release #1273
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: release | |
on: | |
push: | |
tags: | |
- "stable" | |
- "v*.*.*" | |
schedule: | |
- cron: "0 0 * * *" | |
workflow_dispatch: | |
env: | |
CARGO_TERM_COLOR: always | |
IS_NIGHTLY: ${{ github.event_name == 'schedule' || github.event_name == 'workflow_dispatch' }} | |
PROFILE: maxperf | |
jobs: | |
prepare: | |
name: Prepare release | |
runs-on: ubuntu-latest | |
timeout-minutes: 30 | |
outputs: | |
tag_name: ${{ steps.release_info.outputs.tag_name }} | |
release_name: ${{ steps.release_info.outputs.release_name }} | |
changelog: ${{ steps.build_changelog.outputs.changelog }} | |
steps: | |
- uses: actions/checkout@v4 | |
with: | |
fetch-depth: 0 | |
- name: Compute release name and tag | |
id: release_info | |
run: | | |
if [[ ${IS_NIGHTLY} == 'true' ]]; then | |
echo "tag_name=nightly-${GITHUB_SHA}" >> $GITHUB_OUTPUT | |
echo "release_name=Nightly ($(date '+%Y-%m-%d'))" >> $GITHUB_OUTPUT | |
else | |
echo "tag_name=${GITHUB_REF_NAME}" >> $GITHUB_OUTPUT | |
echo "release_name=${GITHUB_REF_NAME}" >> $GITHUB_OUTPUT | |
fi | |
# Creates a `nightly-SHA` tag for this specific nightly | |
# This tag is used for this specific nightly version's release | |
# which allows users to roll back. It is also used to build | |
# the changelog. | |
- name: Create build-specific nightly tag | |
if: ${{ env.IS_NIGHTLY == 'true' }} | |
uses: actions/github-script@v7 | |
env: | |
TAG_NAME: ${{ steps.release_info.outputs.tag_name }} | |
with: | |
script: | | |
const createTag = require('./.github/scripts/create-tag.js') | |
await createTag({ github, context }, process.env.TAG_NAME) | |
- name: Build changelog | |
id: build_changelog | |
uses: mikepenz/release-changelog-builder-action@v4 | |
with: | |
configuration: "./.github/changelog.json" | |
fromTag: ${{ env.IS_NIGHTLY == 'true' && 'nightly' || '' }} | |
toTag: ${{ steps.release_info.outputs.tag_name }} | |
env: | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
release-docker: | |
name: Release Docker | |
uses: ./.github/workflows/docker-publish.yml | |
release: | |
permissions: | |
id-token: write | |
contents: write | |
attestations: write | |
name: ${{ matrix.target }} (${{ matrix.runner }}) | |
runs-on: ${{ matrix.runner }} | |
timeout-minutes: 240 | |
needs: prepare | |
strategy: | |
fail-fast: false | |
matrix: | |
include: | |
# `runner`: GHA runner label | |
# `target`: Rust build target triple | |
# `platform` and `arch`: Used in tarball names | |
# `svm`: target platform to use for the Solc binary: https://github.com/roynalnaruto/svm-rs/blob/84cbe0ac705becabdc13168bae28a45ad2299749/svm-builds/build.rs#L4-L24 | |
- runner: Linux-20.04 | |
target: x86_64-unknown-linux-gnu | |
svm_target_platform: linux-amd64 | |
platform: linux | |
arch: amd64 | |
- runner: Linux-20.04 | |
target: aarch64-unknown-linux-gnu | |
svm_target_platform: linux-aarch64 | |
platform: linux | |
arch: arm64 | |
- runner: macos-12-large | |
target: x86_64-apple-darwin | |
svm_target_platform: macosx-amd64 | |
platform: darwin | |
arch: amd64 | |
- runner: macos-latest-large | |
target: aarch64-apple-darwin | |
svm_target_platform: macosx-aarch64 | |
platform: darwin | |
arch: arm64 | |
- runner: Windows | |
target: x86_64-pc-windows-msvc | |
svm_target_platform: windows-amd64 | |
platform: win32 | |
arch: amd64 | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: dtolnay/rust-toolchain@stable | |
with: | |
targets: ${{ matrix.target }} | |
- uses: Swatinem/rust-cache@v2 | |
with: | |
key: ${{ matrix.target }} | |
cache-on-failure: true | |
- name: Apple M1 setup | |
if: matrix.target == 'aarch64-apple-darwin' | |
run: | | |
echo "SDKROOT=$(xcrun -sdk macosx --show-sdk-path)" >> $GITHUB_ENV | |
echo "MACOSX_DEPLOYMENT_TARGET=$(xcrun -sdk macosx --show-sdk-platform-version)" >> $GITHUB_ENV | |
- name: Linux ARM setup | |
if: matrix.target == 'aarch64-unknown-linux-gnu' | |
run: | | |
sudo apt-get update -y | |
sudo apt-get install -y gcc-aarch64-linux-gnu | |
echo "CARGO_TARGET_AARCH64_UNKNOWN_LINUX_GNU_LINKER=aarch64-linux-gnu-gcc" >> $GITHUB_ENV | |
- name: Build binaries | |
env: | |
SVM_TARGET_PLATFORM: ${{ matrix.svm_target_platform }} | |
PLATFORM_NAME: ${{ matrix.platform }} | |
TARGET: ${{ matrix.target }} | |
OUT_DIR: target/${{ matrix.target }}/${{ env.PROFILE }} | |
shell: bash | |
run: | | |
set -eo pipefail | |
flags=(--target $TARGET --profile $PROFILE --bins | |
--no-default-features --features rustls,aws-kms,cli,asm-keccak) | |
# `jemalloc` is not fully supported on MSVC or aarch64 Linux. | |
if [[ "$TARGET" != *msvc* && "$TARGET" != "aarch64-unknown-linux-gnu" ]]; then | |
flags+=(--features jemalloc) | |
fi | |
[[ "$TARGET" == *windows* ]] && ext=".exe" | |
cargo build "${flags[@]}" | |
bins=(anvil cast chisel forge) | |
for name in "${bins[@]}"; do | |
bin=$OUT_DIR/$name$ext | |
echo "" | |
file "$bin" || true | |
du -h "$bin" || true | |
ldd "$bin" || true | |
$bin --version || true | |
echo "${name}_bin_path=${bin}" >> $GITHUB_ENV | |
done | |
- name: Archive binaries | |
id: artifacts | |
env: | |
PLATFORM_NAME: ${{ matrix.platform }} | |
OUT_DIR: target/${{ matrix.target }}/${{ env.PROFILE }} | |
VERSION_NAME: ${{ (env.IS_NIGHTLY == 'true' && 'nightly') || needs.prepare.outputs.tag_name }} | |
ARCH: ${{ matrix.arch }} | |
shell: bash | |
run: | | |
if [ "$PLATFORM_NAME" == "linux" ]; then | |
tar -czvf "foundry_${VERSION_NAME}_${PLATFORM_NAME}_${ARCH}.tar.gz" -C $OUT_DIR forge cast anvil chisel | |
echo "file_name=foundry_${VERSION_NAME}_${PLATFORM_NAME}_${ARCH}.tar.gz" >> $GITHUB_OUTPUT | |
elif [ "$PLATFORM_NAME" == "darwin" ]; then | |
# We need to use gtar here otherwise the archive is corrupt. | |
# See: https://github.com/actions/virtual-environments/issues/2619 | |
gtar -czvf "foundry_${VERSION_NAME}_${PLATFORM_NAME}_${ARCH}.tar.gz" -C $OUT_DIR forge cast anvil chisel | |
echo "file_name=foundry_${VERSION_NAME}_${PLATFORM_NAME}_${ARCH}.tar.gz" >> $GITHUB_OUTPUT | |
else | |
cd $OUT_DIR | |
7z a -tzip "foundry_${VERSION_NAME}_${PLATFORM_NAME}_${ARCH}.zip" forge.exe cast.exe anvil.exe chisel.exe | |
mv "foundry_${VERSION_NAME}_${PLATFORM_NAME}_${ARCH}.zip" ../../../ | |
echo "file_name=foundry_${VERSION_NAME}_${PLATFORM_NAME}_${ARCH}.zip" >> $GITHUB_OUTPUT | |
fi | |
- name: Build man page | |
id: man | |
if: matrix.target == 'x86_64-unknown-linux-gnu' | |
env: | |
OUT_DIR: target/${{ matrix.target }}/${{ env.PROFILE }} | |
VERSION_NAME: ${{ (env.IS_NIGHTLY == 'true' && 'nightly') || needs.prepare.outputs.tag_name }} | |
shell: bash | |
run: | | |
sudo apt-get -y install help2man | |
help2man -N $OUT_DIR/forge > forge.1 | |
help2man -N $OUT_DIR/cast > cast.1 | |
help2man -N $OUT_DIR/anvil > anvil.1 | |
help2man -N $OUT_DIR/chisel > chisel.1 | |
gzip forge.1 | |
gzip cast.1 | |
gzip anvil.1 | |
gzip chisel.1 | |
tar -czvf "foundry_man_${VERSION_NAME}.tar.gz" forge.1.gz cast.1.gz anvil.1.gz chisel.1.gz | |
echo "foundry_man=foundry_man_${VERSION_NAME}.tar.gz" >> $GITHUB_OUTPUT | |
# Creates the release for this specific version | |
- name: Create release | |
uses: softprops/action-gh-release@v2 | |
with: | |
name: ${{ needs.prepare.outputs.release_name }} | |
tag_name: ${{ needs.prepare.outputs.tag_name }} | |
prerelease: ${{ env.IS_NIGHTLY == 'true' }} | |
body: ${{ needs.prepare.outputs.changelog }} | |
files: | | |
${{ steps.artifacts.outputs.file_name }} | |
${{ steps.man.outputs.foundry_man }} | |
- name: Binaries attestation | |
uses: actions/attest-build-provenance@v2 | |
with: | |
subject-path: | | |
${{ env.anvil_bin_path }} | |
${{ env.cast_bin_path }} | |
${{ env.chisel_bin_path }} | |
${{ env.forge_bin_path }} | |
# If this is a nightly release, it also updates the release | |
# tagged `nightly` for compatibility with `foundryup` | |
- name: Update nightly release | |
if: ${{ env.IS_NIGHTLY == 'true' }} | |
uses: softprops/action-gh-release@v2 | |
with: | |
name: "Nightly" | |
tag_name: "nightly" | |
prerelease: true | |
body: ${{ needs.prepare.outputs.changelog }} | |
files: | | |
${{ steps.artifacts.outputs.file_name }} | |
${{ steps.man.outputs.foundry_man }} | |
cleanup: | |
name: Release cleanup | |
runs-on: ubuntu-latest | |
timeout-minutes: 30 | |
needs: release | |
if: always() | |
steps: | |
- uses: actions/checkout@v4 | |
# Moves the `nightly` tag to `HEAD` | |
- name: Move nightly tag | |
if: ${{ env.IS_NIGHTLY == 'true' }} | |
uses: actions/github-script@v7 | |
with: | |
script: | | |
const moveTag = require('./.github/scripts/move-tag.js') | |
await moveTag({ github, context }, 'nightly') | |
- name: Delete old nightlies | |
uses: actions/github-script@v7 | |
with: | |
script: | | |
const prunePrereleases = require('./.github/scripts/prune-prereleases.js') | |
await prunePrereleases({github, context}) | |
# If any of the jobs fail, this will create a high-priority issue to signal so. | |
issue: | |
name: Open an issue | |
runs-on: ubuntu-latest | |
needs: [prepare, release-docker, release, cleanup] | |
if: failure() | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: JasonEtco/create-an-issue@v2 | |
env: | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
WORKFLOW_URL: | | |
${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }} | |
with: | |
update_existing: true | |
filename: .github/RELEASE_FAILURE_ISSUE_TEMPLATE.md |