blue-build 0.9.5

A CLI tool built for creating Containerfile templates for ostree based atomic distros
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332

VERSION 0.8
PROJECT blue-build/cli

IMPORT github.com/earthly/lib/rust AS rust

ARG --global IMAGE=ghcr.io/blue-build/cli
ARG --global TAGGED="false"
ARG --global LATEST="false"

all:
    WAIT
        BUILD --platform=linux/amd64 --platform=linux/arm64 +prebuild
    END
    BUILD +build
    BUILD ./integration-tests+all

run-checks:
    BUILD +lint
    BUILD +test

build-images-all:
    BUILD --platform=linux/amd64 --platform=linux/arm64 +build-images

build-scripts-all:
    BUILD --platform=linux/amd64 --platform=linux/arm64 +build-scripts

build-images:
    BUILD +blue-build-cli
    BUILD +blue-build-cli-distrobox
    BUILD +installer

prebuild:
    BUILD +blue-build-cli-prebuild
    BUILD +blue-build-cli-distrobox-prebuild

lint:
    FROM +common
    RUN cargo fmt --all --check
    DO rust+CARGO --args="clippy --workspace"
    DO rust+CARGO --args="clippy --workspace --all-features"
    DO rust+CARGO --args="clippy --workspace --no-default-features"
    DO +EACH_PACKAGE --args="clippy --workspace --no-default-features"

test:
    FROM +common
    COPY --dir test-files/ integration-tests/ /app
    COPY +cosign/cosign /usr/bin/cosign

    DO rust+CARGO --args="test --workspace"
    DO rust+CARGO --args="test --workspace --all-features"
    DO rust+CARGO --args="test --workspace --no-default-features"
    DO +EACH_PACKAGE --args="test --no-default-features"

EACH_PACKAGE:
    FUNCTION
    ARG --required args

    FOR package IN $( \
        cargo metadata --format-version 1 \
        | jq -cr '.workspace_members | .[]' \
        | sed 's|.*#||' | sed 's|@.*||' \
    )
        DO --pass-args +EACH_FEAT --package="$package"
    END

EACH_FEAT:
    FUNCTION
    ARG --required args
    ARG --required package

    FOR feat IN $( \
        cargo metadata --format-version 1 \
        | jq -cr ".packages[] | select(.name == \"$package\") | .features | keys | .[] | select(. != \"default\")" \
    )
        DO rust+CARGO --args="$args --package $package --features $feat"
    END

install:
    FROM +common
    ARG --required BUILD_TARGET
    ARG --required RELEASE

    IF [ "$RELEASE" = "true" ]
        DO rust+CROSS --target="$BUILD_TARGET" --output="$BUILD_TARGET/release/[^\./]+"
        SAVE ARTIFACT target/$BUILD_TARGET/release/bluebuild
    ELSE
        DO rust+CROSS --args="build" --target="$BUILD_TARGET" --output="$BUILD_TARGET/debug/[^\./]+"
        SAVE ARTIFACT target/$BUILD_TARGET/debug/bluebuild
    END

install-all-features:
    FROM +common
    ARG --required BUILD_TARGET
    ARG --required RELEASE

    IF [ "$RELEASE" = "true" ]
        DO rust+CROSS --args="build --all-features --release" --target="$BUILD_TARGET" --output="$BUILD_TARGET/release/[^\./]+"
        SAVE ARTIFACT target/$BUILD_TARGET/release/bluebuild
    ELSE
        DO rust+CROSS --args="build --all-features" --target="$BUILD_TARGET" --output="$BUILD_TARGET/debug/[^\./]+"
        SAVE ARTIFACT target/$BUILD_TARGET/debug/bluebuild
    END

common:
    FROM --platform=native ghcr.io/blue-build/earthly-lib/cargo-builder

    WORKDIR /app
    COPY --keep-ts --dir src/ template/ recipe/ utils/ process/ /app
    COPY --keep-ts Cargo.* /app
    COPY --keep-ts *.md /app
    COPY --keep-ts LICENSE /app
    COPY --keep-ts build.rs /app
    COPY --keep-ts --dir .git/ /app
    RUN touch build.rs

    DO rust+INIT --keep_fingerprints=true

build-scripts:
    ARG BASE_IMAGE="alpine"
    FROM $BASE_IMAGE

    COPY --platform=native (+digest/base-image-digest --BASE_IMAGE=$BASE_IMAGE) /base-image-digest
    LABEL org.opencontainers.image.base.name="$BASE_IMAGE"
    LABEL org.opencontainers.image.base.digest="$(cat /base-image-digest)"

    COPY --dir scripts/ /
    FOR script IN "$(ls /scripts | grep -e '.*\.sh$')"
        RUN echo "Making ${script} executable" && \
        chmod +x "scripts/${script}"
    END

    DO --pass-args +SAVE_IMAGE --IMAGE="$IMAGE/build-scripts"

blue-build-cli-prebuild:
    ARG BASE_IMAGE="registry.fedoraproject.org/fedora-toolbox"
    FROM "$BASE_IMAGE"

    RUN dnf -y install dnf-plugins-core \
        && dnf config-manager addrepo \
            --from-repofile=https://download.docker.com/linux/fedora/docker-ce.repo \
        && dnf install --refresh -y docker-ce docker-ce-cli containerd.io \
            docker-buildx-plugin docker-compose-plugin \
            buildah podman skopeo dumb-init git

    ENTRYPOINT ["/usr/bin/dumb-init", "--"]

    COPY --platform=native (+digest/base-image-digest --BASE_IMAGE=$BASE_IMAGE) /base-image-digest
    LABEL org.opencontainers.image.base.name="$BASE_IMAGE"
    LABEL org.opencontainers.image.base.digest="$(cat /base-image-digest)"

    COPY +cosign/cosign /usr/bin/cosign

    ARG EARTHLY_GIT_HASH
    ARG TARGETARCH
    SAVE IMAGE --push "$IMAGE:$EARTHLY_GIT_HASH-prebuild-$TARGETARCH"

blue-build-cli:
    FROM alpine
    ARG RELEASE="true"
    ARG TARGETARCH

    IF [ "$RELEASE" = "true" ]
        ARG EARTHLY_GIT_HASH
        FROM "$IMAGE:$EARTHLY_GIT_HASH-prebuild-$TARGETARCH"
    ELSE
        FROM +blue-build-cli-prebuild
    END

    IF [ "$TARGETARCH" = "arm64" ]
        DO +INSTALL --OUT_DIR="/usr/bin/" --BUILD_TARGET="aarch64-unknown-linux-gnu" --RELEASE=$RELEASE
    ELSE
        DO +INSTALL --OUT_DIR="/usr/bin/" --BUILD_TARGET="x86_64-unknown-linux-gnu" --RELEASE=$RELEASE
    END

    RUN mkdir -p /bluebuild
    WORKDIR /bluebuild
    CMD ["bluebuild"]

    DO --pass-args +SAVE_IMAGE

blue-build-cli-distrobox-prebuild:
    ARG BASE_IMAGE="alpine"
    FROM $BASE_IMAGE

    RUN apk update && apk add --no-cache \
        alpine-base git dumb-init buildah \
        podman skopeo bash-completion docs \
        gcompat libc-utils lsof man-pages \
        mandoc musl-utils openssh-client-default \
        pinentry tar vte3 which \
        bash bc bzip2 coreutils curl diffutils findmnt \
        findutils gnupg gpg iproute2 iputils keyutils \
        less libcap ncurses ncurses-terminfo net-tools \
        pigz rsync shadow sudo tcpdump tree tzdata unzip \
        util-linux util-linux-misc vulkan-loader wget \
        xauth xz zip procps

    ENTRYPOINT ["/usr/bin/dumb-init", "--"]

    COPY --platform=native (+digest/base-image-digest --BASE_IMAGE=$BASE_IMAGE) /base-image-digest
    LABEL org.opencontainers.image.base.name="$BASE_IMAGE"
    LABEL org.opencontainers.image.base.digest="$(cat /base-image-digest)"

    COPY +cosign/cosign /usr/bin/cosign

    ARG EARTHLY_GIT_HASH
    ARG TARGETARCH
    SAVE IMAGE --push "$IMAGE:$EARTHLY_GIT_HASH-distrobox-prebuild-$TARGETARCH"

blue-build-cli-distrobox:
    ARG EARTHLY_GIT_HASH
    ARG TARGETARCH
    FROM "$IMAGE:$EARTHLY_GIT_HASH-distrobox-prebuild-$TARGETARCH"

    IF [ "$TARGETARCH" = "arm64" ]
        DO +INSTALL --OUT_DIR="/usr/bin/" --BUILD_TARGET="aarch64-unknown-linux-musl"
    ELSE
        DO +INSTALL --OUT_DIR="/usr/bin/" --BUILD_TARGET="x86_64-unknown-linux-musl"
    END

    DO --pass-args +SAVE_IMAGE --SUFFIX="-distrobox"

installer:
    ARG BASE_IMAGE="alpine"
    FROM $BASE_IMAGE

    COPY --platform=native (+digest/base-image-digest --BASE_IMAGE=$BASE_IMAGE) /base-image-digest
    LABEL org.opencontainers.image.base.name="$BASE_IMAGE"
    LABEL org.opencontainers.image.base.digest="$(cat /base-image-digest)"

    ARG TARGETARCH
    IF [ "$TARGETARCH" = "arm64" ]
        DO +INSTALL --OUT_DIR="/out/" --BUILD_TARGET="aarch64-unknown-linux-musl"
    ELSE
        DO +INSTALL --OUT_DIR="/out/" --BUILD_TARGET="x86_64-unknown-linux-musl"
    END

    COPY install.sh /install.sh

    CMD ["cat", "/install.sh"]

    DO --pass-args +SAVE_IMAGE --SUFFIX="-installer"
    SAVE ARTIFACT /out/bluebuild

cosign:
    FROM ghcr.io/sigstore/cosign/cosign:v2.4.1
    SAVE ARTIFACT /ko-app/cosign

digest:
    FROM alpine
    RUN apk update && apk add skopeo jq

    ARG --required BASE_IMAGE
    RUN skopeo inspect "docker://$BASE_IMAGE" | jq -r '.Digest' > /base-image-digest
    SAVE ARTIFACT /base-image-digest
    
version:
    FROM rust

    RUN apt-get update && apt-get install -y jq

    WORKDIR /app
    COPY --keep-ts --dir src/ template/ recipe/ utils/ process/ /app
    COPY --keep-ts Cargo.* /app

    RUN /bin/bash -c 'set -eo pipefail; cargo metadata --no-deps --format-version 1 \
    | jq -r ".packages[] | select(.name == \"blue-build\") .version" > /version'

    SAVE ARTIFACT /version

INSTALL:
    FUNCTION
    ARG --required BUILD_TARGET
    ARG --required OUT_DIR
    ARG RELEASE="true"

    IF [ "$TAGGED" = "true" ]
        COPY --platform=native (+install/bluebuild --BUILD_TARGET=$BUILD_TARGET --RELEASE=$RELEASE) $OUT_DIR
    ELSE
        COPY --platform=native (+install-all-features/bluebuild --BUILD_TARGET=$BUILD_TARGET --RELEASE=$RELEASE) $OUT_DIR
    END

SAVE_IMAGE:
    FUNCTION
    ARG SUFFIX=""
    ARG IMAGE="$IMAGE"

    COPY --platform=native +version/version /
    ARG VERSION="$(cat /version)"
    ARG MAJOR_VERSION="$(echo "$VERSION" | cut -d'.' -f1)"
    ARG MINOR_VERSION="$(echo "$VERSION" | cut -d'.' -f2)"
    ARG PATCH_VERSION="$(echo "$VERSION" | cut -d'.' -f3)"
    ARG BUILD_TIME="$(date -Iseconds)"
    DO --pass-args +LABELS

    IF [ "$TAGGED" = "true" ]
        SAVE IMAGE --push "${IMAGE}:v${VERSION}${SUFFIX}"

        IF [ "$LATEST" = "true" ]
            SAVE IMAGE --push "${IMAGE}:latest${SUFFIX}"
            SAVE IMAGE --push "${IMAGE}:v${MAJOR_VERSION}.${MINOR_VERSION}${SUFFIX}"
            SAVE IMAGE --push "${IMAGE}:v${MAJOR_VERSION}${SUFFIX}"
        END
    ELSE
        ARG EARTHLY_GIT_BRANCH
        SAVE IMAGE --push "${IMAGE}:${EARTHLY_GIT_BRANCH}${SUFFIX}"
    END
    ARG EARTHLY_GIT_HASH
    SAVE IMAGE --push "${IMAGE}:${EARTHLY_GIT_HASH}${SUFFIX}"

LABELS:
    FUNCTION
    LABEL org.opencontainers.image.created="$BUILD_TIME"
    LABEL org.opencontainers.image.url="https://github.com/blue-build/cli"
    LABEL org.opencontainers.image.source="https://github.com/blue-build/cli"
    LABEL org.opencontainers.image.version="$VERSION"
    LABEL version="$VERSION"
    LABEL org.opencontainers.image.vendor="BlueBuild"
    LABEL vendor="BlueBuild"
    LABEL org.opencontainers.image.licenses="Apache-2.0"
    LABEL license="Apache-2.0"
    LABEL org.opencontainers.image.title="BlueBuild CLI tool"
    LABEL name="blue-build/cli"
    LABEL org.opencontainers.image.description="A CLI tool built for creating Containerfile templates for ostree based atomic distros"
    LABEL org.opencontainers.image.documentation="https://raw.githubusercontent.com/blue-build/cli/main/README.md"

    IF [ "$TAGGED" = "true" ]
        ARG EARTHLY_GIT_BRANCH
        LABEL org.opencontainers.image.ref.name="$EARTHLY_GIT_BRANCH"
    ELSE
        LABEL org.opencontainers.image.ref.name="v$VERSION"
    END