Malin
8d4eaa1489
- Clone all 5 Zonemaster component repos (LDNS, Engine, CLI, Backend, GUI) - Dockerfile.backend: 8-stage multi-stage build LDNS→Engine→CLI→Backend - Dockerfile.gui: Astro static build served via nginx - docker-compose.yml: backend (internal) + frontend (port 5353) - nginx.conf: root redirects to /es/, /api/ proxied to backend - zonemaster-gui/config.ts: defaultLanguage set to 'es' (Spanish) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
6.6 KiB
Release Process - Create .deb packages
Overview
The purpose of this process is to create and publish .deb packages for Zonemaster components, currently only Zonemaster-CLI, Zonemaster-Engine and Zonemaster-LDNS are covered.
The process to build the packages is split in two steps. In the first step "nightly packages" are updated. In the second step packages are promoted to "stable packages".
1. Update the nightly packages specification
Nightly packages are based on the develop branch of Zonemaster git repositories.
The sources for nightly packages are kept in the branch <distribution>-nightly
of the Packages sources repository. Where <distribution> corresponds to the
name of the Debian or Ubuntu version the branch is building packages for.
As Ubuntu packages are based on the Debian ones, this will most likely be a
Debian version name.
For each package:
-
If dependencies have changed, update the
Build-DependsandDependssection of thedebian/controlfile for each required package to add and/or remove any dependencies that have changed. -
If there are new files (such as executables), update
debian/*.manpagesanddebian/*.installaccordingly. This step is not required for new Perl modules, but will be for new scripts.
2. Promote the nightly build to stable
When a new Zonemaster release of the relevant component has been published on GitHub, and when the nightly package is working fine (the build is successful, it can be installed and is usable, all of that should have been already checked during the release testing if the package specification has not changed since), promote it to stable. The only difference between a nightly packages and its promoted version is the upstream tarball. While the nightly packages use the develop branch as upstream, the stable ones use a specific tag.
-
Locally merge the
<distribution>-nightlybranch into<distribution>of the Packages sources repository. The.gitlab-ci.ymlandpkg.shfiles should not be merged. For instance the following commands could be used to mergebullseye-nightlyintobullseye:git checkout bullseye git merge --no-commit bullseye-nightly git reset HEAD -- .gitlab-ci.yml */pkg.sh git checkout -- .gitlab-ci.yml */pkg.sh git commit -
Update the upstream ref in
pkg.shwith the tag of the corresponding release for each package. -
Update the
changelogfor each package, by adding a new entry. The first line should contain the package version in format<project version>-<package version>.For example:
zonemaster-cli (3.1.0-3)is the partial entry for Zonemaster-CLI version3.1.0, the package version is3. Package version is incremented when the package sources are updated but the upstream version (i.e. Zonemaster component version) remains the same. -
Push the modifications to the packages sources repository. Then the packages are automatically built and deployed to package.zonemaster.net.
Note: It is fairly important to perform all of those steps in "one push" as the continuous deployment pipeline will start building the new packages on the push event.
Test the packages
To test the newly created packages you can configure Zonemaster packages repository using:
curl -LSsf https://package.zonemaster.net/setup.sh | sudo sh
To configure the nightly repository use instead:
curl -LSsf https://package.zonemaster.net/setup.sh | sudo nightly=yes sh
The packages can then be installed using apt, e.g.:
sudo apt install zonemaster-cli
Add support for a new OS version
Edit the .gitlab-ci.yml file to add three new jobs for the new OS version.
The name of the job is in the format {step}:{os}:{version codename}, where
step is one of build, publish and test. The jobs must extend a parent job
named .{step}. The build and publish steps must also define the following
variables:
OS: OS name as it is in the/etc/os-release;DISTRIBUTION: Version codename as defined byVERSION_CODENAMEin/etc/os-release, optionally suffixed by-nightly.
The container image used for building should be the same version as the targeted distribution.
Example for Ubuntu 22.04, codename "Jammy" the following is added to the CI file.
build:ubuntu:jammy:
extends: .build
image: ubuntu:jammy
variables:
# For nightly
#DISTRIBUTION: jammy-nightly
# For stable
DISTRIBUTION: jammy
OS: ubuntu
publish:ubuntu:jammy:
extends: .publish
image: ubuntu:jammy
variables:
# For nightly
#DISTRIBUTION: jammy-nightly
# For stable
DISTRIBUTION: jammy
OS: ubuntu
needs:
- build:ubuntu:jammy
test:ubuntu:jammy:
extends: .test
image: ubuntu:jammy
# Only in nightly branches
#variables:
# nightly: 'yes'
needs:
- publish:ubuntu:jammy
When publishing packages for a different Debian version, it may be prefered to create a separate set of branches. In this case the new CI jobs replace the olds ones in the CI file.
Appendices
Repositories location
-
Packages sources: hold the sources for all Zonemaster packages.
Each package is split in two, one for the libraries and executable and an other one for the documentation. The documentation packages are marked as "Recommends" and will be installed by default alongside their corresponding package.
-
Common GitLab pipeline: common ci/cd jobs for all branches in the packages source repository.
-
package.zonemaster.netcontent: setup script and public verification key
Publication pipeline overview
The continuous deployment pipeline performs 3 tasks:
-
build: build the packages using thebuild.shscript in the packages sources repository. -
publish: update the aptly repository and publish the new packages. -
test: perform a smoke test by installing the latest package and running the CLI.