Skip to content

fix(lumina): move some system setup scripts to setup-manager #501

fix(lumina): move some system setup scripts to setup-manager

fix(lumina): move some system setup scripts to setup-manager #501

Workflow file for this run

name: Build Images
on:
push:
branches:
- main
pull_request:
branches:
- main
schedule:
- cron: "0 6/12 * * *" # 6am & 6pm every day
workflow_dispatch:
env:
IMAGE_REGISTRY: ghcr.io/${{ github.repository_owner }}
jobs:
build-lumina:
runs-on: ubuntu-latest
strategy:
fail-fast: false
matrix:
fedora-version: [38, 39]
permissions:
contents: read
packages: write
id-token: write
env:
TAGS: ""
TAGS_CONCAT: ""
IMAGE_NAME: eternal-linux/lumina
steps:
- name: Checkout
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
- name: Generate Image Metadata
if: github.event_name != 'pull_request'
shell: bash
run: |
TAGS=()
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.fedora-version }}")
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:$(git rev-parse --short HEAD)-${{ matrix.fedora-version }}")
echo "TAGS=${TAGS[*]}" >> $GITHUB_ENV
echo "TAGS_CONCAT=$(IFS=, ; echo "${TAGS[*]}")" >> $GITHUB_ENV
- name: Generate Image Metadata (Pull Request)
if: github.event_name == 'pull_request'
shell: bash
run: |
TAGS=()
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:pr${{ github.event.number }}-${{ matrix.fedora-version }}")
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:pr${{ github.event.number }}-$(git rev-parse --short HEAD)-${{ matrix.fedora-version }}")
echo "TAGS=${TAGS[*]}" >> $GITHUB_ENV
echo "TAGS_CONCAT=$(IFS=, ; echo "${TAGS[*]}")" >> $GITHUB_ENV
- name: Login to GHCR
uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ github.token }}
- name: Setup Docker Buildx
uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3
- name: Build Image
id: build
uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5
with:
context: lumina/.
file: lumina/Containerfile
push: true
tags: ${{ env.TAGS_CONCAT }}
build-args: |
BASE_TAG=${{ matrix.fedora-version }}
- name: Sign Image
uses: rsturla/eternal-main/.github/actions/sign-image@main
if: github.event_name != 'pull_request'
with:
registry: ${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}
digest: ${{ steps.build.outputs.digest }}
private-key: ${{ secrets.ETERNAL_LINUX_SIGNING_KEY }}
private-key-passphrase: ${{ secrets.ETERNAL_LINUX_SIGNING_KEY_PASSPHRASE }}
build-lumina-nvidia:
runs-on: ubuntu-latest
strategy:
fail-fast: false
matrix:
fedora-version: [38, 39]
nvidia-version: [535]
include:
- nvidia-version: 535
nvidia-is-stable: true
permissions:
contents: read
packages: write
id-token: write
env:
TAGS: ""
TAGS_CONCAT: ""
IMAGE_NAME: eternal-linux/lumina
steps:
- name: Checkout
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
- name: Generate Image Metadata
if: github.event_name != 'pull_request'
shell: bash
run: |
TAGS=()
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.fedora-version }}-nvidia${{ matrix.nvidia-version }}")
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:$(git rev-parse --short HEAD)-${{ matrix.fedora-version }}-nvidia${{ matrix.nvidia-version }}")
if [[ "${{ matrix.nvidia-is-stable }}" == "true" ]]; then
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.fedora-version }}-nvidia")
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:$(git rev-parse --short HEAD)-${{ matrix.fedora-version }}-nvidia")
fi
echo "TAGS=${TAGS[*]}" >> $GITHUB_ENV
echo "TAGS_CONCAT=$(IFS=, ; echo "${TAGS[*]}")" >> $GITHUB_ENV
- name: Generate Image Metadata (Pull Request)
if: github.event_name == 'pull_request'
shell: bash
run: |
TAGS=()
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:pr${{ github.event.number }}-${{ matrix.fedora-version }}-nvidia${{ matrix.nvidia-version }}")
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:pr${{ github.event.number }}-$(git rev-parse --short HEAD)-${{ matrix.fedora-version }}-nvidia${{ matrix.nvidia-version }}")
if [[ "${{ matrix.nvidia-is-stable }}" == "true" ]]; then
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:pr${{ github.event.number }}-${{ matrix.fedora-version }}-nvidia")
TAGS+=("${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}:pr${{ github.event.number }}-$(git rev-parse --short HEAD)-${{ matrix.fedora-version }}-nvidia")
fi
echo "TAGS=${TAGS[*]}" >> $GITHUB_ENV
echo "TAGS_CONCAT=$(IFS=, ; echo "${TAGS[*]}")" >> $GITHUB_ENV
- name: Login to GHCR
uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ github.token }}
- name: Setup Docker Buildx
uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3
- name: Build Image
id: build
uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5
with:
context: lumina/.
file: lumina/Containerfile
push: true
tags: ${{ env.TAGS_CONCAT }}
build-args: |
BASE_TAG=${{ matrix.fedora-version }}-nvidia${{ matrix.nvidia-version }}
- name: Sign Image
uses: rsturla/eternal-main/.github/actions/sign-image@main
if: github.event_name != 'pull_request'
with:
registry: ${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAME }}
digest: ${{ steps.build.outputs.digest }}
private-key: ${{ secrets.ETERNAL_LINUX_SIGNING_KEY }}
private-key-passphrase: ${{ secrets.ETERNAL_LINUX_SIGNING_KEY_PASSPHRASE }}