| #!/usr/bin/env bash
|
|
|
|
|
| container.help() {
|
| cat <<EOF
|
| container.:
|
| build : build container image
|
| EOF
|
| }
|
|
|
| CONTAINER_IMAGE_ORGANIZATION=${GITHUB_REPOSITORY_OWNER:-"searxng"}
|
| CONTAINER_IMAGE_NAME="searxng"
|
|
|
| container.build() {
|
| local parch=${OVERRIDE_ARCH:-$(uname -m)}
|
| local container_engine
|
| local arch
|
| local variant
|
| local platform
|
|
|
| required_commands git
|
|
|
|
|
| if [ "$1" = "podman" ] || [ "$1" = "docker" ]; then
|
| if ! command -v "$1" &>/dev/null; then
|
| die 42 "$1 is not installed"
|
| fi
|
| container_engine="$1"
|
| else
|
|
|
| if command -v podman &>/dev/null; then
|
| container_engine="podman"
|
| elif command -v docker &>/dev/null; then
|
| container_engine="docker"
|
| else
|
| die 42 "no compatible container engine is installed (podman or docker)"
|
| fi
|
| fi
|
| info_msg "Selected engine: $container_engine"
|
| "$container_engine" version
|
|
|
|
|
| case $parch in
|
| "X64" | "x86_64" | "amd64")
|
| arch="amd64"
|
| variant=""
|
| platform="linux/$arch"
|
| ;;
|
| "ARM64" | "aarch64" | "arm64")
|
| arch="arm64"
|
| variant=""
|
| platform="linux/$arch"
|
| ;;
|
| "ARMV7" | "armhf" | "armv7l" | "armv7")
|
| arch="arm"
|
| variant="v7"
|
| platform="linux/$arch/$variant"
|
| ;;
|
| *)
|
| err_msg "Unsupported architecture; $parch"
|
| exit 1
|
| ;;
|
| esac
|
| info_msg "Selected platform: $platform"
|
|
|
| if [ "$container_engine" = "docker" ] && ! docker buildx version &>/dev/null; then
|
| die 42 "docker buildx is not installed: https://docs.docker.com/go/buildx/"
|
| fi
|
|
|
| pyenv.install
|
|
|
| (
|
| set -e
|
| pyenv.activate
|
|
|
|
|
| if [ ! -d .git ]; then
|
| die 1 "This is not Git repository"
|
| fi
|
|
|
| if ! git remote get-url origin &>/dev/null; then
|
| die 1 "There is no remote origin"
|
| fi
|
|
|
|
|
| git update-index -q --refresh
|
| python -m searx.version freeze
|
| eval "$(python -m searx.version)"
|
|
|
| info_msg "Set \$DOCKER_TAG: $DOCKER_TAG"
|
| info_msg "Set \$GIT_URL: $GIT_URL"
|
|
|
|
|
| timestamp_requirements_main=$(git log -1 --format='%ct' ./requirements.txt)
|
| timestamp_requirements_server=$(git log -1 --format='%ct' ./requirements-server.txt)
|
| if [[ "$timestamp_requirements_main" -ge "$timestamp_requirements_server" ]]; then
|
| timestamp_venv="$timestamp_requirements_main"
|
| else
|
| timestamp_venv="$timestamp_requirements_server"
|
| fi
|
|
|
| timestamp_searx_settings=$(git log -1 --format='%ct' ./searx/settings.yml)
|
|
|
| if [ "$container_engine" = "podman" ]; then
|
| params_build_builder="build --format=oci --platform=$platform --layers --identity-label=false --timestamp=$timestamp_venv"
|
| params_build="build --format=oci --platform=$platform --layers --identity-label=false"
|
| else
|
| params_build_builder="build --platform=$platform"
|
| params_build=$params_build_builder
|
| fi
|
|
|
| if [ "$GITHUB_ACTIONS" = "true" ]; then
|
| params_build+=" --tag=ghcr.io/$CONTAINER_IMAGE_ORGANIZATION/cache:$CONTAINER_IMAGE_NAME-$arch$variant"
|
| else
|
| params_build+=" --tag=localhost/$CONTAINER_IMAGE_ORGANIZATION/$CONTAINER_IMAGE_NAME:latest"
|
| params_build+=" --tag=localhost/$CONTAINER_IMAGE_ORGANIZATION/$CONTAINER_IMAGE_NAME:$DOCKER_TAG"
|
| fi
|
|
|
|
|
| "$container_engine" $params_build_builder \
|
| --build-arg="TIMESTAMP_VENV=$timestamp_venv" \
|
| --build-arg="TIMESTAMP_SETTINGS=$timestamp_searx_settings" \
|
| --tag="localhost/$CONTAINER_IMAGE_ORGANIZATION/$CONTAINER_IMAGE_NAME:builder" \
|
| --file="./container/builder.dockerfile" \
|
| .
|
| build_msg CONTAINER "Image \"builder\" built"
|
|
|
|
|
| "$container_engine" $params_build \
|
| --build-arg="CONTAINER_IMAGE_ORGANIZATION=$CONTAINER_IMAGE_ORGANIZATION" \
|
| --build-arg="CONTAINER_IMAGE_NAME=$CONTAINER_IMAGE_NAME" \
|
| --build-arg="CREATED=$(date -u +%Y-%m-%dT%H:%M:%SZ)" \
|
| --build-arg="VERSION=$DOCKER_TAG" \
|
| --build-arg="VCS_URL=$GIT_URL" \
|
| --build-arg="VCS_REVISION=$(git rev-parse HEAD)" \
|
| --file="./container/dist.dockerfile" \
|
| .
|
| build_msg CONTAINER "Image built"
|
|
|
| if [ "$GITHUB_ACTIONS" = "true" ]; then
|
| "$container_engine" push "ghcr.io/$CONTAINER_IMAGE_ORGANIZATION/cache:$CONTAINER_IMAGE_NAME-$arch$variant"
|
|
|
|
|
| cat <<EOF >>"$GITHUB_OUTPUT"
|
| docker_tag=$DOCKER_TAG
|
| git_url=$GIT_URL
|
| EOF
|
| fi
|
| )
|
| dump_return $?
|
| }
|
|
|
| container.test() {
|
| local parch=${OVERRIDE_ARCH:-$(uname -m)}
|
| local arch
|
| local variant
|
| local platform
|
|
|
| if [ "$GITHUB_ACTIONS" != "true" ]; then
|
| die 1 "This command is intended to be run in GitHub Actions"
|
| fi
|
|
|
| required_commands podman
|
|
|
|
|
| case $parch in
|
| "X64" | "x86_64" | "amd64")
|
| arch="amd64"
|
| variant=""
|
| platform="linux/$arch"
|
| ;;
|
| "ARM64" | "aarch64" | "arm64")
|
| arch="arm64"
|
| variant=""
|
| platform="linux/$arch"
|
| ;;
|
| "ARMV7" | "armhf" | "armv7l" | "armv7")
|
| arch="arm"
|
| variant="v7"
|
| platform="linux/$arch/$variant"
|
| ;;
|
| *)
|
| err_msg "Unsupported architecture; $parch"
|
| exit 1
|
| ;;
|
| esac
|
| build_msg CONTAINER "Selected platform: $platform"
|
|
|
| (
|
| set -e
|
|
|
| podman pull "ghcr.io/$CONTAINER_IMAGE_ORGANIZATION/cache:$CONTAINER_IMAGE_NAME-$arch$variant"
|
|
|
| name="$CONTAINER_IMAGE_NAME-$(date +%N)"
|
|
|
| podman create --name="$name" --rm --timeout=60 --network="host" \
|
| "ghcr.io/$CONTAINER_IMAGE_ORGANIZATION/cache:$CONTAINER_IMAGE_NAME-$arch$variant" >/dev/null
|
|
|
| podman start "$name" >/dev/null
|
| podman logs -f "$name" &
|
| pid_logs=$!
|
|
|
|
|
| sleep 5
|
|
|
| curl -vf --max-time 5 "http://localhost:8080/healthz"
|
|
|
| kill $pid_logs &>/dev/null || true
|
| podman stop "$name" >/dev/null
|
| )
|
| dump_return $?
|
| }
|
|
|
| container.push() {
|
|
|
| local release_archs=("amd64" "arm64" "armv7")
|
|
|
| local archs=()
|
| local variants=()
|
| local platforms=()
|
|
|
| if [ "$GITHUB_ACTIONS" != "true" ]; then
|
| die 1 "This command is intended to be run in GitHub Actions"
|
| fi
|
|
|
| required_commands podman
|
|
|
| for arch in "${release_archs[@]}"; do
|
| case $arch in
|
| "X64" | "x86_64" | "amd64")
|
| archs+=("amd64")
|
| variants+=("")
|
| platforms+=("linux/${archs[-1]}")
|
| ;;
|
| "ARM64" | "aarch64" | "arm64")
|
| archs+=("arm64")
|
| variants+=("")
|
| platforms+=("linux/${archs[-1]}")
|
| ;;
|
| "ARMV7" | "armv7" | "armhf" | "arm")
|
| archs+=("arm")
|
| variants+=("v7")
|
| platforms+=("linux/${archs[-1]}/${variants[-1]}")
|
| ;;
|
| *)
|
| err_msg "Unsupported architecture; $arch"
|
| exit 1
|
| ;;
|
| esac
|
| done
|
|
|
| (
|
| set -e
|
|
|
|
|
| for i in "${!archs[@]}"; do
|
| podman pull "ghcr.io/$CONTAINER_IMAGE_ORGANIZATION/cache:$CONTAINER_IMAGE_NAME-${archs[$i]}${variants[$i]}"
|
| done
|
|
|
|
|
| release_tags=("$DOCKER_TAG" "latest")
|
|
|
|
|
| for tag in "${release_tags[@]}"; do
|
| if ! podman manifest exists "localhost/$CONTAINER_IMAGE_ORGANIZATION/$CONTAINER_IMAGE_NAME:$tag"; then
|
| podman manifest create "localhost/$CONTAINER_IMAGE_ORGANIZATION/$CONTAINER_IMAGE_NAME:$tag"
|
| fi
|
|
|
|
|
| for i in "${!archs[@]}"; do
|
| podman manifest add \
|
| "localhost/$CONTAINER_IMAGE_ORGANIZATION/$CONTAINER_IMAGE_NAME:$tag" \
|
| "containers-storage:ghcr.io/$CONTAINER_IMAGE_ORGANIZATION/cache:$CONTAINER_IMAGE_NAME-${archs[$i]}${variants[$i]}"
|
| done
|
| done
|
|
|
| podman image list
|
|
|
|
|
| release_registries=("ghcr.io" "docker.io")
|
|
|
|
|
| for registry in "${release_registries[@]}"; do
|
| for tag in "${release_tags[@]}"; do
|
| build_msg CONTAINER "Pushing manifest $tag to $registry"
|
|
|
| podman manifest push \
|
| "localhost/$CONTAINER_IMAGE_ORGANIZATION/$CONTAINER_IMAGE_NAME:$tag" \
|
| "docker://$registry/$CONTAINER_IMAGE_ORGANIZATION/$CONTAINER_IMAGE_NAME:$tag"
|
| done
|
| done
|
| )
|
| dump_return $?
|
| }
|
|
|
|
|
| podman.build() {
|
| container.build podman
|
| }
|
|
|
|
|
| docker.build() {
|
| container.build docker
|
| }
|
|
|
|
|
| docker.buildx() {
|
| container.build docker
|
| }
|
|
|
