]> git.ipfire.org Git - thirdparty/ipxe.git/commitdiff
projects / thirdparty / ipxe.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: e855c4c)
[ci] Publish rolling release build artifacts with stable URLs coverity_scan master rolling/bin rolling/bin-arm32-efi rolling/bin-arm64-efi rolling/bin-combi rolling/bin-i386-efi rolling/bin-loong64-efi rolling/bin-riscv32 rolling/bin-riscv32-efi rolling/bin-riscv64 rolling/bin-riscv64-efi rolling/bin-x86_64-efi rolling/bin-x86_64-pcbios
authorMichael Brown <mcb30@ipxe.org>
Thu, 29 Jan 2026 14:50:32 +0000 (14:50 +0000)
committerMichael Brown <mcb30@ipxe.org>
Fri, 30 Jan 2026 00:03:35 +0000 (00:03 +0000)
Publish the binaries built from commits on the master branch under
stable URLs such as:

  https://github.com/ipxe/ipxe/releases/download/rolling/bin/undionly.kpxe

Since filenames such as "ipxe.iso" may exist in each of several build
directories, we implement this as one release tag per build directory.
The GitHub Actions workflow automatically moves the tag to the most
recent commit and overwrites the existing release assets.

One downside of this is that running a local "git log" or similar may
show a large number of uninformative tags of the form "rolling/bin",
"rolling/bin-x86_64-efi", "rolling-arm64-efi", etc, all pointing at
the most recent commit.  This clutter may be hidden using:

  git config --local log.excludeDecoration refs/tags/rolling/*

To avoid the unintentional creation of rolling release tags on forks,
we skip the whole publication job unless the environment variable
ROLLING_PREFIX is defined.

Signed-off-by: Michael Brown <mcb30@ipxe.org>
.github/workflows/build.yml patch | blob | blame | history

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index a474775df43659ee9bf1c21a79b896c282db3dab..e6cc1418e98d796905e66002eb27ef1f957bf058 100644 (file)
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -8,7 +8,7 @@ env:
 jobs:
 
   bios:
 jobs:
 
   bios:
-    name: BIOS / ${{ matrix.arch }}
+    name: BIOS
     runs-on: ubuntu-latest
     strategy:
       fail-fast: false
     runs-on: ubuntu-latest
     strategy:
       fail-fast: false
@@ -49,7 +49,7 @@ jobs:
             src/${{ env.bindir }}/undionly.kpxe
 
   sbi:
             src/${{ env.bindir }}/undionly.kpxe
 
   sbi:
-    name: SBI / ${{ matrix.arch }}
+    name: SBI
     runs-on: ubuntu-latest
     strategy:
       fail-fast: false
     runs-on: ubuntu-latest
     strategy:
       fail-fast: false
@@ -83,7 +83,7 @@ jobs:
             src/${{ env.bindir }}/ipxe.sbi
 
   uefi:
             src/${{ env.bindir }}/ipxe.sbi
 
   uefi:
-    name: UEFI / ${{ matrix.arch }}
+    name: UEFI
     runs-on: ubuntu-latest
     strategy:
       fail-fast: false
     runs-on: ubuntu-latest
     strategy:
       fail-fast: false
@@ -123,7 +123,7 @@ jobs:
             src/${{ env.bindir }}/snponly.efi
 
   tests:
             src/${{ env.bindir }}/snponly.efi
 
   tests:
-    name: Tests / ${{ matrix.arch }}
+    name: Tests (${{ matrix.arch }})
     runs-on: ubuntu-latest
     strategy:
       fail-fast: false
     runs-on: ubuntu-latest
     strategy:
       fail-fast: false
@@ -206,8 +206,73 @@ jobs:
       - name: Upload
         uses: actions/upload-artifact@v6
         with:
       - name: Upload
         uses: actions/upload-artifact@v6
         with:
-          name: bin-combined
+          name: bin-combi
           if-no-files-found: error
           path: |
             ipxe.iso
             ipxe.usb
           if-no-files-found: error
           path: |
             ipxe.iso
             ipxe.usb
+
+  publish:
+    name: Publish
+    runs-on: ubuntu-latest
+    if: >-
+      github.event_name == 'push' &&
+      github.ref == 'refs/heads/master' &&
+      vars.ROLLING_PREFIX
+    needs:
+      - bios
+      - sbi
+      - uefi
+      - tests
+      - combine
+    strategy:
+      fail-fast: false
+      matrix:
+        bindir:
+          - bin
+          - bin-arm32-efi
+          - bin-arm64-efi
+          - bin-combi
+          - bin-i386-efi
+          - bin-loong64-efi
+          - bin-riscv32
+          - bin-riscv32-efi
+          - bin-riscv64
+          - bin-riscv64-efi
+          - bin-x86_64-efi
+          - bin-x86_64-pcbios
+    env:
+      tag: ${{ vars.ROLLING_PREFIX }}/${{ matrix.bindir }}
+    steps:
+
+      - name: Check out code
+        uses: actions/checkout@v6
+
+      - name: Rolling tag
+        run: |
+          git tag -f ${{ env.tag }} ${{ github.sha }}
+
+      - name: Download
+        uses: actions/download-artifact@v7
+        with:
+          path: ${{ matrix.bindir }}
+          name: ${{ matrix.bindir }}
+
+      - name: List artifacts
+        run: |
+          find ${{ matrix.bindir }} -type f
+
+      - name: Update release
+        env:
+          GH_TOKEN: ${{ github.token }}
+        run: |
+          git push -f origin ${{ env.tag }}
+          gh release view ${{ env.tag }} >/dev/null 2>&1 || \
+              gh release create ${{ env.tag }} --prerelease
+          gh release edit ${{ env.tag }} \
+              --prerelease \
+              --tag ${{ env.tag }} \
+              --target ${{ github.sha }} \
+              --title ${{ env.tag }} \
+              --notes "Rolling release of ${{ matrix.bindir }} directory"
+          gh release upload ${{ env.tag }} --clobber ${{ matrix.bindir }}/*
Mirror of https://github.com/ipxe/ipxe.git