name: 'Build and Push Kolla Images'

on:

push:

branches:

- main

- staging

- qa

- dev

- experimental

workflow_dispatch:

inputs:

branch:

type: choice

description: 'Branch to build'

options:

- main

- staging

- qa

- dev

- experimental

permissions:

contents: read

id-token: write

concurrency:

group: '${{ github.workflow }} @ ${{ github.repository }} @ ${{ github.event.inputs.branch || github.base_ref || github.ref_name }}'

cancel-in-progress: true

jobs:

kolla_build:

runs-on:

group: prod

steps:

- uses: QumulusTechnology/vault-setup-action@v2

with:

aws_account_data: ${{ secrets.AWS_ACCOUNT_DATA }}

vault_addr: ${{ secrets.VAULT_ADDR }}

platform: qcp

secrets: |

secret/data/qcp/global/harbor/prod/github-user username | REPO_USERNAME ;

secret/data/qcp/global/harbor/prod/github-user password | REPO_PASSWORD ;

secret/data/qcp/global/harbor/prod/github-user address | REPO_ADDRESS

- name: Checkout

uses: actions/checkout@v4

with:

ref: ${{ env.BRANCH }}

- name: Set Release version

run: |

if [ "$BRANCH" == "main" ]; then

echo "OPENSTACK_VERSION=2025.1" >> $GITHUB_ENV

echo "BASE_OS_TAG=24.04" >> $GITHUB_ENV

elif [ "$BRANCH" == "staging" ]; then

echo "OPENSTACK_VERSION=2025.1" >> $GITHUB_ENV

echo "BASE_OS_TAG=24.04" >> $GITHUB_ENV

elif [ "$BRANCH" == "qa" ]; then

echo "OPENSTACK_VERSION=2025.1" >> $GITHUB_ENV

echo "BASE_OS_TAG=24.04" >> $GITHUB_ENV

elif [ "$BRANCH" == "experimental" ]; then

echo "OPENSTACK_VERSION=2025.1" >> $GITHUB_ENV

echo "BASE_OS_TAG=24.04" >> $GITHUB_ENV

else

echo "OPENSTACK_VERSION=2025.1" >> $GITHUB_ENV

echo "BASE_OS_TAG=24.04" >> $GITHUB_ENV

fi

if [ "$BRANCH" == "main" ]; then

TAG=main

elif [ "$BRANCH" == "staging" ]; then

TAG=staging

elif [ "$BRANCH" == "qa" ]; then

TAG=qa

elif [ "$BRANCH" == "dev" ]; then

TAG=dev

elif [ "$BRANCH" == "experimental" ]; then

TAG=experimental

else

TAG=dev_${BRANCH}

fi

echo "TAG=$TAG" >> $GITHUB_ENV

- name: Set GITHUB Environment Variables

run: |

echo "GITHUB_ACTIONS_BRANCH=${{ github.base_ref || github.ref_name }}" >> $GITHUB_ENV

echo "GITHUB_ACTIONS_WORKFLOW_ID=${{ github.run_id }}" >> $GITHUB_ENV

echo "GITHUB_ACTIONS_WORKFLOW_ATEMPT=${{ github.run_attempt }}" >> $GITHUB_ENV

echo "GITHUB_ACTIONS_WORKFLOW_RUN_NUMBER=${{ github.run_number }}" >> $GITHUB_ENV

echo "GITHUB_ACTIONS_AUTHOR=${{ github.actor }}" >> $GITHUB_ENV

- name: Login to Harbor Hub

uses: docker/login-action@v2

with:

registry: ${{ env.REPO_ADDRESS }}

username: ${{ env.REPO_USERNAME }}

password: ${{ env.REPO_PASSWORD }}

- name: Install Kolla

run: |

sudo apt update

sudo apt install -y bash python3 python3-pip git python3-dev python3-docker libffi-dev gcc libssl-dev python3-venv

python3 -m venv kolla

source kolla/bin/activate

pip install -U pip

pip install docker setuptools

pip install git+https://github.com/QumulusTechnology/kolla@${BRANCH}

- name: Create kolla-build.conf

run: |

CWD="$(pwd)"

sudo mkdir -p /etc/kolla

sudo bash -c "cat << EOF > /etc/kolla/kolla-build.conf

[DEFAULT]

base = ubuntu

namespace = kolla

base_tag = ${BASE_OS_TAG}

openstack_release = ${OPENSTACK_VERSION}

registry = ${REPO_ADDRESS}/qcp-${BRANCH}

push = true

skip_existing = false

threads = 16

push_threads = 4

install_type = source

tag = latest

template_override = /etc/kolla/template-overrides.j2

docker_healthchecks = true

network_mode = host

[${REPOSITORY}-base]

type = local

location = ${CWD}

EOF"

- name: Create template-overrides.j2

run: |

sudo bash -c "cat << EOF > /etc/kolla/template-overrides.j2

{% extends parent_template %}

{% block base_ubuntu_package_sources_list %}

{% endblock %}

{% block openstack_base_footer %}

RUN pip install jaeger-client

{% endblock %}

{% block ${REPOSITORY}_base_footer %}

{% endblock %}

{% block nova_compute_header %}

RUN apt clean && \

apt update && \

apt install -y swtpm swtpm-tools && \

groupadd tss && \

useradd -g tss tss && \

mkdir /home/tss && \

chown -R tss:tss /home/tss &&\

chown -R tss:tss /var/lib/swtpm-localca

{% endblock %}

{% block nova_compute_footer %}

RUN pip install git+https://github.com/openstack/oslo.utils.git@stable/${OPENSTACK_VERSION}

{% endblock %}

{% block nova_libvirt_footer %}

RUN apt clean && \

apt update && \

apt install -y swtpm swtpm-tools && \

mkdir /home/tss && \

chown -R tss:tss /home/tss && \

chown -R tss:tss /var/lib/swtpm-localca

USER tss

RUN /usr/share/swtpm/swtpm-create-user-config-files

USER root

{% endblock %}

EOF"

- name: Build docker images

run: |

source kolla/bin/activate

kolla-build ${REPOSITORY}

- name: Tag and push docker images

run: |

timestamp=$(date +%Y%m%d%H%M%S)

for i in $(docker images --format '{{.Repository}}' | grep "/qcp-${BRANCH}/"); do

image=${i##*/}

docker tag ${i}:latest ${REPO_ADDRESS}/qcp-${BRANCH}/kolla/${image}:${timestamp}

docker image push --all-tags ${i}

done