From f6568319439c7e930e86b6281aea8b0b4cb5096a Mon Sep 17 00:00:00 2001 From: joe miller Date: Sat, 13 Jul 2019 17:16:35 -0700 Subject: [PATCH] introduce release.sh script and add support for GPG signing of releases --- .gitignore | 1 + .goreleaser.yml | 4 ++++ Makefile | 7 +++---- go.sum | 7 +++++++ release.sh | 44 ++++++++++++++++++++++++++++++++++++++++++++ 5 files changed, 59 insertions(+), 4 deletions(-) create mode 100755 release.sh diff --git a/.gitignore b/.gitignore index 3b24408..a726600 100644 --- a/.gitignore +++ b/.gitignore @@ -6,3 +6,4 @@ Attic/ cover.out .vagrant vault-token-helper.exe +.DS_Store diff --git a/.goreleaser.yml b/.goreleaser.yml index 6db0035..49bedcc 100644 --- a/.goreleaser.yml +++ b/.goreleaser.yml @@ -48,6 +48,10 @@ changelog: - Merge pull request - Merge branch +# GPG signing +sign: + artifacts: checksum + archives: # binary-only releasess - all platforms - id: binaries diff --git a/Makefile b/Makefile index d4eb003..b001964 100644 --- a/Makefile +++ b/Makefile @@ -16,13 +16,12 @@ build: release: @docker run \ --rm \ - -e GITHUB_TOKEN=$$GITHUB_TOKEN \ + -e "GITHUB_TOKEN=$$GITHUB_TOKEN" \ + -e "GPG_KEY=$$GPG_KEY" \ -v `pwd`:/src \ -w /src \ dockercore/golang-cross \ - sh -c 'apt-get -qy update && \ - apt-get -qy install rpm && \ - curl -sL https://git.io/goreleaser | bash -s -- $(GORELEASER_ARGS)' + /src/release.sh $(GORELEASER_ARGS) snapshot: GORELEASER_ARGS= --rm-dist --snapshot snapshot: release diff --git a/go.sum b/go.sum index 8c37a3d..56de05d 100644 --- a/go.sum +++ b/go.sum @@ -12,9 +12,11 @@ github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuy github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0= github.com/armon/consul-api v0.0.0-20180202201655-eb2c6b5be1b6/go.mod h1:grANhF5doyWs3UAsr3K4I6qtAmlQcZDesFNEHPZAzj8= github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da/go.mod h1:Q73ZrmVTwzkszR9V5SSuryQ31EELlFMUz1kKyl939pY= +github.com/armon/go-radix v0.0.0-20180808171621-7fddfc383310 h1:BUAU3CGlLvorLI26FmByPp2eC2qla6E1Tw+scpcg/to= github.com/armon/go-radix v0.0.0-20180808171621-7fddfc383310/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8= github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q= github.com/beorn7/perks v1.0.0/go.mod h1:KWe93zE9D1o94FZ5RNwFwVgaQK1VOXiVxmqh+CedLV8= +github.com/bgentry/speakeasy v0.1.0 h1:ByYyxL9InA1OWqxJqqp2A5pYHUrCiAL6K3J+LKSsQkY= github.com/bgentry/speakeasy v0.1.0/go.mod h1:+zsyZBPWlz7T6j88CTgSN5bM796AkVf0kBD4zp0CCIs= github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc= github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw= @@ -35,6 +37,7 @@ github.com/dgrijalva/jwt-go v3.2.0+incompatible/go.mod h1:E3ru+11k8xSBh+hMPgOLZm github.com/dgryski/go-sip13 v0.0.0-20181026042036-e10d5fee7954/go.mod h1:vAd38F8PWV+bWy6jNmig1y/TA+kYO4g3RSRF0IAv0no= github.com/dvsekhvalnov/jose2go v0.0.0-20180829124132-7f401d37b68a h1:mq+R6XEM6lJX5VlLyZIrUSP8tSuJp82xTK89hvBwJbU= github.com/dvsekhvalnov/jose2go v0.0.0-20180829124132-7f401d37b68a/go.mod h1:7BvyPhdbLxMXIYTFPLsyJRFMsKmOZnQmzh6Gb+uquuM= +github.com/fatih/color v1.7.0 h1:DkWD4oS2D8LGGgTQ6IvwJJXSL5Vp2ffcQg58nFV38Ys= github.com/fatih/color v1.7.0/go.mod h1:Zm6kSWBoL9eyXnKyktHP6abPY2pDugNf5KwzbycvMj4= github.com/fatih/structs v1.1.0/go.mod h1:9NiDSp5zOcgEDl+j00MP/WkGVPOlPRLejGD8Ga6PJ7M= github.com/fsnotify/fsnotify v1.4.7 h1:IXs+QLmnXW2CcXuY+8Mzv/fWEsPGWxqefPtCP5CnV9I= @@ -115,9 +118,12 @@ github.com/kr/text v0.1.0 h1:45sCR5RtlFHMR4UwH9sdQ5TC8v0qDQCHnXt+kaKSTVE= github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI= github.com/magiconair/properties v1.8.0 h1:LLgXmsheXeRoUOBOjtwPQCWIYqM/LU1ayDtDePerRcY= github.com/magiconair/properties v1.8.0/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ= +github.com/mattn/go-colorable v0.0.9 h1:UVL0vNpWh04HeJXV0KLcaT7r06gOH2l4OW6ddYRUIY4= github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU= +github.com/mattn/go-isatty v0.0.3 h1:ns/ykhmWi7G9O+8a448SecJU3nSMBXJfqQkl0upE1jI= github.com/mattn/go-isatty v0.0.3/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4= github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0= +github.com/mitchellh/cli v1.0.0 h1:iGBIsUe3+HZ/AD/Vd7DErOt5sU9fa8Uj7A2s1aggv1Y= github.com/mitchellh/cli v1.0.0/go.mod h1:hNIlj7HEI86fIcpObd7a0FcrxTWetlwJDGcceTlRvqc= github.com/mitchellh/copystructure v1.0.0/go.mod h1:SNtv71yrdKgLRyLFxmLdkAbkKEFWgYaq1OVrnRcwhnw= github.com/mitchellh/go-homedir v1.0.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0= @@ -141,6 +147,7 @@ github.com/pkg/errors v0.8.0 h1:WdK/asTD0HN+q6hsWO3/vpuAkAr+tw6aNJNDFFf0+qw= github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0= github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM= github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4= +github.com/posener/complete v1.1.1 h1:ccV59UEOTzVDnDUEFdT95ZzHVZ+5+158q8+SJb2QV5w= github.com/posener/complete v1.1.1/go.mod h1:em0nMJCgc9GFtwrmVmEMR/ZL6WyhyjMBndrE9hABlRI= github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw= github.com/prometheus/client_golang v0.9.3/go.mod h1:/TN21ttK/J9q6uSwhBd54HahCDft0ttaMvbicHlPoso= diff --git a/release.sh b/release.sh new file mode 100755 index 0000000..8079dcf --- /dev/null +++ b/release.sh @@ -0,0 +1,44 @@ +#!/bin/bash +# this script is intended to be run inside the dockercore/golang-cross docker image, eg: +# +# docker run \ +# --rm \ +# -e "GITHUB_TOKEN=$GITHUB_TOKEN" \ +# -e "GPG_KEY=$GPG_KEY" \ +# -v `pwd`:/src \ +# -w /src \ +# dockercore/golang-cross \ +# /src/release.sh +# +# (optional) arguments will be passed to goreleaser, eg: +# +# /src/release.sh --snapshot --rm-dist +# +# (optional) sign releases with $GPG_KEY. The key should be base64 encoded. + +set -eou pipefail + +GORELEASER_ARGS=("$@") + +if [[ -n "${GPG_KEY:-}" ]]; then + GNUPGHOME="$HOME/releaser-gpg" + export GNUPGHOME + mkdir -p "$GNUPGHOME" + chmod 0700 "$GNUPGHOME" + + echo "$GPG_KEY" \ + | base64 --decode --ignore-garbage \ + | gpg --batch --allow-secret-key-import --import + + gpg --keyid-format LONG --list-secret-keys + + trap 'rm -rf -- "$GNUPGHOME"' EXIT +else + echo "==> WARNING: Missing GPG_KEY env var, skipping GPG signing of the release" + GORELEASER_ARGS+=("--skip-sign") +fi + +apt-get -qy update +apt-get -qy install rpm + +curl -sL https://git.io/goreleaser | bash -s -- "${GORELEASER_ARGS[@]}"