provider-rke2/Earthfile

VERSION 0.6
FROM alpine

ARG BASE_IMAGE=quay.io/kairos/core-opensuse-leap:v2.4.3
ARG IMAGE_REPOSITORY=quay.io/kairos

ARG LUET_VERSION=0.34.0
ARG GOLINT_VERSION=v1.55.2
ARG GOLANG_VERSION=1.21

ARG RKE2_VERSION=latest
ARG BASE_IMAGE_NAME=$(echo $BASE_IMAGE | grep -o [^/]*: | rev | cut -c2- | rev)
ARG BASE_IMAGE_TAG=$(echo $BASE_IMAGE | grep -o :.* | cut -c2-)
ARG RKE2_VERSION_TAG=$(echo $RKE2_VERSION | sed s/+/-/)
ARG FIPS_ENABLED=false

luet:
    FROM quay.io/luet/base:$LUET_VERSION
    SAVE ARTIFACT /usr/bin/luet /luet

build-cosign:
    FROM gcr.io/projectsigstore/cosign:v1.13.1
    SAVE ARTIFACT /ko-app/cosign cosign

go-deps:
    FROM gcr.io/spectro-images-public/golang:${GOLANG_VERSION}-alpine
    WORKDIR /build
    COPY go.mod go.sum ./
    RUN go mod download
    RUN apk update
    SAVE ARTIFACT go.mod AS LOCAL go.mod
    SAVE ARTIFACT go.sum AS LOCAL go.sum

BUILD_GOLANG:
    COMMAND
    WORKDIR /build
    COPY . ./
    ARG BIN
    ARG SRC

    IF $FIPS_ENABLED
        RUN go-build-fips.sh -a -o ${BIN} ./${SRC}
        RUN assert-fips.sh ${BIN}
        RUN assert-static.sh ${BIN}
    ELSE
        RUN go-build.sh -a -o ${BIN} ./${SRC}
    END

    SAVE ARTIFACT ${BIN} ${BIN} AS LOCAL build/${BIN}

VERSION:
    COMMAND
    FROM alpine
    RUN apk add git

    COPY . ./

    RUN echo $(git describe --exact-match --tags || echo "v0.0.0-$(git log --oneline -n 1 | cut -d" " -f1)") > VERSION

    SAVE ARTIFACT VERSION VERSION

build-provider:
    FROM +go-deps
    DO +BUILD_GOLANG --BIN=agent-provider-rke2 --SRC=main.go

build-provider-package:
    DO +VERSION
    ARG VERSION=$(cat VERSION)
    FROM scratch
    COPY +build-provider/agent-provider-rke2 /system/providers/agent-provider-rke2
    COPY scripts /opt/rke2/scripts
    SAVE IMAGE --push $IMAGE_REPOSITORY/provider-rke2:${VERSION}

build-provider-fips-package:
    DO +VERSION
    ARG VERSION=$(cat VERSION)
    FROM scratch
    COPY +build-provider/agent-provider-rke2 /system/providers/agent-provider-rke2
    COPY scripts /opt/rke2/scripts
    SAVE IMAGE --push $IMAGE_REPOSITORY/provider-rke2-fips:${VERSION}

lint:
    FROM golang:$GOLANG_VERSION
    RUN wget -O- -nv https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh | sh -s $GOLINT_VERSION
    WORKDIR /build
    COPY . .
    RUN golangci-lint run

docker:
    DO +VERSION
    ARG VERSION=$(cat VERSION)

    FROM $BASE_IMAGE

    IF [ "$RKE2_VERSION" = "latest" ]
    ELSE
        ENV INSTALL_RKE2_VERSION=${RKE2_VERSION}
    END

    COPY install_rke2.sh .
     COPY +luet/luet /usr/bin/luet

    ENV INSTALL_RKE2_METHOD="tar"
    ENV INSTALL_RKE2_SKIP_RELOAD="true"
    ENV INSTALL_RKE2_TAR_PREFIX="/usr"
    RUN ./install_rke2.sh && rm install_rke2.sh
    COPY +build-provider/agent-provider-rke2 /system/providers/agent-provider-rke2

    ENV OS_ID=${BASE_IMAGE_NAME}-rke2
    ENV OS_NAME=$OS_ID:${BASE_IMAGE_TAG}
    ENV OS_REPO=${IMAGE_REPOSITORY}
    ENV OS_VERSION=${RKE2_VERSION_TAG}_${VERSION}
    ENV OS_LABEL=${BASE_IMAGE_TAG}_${RKE2_VERSION_TAG}_${VERSION}
    RUN envsubst >>/etc/os-release </usr/lib/os-release.tmpl
    RUN echo "export PATH=/var/lib/rancher/rke2/bin:$PATH" >> /etc/profile
    RUN mkdir -p /opt/rke2/scripts/
    COPY scripts/* /opt/rke2/scripts/

    RUN mkdir -p /var/lib/rancher/rke2/agent/images
    RUN curl -L --output /var/lib/rancher/rke2/agent/images/images.tar.zst "https://github.com/rancher/rke2/releases/download/$RKE2_VERSION/rke2-images-core.linux-amd64.tar.zst"

    SAVE IMAGE --push $IMAGE_REPOSITORY/${BASE_IMAGE_NAME}-rke2:${RKE2_VERSION_TAG}
    SAVE IMAGE --push $IMAGE_REPOSITORY/${BASE_IMAGE_NAME}-rke2:${RKE2_VERSION_TAG}_${VERSION}

cosign:
    ARG --required ACTIONS_ID_TOKEN_REQUEST_TOKEN
    ARG --required ACTIONS_ID_TOKEN_REQUEST_URL

    ARG --required REGISTRY
    ARG --required REGISTRY_USER
    ARG --required REGISTRY_PASSWORD

    DO +VERSION
    ARG VERSION=$(cat VERSION)

    FROM docker

    ENV ACTIONS_ID_TOKEN_REQUEST_TOKEN=${ACTIONS_ID_TOKEN_REQUEST_TOKEN}
    ENV ACTIONS_ID_TOKEN_REQUEST_URL=${ACTIONS_ID_TOKEN_REQUEST_URL}

    ENV REGISTRY=${REGISTRY}
    ENV REGISTRY_USER=${REGISTRY_USER}
    ENV REGISTRY_PASSWORD=${REGISTRY_PASSWORD}

    ENV COSIGN_EXPERIMENTAL=1
    COPY +build-cosign/cosign /usr/local/bin/

    RUN echo $REGISTRY_PASSWORD | docker login -u $REGISTRY_USER --password-stdin $REGISTRY

    RUN cosign sign $IMAGE_REPOSITORY/${BASE_IMAGE_NAME}-rke2:${RKE2_VERSION_TAG}
    RUN cosign sign $IMAGE_REPOSITORY/${BASE_IMAGE_NAME}-rke2:${RKE2_VERSION_TAG}_${VERSION}

provider-package-all-platforms:
     BUILD --platform=linux/amd64 +build-provider-package
     BUILD --platform=linux/arm64 +build-provider-package

provider-fips-package-all-platforms:
     BUILD --platform=linux/amd64 +build-provider-fips-package
     #BUILD --platform=linux/arm64 +build-provider-fips-package
Add provider for rke2 2022-08-18 17:28:57 +00:00			`VERSION 0.6`
			`FROM alpine`

version update Signed-off-by: Arun Sharma <dev.arun2302@gmail.com> 2024-02-20 09:56:29 +00:00			`ARG BASE_IMAGE=quay.io/kairos/core-opensuse-leap:v2.4.3`
Changed earthfile defaults to kairos 2022-09-21 19:50:09 +00:00			`ARG IMAGE_REPOSITORY=quay.io/kairos`
Add provider for rke2 2022-08-18 17:28:57 +00:00
kairos 2.0, golint and go version update Signed-off-by: Santhosh <santhosh@spectrocloud.com> 2023-04-14 03:25:20 +00:00			`ARG LUET_VERSION=0.34.0`
removed incorrect command stage Signed-off-by: Piyush Kumar <k17piyush@gmail.com> 2024-02-14 10:59:36 +00:00			`ARG GOLINT_VERSION=v1.55.2`
PE-2650 build from script Signed-off-by: Arun Sharma <dev.arun2302@gmail.com> 2023-10-06 04:00:47 +00:00			`ARG GOLANG_VERSION=1.21`
Add provider for rke2 2022-08-18 17:28:57 +00:00
			`ARG RKE2_VERSION=latest`
			`ARG BASE_IMAGE_NAME=$(echo $BASE_IMAGE \| grep -o [^/]*: \| rev \| cut -c2- \| rev)`
			`ARG BASE_IMAGE_TAG=$(echo $BASE_IMAGE \| grep -o :.* \| cut -c2-)`
			`ARG RKE2_VERSION_TAG=$(echo $RKE2_VERSION \| sed s/+/-/)`
fips package build Signed-off-by: Piyush Kumar <k17piyush@gmail.com> 2023-08-09 09:45:43 +00:00			`ARG FIPS_ENABLED=false`
Add provider for rke2 2022-08-18 17:28:57 +00:00
kairos 2.0, golint and go version update Signed-off-by: Santhosh <santhosh@spectrocloud.com> 2023-04-14 03:25:20 +00:00			`luet:`
			`FROM quay.io/luet/base:$LUET_VERSION`
			`SAVE ARTIFACT /usr/bin/luet /luet`

Add provider for rke2 2022-08-18 17:28:57 +00:00			`build-cosign:`
bump cosign version 2022-11-06 03:29:50 +00:00			`FROM gcr.io/projectsigstore/cosign:v1.13.1`
Add provider for rke2 2022-08-18 17:28:57 +00:00			`SAVE ARTIFACT /ko-app/cosign cosign`

			`go-deps:`
PE-2650 build from script Signed-off-by: Arun Sharma <dev.arun2302@gmail.com> 2023-10-06 04:00:47 +00:00			`FROM gcr.io/spectro-images-public/golang:${GOLANG_VERSION}-alpine`
Add provider for rke2 2022-08-18 17:28:57 +00:00			`WORKDIR /build`
			`COPY go.mod go.sum ./`
			`RUN go mod download`
PE-2650 build from script Signed-off-by: Arun Sharma <dev.arun2302@gmail.com> 2023-10-06 04:00:47 +00:00			`RUN apk update`
Add provider for rke2 2022-08-18 17:28:57 +00:00			`SAVE ARTIFACT go.mod AS LOCAL go.mod`
			`SAVE ARTIFACT go.sum AS LOCAL go.sum`

			`BUILD_GOLANG:`
			`COMMAND`
			`WORKDIR /build`
			`COPY . ./`
			`ARG BIN`
			`ARG SRC`

fips package build Signed-off-by: Piyush Kumar <k17piyush@gmail.com> 2023-08-09 09:45:43 +00:00			`IF $FIPS_ENABLED`
PE-2650 build from script Signed-off-by: Arun Sharma <dev.arun2302@gmail.com> 2023-10-06 04:00:47 +00:00			`RUN go-build-fips.sh -a -o ${BIN} ./${SRC}`
			`RUN assert-fips.sh ${BIN}`
			`RUN assert-static.sh ${BIN}`
fips package build Signed-off-by: Piyush Kumar <k17piyush@gmail.com> 2023-08-09 09:45:43 +00:00			`ELSE`
PE-2650 build from script Signed-off-by: Arun Sharma <dev.arun2302@gmail.com> 2023-10-06 04:00:47 +00:00			`RUN go-build.sh -a -o ${BIN} ./${SRC}`
fips package build Signed-off-by: Piyush Kumar <k17piyush@gmail.com> 2023-08-09 09:45:43 +00:00			`END`

Add provider for rke2 2022-08-18 17:28:57 +00:00			`SAVE ARTIFACT ${BIN} ${BIN} AS LOCAL build/${BIN}`

			`VERSION:`
			`COMMAND`
			`FROM alpine`
			`RUN apk add git`

			`COPY . ./`

			`RUN echo $(git describe --exact-match --tags \|\| echo "v0.0.0-$(git log --oneline -n 1 \| cut -d" " -f1)") > VERSION`

			`SAVE ARTIFACT VERSION VERSION`

			`build-provider:`
			`FROM +go-deps`
			`DO +BUILD_GOLANG --BIN=agent-provider-rke2 --SRC=main.go`

Added seperate provider package for custom os builds (#31) Signed-off-by: venkatnsrinivasan <venkat@spectrocloud.com> 2023-03-15 18:59:26 +00:00			`build-provider-package:`
			`DO +VERSION`
			`ARG VERSION=$(cat VERSION)`
			`FROM scratch`
			`COPY +build-provider/agent-provider-rke2 /system/providers/agent-provider-rke2`
			`COPY scripts /opt/rke2/scripts`
			`SAVE IMAGE --push $IMAGE_REPOSITORY/provider-rke2:${VERSION}`

fips package build Signed-off-by: Piyush Kumar <k17piyush@gmail.com> 2023-08-09 09:45:43 +00:00			`build-provider-fips-package:`
			`DO +VERSION`
			`ARG VERSION=$(cat VERSION)`
			`FROM scratch`
			`COPY +build-provider/agent-provider-rke2 /system/providers/agent-provider-rke2`
			`COPY scripts /opt/rke2/scripts`
			`SAVE IMAGE --push $IMAGE_REPOSITORY/provider-rke2-fips:${VERSION}`

Add provider for rke2 2022-08-18 17:28:57 +00:00			`lint:`
			`FROM golang:$GOLANG_VERSION`
			`RUN wget -O- -nv https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh \| sh -s $GOLINT_VERSION`
			`WORKDIR /build`
			`COPY . .`
			`RUN golangci-lint run`

			`docker:`
			`DO +VERSION`
			`ARG VERSION=$(cat VERSION)`

			`FROM $BASE_IMAGE`

			`IF [ "$RKE2_VERSION" = "latest" ]`
			`ELSE`
			`ENV INSTALL_RKE2_VERSION=${RKE2_VERSION}`
			`END`

			`COPY install_rke2.sh .`
luet version update to 0.34 Signed-off-by: Santhosh <santhosh@spectrocloud.com> 2023-03-18 03:48:06 +00:00			`COPY +luet/luet /usr/bin/luet`
Add provider for rke2 2022-08-18 17:28:57 +00:00
			`ENV INSTALL_RKE2_METHOD="tar"`
			`ENV INSTALL_RKE2_SKIP_RELOAD="true"`
Changed the default install path for RKE2 for C3OS compat 2022-09-20 17:24:27 +00:00			`ENV INSTALL_RKE2_TAR_PREFIX="/usr"`
Add provider for rke2 2022-08-18 17:28:57 +00:00			`RUN ./install_rke2.sh && rm install_rke2.sh`
			`COPY +build-provider/agent-provider-rke2 /system/providers/agent-provider-rke2`

			`ENV OS_ID=${BASE_IMAGE_NAME}-rke2`
			`ENV OS_NAME=$OS_ID:${BASE_IMAGE_TAG}`
			`ENV OS_REPO=${IMAGE_REPOSITORY}`
			`ENV OS_VERSION=${RKE2_VERSION_TAG}_${VERSION}`
			`ENV OS_LABEL=${BASE_IMAGE_TAG}_${RKE2_VERSION_TAG}_${VERSION}`
Append instead of writing os-release from scratch Signed-off-by: Mauro Morales <mauro.morales@spectrocloud.com> 2023-04-07 10:43:32 +00:00			`RUN envsubst >>/etc/os-release </usr/lib/os-release.tmpl`
local images import add rke2 bin to path Signed-off-by: Santhosh <santhosh@spectrocloud.com> 2023-02-08 04:24:36 +00:00			`RUN echo "export PATH=/var/lib/rancher/rke2/bin:$PATH" >> /etc/profile`
			`RUN mkdir -p /opt/rke2/scripts/`
			`COPY scripts/* /opt/rke2/scripts/`
Add provider for rke2 2022-08-18 17:28:57 +00:00
embed core images for status pods Signed-off-by: Jacob Payne <jacob@spectrocloud.com> 2022-11-18 20:46:49 +00:00			`RUN mkdir -p /var/lib/rancher/rke2/agent/images`
			`RUN curl -L --output /var/lib/rancher/rke2/agent/images/images.tar.zst "https://github.com/rancher/rke2/releases/download/$RKE2_VERSION/rke2-images-core.linux-amd64.tar.zst"`

Modified versioning scheme to drop base image version 2022-10-12 06:36:38 +00:00			`SAVE IMAGE --push $IMAGE_REPOSITORY/${BASE_IMAGE_NAME}-rke2:${RKE2_VERSION_TAG}`
			`SAVE IMAGE --push $IMAGE_REPOSITORY/${BASE_IMAGE_NAME}-rke2:${RKE2_VERSION_TAG}_${VERSION}`
Add provider for rke2 2022-08-18 17:28:57 +00:00
			`cosign:`
			`ARG --required ACTIONS_ID_TOKEN_REQUEST_TOKEN`
			`ARG --required ACTIONS_ID_TOKEN_REQUEST_URL`

			`ARG --required REGISTRY`
			`ARG --required REGISTRY_USER`
			`ARG --required REGISTRY_PASSWORD`

			`DO +VERSION`
			`ARG VERSION=$(cat VERSION)`

			`FROM docker`

			`ENV ACTIONS_ID_TOKEN_REQUEST_TOKEN=${ACTIONS_ID_TOKEN_REQUEST_TOKEN}`
			`ENV ACTIONS_ID_TOKEN_REQUEST_URL=${ACTIONS_ID_TOKEN_REQUEST_URL}`

			`ENV REGISTRY=${REGISTRY}`
			`ENV REGISTRY_USER=${REGISTRY_USER}`
			`ENV REGISTRY_PASSWORD=${REGISTRY_PASSWORD}`

			`ENV COSIGN_EXPERIMENTAL=1`
			`COPY +build-cosign/cosign /usr/local/bin/`

			`RUN echo $REGISTRY_PASSWORD \| docker login -u $REGISTRY_USER --password-stdin $REGISTRY`

Modified versioning scheme to drop base image version 2022-10-12 06:36:38 +00:00			`RUN cosign sign $IMAGE_REPOSITORY/${BASE_IMAGE_NAME}-rke2:${RKE2_VERSION_TAG}`
			`RUN cosign sign $IMAGE_REPOSITORY/${BASE_IMAGE_NAME}-rke2:${RKE2_VERSION_TAG}_${VERSION}`
Added seperate provider package for custom os builds (#31) Signed-off-by: venkatnsrinivasan <venkat@spectrocloud.com> 2023-03-15 18:59:26 +00:00
			`provider-package-all-platforms:`
			`BUILD --platform=linux/amd64 +build-provider-package`
			`BUILD --platform=linux/arm64 +build-provider-package`
fips package build Signed-off-by: Piyush Kumar <k17piyush@gmail.com> 2023-08-09 09:45:43 +00:00
			`provider-fips-package-all-platforms:`
			`BUILD --platform=linux/amd64 +build-provider-fips-package`
disable arm fips provider build 2023-08-21 17:12:49 +00:00			`#BUILD --platform=linux/arm64 +build-provider-fips-package`