skupperproject
diff --git a/‎.github/scripts/image.sh‎
Lines changed: 8 additions & 19 deletions b/‎.github/scripts/image.sh‎
Lines changed: 8 additions & 19 deletions
diff --git a/‎.github/scripts/manifest.sh‎
Lines changed: 0 additions & 80 deletions b/‎.github/scripts/manifest.sh‎
Lines changed: 0 additions & 80 deletions
diff --git a/‎.github/workflows/image-main.yml‎
Lines changed: 10 additions & 53 deletions b/‎.github/workflows/image-main.yml‎
Lines changed: 10 additions & 53 deletions
diff --git a/‎.github/workflows/image-manual.yml‎
Lines changed: 13 additions & 101 deletions b/‎.github/workflows/image-manual.yml‎
Lines changed: 13 additions & 101 deletions
@@ -19,7 +19,7 @@
 
 set -exo pipefail
 
-CONTAINER=podman
+CONTAINER=docker
 PROJECT_NAME=skupper-router
 CONTAINER_REGISTRY=quay.io
 CONTAINER_ORG=skupper
@@ -28,41 +28,30 @@ export BUILDAH_FORMAT=docker
 if [ -z "$PROJECT_TAG" ]; then
   PROJECT_TAG=main
 fi
-# PLATFORM can be amd64 or arm64
-if [ -z "$PLATFORM" ]; then
-  PLATFORM=amd64
-fi
-
-PLATFORM_LINUX=linux-${PLATFORM}
-PROJECT_TAG=${PROJECT_TAG}-${PLATFORM_LINUX}
 
 # Building the skupper-router image
 # Pass the VERSION as a build argument so Containerfile can use it when calling compile.sh
 # This version is passed in as a -DVERSION build parameter when building skupper-router.
-${CONTAINER} build --build-arg PLATFORM=$PLATFORM --build-arg VERSION=$VERSION -t ${PROJECT_NAME}:${PROJECT_TAG}  -f ./Containerfile .
+# ${CONTAINER} build --build-arg PLATFORM=$PLATFORM --build-arg VERSION=$VERSION -t ${PROJECT_NAME}:${PROJECT_TAG}  -f ./Containerfile .
 
 # Pushing only when credentials available
 if [[ -n "${CONTAINER_USER}" && -n "${CONTAINER_PASSWORD}" ]]; then
+    # Login to the quay.io container repo.
     ${CONTAINER} login -u ${CONTAINER_USER} -p ${CONTAINER_PASSWORD} ${CONTAINER_REGISTRY}
-    ${CONTAINER} tag ${PROJECT_NAME}:${PROJECT_TAG} ${CONTAINER_REGISTRY}/${CONTAINER_ORG}/${PROJECT_NAME}:${PROJECT_TAG}
-    ${CONTAINER} push ${CONTAINER_REGISTRY}/${CONTAINER_ORG}/${PROJECT_NAME}:${PROJECT_TAG}
+    ${CONTAINER} buildx prune -af
+    ${CONTAINER} buildx build --provenance=false --platform linux/amd64,linux/arm64,linux/s390x,linux/ppc64le --build-arg PLATFORM=$PLATFORM --build-arg VERSION=$VERSION --push -t ${CONTAINER_REGISTRY}/${CONTAINER_ORG}/${PROJECT_NAME}:${PROJECT_TAG}   -f ./Containerfile .
 
     # Only publish build number tag if one provided
     if [[ -n "${BUILD_NUMBER}" ]]; then
-        ${CONTAINER} tag ${PROJECT_NAME}:${PROJECT_TAG} ${CONTAINER_REGISTRY}/${CONTAINER_ORG}/${PROJECT_NAME}:${PROJECT_TAG}-${BUILD_NUMBER}
-        ${CONTAINER} push ${CONTAINER_REGISTRY}/${CONTAINER_ORG}/${PROJECT_NAME}:${PROJECT_TAG}-${BUILD_NUMBER}
+        ${CONTAINER} buildx build --provenance=false --platform linux/amd64,linux/arm64,linux/s390x,linux/ppc64le --build-arg PLATFORM=$PLATFORM --build-arg VERSION=$VERSION --push -t ${CONTAINER_REGISTRY}/${CONTAINER_ORG}/${PROJECT_NAME}:${PROJECT_TAG}-${BUILD_NUMBER}   -f ./Containerfile .
     fi
 
-    # PUSH_LATEST environment variable is exported only in release.yml
-    # Only when an actual release tag (for e.g. 2.1.0) is pushed, we push the :latest.
     # :latest represents the latest released version of the software.
     # We do not push :latest when main or other non-release tags are pushed.
     if [ -z "$PUSH_LATEST" ]; then
          echo 'NOT Pushing :latest tag'
     else
-        echo 'Pushing :latest-linux-amd64 tag or :latest-linux-arm64 (image.sh)'
-        PROJECT_TAG_LATEST=latest-${PLATFORM_LINUX}
-        ${CONTAINER} tag ${PROJECT_NAME}:${PROJECT_TAG} ${CONTAINER_REGISTRY}/${CONTAINER_ORG}/${PROJECT_NAME}:${PROJECT_TAG_LATEST}
-        ${CONTAINER} push ${CONTAINER_REGISTRY}/${CONTAINER_ORG}/${PROJECT_NAME}:${PROJECT_TAG_LATEST}
+        PROJECT_TAG_LATEST=latest
+        ${CONTAINER} buildx build --provenance=false --platform linux/amd64,linux/arm64,linux/s390x,linux/ppc64le --build-arg PLATFORM=$PLATFORM --build-arg VERSION=$VERSION --push -t ${CONTAINER_REGISTRY}/${CONTAINER_ORG}/${PROJECT_NAME}:${PROJECT_TAG_LATEST}   -f ./Containerfile .
     fi
 fi
@@ -25,69 +25,26 @@ on:
     types:
       - completed
 jobs:
-  build-image-amd64:
-    name: Publish skupper-router amd64 image
+  build-multiarch-image:
+    name: Build and publish multiarch skupper-router image
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - name: Build and publish the main amd64 image
-        run: |
-          # The version on main will be 0.0.0+<commit-sha>-main
-          export VERSION="0.0.0+${GITHUB_SHA}-main"
-          export PLATFORM=amd64
-          unset PUSH_LATEST
-          ./.github/scripts/image.sh
-        env:
-          CONTAINER_USER: '${{ secrets.DOCKER_USER }}'
-          CONTAINER_PASSWORD: '${{ secrets.DOCKER_PASSWORD }}'
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v2
 
-  build-image-arm64:
-    name: Publish skupper-router arm64 image
-    runs-on: ubuntu-24.04-arm
-    steps:
+      - name: Set up Buildx
+        uses: docker/setup-buildx-action@v2
+      
       - uses: actions/checkout@v4
-      - name: Install podman
-        run: |
-          sudo apt-get update -qq
-          sudo apt-get -qq -y install podman
-          podman version
-          # Starting systemd user service
-          systemctl --user start podman.socket
-          echo "PODMAN_SOCK=/run/user/${UID}/podman/podman.sock" >> $GITHUB_ENV
-          echo "DOCKER_HOST=unix:///run/user/${UID}/podman/podman.sock" >> $GITHUB_ENV
-      - name: Build and publish the main arm64 image
+      - name: Build and publish multiarch skupper-router image
         run: |
           # The version on main will be 0.0.0+<commit-sha>-main
           export VERSION="0.0.0+${GITHUB_SHA}-main"
           unset PUSH_LATEST
-          export PLATFORM=arm64
+          
           ./.github/scripts/image.sh
         env:
           CONTAINER_USER: '${{ secrets.DOCKER_USER }}'
-          CONTAINER_PASSWORD: '${{ secrets.DOCKER_PASSWORD }}'
+          CONTAINER_PASSWORD: '${{ secrets.DOCKER_PASSWORD }}' 
 
-  # This job pulls the images produced by the build-image-amd64 and build-image-arm64 jobs
-  create-manifest:
-    needs: [build-image-amd64, build-image-arm64]
-    name: Pull skupper-router amd64 and arm64 images and create/push manifest
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-      - name: Install podman
-        run: |
-          sudo apt-get update -qq
-          sudo apt-get -qq -y install podman
-          podman version
-          # Starting systemd user service
-          systemctl --user start podman.socket
-          echo "PODMAN_SOCK=/run/user/${UID}/podman/podman.sock" >> $GITHUB_ENV
-          echo "DOCKER_HOST=unix:///run/user/${UID}/podman/podman.sock" >> $GITHUB_ENV
-      - name: Pull skupper-router amd64 and arm64 images and create/push manifest
-        run: |
-          # This is the main build which means we WON'T push the :latest tag to the container repo.
-          unset PUSH_LATEST
-          ./.github/scripts/manifest.sh
-        env:
-          CONTAINER_USER: '${{ secrets.DOCKER_USER }}'
-          CONTAINER_PASSWORD: '${{ secrets.DOCKER_PASSWORD }}'
 
@@ -36,8 +36,8 @@ on:
         default: false
 
 jobs:
-  build-image-amd64:
-    name: Build and publish skupper-router amd64 image
+  build-multiarch-image:
+    name: Build and publish multiarch skupper-router image
     runs-on: ubuntu-latest
     steps:
       - run: |
@@ -51,9 +51,17 @@ jobs:
             fi
           done
         env:
-          CONTAINER_TAG: '${{github.event.inputs.containerTag}}'
+          CONTAINER_TAG: '${{github.event.inputs.containerTag}}'      
+      
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v2
+
+      - name: Set up Buildx
+        uses: docker/setup-buildx-action@v2
+
       - uses: actions/checkout@v4
-      - run: |
+      - name: Build and Push Multi-Arch Image
+        run: |
           # build, run tests and if all worked publish a custom image
           export PROJECT_TAG="${CONTAINER_TAG}"
           # The version of skupper-router should be the same as the version of the image.
@@ -73,107 +81,11 @@ jobs:
           else
             echo 'image-manual.yml(job:build-manual-amd64) not setting PUSH_LATEST, will not push :latest tag'
           fi
-          export PLATFORM=amd64
-          ./.github/scripts/image.sh
-        env:
-          CONTAINER_USER: '${{ secrets.DOCKER_USER }}'
-          CONTAINER_PASSWORD: '${{ secrets.DOCKER_PASSWORD }}'
-          PROTON_SOURCE_URL: '${{github.event.inputs.protonSourceUrl}}'
-          CONTAINER_TAG: '${{github.event.inputs.containerTag}}'
-
-  build-image-arm64:
-    name: Build and publish skupper-router arm64 image
-    runs-on: ubuntu-24.04-arm
-    steps:
-      - run: |
-          # validate CONTAINER_TAG
-          [[ ! "${CONTAINER_TAG}" =~ ^[a-z0-9][a-z0-9.-]+[a-z0-9]$ ]] && echo "invalid tag - it must begin and end with letter or digit and contains - and ." && exit 1
-          protected=(latest nightly master)
-          for ptag in ${protected[@]}; do
-            if [[ "${ptag}" = "${CONTAINER_TAG}" ]]; then
-              echo "${ptag} cannot be used (protected tag)"
-              exit 1
-            fi
-          done
-        env:
-          CONTAINER_TAG: '${{github.event.inputs.containerTag}}'
-      - uses: actions/checkout@v4
-      - name: Install podman
-        run: |
-          sudo apt-get update -qq
-          sudo apt-get -qq -y install podman
-          podman version
-          # Starting systemd user service
-          systemctl --user start podman.socket
-          echo "PODMAN_SOCK=/run/user/${UID}/podman/podman.sock" >> $GITHUB_ENV
-          echo "DOCKER_HOST=unix:///run/user/${UID}/podman/podman.sock" >> $GITHUB_ENV
-      - run: |
-          export PROJECT_TAG="${CONTAINER_TAG}"
-          # The version of skupper-router should be the same as the version of the image.
-          export VERSION="${CONTAINER_TAG}"
-
-          if [ "${CONTAINER_TAG}" != "main" ]; then
-              export BUILD_NUMBER=$((`curl -s https://quay.io/api/v1/repository/skupper/skupper-router/tag/?filter_tag_name=like:${VERSION} | jq '.tags[] | select(has("end_ts") | not) | .name' | grep -E "\"${VERSION}-[0-9]+\"" | wc -l || echo 0` + 1))
-              # Only accepts tag if build_number is higher than one
-              # Verify if build number is unique, otherwise fail
-              [[ ${BUILD_NUMBER} -eq 1 ]] && { echo "The provided tag (${VERSION}) does not refer to a released image. You must provide a tag that has already been released."; exit 1; }
-          else
-              echo "CONTAINER_TAG is main"
-          fi
-
-          CAN_PUSH_LATEST='${{github.event.inputs.canPushLatestTag}}'
-          if [ "${CAN_PUSH_LATEST}" == "true" ]; then
-            echo 'image-manual.yml(job:build-image-arm64) setting PUSH_LATEST=true, will push :latest tag'
-            export PUSH_LATEST=true
-          else
-            echo 'image-manual.yml(job:build-image-arm64) not setting PUSH_LATEST, will not push :latest tag'
-          fi
-          export PLATFORM=arm64
+          
           ./.github/scripts/image.sh
         env:
           CONTAINER_USER: '${{ secrets.DOCKER_USER }}'
           CONTAINER_PASSWORD: '${{ secrets.DOCKER_PASSWORD }}'
           PROTON_SOURCE_URL: '${{github.event.inputs.protonSourceUrl}}'
           CONTAINER_TAG: '${{github.event.inputs.containerTag}}'
 
-  # This job pulls the images produced by the build-image-amd64 and build-image-arm64 jobs
-  create-manifest:
-    needs: [build-image-amd64, build-image-arm64]
-    name: Pull skupper-router amd64 and arm64 images and create/push manifest
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-      - name: Install podman
-        run: |
-          sudo apt-get update -qq
-          sudo apt-get -qq -y install podman
-          podman version
-          # Starting systemd user service
-          systemctl --user start podman.socket
-          echo "PODMAN_SOCK=/run/user/${UID}/podman/podman.sock" >> $GITHUB_ENV
-          echo "DOCKER_HOST=unix:///run/user/${UID}/podman/podman.sock" >> $GITHUB_ENV
-      - name: Pull skupper-router amd64 and arm64 images and create/push manifest
-        run: |
-          export VERSION="${CONTAINER_TAG}"
-          if [ "${CONTAINER_TAG}" != "main" ]; then
-              export BUILD_NUMBER=$((`curl -s https://quay.io/api/v1/repository/skupper/skupper-router/tag/?filter_tag_name=like:${VERSION} | jq '.tags[] | select(has("end_ts") | not) | .name' | grep -E "\"${VERSION}-[0-9]+\"" | wc -l || echo 0` + 1))
-              echo "BUILD_NUMER(create-manifest)=${BUILD_NUMBER}"
-              # Only accepts tag if build_number is higher than one
-              # Verify if build number is unique, otherwise fail
-              [[ ${BUILD_NUMBER} -eq 1 ]] && { echo "The provided tag (${VERSION}) does not refer to a released image. You must provide a tag that has already been released."; exit 1; }
-          else
-              echo "CONTAINER_TAG is main"
-          fi
-          export PROJECT_TAG="${CONTAINER_TAG}"
-          CAN_PUSH_LATEST='${{github.event.inputs.canPushLatestTag}}'
-          if [ "${CAN_PUSH_LATEST}" == "true" ]; then
-            echo 'image-manual.yml(job:pull-images) setting PUSH_LATEST=true, will push :latest tag'
-            export PUSH_LATEST=true
-          else
-            echo 'image-manual.yml(job:pull-images) not setting PUSH_LATEST, will not push :latest tag'
-          fi
-          ./.github/scripts/manifest.sh
-        env:
-          CONTAINER_USER: '${{ secrets.DOCKER_USER }}'
-          CONTAINER_PASSWORD: '${{ secrets.DOCKER_PASSWORD }}'
-          CONTAINER_TAG: '${{github.event.inputs.containerTag}}'