| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133 |
- name: Publish Docker Images
- on:
- release:
- types:
- - published
- workflow_dispatch:
- inputs:
- tag:
- description: "The tag version you want to build"
- env:
- REGISTRY_IMAGE: ghcr.io/sagernet/sing-box
- jobs:
- build:
- runs-on: ubuntu-latest
- strategy:
- fail-fast: true
- matrix:
- platform:
- - linux/amd64
- - linux/arm/v6
- - linux/arm/v7
- - linux/arm64
- - linux/386
- - linux/ppc64le
- - linux/riscv64
- - linux/s390x
- steps:
- - name: Get commit to build
- id: ref
- run: |-
- if [[ -z "${{ github.event.inputs.tag }}" ]]; then
- ref="${{ github.ref_name }}"
- else
- ref="${{ github.event.inputs.tag }}"
- fi
- echo "ref=$ref"
- echo "ref=$ref" >> $GITHUB_OUTPUT
- - name: Checkout
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5
- with:
- ref: ${{ steps.ref.outputs.ref }}
- fetch-depth: 0
- - name: Prepare
- run: |
- platform=${{ matrix.platform }}
- echo "PLATFORM_PAIR=${platform//\//-}" >> $GITHUB_ENV
- - name: Setup QEMU
- uses: docker/setup-qemu-action@v3
- - name: Setup Docker Buildx
- uses: docker/setup-buildx-action@v3
- - name: Login to GitHub Container Registry
- uses: docker/login-action@v3
- with:
- registry: ghcr.io
- username: ${{ github.repository_owner }}
- password: ${{ secrets.GITHUB_TOKEN }}
- - name: Docker meta
- id: meta
- uses: docker/metadata-action@v5
- with:
- images: ${{ env.REGISTRY_IMAGE }}
- - name: Build and push by digest
- id: build
- uses: docker/build-push-action@v6
- with:
- platforms: ${{ matrix.platform }}
- context: .
- build-args: |
- BUILDKIT_CONTEXT_KEEP_GIT_DIR=1
- labels: ${{ steps.meta.outputs.labels }}
- outputs: type=image,name=${{ env.REGISTRY_IMAGE }},push-by-digest=true,name-canonical=true,push=true
- - name: Export digest
- run: |
- mkdir -p /tmp/digests
- digest="${{ steps.build.outputs.digest }}"
- touch "/tmp/digests/${digest#sha256:}"
- - name: Upload digest
- uses: actions/upload-artifact@v4
- with:
- name: digests-${{ env.PLATFORM_PAIR }}
- path: /tmp/digests/*
- if-no-files-found: error
- retention-days: 1
- merge:
- runs-on: ubuntu-latest
- needs:
- - build
- steps:
- - name: Get commit to build
- id: ref
- run: |-
- if [[ -z "${{ github.event.inputs.tag }}" ]]; then
- ref="${{ github.ref_name }}"
- else
- ref="${{ github.event.inputs.tag }}"
- fi
- echo "ref=$ref"
- echo "ref=$ref" >> $GITHUB_OUTPUT
- if [[ $ref == *"-"* ]]; then
- latest=latest-beta
- else
- latest=latest
- fi
- echo "latest=$latest"
- echo "latest=$latest" >> $GITHUB_OUTPUT
- - name: Download digests
- uses: actions/download-artifact@v5
- with:
- path: /tmp/digests
- pattern: digests-*
- merge-multiple: true
- - name: Set up Docker Buildx
- uses: docker/setup-buildx-action@v3
- - name: Login to GitHub Container Registry
- uses: docker/login-action@v3
- with:
- registry: ghcr.io
- username: ${{ github.repository_owner }}
- password: ${{ secrets.GITHUB_TOKEN }}
- - name: Create manifest list and push
- working-directory: /tmp/digests
- run: |
- docker buildx imagetools create \
- -t "${{ env.REGISTRY_IMAGE }}:${{ steps.ref.outputs.latest }}" \
- -t "${{ env.REGISTRY_IMAGE }}:${{ steps.ref.outputs.ref }}" \
- $(printf '${{ env.REGISTRY_IMAGE }}@sha256:%s ' *)
- - name: Inspect image
- run: |
- docker buildx imagetools inspect ${{ env.REGISTRY_IMAGE }}:${{ steps.ref.outputs.latest }}
- docker buildx imagetools inspect ${{ env.REGISTRY_IMAGE }}:${{ steps.ref.outputs.ref }}
|
