integration & orchestration jobs improved.

Author: syslogic

.github/workflows/reusable-docker.yml

@@ -73,6 +73,16 @@ jobs:
       ENV_VARS: '--env REPO_USER="${{ INPUTS.USERNAME }}" --env REPO_NAME="${{ INPUTS.REPOSITORY }}" --env REPO_BRANCH="${{ INPUTS.BRANCH }}" --env RUNNER_UID="${{ INPUTS.RUNNER_UID }}" --env RUNNER_GID="${{ INPUTS.RUNNER_GID }}"'
     steps:
 
+      - shell: bash
+        id: setup
+        run: |
+          PLATFORM='${{ INPUTS.PLATFORM }}'
+          ARTIFACT_NAME=${GITHUB_REPOSITORY#$GITHUB_REPOSITORY_OWNER/}-rhel9-${PLATFORM#linux/}-unsigned
+          echo "ARTIFACT_NAME=${ARTIFACT_NAME}" >> $GITHUB_OUTPUT
+          echo "::group::Setup Info"
+          echo "::notice file=reusable-docker.yml,line={83},title=Artifact Name: ${ARTIFACT_NAME}"
+          echo "::endgroup::"
+
       # https://github.com/docker/login-action
       - name: Log in to the Container registry
         uses: 'docker/login-action@v3'
@@ -95,7 +105,7 @@ jobs:
       # https://docs.docker.com/reference/cli/docker/container/run/
       # https://docs.docker.com/reference/cli/docker/container/cp/
       # --entrypoint ${{ INPUTS.ENTRY-POINT }} cannot be changed with GitHub docker.
-      - name: Run ${{ INPUTS.REGISTRY }}/${{ INPUTS.USERNAME }}/${{ INPUTS.IMAGE }} with ${{ INPUTS.USERNAME }} / ${{ INPUTS.REPOSITORY }} / ${{ INPUTS.BRANCH }}
+      - name: Run image ${{ INPUTS.REGISTRY }}/${{ INPUTS.USERNAME }}/${{ INPUTS.IMAGE }} with source https://github.com/${{ INPUTS.USERNAME }}/${{ INPUTS.REPOSITORY }}.git#${{ INPUTS.BRANCH }}
         id: build-rpm-packages
         shell: bash
         env:
@@ -111,7 +121,7 @@ jobs:
         if: ${{ success() }}
         id: retain-rpm-packages
         with:
-          name: ${{ INPUTS.REPOSITORY }}-rhel9-${{ RUNNER.ARCH }}-unsigned
+          name: ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_NAME }}
           path: "${{ RUNNER.TEMP }}/.rpms"
           include-hidden-files: 'true'
           retention-days: 14
@@ -120,7 +130,10 @@ jobs:
         id: list-rpm-packages
         shell: bash
         run: |
-          [ "$(ls -1 ${{ RUNNER.TEMP }}/.rpms/*.rpm 2>/dev/null | wc -l)" -lt 4 ] && echo "::warning file=reusable-docker.yml,title=RPM Build::Less than 4 ${{ INPUTS.REPOSITORY }} RPM packages were built."
+          if [ "$(ls -1 ${{ RUNNER.TEMP }}/.rpms/*.rpm 2>/dev/null | wc -l)" -lt 4 ]; then
+            echo "::warning file=reusable-docker.yml,line=134,title=RPM Build::Less than the expected 4 RPM packages were built."
+            # for FILE in ${{ RUNNER.TEMP }}/.rpms/*.rpm; do echo "::notice file=reusable-docker.yml,line=136,title=${FILE}"; done
+          fi
           printf "Ubuntu mount-point: %s" "${{ RUNNER.TEMP }}/.rpms"
           ls -la ${{ RUNNER.TEMP }}/.rpms
           ls -lan ${{ RUNNER.TEMP }}/.rpms

.github/workflows/rhel-integration.yml

@@ -49,21 +49,6 @@ jobs:
       DOCKER_IMAGE: ${{ INPUTS.REGISTRY }}/${{ INPUTS.USERNAME }}/${{ INPUTS.IMAGE }}
     steps:
 
-      # https://github.com/actions/download-artifact
-      - uses: 'actions/download-artifact@v4'
-        id: restore-rpm-packages
-        with:
-          name: ${{ INPUTS.REPOSITORY }}-rhel9-${{ RUNNER.ARCH }}-unsigned
-          path: '${{ RUNNER.TEMP }}/.rpms'
-
-      - name: List directory ${{ RUNNER.TEMP }}/.rpms
-        id: list-rpm-packages
-        shell: bash
-        run: |
-          printf "Ubuntu mount-point: %s" "${{ RUNNER.TEMP }}/.rpms"
-          ls -la ${{ RUNNER.TEMP }}/.rpms
-          ls -lan ${{ RUNNER.TEMP }}/.rpms
-
       - uses: 'docker/login-action@v3'
         id: container-registry
         with:
@@ -87,11 +72,34 @@ jobs:
         if: ${{ INPUTS.PLATFORM != 'linux/amd64' }}
         with: { platforms: arm64 }
 
-      - shell: bash
+      - name: Run shell script, which determines the artifact name
+        shell: bash
         id: setup
         run: |
           echo "RUNNER_GID=$(id -g)" >> $GITHUB_OUTPUT
           echo "RUNNER_UID=$(id -u)" >> $GITHUB_OUTPUT
+          PLATFORM='${{ INPUTS.PLATFORM }}'
+          ARTIFACT_NAME=${GITHUB_REPOSITORY#$GITHUB_REPOSITORY_OWNER/}-rhel9-${PLATFORM#linux/}-unsigned
+          echo "ARTIFACT_PATH=${{ GITHUB.WORKSPACE }}/.rpms" >> $GITHUB_OUTPUT
+          echo "ARTIFACT_NAME=${ARTIFACT_NAME}" >> $GITHUB_OUTPUT
+          echo "::group::Setup Info"
+          echo "::notice file=rhel-integration.yml,line={85},title=Artifact Name: ${ARTIFACT_NAME}"
+          echo "::endgroup::"
+
+      # https://github.com/actions/download-artifact
+      - uses: 'actions/download-artifact@v4'
+        id: restore-rpm-packages
+        with:
+          name: ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_NAME }}
+          path: ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}
+
+      - name: List directory ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}
+        id: list-rpm-packages
+        shell: bash
+        run: |
+          echo "Runner directory: ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}"
+          ls -la ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}
+          ls -lan ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}
 
       - uses: 'docker/build-push-action@v6'
         id: build
@@ -107,6 +115,11 @@ jobs:
             RUNNER_GID=${{ STEPS.SETUP.OUTPUTS.RUNNER_GID }}
             RUNNER_UID=${{ STEPS.SETUP.OUTPUTS.RUNNER_UID }}
             LINUX_IMAGE=${{ VARS.RHEL_LINUX_IMAGE }}
+            GITHUB_USER=${{ GITHUB.REPOSITORY_OWNER }}
+            GITHUB_REPO=${{ STEPS.SETUP.OUTPUTS.REPOSITORY_NAME }}
+            GITHUB_BRANCH=${{ GITHUB.HEAD_REF || GITHUB.REF_NAME }}
+            # Setting the artifact path is required for local & remote compatibility.
+            # ARTIFACT_PATH=${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}
 
       # Note: The digest comes from `buildx`, not the metadata.
       # https://github.com/actions/attest-build-provenance

.github/workflows/rhel-orchestration.yml

@@ -50,21 +50,6 @@ jobs:
       ARTIFACT_NAME: ${{ NEEDS.SETUP.OUTPUTS.ARTIFACT_NAME }}
     steps:
 
-      # https://github.com/actions/download-artifact
-      - uses: 'actions/download-artifact@v4'
-        id: restore-rpm-packages
-        with:
-          name: ${{ INPUTS.REPOSITORY }}-rhel9-${{ RUNNER.ARCH }}-unsigned
-          path: '${{ RUNNER.TEMP }}/.rpms'
-
-      - name: List directory ${{ RUNNER.TEMP }}/.rpms
-        id: list-rpm-packages
-        shell: bash
-        run: |
-          printf "Ubuntu mount-point: %s" "${{ RUNNER.TEMP }}/.rpms"
-          ls -la ${{ RUNNER.TEMP }}/.rpms
-          ls -lan ${{ RUNNER.TEMP }}/.rpms
-
       - uses: 'docker/login-action@v3'
         id: container-registry
         with:
@@ -81,15 +66,42 @@ jobs:
             type=sha
             latest
 
-      - shell: bash
+      # https://github.com/marketplace/actions/build-and-push-docker-images
+      - uses: 'actions/checkout@v4'
+      - uses: 'docker/setup-buildx-action@v3'
+      - uses: 'docker/setup-qemu-action@v3'
+        if: ${{ INPUTS.PLATFORM != 'linux/amd64' }}
+        with: { platforms: arm64 }
+
+      - name: Run shell script, which determines the artifact name
+        shell: bash
         id: setup
         run: |
           echo "RUNNER_GID=$(id -g)" >> $GITHUB_OUTPUT
           echo "RUNNER_UID=$(id -u)" >> $GITHUB_OUTPUT
+          PLATFORM='${{ INPUTS.PLATFORM }}'
+          ARTIFACT_NAME=${GITHUB_REPOSITORY#$GITHUB_REPOSITORY_OWNER/}-rhel9-${PLATFORM#linux/}-unsigned
+          echo "ARTIFACT_PATH=${{ GITHUB.WORKSPACE }}/.rpms" >> $GITHUB_OUTPUT
+          echo "ARTIFACT_NAME=${ARTIFACT_NAME}" >> $GITHUB_OUTPUT
+          echo "::group::Setup Info"
+          echo "::notice file=rhel-orchestration.yml,line={86},title=Artifact Name: ${ARTIFACT_NAME}"
+          echo "::endgroup::"
+
+      # https://github.com/actions/download-artifact
+      - uses: 'actions/download-artifact@v4'
+        id: restore-rpm-packages
+        with:
+          name: ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_NAME }}
+          path: ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}
+
+      - name: List directory ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}
+        id: list-rpm-packages
+        shell: bash
+        run: |
+          echo "Runner directory: ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}"
+          ls -la ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}
+          ls -lan ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}
 
-      # https://github.com/marketplace/actions/build-and-push-docker-images
-      - uses: 'actions/checkout@v4'
-      - uses: 'docker/setup-buildx-action@v3'
       - uses: 'docker/build-push-action@v6'
         id: build
         with:
@@ -104,6 +116,11 @@ jobs:
             RUNNER_GID=${{ STEPS.SETUP.OUTPUTS.RUNNER_GID }}
             RUNNER_UID=${{ STEPS.SETUP.OUTPUTS.RUNNER_UID }}
             LINUX_IMAGE=${{ VARS.RHEL_LINUX_IMAGE }}
+            GITHUB_USER=${{ GITHUB.REPOSITORY_OWNER }}
+            GITHUB_REPO=${{ STEPS.SETUP.OUTPUTS.REPOSITORY_NAME }}
+            GITHUB_BRANCH=${{ GITHUB.HEAD_REF || GITHUB.REF_NAME }}
+            # Setting the artifact path is required for local & remote compatibility.
+            # ARTIFACT_PATH=${{ STEPS.SETUP.OUTPUTS.ARTIFACT_PATH }}
 
       # Note: The digest comes from `buildx`, not the metadata.
       # https://github.com/actions/attest-build-provenance

.github/workflows/rpm-builder.yml

@@ -35,8 +35,10 @@ jobs:
             runner: ${{ VARS.RUNNER_ARM }}
             image: rpm-builder-arm64
     outputs:
+      ARTIFACT_NAME: ${{ STEPS.SETUP.OUTPUTS.ARTIFACT_NAME }}
+      RUNNER_GID: ${{ STEPS.SETUP.OUTPUTS.RUNNER_GID }}
       RUNNER_UID: ${{ STEPS.SETUP.OUTPUTS.RUNNER_UID }}
-      RUNNER:GID: ${{ STEPS.SETUP.OUTPUTS.RUNNER_GID }}
+
     steps:
       - uses: 'actions/checkout@v4'
       - uses: 'docker/login-action@v3'
@@ -61,16 +63,13 @@ jobs:
         if: ${{ MATRIX.PLATFORM == 'linux/arm64' }}
         with: { platforms: arm64 }
 
-      - shell: bash
+      - name: Run shell script, which determines the repository name
+        shell: bash
         id: setup
         run: |
+          echo "REPOSITORY_NAME=${GITHUB_REPOSITORY#$GITHUB_REPOSITORY_OWNER/}" >> $GITHUB_OUTPUT
           echo "RUNNER_GID=$(id -g)" >> $GITHUB_OUTPUT
           echo "RUNNER_UID=$(id -u)" >> $GITHUB_OUTPUT
-          REPOSITORY_NAME=${GITHUB_REPOSITORY#$GITHUB_REPOSITORY_OWNER/}
-          echo "REPOSITORY_NAME=${REPOSITORY_NAME}" >> $GITHUB_OUTPUT
-          echo "::group::Setup Info"
-          echo "::notice file=rpm-builder.yml,title=Repository: $REPOSITORY_NAME"
-          echo "::endgroup::"
 
       - uses: 'docker/build-push-action@v6'
         id: build
@@ -83,12 +82,12 @@ jobs:
           labels: ${{ STEPS.METADATA.OUTPUTS.LABELS }}
           tags: ${{ STEPS.METADATA.OUTPUTS.TAGS }}
           build-args: |
-            GITHUB_USER=${{ GITHUB.REPOSITORY_OWNER }}
-            GITHUB_REPO=${{ STEPS.SETUP.OUTPUTS.REPOSITORY_NAME }}
-            GITHUB_BRANCH=${{ GITHUB.HEAD_REF || GITHUB.REF_NAME }}
             RUNNER_GID=${{ STEPS.SETUP.OUTPUTS.RUNNER_GID }}
             RUNNER_UID=${{ STEPS.SETUP.OUTPUTS.RUNNER_UID }}
             LINUX_IMAGE=${{ VARS.RHEL_LINUX_IMAGE }}
+            GITHUB_USER=${{ GITHUB.REPOSITORY_OWNER }}
+            GITHUB_REPO=${{ STEPS.SETUP.OUTPUTS.REPOSITORY_NAME }}
+            GITHUB_BRANCH=${{ GITHUB.HEAD_REF || GITHUB.REF_NAME }}
 
       # Note: The digest comes from `buildx`, not the metadata.
       # https://github.com/actions/attest-build-provenance

docker/rhel-integration/Dockerfile

@@ -1,11 +1,13 @@
-# Dockerfile based on `rockylinux/rockylinux:9.5`
+# RHEL Integration Dockerfile based on `rockylinux/rockylinux:9.5`
 ARG LINUX_IMAGE=rockylinux/rockylinux:9.5
 FROM $LINUX_IMAGE AS base_image
 LABEL description="RHEL Integration"
 LABEL version="1.0.2"
 LABEL repository="https://github.com/google/android-cuttlefish"
 LABEL maintainer="Martin Zeitler"
 SHELL [ "/bin/bash", "-c" ]
+WORKDIR "/root"
+USER "root"
 
 # Arguments
 ARG RUNNER_GID="118"
@@ -22,15 +24,21 @@ RUN [ "echo", "%docker", "ALL=(ALL)", "NOPASSWD:", "ALL", ">", "/etc/sudoers.d/d
 
 # The EPEL repository installs `dnf-core-plugin` (`config-manager` and `builddeps`) and provides `ncurses-compat-libs`.
 # Configuring further package repositories: / https://wiki.rockylinux.org/rocky/repo/#extra-repositories
-RUN [ "dnf", "-y", "install", "https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm" ]
+RUN [ "dnf", "-y", "install", "sudo", "nano", "wget", "https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm"]
 RUN [ "rm", "/etc/yum.repos.d/epel-cisco-openh264.repo" ]
 RUN [ "dnf", "config-manager", "--set-enabled", "crb" ]
 RUN [ "dnf", "-y", "upgrade" ]
 RUN [ "dnf", "clean", "all" ]
 
+# Import Google RPM repository public key.
+# https://www.google.com/linuxrepositories/
+# RUN [ "wget", "https://dl.google.com/linux/linux_signing_key.pub" ]
+# RUN [ "rpm", "--import", "linux_signing_key.pub" ]
+
 
 # Integration
 FROM base_image AS integration
+ARG ARTIFACT_PATH=./.rpms
 
 # Provide an interactive shell.
 ENTRYPOINT [ "/bin/bash" ]
@@ -47,30 +55,21 @@ EXPOSE 15550-15560
 # Expose ADB
 EXPOSE 6520-6620
 
-# https://docs.docker.com/reference/dockerfile/#notes-about-specifying-volumes
-# The host directory is declared at container run-time, with `--volume`, eg.
-# --volume /home/username/android-cuttlefish/.rpms/:/home/github/.rpms
-RUN [ "mkdir", "/home/runner/.rpms" ]
-VOLUME [ "/home/runner/.rpms" ]
-WORKDIR "/home/runner"
+# Restore build artifacts.
+RUN [ "mkdir", "/root/.rpms" ]
+RUN [ "touch", "/root/.dockerenv", "/home/runner/.dockerenv" ]
+COPY [ "${ARTIFACT_PATH}/cuttlefish-integration-*", "/root/.rpms" ]
+COPY [ "${ARTIFACT_PATH}/cuttlefish-user-*", "/root/.rpms/" ]
+COPY [ "${ARTIFACT_PATH}/cuttlefish-base-*", "/root/.rpms/" ]
 
-# Import Google RPM repository public key.
-# https://www.google.com/linuxrepositories/
-RUN [ "dnf", "-y", "install", "wget"]
-RUN [ "wget", "https://dl.google.com/linux/linux_signing_key.pub" ]
-RUN [ "rpm", "--import", "linux_signing_key.pub" ]
-
-# Add prebuilt RPM packages and install them.
-RUN [ "touch", "/home/runner/.dockerenv" ]
-COPY [ "/home/runner/work/_temp/.rpms/cuttlefish-integration-*", "/home/runner/.rpms/" ]
-COPY [ "/home/runner/work/_temp/.rpms/cuttlefish-user-*", "/home/runner/.rpms/" ]
-COPY [ "/home/runner/work/_temp/.rpms/cuttlefish-base-*", "/home/runner/.rpms/" ]
-# COPY [ "./.rpms/cuttlefish-integration-*", "/home/runner/.rpms/" ]
-# COPY [ "./.rpms/cuttlefish-user-*", "/home/runner/.rpms/" ]
-# COPY [ "./.rpms/cuttlefish-base-*", "/home/runner/.rpms/" ]
-
-RUN for FILE in /home/runner/.rpms/* ; do dnf -y install $FILE; done
+# Container scripts.
+COPY [ "./docker/rpm-builder/scripts/install_rpm.sh", "/root/install_rpm.sh" ]
+RUN [ "chmod", "+x", "/root/install_rpm.sh" ]
+
+# Install RPM.
+RUN [ "/bin/bash", "-c", "/root/install_rpm.sh" ]
 RUN [ "dnf", "clean", "all" ]
 
-# Run commands as user `runner`, who is the owner of the RPM packages.
+# Run commands as user `runner`.
+WORKDIR "/home/runner"
 USER "runner"

docker/rhel-integration/preinstall.sh

@@ -1,12 +1,10 @@
 #!/usr/bin/env bash
 
 # It builds the RPM packages and then spins up a container with these preinstalled.
-# `scripts/install.sh` produces a bloated image, unless mounting `/root/.cache` directory
 REPO_DIR="$(realpath "$(dirname "$0")/../..")"
-cd "${REPO_DIR}/docker/rpm-builder-integration" || exit
+cd "${REPO_DIR}/docker/rhel-integration" || exit
 PACKAGES="${REPO_DIR}/tools/rpmbuild/RPMS/x86_64"
 PLATFORM="linux/amd64"
-
 if [ "$(uname -i)" = "aarch64" ]; then
   PACKAGES="${REPO_DIR}/tools/rpmbuild/RPMS/aarch64"
   PLATFORM="linux/arm64"
@@ -18,9 +16,9 @@ fi
 
 # And then build the Docker image, which depends on these.
 docker buildx create --use
-docker buildx create --append --file docker/rpm-builder-integration/Dockerfile
+docker buildx create --append --file docker/rhel-integration/Dockerfile
 docker buildx create --append --name android-cuttlefish rhel-integration
 docker buildx create --append --tag android-cuttlefish/rhel-integration:latest
-docker buildx create --append --tag android-cuttlefish/rhel-integration:1.3.0
+docker buildx create --append --tag android-cuttlefish/rhel-integration:1.4.0
 docker buildx create --append --platform $PLATFORM
 docker buildx build