diff --git a/.github/workflows/BuildImage.yml b/.github/workflows/BuildImage.yml index 2838c1c..1d4f444 100644 --- a/.github/workflows/BuildImage.yml +++ b/.github/workflows/BuildImage.yml @@ -1,62 +1,45 @@ name: Build Image -on: [push, pull_request, workflow_dispatch] +on: [push, pull_request_target, workflow_dispatch] env: + GITHUB_REPO: "linuxserver/docker-mods" #don't modify ENDPOINT: "linuxserver/mods" #don't modify - BASEIMAGE: "jellyfin" - MODNAME: "amd" + BASEIMAGE: "jellyfin" #replace + MODNAME: "amd" #replace jobs: - build: + set-vars: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2.3.3 - - - name: Build image + - name: Set Vars + id: outputs run: | - docker build --no-cache -t ${{ github.sha }} . + echo "GITHUB_REPO=${{ env.GITHUB_REPO }}" >> $GITHUB_OUTPUT + echo "ENDPOINT=${{ env.ENDPOINT }}" >> $GITHUB_OUTPUT + echo "BASEIMAGE=${{ env.BASEIMAGE }}" >> $GITHUB_OUTPUT + echo "MODNAME=${{ env.MODNAME }}" >> $GITHUB_OUTPUT + # **** If the mod needs to be versioned, set the versioning logic below. Otherwise leave as is. **** + MOD_VERSION="" + echo "MOD_VERSION=${MOD_VERSION}" >> $GITHUB_OUTPUT + outputs: + GITHUB_REPO: ${{ steps.outputs.outputs.GITHUB_REPO }} + ENDPOINT: ${{ steps.outputs.outputs.ENDPOINT }} + BASEIMAGE: ${{ steps.outputs.outputs.BASEIMAGE }} + MODNAME: ${{ steps.outputs.outputs.MODNAME }} + MOD_VERSION: ${{ steps.outputs.outputs.MOD_VERSION }} - - name: Tag image - if: ${{ github.ref == format('refs/heads/{0}-{1}', env.BASEIMAGE, env.MODNAME) }} - run: | - docker tag ${{ github.sha }} ${ENDPOINT}:${BASEIMAGE}-${MODNAME} - docker tag ${{ github.sha }} ${ENDPOINT}:${BASEIMAGE}-${MODNAME}-${{ github.sha }} - docker tag ${{ github.sha }} ghcr.io/${ENDPOINT}:${BASEIMAGE}-${MODNAME} - docker tag ${{ github.sha }} ghcr.io/${ENDPOINT}:${BASEIMAGE}-${MODNAME}-${{ github.sha }} - - - name: Credential check - if: ${{ github.ref == format('refs/heads/{0}-{1}', env.BASEIMAGE, env.MODNAME) }} - run: | - echo "CR_USER=${{ secrets.CR_USER }}" >> $GITHUB_ENV - echo "CR_PAT=${{ secrets.CR_PAT }}" >> $GITHUB_ENV - echo "DOCKERUSER=${{ secrets.DOCKERUSER }}" >> $GITHUB_ENV - echo "DOCKERPASS=${{ secrets.DOCKERPASS }}" >> $GITHUB_ENV - if [[ "${{ secrets.CR_USER }}" == "" && "${{ secrets.CR_PAT }}" == "" && "${{ secrets.DOCKERUSER }}" == "" && "${{ secrets.DOCKERPASS }}" == "" ]]; then - echo "::error::Push credential secrets missing." - echo "::error::You must set either CR_USER & CR_PAT or DOCKERUSER & DOCKERPASS as secrets in your repo settings." - echo "::error::See https://github.com/linuxserver/docker-mods/blob/master/README.md for more information/instructions." - exit 1 - fi - - - name: Login to GitHub Container Registry - if: ${{ github.ref == format('refs/heads/{0}-{1}', env.BASEIMAGE, env.MODNAME) && env.CR_USER && env.CR_PAT }} - run: | - echo "${{ secrets.CR_PAT }}" | docker login ghcr.io -u ${{ secrets.CR_USER }} --password-stdin - - - name: Push tags to GitHub Container Registry - if: ${{ github.ref == format('refs/heads/{0}-{1}', env.BASEIMAGE, env.MODNAME) && env.CR_USER && env.CR_PAT }} - run: | - docker push ghcr.io/${ENDPOINT}:${BASEIMAGE}-${MODNAME}-${{ github.sha }} - docker push ghcr.io/${ENDPOINT}:${BASEIMAGE}-${MODNAME} - - - name: Login to DockerHub - if: ${{ github.ref == format('refs/heads/{0}-{1}', env.BASEIMAGE, env.MODNAME) && env.DOCKERUSER && env.DOCKERPASS }} - run: | - echo ${{ secrets.DOCKERPASS }} | docker login -u ${{ secrets.DOCKERUSER }} --password-stdin - - - name: Push tags to DockerHub - if: ${{ github.ref == format('refs/heads/{0}-{1}', env.BASEIMAGE, env.MODNAME) && env.DOCKERUSER && env.DOCKERPASS }} - run: | - docker push ${ENDPOINT}:${BASEIMAGE}-${MODNAME}-${{ github.sha }} - docker push ${ENDPOINT}:${BASEIMAGE}-${MODNAME} + build: + uses: linuxserver/github-workflows/.github/workflows/docker-mod-builder.yml@v1 + needs: set-vars + secrets: + CR_USER: ${{ secrets.CR_USER }} + CR_PAT: ${{ secrets.CR_PAT }} + DOCKERUSER: ${{ secrets.DOCKERUSER }} + DOCKERPASS: ${{ secrets.DOCKERPASS }} + with: + GITHUB_REPO: ${{ needs.set-vars.outputs.GITHUB_REPO }} + ENDPOINT: ${{ needs.set-vars.outputs.ENDPOINT }} + BASEIMAGE: ${{ needs.set-vars.outputs.BASEIMAGE }} + MODNAME: ${{ needs.set-vars.outputs.MODNAME }} + MOD_VERSION: ${{ needs.set-vars.outputs.MOD_VERSION }} diff --git a/.github/workflows/call_issue_pr_tracker.yml b/.github/workflows/call_issue_pr_tracker.yml new file mode 100644 index 0000000..2c30784 --- /dev/null +++ b/.github/workflows/call_issue_pr_tracker.yml @@ -0,0 +1,16 @@ +name: Issue & PR Tracker + +on: + issues: + types: [opened,reopened,labeled,unlabeled,closed] + pull_request_target: + types: [opened,reopened,review_requested,review_request_removed,labeled,unlabeled,closed] + pull_request_review: + types: [submitted,edited,dismissed] + +jobs: + manage-project: + permissions: + issues: write + uses: linuxserver/github-workflows/.github/workflows/issue-pr-tracker.yml@v1 + secrets: inherit diff --git a/.github/workflows/permissions.yml b/.github/workflows/permissions.yml new file mode 100644 index 0000000..1447bc5 --- /dev/null +++ b/.github/workflows/permissions.yml @@ -0,0 +1,10 @@ +name: Permission check +on: + pull_request_target: + paths: + - '**/run' + - '**/finish' + - '**/check' +jobs: + permission_check: + uses: linuxserver/github-workflows/.github/workflows/init-svc-executable-permissions.yml@v1 diff --git a/Dockerfile b/Dockerfile index 852a7a7..87f5989 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,3 +1,5 @@ +# syntax=docker/dockerfile:1 + FROM scratch LABEL maintainer="PascalMinder" diff --git a/root/etc/cont-init.d/93-amdgpu-repo b/root/etc/cont-init.d/93-amdgpu-repo deleted file mode 100644 index 96629b0..0000000 --- a/root/etc/cont-init.d/93-amdgpu-repo +++ /dev/null @@ -1,7 +0,0 @@ -#!/usr/bin/with-contenv bash - -if [ ! -f "/etc/apt/sources.list.d/amdgpu-focal.list" ]; then - echo "**** Adding amdgpu repo ****" - curl -sL --retry 3 https://repo.radeon.com/rocm/rocm.gpg.key | apt-key add - - echo "deb [arch=amd64] https://repo.radeon.com/rocm/apt/5.4.1 ubuntu main" > /etc/apt/sources.list.d/amdgpu-focal.list -fi diff --git a/root/etc/cont-init.d/94-mesa-repo b/root/etc/cont-init.d/94-mesa-repo deleted file mode 100644 index 08b9258..0000000 --- a/root/etc/cont-init.d/94-mesa-repo +++ /dev/null @@ -1,7 +0,0 @@ -#!/usr/bin/with-contenv bash - -if [ ! -f "/etc/apt/sources.list.d/kisak-mesa-focal.list" ]; then - echo "**** Adding kisak-mesa repo ****" - apt-key adv --keyserver keyserver.ubuntu.com --recv-keys F63F0F2B90935439 - echo "deb http://ppa.launchpad.net/kisak/kisak-mesa/ubuntu focal main" > /etc/apt/sources.list.d/kisak-mesa-focal.list -fi \ No newline at end of file diff --git a/root/etc/cont-init.d/95-apt-get b/root/etc/cont-init.d/95-apt-get deleted file mode 100644 index 5b1a21c..0000000 --- a/root/etc/cont-init.d/95-apt-get +++ /dev/null @@ -1,3 +0,0 @@ -#!/usr/bin/with-contenv bash - -apt-get update diff --git a/root/etc/cont-init.d/98-mesa b/root/etc/cont-init.d/98-mesa deleted file mode 100644 index 900084e..0000000 --- a/root/etc/cont-init.d/98-mesa +++ /dev/null @@ -1,23 +0,0 @@ -#!/usr/bin/with-contenv bash - -# Determine if setup is needed -if [ ! -f "/usr/bin/apt" ]; then - echo "**** Image is not Ubuntu, skipping opencl-intel install ****" - exit 0 -fi - -pkgs='mesa-vdpau-drivers mesa-va-drivers mesa-vdpau-drivers libdrm-radeon1' - -install=false -for pkg in $pkgs; do - status="$(dpkg-query -W --showformat='${db:Status-Status}' "$pkg" 2>&1)" - if [ ! $? = 0 ] || [ ! "$status" = installed ]; then - install=true - break - fi -done - -if "$install"; then - echo "**** Installing mesa ****" - apt-get install -y $pkgs -fi diff --git a/root/etc/cont-init.d/99-rocm-opencl-runtime b/root/etc/cont-init.d/99-rocm-opencl-runtime deleted file mode 100644 index c3d1624..0000000 --- a/root/etc/cont-init.d/99-rocm-opencl-runtime +++ /dev/null @@ -1,23 +0,0 @@ -#!/usr/bin/with-contenv bash - -# Determine if setup is needed -if [ ! -f "/usr/bin/apt" ]; then - echo "**** Image is not Ubuntu, skipping opencl-intel install ****" - exit 0 -fi - -pkgs='rocm-opencl-runtime' - -install=false -for pkg in $pkgs; do - status="$(dpkg-query -W --showformat='${db:Status-Status}' "$pkg" 2>&1)" - if [ ! $? = 0 ] || [ ! "$status" = installed ]; then - install=true - break - fi -done - -if "$install"; then - echo "**** Installing rocm-opencl-runtime ****" - apt-get install -y $pkgs -fi diff --git a/root/etc/s6-overlay/s6-rc.d/init-mod-jellyfin-amd-add-package/run b/root/etc/s6-overlay/s6-rc.d/init-mod-jellyfin-amd-add-package/run index b6aad2c..8be34c9 100755 --- a/root/etc/s6-overlay/s6-rc.d/init-mod-jellyfin-amd-add-package/run +++ b/root/etc/s6-overlay/s6-rc.d/init-mod-jellyfin-amd-add-package/run @@ -8,21 +8,17 @@ if [ ! -f "/usr/bin/apt" ]; then exit 0 fi -if ! dpkg -l | grep gnupg > /dev/null; then - apt-get update && apt-get install -y gnupg -fi - if [ ! -f "/etc/apt/sources.list.d/kisak-mesa.list" ]; then echo "**** Adding kisak-mesa repo ****" - apt-key adv --keyserver keyserver.ubuntu.com --recv-keys F63F0F2B90935439 + gpg --homedir /tmp --no-default-keyring --keyring /usr/share/keyrings/kisak-mesa.gpg --keyserver keyserver.ubuntu.com --recv-keys F63F0F2B90935439 source /etc/lsb-release - echo "deb http://ppa.launchpad.net/kisak/kisak-mesa/ubuntu ${DISTRIB_CODENAME} main" > /etc/apt/sources.list.d/kisak-mesa.list + echo "deb [signed-by=/usr/share/keyrings/kisak-mesa.gpg] http://ppa.launchpad.net/kisak/kisak-mesa/ubuntu ${DISTRIB_CODENAME} main" > /etc/apt/sources.list.d/kisak-mesa.list fi if [ ! -f "/etc/apt/sources.list.d/amdgpu-focal.list" ]; then echo "**** Adding amdgpu repo ****" - curl -sL --retry 3 https://repo.radeon.com/rocm/rocm.gpg.key | apt-key add - - echo "deb [arch=amd64] https://repo.radeon.com/rocm/apt/${AMDGPU_RELEASE} ubuntu main" > /etc/apt/sources.list.d/amdgpu-focal.list + curl -fsSL https://repo.radeon.com/rocm/rocm.gpg.key | gpg --dearmor | tee /usr/share/keyrings/rocm.gpg >/dev/null + echo "deb [arch=amd64 signed-by=/usr/share/keyrings/rocm.gpg] https://repo.radeon.com/rocm/apt/${AMDGPU_RELEASE} ubuntu main" > /etc/apt/sources.list.d/amdgpu-focal.list fi