Build and push #6
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# https://web.archive.org/web/20240917152738/https://andrewlock.net/combining-multiple-docker-images-into-a-multi-arch-image/ | |
name: Build and push | |
on: | |
workflow_dispatch: | |
schedule: | |
# https://crontab.guru/#41_9_*_*_6 | |
- cron: "41 9 * * 6" | |
permissions: | |
contents: read | |
packages: write | |
# Variables available to all jobs defined in this file | |
env: | |
DOCKER_BUILDKIT: 1 | |
# A workflow run is made up of one or more jobs that can run sequentially or in parallel | |
jobs: | |
build_intel64: | |
strategy: | |
fail-fast: true | |
name: Build Intel64 | |
runs-on: [ubuntu-latest] | |
outputs: | |
sha256: ${{ steps.build.outputs.hash }} | |
steps: | |
- name: Create Buildx driver | |
run: | | |
docker buildx use multiplatform || docker buildx create --name multiplatform --use 2>/dev/null | |
- name: Login to GHCR | |
run: | | |
echo "${{ secrets.GHCR_TOKEN }}" | docker login ghcr.io -u "${{ secrets.GHCR_USER }}" --password-stdin | |
- name: Clone AWS Lambda repo | |
run: | | |
git clone https://github.com/aws/aws-lambda-base-images.git --branch provided.al2023 --single-branch __aws__ | |
- name: Build | |
id: build | |
run: | | |
set -euxo pipefail | |
cd __aws__/x86_64/ && \ | |
output="$( | |
docker buildx build \ | |
-t ghcr.io/northwood-labs/lambda-provided-al2023 \ | |
-f Dockerfile.provided.al2023 \ | |
--platform linux/amd64 \ | |
--output push-by-digest=true,type=image,push=true \ | |
. 2>&1 | |
)" | |
echo "hash=$(echo "$output" | grep "exporting manifest list" | awk '{print $5}')" >> $GITHUB_OUTPUT | |
build_arm64: | |
strategy: | |
fail-fast: true | |
name: Build ARM64 | |
runs-on: [ubuntu-latest] | |
outputs: | |
sha256: ${{ steps.build.outputs.hash }} | |
steps: | |
- name: Create Buildx driver | |
run: | | |
docker buildx use multiplatform || docker buildx create --name multiplatform --use 2>/dev/null | |
- name: Login to GHCR | |
run: | | |
echo "${{ secrets.GHCR_TOKEN }}" | docker login ghcr.io -u "${{ secrets.GHCR_USER }}" --password-stdin | |
- name: Clone AWS Lambda repo | |
run: | | |
git clone https://github.com/aws/aws-lambda-base-images.git --branch provided.al2023 --single-branch __aws__ | |
- name: Build | |
id: build | |
run: | | |
set -euxo pipefail | |
cd __aws__/arm64/ && \ | |
output="$( | |
docker buildx build \ | |
-t ghcr.io/northwood-labs/lambda-provided-al2023 \ | |
-f Dockerfile.provided.al2023 \ | |
--platform linux/arm64 \ | |
--output push-by-digest=true,type=image,push=true \ | |
. 2>&1 | |
)" | |
echo "hash=$(echo "$output" | grep "exporting manifest list" | awk '{print $5}')" >> $GITHUB_OUTPUT | |
merge: | |
needs: [build_intel64, build_arm64] | |
strategy: | |
fail-fast: true | |
name: Merge into multiplatform | |
runs-on: [ubuntu-latest] | |
steps: | |
- name: Create Buildx driver | |
run: | | |
docker buildx use multiplatform || docker buildx create --name multiplatform --use 2>/dev/null | |
- name: Login to GHCR | |
run: | | |
echo "${{ secrets.GHCR_TOKEN }}" | docker login ghcr.io -u "${{ secrets.GHCR_USER }}" --password-stdin | |
- name: Merge | |
run: | | |
set -euxo pipefail | |
docker buildx imagetools create \ | |
-t ghcr.io/northwood-labs/lambda-provided-al2023:latest \ | |
ghcr.io/northwood-labs/lambda-provided-al2023@${{ needs.build_intel64.outputs.sha256 }} \ | |
ghcr.io/northwood-labs/lambda-provided-al2023@${{ needs.build_arm64.outputs.sha256 }} \ | |
; |