nicolas
/
tekton-pipeline-multiarch
mirror of https://github.com/nmasse-itix/tekton-pipeline-multiarch.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

wip

main
Nicolas Massé 2 years ago
parent
2e91a3b097
commit
2ce753bf47
4 changed files with 42 additions and 9 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 11
      tekton/pipeline-build-multiarch.yaml
  2. 2
      tekton/pipelinerun.yaml
  3. 26
      tekton/serviceaccount-buildbot.yaml
  4. 12
      tekton/task-podman-build.yaml

11
tekton/pipeline-build-multiarch.yaml
View File

@ -16,6 +16,9 @@ spec:
- name: manifest-name - name: manifest-name
type: string type: string
default: "tekton" default: "tekton"
- name: context-dir
type: string
default: "."
tasks: tasks:
@ -39,8 +42,8 @@ spec:
params: params:
- name: manifest-name - name: manifest-name
value: $(params.manifest-name) value: $(params.manifest-name)
- name: arch - name: context-dir
value: "amd64" value: $(params.context-dir)
workspaces: workspaces:
- name: source-workspace - name: source-workspace
workspace: source-workspace workspace: source-workspace
@ -54,8 +57,8 @@ spec:
params: params:
- name: manifest-name - name: manifest-name
value: $(params.manifest-name) value: $(params.manifest-name)
- name: arch - name: context-dir
value: "arm64" value: $(params.context-dir)
workspaces: workspaces:
- name: source-workspace - name: source-workspace
workspace: source-workspace workspace: source-workspace

2
tekton/pipelinerun.yaml
View File

@ -10,6 +10,8 @@ spec:
value: https://github.com/nmasse-itix/tekton-pipeline-multiarch.git value: https://github.com/nmasse-itix/tekton-pipeline-multiarch.git
- name: docker-image-name - name: docker-image-name
value: quay.io/nmasse_itix/htop-multiarch value: quay.io/nmasse_itix/htop-multiarch
- name: context-dir
value: src
workspaces: workspaces:
- name: container-storage - name: container-storage
volumeClaimTemplate: volumeClaimTemplate:

26
tekton/serviceaccount-buildbot.yaml
View File

@ -4,3 +4,29 @@ metadata:
name: buildbot name: buildbot
imagePullSecrets: imagePullSecrets:
- name: quay-authentication - name: quay-authentication
---
apiVersion: rbac.authorization.k8s.io/v1
kind: Role
metadata:
name: buildbot-scc
rules:
- apiGroups:
- security.openshift.io
resourceNames:
- privileged
resources:
- securitycontextconstraints
verbs:
- use
---
apiVersion: rbac.authorization.k8s.io/v1
kind: RoleBinding
metadata:
name: buildbot-scc
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: Role
name: buildbot-scc
subjects:
- kind: ServiceAccount
name: buildbot

12
tekton/task-podman-build.yaml
View File

@ -9,8 +9,6 @@ spec:
- name: context-dir - name: context-dir
type: string type: string
default: . default: .
- name: arch
type: string
workspaces: workspaces:
- name: source-workspace - name: source-workspace
description: Workspace containing source code description: Workspace containing source code
@ -19,9 +17,13 @@ spec:
mountPath: /var/lib/containers mountPath: /var/lib/containers
steps: steps:
- name: build - name: build
image: quay.io/podman/stable image: registry.redhat.io/rhel8/buildah@sha256:b48f410efa0ff8ab0db6ead420a5d8d866d64af846fece5efb185230d7ecf591
script: | script: |
#!/bin/bash #!/bin/bash
set -Eeuo pipefail set -Eeuo pipefail
export STORAGE_DRIVER=vfs buildah bud --storage-driver=vfs --no-cache --manifest $(params.manifest-name) $(workspaces.source-workspace.path)/$(params.context-dir)
podman build --no-cache --manifest $(params.manifest-name) $(workspaces.source-workspace.path)/$(params.context-dir) #podman build --no-cache --manifest $(params.manifest-name) $(workspaces.source-workspace.path)/$(params.context-dir)
securityContext:
capabilities:
add:
- SETFCAP

Write Preview
Loading…
Cancel
Save