Skip to content
.github/workflows/rust.yml

Refactor build #7

Sign in to view logs

Refactor build

Refactor build #7

Workflow file for this run

.github/workflows/rust.yml at 2a8fa3b
name: Build with Rust and Docker

Check failure on line 1 in .github/workflows/rust.yml

View workflow run for this annotation

GitHub Actions / .github/workflows/rust.yml

Invalid workflow file 

reusable workflows should be referenced at the top-level `jobs.*.uses' key, not within steps
on:
workflow_call:
inputs:
image-prefix:
description: "The Docker Hub Repository prefix to push to, e.g samply/"
required: true
type: string
profile:
required: false
type: string
default: "release"
architectures:
required: false
type: string
default: '[ "amd64", "arm64" ]'
features:
required: false
type: string
default: '[ "" ]'
cache-version:
description: "To invalidate old caches, increase this to v1, v2, ..."
required: false
type: string
default: "v0"
components:
description: 'Name all components here in JSON (e.g. [ "beam-proxy", "beam-broker" ])'
required: true
type: string
test-via-script:
description: "Whether to test via ./dev/test ci [feature]"
required: false
type: boolean
default: false
push-to:
description: "Set to none, dockerhub, ghcr or both"
required: true
type: string
# delete GHCR images older than ... (default: "one year"; state "keep" to skip)
ghcr-retention-policy:
required: false
default: one year
type: string
cargo-fmt-check:
description: "Whether to check code style with cargo fmt"
required: false
type: boolean
default: false
secrets:
DOCKERHUB_USERNAME:
required: true
DOCKERHUB_TOKEN:
required: true
env:
CARGO_TERM_COLOR: always
PROFILE: ${{ inputs.profile }}
SQLX_OFFLINE: true
jobs:
pre-check:
name: Security, License Check
runs-on: ubuntu-22.04
steps:
- uses: actions/checkout@v4
- name: Write deny.toml
run: |
if [[ -f "deny.toml" ]]; then
echo "::warning title=cargo-deny::File deny.toml exists and will be ignored by CI! Consider removing it from your project!"
fi
cat <<EOF > deny.toml
[licenses]
version = 2
allow = [
"MIT",
"Apache-2.0",
"ISC",
"BSD-3-Clause",
"Unicode-DFS-2016",
"Unicode-3.0",
"Zlib",
"OpenSSL",
"MPL-2.0",
"CDLA-Permissive-2.0"
]
[sources.allow-org]
github = ["samply"]
[advisories]
ignore = [
{ id = "RUSTSEC-2023-0071", reason = "beam needs it to build" },
{ id = "RUSTSEC-2024-0384", reason = "transative dep of beam"},
{ id = "RUSTSEC-2024-0436", reason = "paste is unmaintained but focus transitively depends on it" },
]
EOF
- uses: EmbarkStudios/cargo-deny-action@v2
build:
name: Build
runs-on: ubuntu-22.04
strategy:
matrix:
arch: ${{ fromJSON(inputs.architectures) }}
features: ${{ fromJSON(inputs.features) }}
steps:
- name: Print matrix vars
run: |
echo "Arch: ${{ matrix.arch }}"
echo "Features: ${{ matrix.features }}"
- name: Build
uses: samply/github-workflows/.github/workflows/rust-inner.yml@faster
with:
architecture: ${{ matrix.arch }}
features: ${{ matrix.features }}
profile: ${{ inputs.profile }}
test:
name: Test
needs: [ build ]
runs-on: ubuntu-22.04
strategy:
matrix:
features: ${{ fromJSON(inputs.features) }}
steps:
- uses: actions/checkout@v4
- name: Download bins
uses: actions/download-artifact@v4
with:
name: binaries-amd64-${{ matrix.features }}
path: artifacts/binaries-amd64/
- name: Download tests
uses: actions/download-artifact@v4
with:
name: testbinaries-amd64-${{ matrix.features }}
path: testbinaries/
- name: Run tests via cargo
if: ${{ ! inputs.test-via-script }}
run: |
for testbin in testbinaries/*; do
chmod +x $testbin
$testbin
done
- name: Run tests via script
if: ${{ inputs.test-via-script }}
run: |
./dev/test ci ${{ matrix.features && format('--features {0}', matrix.features) }}
cargo-fmt-check:
name: Cargo fmt check
if: ${{ inputs.cargo-fmt-check }}
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: dtolnay/rust-toolchain@stable
- run: cargo fmt --all --check
docker:
name: Docker
needs: [ build, pre-check, test ]
if: ${{ inputs.push-to }}
strategy:
matrix:
components: ${{ fromJSON(inputs.components) }}
features: ${{ fromJSON(inputs.features) }}
# This workflow defines how a maven package is built, tested and published.
# Visit: https://github.com/samply/github-workflows/blob/develop/.github/workflows/docker-ci.yml, for more information
uses: ./.github/workflows/docker-ci.yml
with:
# The Docker Hub Repository you want eventually push to, e.g samply/share-client
image-name: ${{ inputs.image-prefix }}${{ matrix.components }}
image-tag-suffix: ${{ matrix.features && format('-{0}', matrix.features) }}
# Define special prefixes for docker tags. They will prefix each images tag.
# image-tag-prefix: "foo"
# Define the build context of your image, typically default '.' will be enough
# build-context: '.'
# Define the Dockerfile of your image, typically default './Dockerfile' will be enough
build-file: './Dockerfile'
# NOTE: This doesn't work currently
# A list of build arguments, passed to the docker build
build-args: |
FEATURE=-${{ matrix.features }}
COMPONENT=${{ matrix.components }}
# Define the target platforms of the docker build (default "linux/amd64,linux/arm64/v8")
# build-platforms: ${{ env.build_platforms }}
build-platforms-short: ${{ inputs.architectures }}
# If your actions generate an artifact in a previous build step, you can tell this workflow to download it
artifact-name: '*'
binary-name: ${{ matrix.components }}
push-to: ${{ inputs.push-to }}
ghcr-retention-policy: ${{ inputs.ghcr-retention-policy }}
secrets:
DOCKERHUB_USERNAME: ${{ secrets.DOCKERHUB_USERNAME }}
DOCKERHUB_TOKEN: ${{ secrets.DOCKERHUB_TOKEN }}