversation

atc0005
Copy link
Owner

@atc0005 atc0005 commented Apr 13, 2023

Changes

  • Switch to semantic versioning (semver) compatible versioning pattern
    • filenames (where applicable)
    • embedded version metadata
  • Generate RPM/DEB packages using nFPM
    • "stable" release packages
    • "dev" release packages
      • provides binaries with _dev suffix in order to more easily test the impact of new releases
  • Add version metadata to Windows executables
    • Use github.com/tc-hib/go-winres and winres.json file to apply version details to Windows executables provided by this project
    • update .gitignore to exclude Windows syso files
      • these files are produced when running go generate as part of the build process and should not be retained in version control
  • Makefile: Compress binaries and use fixed filenames
  • Makefile: Refresh recipes to add "standard" set, new package-related options
  • Build dev/stable releases using go-ci Docker image
  • Add Dockerfile to provide "builder" image for Makefile-driven release builds
    • copy project/repo content into container at build time - explicitly changing owner:group to builduser
    • explicitly create new builduser user and group
      • this is explicitly used for Docker-based builds
    • set /builds as the working directory
    • set Git safe.directory logic at system level
  • Add new .dockerignore file to exclude unnecessary items from build image generation
  • Update Dependabot configuration to add update monitoring for go-ci-oldstable-build image
  • Update/Add Makefile recipes
    • add separate docker/podman variants of container-based project build recipes - each uses slightly different logic to achieve rootless container execution - new recipes - docker-release-build - docker-dev-build - docker-packages - podman-release-build - podman-dev-build - podman-packages
    • explicitly emit the tool used to perform specific tasks
      • this can be useful to help explain why a generated builder image does not appear in the docker image ls output as a sysadmin might expect (if it was instead built with the docker command)
    • rename/remove the helper build recipe from the help recipe output (not useful to call directly)
    • to explicitly run the build container as the builduser user that is created during build image generation when using Docker to build/run containers (Podman uses different settings)
    • to send xz compressed output to stdout, then redirect to a target file
      • this works around failures to chmod and chgrp the compressed copy of input files when run within a non-root container
    • to explicitly bind mount the release_assets path into /builds/release_assets (using the same Makefile variable) read/write (instead of relying on implied read/write access)
    • to explicitly use /builds as the working directory
  • Update README
    • note decompression step needed after downloading individual binaries or building via some Makefile recipes
    • note DEB and RPM packages as alternatives to downloading individual binaries

This collection of changes allows reliably building this project using either Docker or Podman via a "rootless" container.

References

@atc0005
Refactor project build process
3e77642 
- Switch to semantic versioning (semver) compatible versioning pattern
  - filenames (where applicable)
  - embedded version metadata
- Generate RPM/DEB packages using nFPM
  - "stable" release packages
  - "dev" release packages
    - provides binaries with `_dev` suffix in order to more easily
      test the impact of new releases
- Add version metadata to Windows executables
  - Use `github.com/tc-hib/go-winres` and `winres.json` file to apply
    version details to Windows executables provided by this project
  - update `.gitignore` to exclude Windows syso files
    - these files are produced when running go generate as part of the
      build process and should not be retained in version control
- Makefile: Compress binaries and use fixed filenames
- Makefile: Refresh recipes to add "standard" set, new package-related
  options
- Build dev/stable releases using go-ci Docker image
- Add Dockerfile to provide "builder" image for Makefile-driven
  release builds
  - copy project/repo content into container at build time
    - explicitly changing owner:group to `builduser`
  - explicitly create new `builduser` user and group
    - this is explicitly used for Docker-based builds
  - set `/builds` as the working directory
  - set Git `safe.directory` logic at system level
- Add new `.dockerignore` file to exclude unnecessary items from build
  image generation
- Update Dependabot configuration to add update monitoring for
  `go-ci-oldstable-build` image
- Update/Add Makefile recipes
  - add separate docker/podman variants of container-based project
    build recipes
    - each uses slightly different logic to achieve rootless container
      execution
    - new recipes
      - `docker-release-build`
      - `docker-dev-build`
      - `docker-packages`
      - `podman-release-build`
      - `podman-dev-build`
      - `podman-packages`
  - explicitly emit the tool used to perform specific tasks
    - this can be useful to help explain why a generated builder image
      does not appear in the `docker image ls` output as a sysadmin
      might expect (if it was instead built with the `docker` command)
  - rename/remove the helper build recipe from the `help` recipe
    output (not useful to call directly)
  - to explicitly run the build container as the `builduser` user that
    is created during build image generation when using Docker to
    build/run containers (Podman uses different settings)
  - to send `xz` compressed output to stdout, then redirect to a
    target file
    - this works around failures to `chmod` and `chgrp` the compressed
      copy of input files when run within a non-root container
  - to explicitly bind mount the `release_assets` path into
    `/builds/release_assets` (using the same Makefile variable)
    read/write (instead of relying on implied read/write access)
  - to explicitly use `/builds` as the working directory
- Update README
  - note decompression step needed after downloading individual
    binaries or building via some Makefile recipes
  - note DEB and RPM packages as alternatives to downloading
    individual binaries

This collection of changes allows reliably building this project using
either Docker or Podman via a "rootless" container.

refs GH-438
refs GH-439
refs GH-440
refs GH-441
refs GH-442
refs GH-443
@atc0005 atc0005 added documentation Improvements or additions to documentation enhancement New feature or request config dependencies builds packages Related to generated packages for this project (e.g., RPM, DEB) labels Apr 13, 2023
@atc0005 atc0005 added this to the v0.8.0 milestone Apr 13, 2023
@atc0005 atc0005 self-assigned this Apr 13, 2023
@atc0005
Copy link
Owner Author

atc0005 commented Apr 13, 2023

Test failure related to #444 , will fix that in a follow-up commit.

@atc0005 atc0005 merged commit 7236f4d into master Apr 13, 2023
@atc0005 atc0005 deleted the refactor-build-process branch April 13, 2023 22:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@atc0005 atc0005

Labels
builds config dependencies documentation Improvements or additions to documentation enhancement New feature or request packages Related to generated packages for this project (e.g., RPM, DEB)
Projects
None yet
Milestone
v0.8.0
1 participant
@atc0005