Hayabusa Release Automation #27
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Hayabusa Release Automation | |
on: | |
workflow_dispatch: | |
inputs: | |
release_ver: | |
required: true | |
default: "2.x.x" | |
description: "Version of the release" | |
branch_or_tag: | |
required: true | |
default: "main" | |
description: "Branch or Tag to checkout" | |
jobs: | |
upload: | |
runs-on: ${{ matrix.info.os }} | |
strategy: | |
matrix: | |
info: | |
- { | |
os: "windows-latest", | |
target: "x86_64-pc-windows-msvc", | |
} | |
- { | |
os: "windows-2022", | |
target: "i686-pc-windows-msvc", | |
} | |
- { | |
os: "windows-2019", | |
target: "aarch64-pc-windows-msvc", | |
} | |
- { | |
os: "ubuntu-latest", | |
target: "x86_64-unknown-linux-gnu", | |
} | |
- { | |
os: "ubuntu-24.04", | |
target: "x86_64-unknown-linux-musl", | |
} | |
- { | |
os: "ubuntu-22.04", | |
target: "aarch64-unknown-linux-gnu", | |
} | |
- { | |
os: "macos-latest", | |
target: "aarch64-apple-darwin", | |
} | |
- { | |
os: "macos-13", | |
target: "x86_64-apple-darwin", | |
} | |
steps: | |
- name: Checkout Repository | |
uses: actions/checkout@v4 | |
with: | |
ref: ${{ github.event.inputs.branch_or_tag }} | |
submodules: 'true' | |
- name: Clone hayabusa rule repo | |
uses: actions/checkout@v4 | |
with: | |
ref: ${{ github.event.pull_request.head.sha }} | |
repository: Yamato-Security/hayabusa-rules | |
fetch-depth: 0 | |
path: hayabusa-rules | |
- name: Set up Rust toolchain | |
uses: dtolnay/rust-toolchain@stable | |
with: | |
toolchain: stable | |
targets: ${{ matrix.info.target }} | |
- name: Install gcc-aarch64-linux-gnu | |
if: matrix.info.target == 'aarch64-unknown-linux-gnu' | |
run: | | |
sudo apt-get update | |
sudo apt-get install gcc-aarch64-linux-gnu | |
cat << EOF >> ./.cargo/config.toml | |
[target.aarch64-unknown-linux-gnu] | |
linker = "aarch64-linux-gnu-gcc" | |
EOF | |
- name: Install x86_64-unknown-linux-musl | |
if: matrix.info.target == 'x86_64-unknown-linux-musl' | |
run: | | |
sudo apt-get update | |
sudo apt-get install musl-tools | |
- name: Build Hayabusa binary | |
run: | | |
cargo run --release -- update-rules -q | |
cargo build --release --target ${{ matrix.info.target }} | |
- name: Package and Zip - Windows | |
if: contains(matrix.info.os, 'windows') == true | |
shell: pwsh | |
run: | | |
mkdir -p release-binaries | |
mkdir -p release-binaries/logs | |
Copy-Item -Path ./target/release/hayabusa.exe -Destination release-binaries/ | |
Copy-Item -Recurse -Path ./config -Destination release-binaries/ | |
Remove-Item -Path ./hayabusa-rules/.gitignore -Force | |
Remove-Item -Path ./hayabusa-rules/*.md -Force | |
Remove-Item -Path ./hayabusa-rules/.github -Recurse -Force | |
Remove-Item -Path ./hayabusa-rules/scripts -Recurse -Force | |
Remove-Item -Path ./hayabusa-rules/doc -Recurse -Force | |
Copy-Item -Recurse -Path ./hayabusa-rules/ -Destination release-binaries/rules -Force | |
switch ("${{ matrix.info.os }}") { | |
"windows-latest" { mv release-binaries/hayabusa.exe release-binaries/hayabusa-${{ github.event.inputs.release_ver }}-win-x64.exe } | |
"windows-2022" { mv release-binaries/hayabusa.exe release-binaries/hayabusa-${{ github.event.inputs.release_ver }}-win-x86.exe } | |
"windows-2019" { mv release-binaries/hayabusa.exe release-binaries/hayabusa-${{ github.event.inputs.release_ver }}-win-aarch64.exe } | |
} | |
- name: Package and Zip(encoded_rule) - Windows | |
if: contains(matrix.info.os, 'windows') == true | |
shell: pwsh | |
run: | | |
mkdir -p release-binaries-encoded-rules | |
mkdir -p release-binaries-encoded-rules/logs | |
Copy-Item -Path ./target/release/hayabusa.exe -Destination release-binaries-encoded-rules/ | |
Invoke-WebRequest -Uri https://raw.githubusercontent.com/Yamato-Security/hayabusa-encoded-rules/refs/heads/main/encoded_rules.yml -OutFile release-binaries-encoded-rules/encoded_rules.yml | |
Invoke-WebRequest -Uri https://raw.githubusercontent.com/Yamato-Security/hayabusa-encoded-rules/refs/heads/main/rules_config_files.txt -OutFile release-binaries-encoded-rules/rules_config_files.txt | |
switch ("${{ matrix.info.os }}") { | |
"windows-latest" { mv release-binaries-encoded-rules/hayabusa.exe release-binaries-encoded-rules/hayabusa-${{ github.event.inputs.release_ver }}-win-x64.exe } | |
"windows-2022" { mv release-binaries-encoded-rules/hayabusa.exe release-binaries-encoded-rules/hayabusa-${{ github.event.inputs.release_ver }}-win-x86.exe } | |
"windows-2019" { mv release-binaries-encoded-rules/hayabusa.exe release-binaries-encoded-rules/hayabusa-${{ github.event.inputs.release_ver }}-win-aarch64.exe } | |
} | |
- name: Package and Zip - Unix | |
if: contains(matrix.info.os, 'windows') == false | |
run: | | |
mkdir -p release-binaries | |
cp ./target/release/hayabusa release-binaries/ | |
cp -r ./config release-binaries/config | |
cp -r ./logs release-binaries/logs | |
rm -f ./hayabusa-rules/.gitignore | |
rm -f ./hayabusa-rules/*.md | |
rm -rf ./hayabusa-rules/.github | |
rm -rf ./hayabusa-rules/scripts | |
rm -rf ./hayabusa-rules/doc | |
cp -r ./hayabusa-rules/. release-binaries/rules | |
case ${{ matrix.info.os }} in | |
'ubuntu-latest') | |
mv release-binaries/hayabusa release-binaries/hayabusa-${{ github.event.inputs.release_ver }}-lin-x64-gnu ;; | |
'ubuntu-24.04') | |
cp ./target/x86_64-unknown-linux-musl/release/hayabusa release-binaries/ | |
mv release-binaries/hayabusa release-binaries/hayabusa-${{ github.event.inputs.release_ver }}-lin-x64-musl ;; | |
'ubuntu-22.04') | |
mv release-binaries/hayabusa release-binaries/hayabusa-${{ github.event.inputs.release_ver }}-lin-aarch64-gnu ;; | |
'ubuntu-20.04') | |
mv release-binaries/hayabusa release-binaries/hayabusa-${{ github.event.inputs.release_ver }}-lin-aarch64-musl ;; | |
'macos-latest') | |
mv release-binaries/hayabusa release-binaries/hayabusa-${{ github.event.inputs.release_ver }}-mac-aarch64 ;; | |
'macos-13') | |
mv release-binaries/hayabusa release-binaries/hayabusa-${{ github.event.inputs.release_ver }}-mac-x64 ;; | |
esac | |
- name: Set Artifact Name | |
id: set_artifact_name | |
shell: bash | |
run: | | |
case "${{ matrix.info.os }}" in | |
'windows-latest') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-win-x64" >> $GITHUB_OUTPUT ;; | |
'windows-2022') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-win-x86" >> $GITHUB_OUTPUT ;; | |
'windows-2019') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-win-aarch64" >> $GITHUB_OUTPUT ;; | |
'ubuntu-latest') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-lin-x64-gnu" >> $GITHUB_OUTPUT ;; | |
'ubuntu-24.04') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-lin-x64-musl" >> $GITHUB_OUTPUT ;; | |
'ubuntu-22.04') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-lin-aarch64-gnu" >> $GITHUB_OUTPUT ;; | |
'ubuntu-20.04') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-lin-aarch64-musl" >> $GITHUB_OUTPUT ;; | |
'macos-latest') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-mac-aarch64" >> $GITHUB_OUTPUT ;; | |
'macos-13') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-mac-x64" >> $GITHUB_OUTPUT ;; | |
esac | |
- name: Upload Artifacts | |
uses: actions/upload-artifact@v4 | |
with: | |
name: ${{ steps.set_artifact_name.outputs.artifact_name }} | |
path: release-binaries/* | |
include-hidden-files: true | |
- name: Set Artifact Name(encoded_rule) | |
if: contains(matrix.info.os, 'windows') == true | |
id: set_artifact_name_encoded_rule | |
shell: bash | |
run: | | |
case "${{ matrix.info.os }}" in | |
'windows-latest') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-win-x64-live-response" > $GITHUB_OUTPUT ;; | |
'windows-2022') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-win-x86-live-response" > $GITHUB_OUTPUT ;; | |
'windows-2019') | |
echo "artifact_name=hayabusa-${{ github.event.inputs.release_ver }}-win-aarch64-live-response" > $GITHUB_OUTPUT ;; | |
esac | |
- name: Upload Artifacts(encoded_rule) | |
if: contains(matrix.info.os, 'windows') == true | |
uses: actions/upload-artifact@v4 | |
with: | |
name: ${{ steps.set_artifact_name_encoded_rule.outputs.artifact_name }} | |
path: release-binaries-encoded-rules/* | |
include-hidden-files: true | |
- name: Setup node | |
if: matrix.info.os == 'macos-latest' | |
uses: actions/setup-node@v4 | |
with: | |
node-version: 20 | |
- name: Create PDF | |
if: matrix.info.os == 'macos-latest' | |
run: | | |
npm i -g md-to-pdf | |
md-to-pdf ./*.md --md-file-encoding utf-8 | |
mv ./README.pdf ./README-${{ github.event.inputs.release_ver }}-English.pdf | |
mv ./README-Japanese.pdf ./README-${{ github.event.inputs.release_ver }}-Japanese.pdf | |
- name: Upload Document Artifacts | |
if: matrix.info.os == 'macos-latest' | |
uses: actions/upload-artifact@v4 | |
with: | |
name: hayabusa-documents | |
path: | | |
upload-all-platforms: | |
needs: upload | |
runs-on: ubuntu-latest | |
steps: | |
- name: Download All Artifacts | |
uses: actions/download-artifact@v4 | |
with: | |
path: all-packages | |
pattern: hayabusa-* | |
merge-multiple: true | |
- run: | | |
rm -rf all-packages/encoded_rules.yml | |
rm -rf all-packages/rules_config_files.txt | |
- name: Upload Artifacts(all-platforms) | |
uses: actions/upload-artifact@v4 | |
with: | |
name: hayabusa-${{ github.event.inputs.release_ver }}-all-platforms | |
path: all-packages/* | |
include-hidden-files: true | |
all-packages-zip: | |
needs: upload-all-platforms | |
runs-on: ubuntu-latest | |
steps: | |
- name: Download all artifacts | |
uses: actions/download-artifact@v4 | |
with: | |
path: all-packages | |
pattern: hayabusa-* | |
- run: | | |
ls -lR all-packages | |
cd all-packages | |
for dir in */; do | |
cd "$dir" | |
zip -r "../${dir%/}.zip" * | |
cd .. | |
done | |
- name: Upload Zip Artifacts(all-packages) | |
uses: actions/upload-artifact@v4 | |
with: | |
name: all-packages | |
path: all-packages/*.zip |