Skip to content

Commit

Permalink
travis-ci: deploy RPM / Deb packages
Browse files Browse the repository at this point in the history 
Now php-tarantool packages are deployed into two kinds of repositories:
packagecloud.io and to S3 based ones. The download.tarantool.org now
points to the latter, but we keep packagecloud.io for a while to don't
break users, which use it directly (we don't recommend it though). See
[1] for more info about deprecation of our packagecloud.io repositories.

The deployment scripts allows to provide two configurations: production
and staging. The former is for deployment from the master branch and
from a git tag. The latter is for deployments from a developer branch.
It is useful when something should be verified in a specific environment
using a built package or when the deployment process itself was modified
and should be tested.

The difference between production and staging deployment process is how
duplicate package versions are handled. It give an error for production
deployment, but does not for staging. The new package is discarded in
the case for packagecloud.io, but it replaces the old package in S3
repositories.

Read comments in the deployment scripts for more details.

[1]: tarantool/tarantool#4947

Fixes #117
  • Loading branch information
@Totktonada
Totktonada committed Jun 29, 2020
1 parent 2d506f7 commit ad221f7
Show file tree
Hide file tree
Showing 11 changed files with 547 additions and 2 deletions.
3 changes: 3 additions & 0 deletions .gitignore
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,3 +46,6 @@ debian/php5-tarantool.substvars
debian/php5-tarantool/
build
.*.sw[a-z]

# Unencrypted private GPG keys for deployment.
.travis/*.asc
45 changes: 43 additions & 2 deletions .travis.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -129,20 +129,61 @@ python:

script:
- |
# Make shell strictier.
#
# - Exit with a failure on a first failed command.
# - Print each executed commmand.
set -ex
if [ -n "${TARANTOOL_VERSION}" ]; then
./test.sh
elif [ -n "${OS}" ] && [ -n "${DIST}" ]; then
git clone --depth 1 https://github.com/packpack/packpack.git
./packpack/packpack
if [ "${OS}" = "el" ]; then
export OS=centos
DOCKER_IMAGE="centos:${DIST}"
else
DOCKER_IMAGE="${OS}:${DIST}"
fi
docker run \
--volume "$(realpath .):/tarantool-php" \
--workdir /tarantool-php \
--rm \
"${OS}:${DIST}" \
"${DOCKER_IMAGE}" \
./test.pkg.sh
else
exit 1
fi
# Deploy
# ------
# Skip deployment when it is not expected.
if [ -z "${OS}" ] || [ -z "${DIST}" ]; then
echo "Skip deployment: it is pure testing job w/o any RPM / Deb artefacts"
exit 0
fi
if [ "${TRAVIS_REPO_SLUG}" != "tarantool/tarantool-php" ]; then
echo "Skip deployment: it is a fork, not the base repository"
exit 0
fi
if [ "${TRAVIS_EVENT_TYPE}" != "push" ]; then
echo "Skip deployment: event is not 'push', but ${TRAVIS_EVENT_TYPE}"
exit 0
fi
# Choose destination to push packages.
if [ "${TRAVIS_BRANCH}" == "master" ] || [ -n "${TRAVIS_TAG}" ]; then
echo "Set production deployment parameters"
configuration=production
else
echo "Set staging deployment parameters"
configuration=staging
fi
# Deploy to packagecloud repositories.
./.travis/deploy_packagecloud.sh ${configuration}
# Deploy to S3 based repositories.
./.travis/deploy_s3_dependencies.sh
./.travis/deploy_s3.sh ${configuration}
147 changes: 147 additions & 0 deletions .travis/deploy_packagecloud.sh
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,147 @@
#!/bin/sh

# Deploy to packagecloud repositories
# -----------------------------------
#
# `deploy_packagecloud.sh` is equivalent to
# `deploy_packagecloud.sh staging`.
#
# `deploy_packagecloud.sh staging` requires the following
# environment variables:
#
# - OS
# - DIST
# - DEPLOY_STAGING_PACKAGECLOUD_USER
# - DEPLOY_STAGING_PACKAGECLOUD_TOKEN
#
# `deploy_packagecloud.sh production` requires the following
# environment variables:
#
# - OS
# - DIST
# - DEPLOY_PRODUCTION_PACKAGECLOUD_USER
# - DEPLOY_PRODUCTION_PACKAGECLOUD_TOKEN
#
# If one of those variables is not set or empty, then deployment
# will be skipped.

# Make shell strictier.
#
# - Exit with a failure on a first failed command.
# - Exit with a failure on an attempt to use an unset variable.
# - Print each executed commmand.
#
# Note: The script expects that Travis-CI will filter sensitive
# information (such as a token): 'Display value in build log'
# toogle should be OFF for to keep a value secure.
set -eux

configuration=${1:-staging}

# Choose credentials.
if [ ${configuration} = staging ]; then
DEPLOY_PACKAGECLOUD_USER="${DEPLOY_STAGING_PACKAGECLOUD_USER:-}"
DEPLOY_PACKAGECLOUD_TOKEN="${DEPLOY_STAGING_PACKAGECLOUD_TOKEN:-}"
elif [ ${configuration} = production ]; then
DEPLOY_PACKAGECLOUD_USER="${DEPLOY_PRODUCTION_PACKAGECLOUD_USER:-}"
DEPLOY_PACKAGECLOUD_TOKEN="${DEPLOY_PRODUCTION_PACKAGECLOUD_TOKEN:-}"
else
echo "Unknown configuration: ${configuration}"
exit 1
fi

# Skip deployment if some variables are not set or empty.
if [ -z "${OS:-}" ] || [ -z "${DIST:-}" ] || \
[ -z "${DEPLOY_PACKAGECLOUD_USER}" ] || \
[ -z "${DEPLOY_PACKAGECLOUD_TOKEN}" ]; then
echo "Skip deployment: some of necessary environment"
echo "variables are not set or empty"
exit 0
fi

# Verify that packpack is cloned into the current directory.
packagecloud_tool=./packpack/tools/packagecloud
if [ ! -f "${packagecloud_tool}" ]; then
echo "Could not find ${packagecloud_tool}"
exit 1
fi

# Staging repository: keep older packages in case of a
# version clash.
#
# It would be better to replace old ones, but there is no
# such option in the packagecloud tool we use. It may be
# important if we'll have some manual or automatic testing
# upward a staging repository. But at least CI will not fail
# because a package is already exists.
push_args=""
if [ "${configuration}" = staging ]; then
push_args="${push_args} --ignore-duplicates"
fi

# Setup environment variables for the packagecloud tool.
export PACKAGECLOUD_TOKEN="${DEPLOY_PACKAGECLOUD_TOKEN}"

# FIXME: It would be good to upstream the repos_list command.
(cd packpack/tools &&
patch -p1 -i ../../.travis/packagecloud-list-repos.patch)

# Fetch list of repositories from packagecloud.io.
#
# Set default repositories if the attempt to fetch them fails.
#
# We have tarantool repositories on packagecloud.io up to
# 2_4. The next ones present only in the S3 based storage.
repositories=""
for i in $(seq 1 5); do
repositories="$(${packagecloud_tool} list_repos || true)"
[ -n "${repositories}" ] && break
done
[ -z "${repositories}" ] && repositories="1_6 1_7 1_9 1_10 2x 2_2 2_3 2_4"

for repo in ${repositories}; do
# FIXME: Enable *.ddeb when packagecloud.io will support it.
for file in build/*.rpm build/*.deb build/*.dsc; do
extension=${file##*.}

# Skip non-matched globs: say, build/*.rpm on Debian.
basename="$(basename "${file}" ".${extension}")"
[ "${basename}" = "*" ] && continue

# Push all source files listed in .dsc file together with
# the file.
#
# FIXME: It seems logical to move this logic to the
# packagecloud tool we use.
files="${file}"
if [ "${extension}" = "dsc" ]; then
parse_dsc_file='{
if ($0 == "Files:") {
FILES_SECTION = 1;
} else if (FILES_SECTION != 0) {
print "build/"$3;
}
}'
files="${files} $(awk "${parse_dsc_file}" "${file}")"
fi

user=${DEPLOY_PACKAGECLOUD_USER}

# Retry failed attempts to upload a package.
#
# packagecloud.io sometimes replieds with 502 Bad Gateway
# for attempts to push, so retrying is important here.
#
# FIXME: This way we don't differentiate network errors
# and all other ones. It would be much better to retry
# from inside the packagecloud tool (requests library
# supports it).
for i in $(seq 1 5); do
# FIXME: The tool fetches distributions.json each
# time. It can cache the data somewhere and reuse
# during some time period until expiration.
${packagecloud_tool} push ${push_args} ${user}/${repo} \
${extension} ${OS} ${DIST} ${files} && break
done
done
done
Binary file added .travis/deploy_production_s3_gpg_private_key.asc.enc
View file
Binary file not shown.
Loading

0 comments on commit ad221f7

Please sign in to comment.