github/kata-containers
1
0
Fork 2
mirror of https://github.com/kata-containers/kata-containers.git synced 2025-09-02 01:16:27 +00:00
Code Issues Projects Releases Wiki Activity

Merge pull request #10791 from kata-containers/gpu_ci_cd

Browse Source 
gpu: Add first target and fix extratarballs
This commit is contained in:
Zvonko Kaiser
2025-02-06 15:47:27 -05:00
committed by GitHub
parent 62a975603e 45bd451fa0
commit eb1cf792de
2 changed files with 58 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
.github/workflows/build-kata-static-tarball-amd64.yaml vendored
View File

@@ -34,6 +34,7 @@ jobs:
asset: asset:
- agent - agent
- agent-ctl - agent-ctl
- busybox
- cloud-hypervisor - cloud-hypervisor
- cloud-hypervisor-glibc - cloud-hypervisor-glibc
- coco-guest-components - coco-guest-components
@@ -136,6 +137,15 @@ jobs:
retention-days: 15 retention-days: 15
if-no-files-found: error if-no-files-found: error
- name: store-extratarballs-artifact ${{ matrix.asset }}
if: ${{ startsWith(matrix.asset, 'kernel-nvidia-gpu') }}
uses: actions/upload-artifact@v4
with:
name: kata-artifacts-amd64-${{ matrix.asset }}-headers${{ inputs.tarball-suffix }}
path: kata-build/kata-static-${{ matrix.asset }}-headers.tar.xz
retention-days: 15
if-no-files-found: error
build-asset-rootfs: build-asset-rootfs:
runs-on: ubuntu-22.04 runs-on: ubuntu-22.04
needs: build-asset needs: build-asset
@@ -147,6 +157,7 @@ jobs:
- rootfs-image-mariner - rootfs-image-mariner
- rootfs-initrd - rootfs-initrd
- rootfs-initrd-confidential - rootfs-initrd-confidential
- rootfs-nvidia-gpu-initrd
steps: steps:
- name: Login to Kata Containers quay.io - name: Login to Kata Containers quay.io
if: ${{ inputs.push-to-registry == 'yes' }} if: ${{ inputs.push-to-registry == 'yes' }}

47
.github/workflows/build-kata-static-tarball-arm64.yaml vendored
View File

@@ -24,18 +24,27 @@ on:
jobs: jobs:
build-asset: build-asset:
runs-on: ubuntu-22.04-arm runs-on: ubuntu-22.04-arm
permissions:
contents: read
packages: write
id-token: write
attestations: write
strategy: strategy:
matrix: matrix:
asset: asset:
- agent - agent
- busybox
- cloud-hypervisor - cloud-hypervisor
- firecracker - firecracker
- kernel - kernel
- kernel-dragonball-experimental - kernel-dragonball-experimental
- kernel-nvidia-gpu
- nydus - nydus
- qemu - qemu
- stratovirt - stratovirt
- virtiofsd - virtiofsd
env:
PERFORM_ATTESTATION: ${{ matrix.asset == 'agent' && inputs.push-to-registry == 'yes' && 'yes' || 'no' }}
steps: steps:
- name: Login to Kata Containers quay.io - name: Login to Kata Containers quay.io
if: ${{ inputs.push-to-registry == 'yes' }} if: ${{ inputs.push-to-registry == 'yes' }}
@@ -72,6 +81,34 @@ jobs:
TARGET_BRANCH: ${{ inputs.target-branch }} TARGET_BRANCH: ${{ inputs.target-branch }}
RELEASE: ${{ inputs.stage == 'release' && 'yes' || 'no' }} RELEASE: ${{ inputs.stage == 'release' && 'yes' || 'no' }}
- name: Parse OCI image name and digest
id: parse-oci-segments
if: ${{ env.PERFORM_ATTESTATION == 'yes' }}
run: |
oci_image="$(<"build/${{ matrix.asset }}-oci-image")"
echo "oci-name=${oci_image%@*}" >> "$GITHUB_OUTPUT"
echo "oci-digest=${oci_image#*@}" >> "$GITHUB_OUTPUT"
- uses: oras-project/setup-oras@v1
if: ${{ env.PERFORM_ATTESTATION == 'yes' }}
with:
version: "1.2.0"
# for pushing attestations to the registry
- uses: docker/login-action@v3
if: ${{ env.PERFORM_ATTESTATION == 'yes' }}
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- uses: actions/attest-build-provenance@v1
if: ${{ env.PERFORM_ATTESTATION == 'yes' }}
with:
subject-name: ${{ steps.parse-oci-segments.outputs.oci-name }}
subject-digest: ${{ steps.parse-oci-segments.outputs.oci-digest }}
push-to-registry: true
- name: store-artifact ${{ matrix.asset }} - name: store-artifact ${{ matrix.asset }}
uses: actions/upload-artifact@v4 uses: actions/upload-artifact@v4
with: with:
@@ -80,6 +117,15 @@ jobs:
retention-days: 15 retention-days: 15
if-no-files-found: error if-no-files-found: error
- name: store-extratarballs-artifact ${{ matrix.asset }}
if: ${{ startsWith(matrix.asset, 'kernel-nvidia-gpu') }}
uses: actions/upload-artifact@v4
with:
name: kata-artifacts-arm64-${{ matrix.asset }}-headers${{ inputs.tarball-suffix }}
path: kata-build/kata-static-${{ matrix.asset }}-headers.tar.xz
retention-days: 15
if-no-files-found: error
build-asset-rootfs: build-asset-rootfs:
runs-on: ubuntu-22.04-arm runs-on: ubuntu-22.04-arm
needs: build-asset needs: build-asset
@@ -88,6 +134,7 @@ jobs:
asset: asset:
- rootfs-image - rootfs-image
- rootfs-initrd - rootfs-initrd
- rootfs-nvidia-gpu-initrd
steps: steps:
- name: Login to Kata Containers quay.io - name: Login to Kata Containers quay.io
if: ${{ inputs.push-to-registry == 'yes' }} if: ${{ inputs.push-to-registry == 'yes' }}