try readding upx and remove parallel builds

Author: tinyzimmer

.github/workflows/build_images.yaml

@@ -8,8 +8,8 @@ on:
 
 jobs:
 
-  build-amd64:
-    name: Build amd64 Docker Image
+  build-images:
+    name: Build Docker Images
     runs-on: ubuntu-latest
     steps:
       # Check out code
@@ -23,123 +23,9 @@ jobs:
           echo ::set-output name=tag::$([[ "${GITHUB_REF##*/}" == "main" ]] && echo latest || echo ${GITHUB_REF##*/})
         id: version
 
-      # Set up a buildx runner
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v1
-
-      # Set up an Docker layer cache
-      - name: Cache Docker layers
-        uses: actions/cache@v2
-        with:
-          path: /tmp/.buildx-cache
-          key: ${{ runner.os }}-amd64-buildx-${{ github.sha }}
-          restore-keys: |
-            ${{ runner.os }}-amd64-buildx-
-
-      # Login to the container registry
-      - name: Login to Container Registry
-        run: echo ${{ secrets.GHCR_TOKEN }} | docker login ghcr.io -u $GITHUB_ACTOR --password-stdin
-        if: ${{ github.event_name != 'pull_request' }}
-
-      - name: Patch buildx multiarch image
-        run: |
-          docker run --rm --privileged multiarch/qemu-user-static --reset -p yes
-          docker buildx create --name multiarch --driver docker-container --use
-          docker buildx inspect --bootstrap
-
-      # Build and push the image
-      - name: Build and Push Controller Image
-        uses: docker/build-push-action@v2
-        with:
-          platforms: linux/amd64
-          push: ${{ github.event_name != 'pull_request' && (github.ref == 'refs/heads/main' || startsWith(github.ref, 'refs/tags/v')) }}
-          tags: ghcr.io/pelotech/jsonnet-controller:${{ steps.version.outputs.tag }}
-          cache-from: type=local,src=/tmp/.buildx-cache
-          cache-to: type=local,dest=/tmp/.buildx-cache-new
-
-      # This ugly bit is necessary if you don't want your cache to grow forever
-      # till it hits GitHub's limit of 5GB.
-      # Temp fix
-      # https://github.com/docker/build-push-action/issues/252
-      # https://github.com/moby/buildkit/issues/1896
-      - name: Move cache
-        run: |
-          rm -rf /tmp/.buildx-cache
-          mv /tmp/.buildx-cache-new /tmp/.buildx-cache
-
-  build-arm64:
-    name: Build arm64 Docker Image
-    runs-on: ubuntu-latest
-    steps:
-      # Check out code
-      - name: Checkout
-        uses: actions/checkout@v2
-
-      # Determine tag we will use for images
-      - name: Get image version
-        shell: bash
-        run: |
-          echo ::set-output name=tag::$([[ "${GITHUB_REF##*/}" == "main" ]] && echo latest || echo ${GITHUB_REF##*/})
-        id: version
-
-      # Set up a buildx runner
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v1
-
-      # Set up an Docker layer cache
-      - name: Cache Docker layers
-        uses: actions/cache@v2
-        with:
-          path: /tmp/.buildx-cache
-          key: ${{ runner.os }}-arm64-buildx-${{ github.sha }}
-          restore-keys: |
-            ${{ runner.os }}-arm64-buildx-
-
-      # Login to the container registry
-      - name: Login to Container Registry
-        run: echo ${{ secrets.GHCR_TOKEN }} | docker login ghcr.io -u $GITHUB_ACTOR --password-stdin
-        if: ${{ github.event_name != 'pull_request' }}
-
-      - name: Patch buildx multiarch image
-        run: |
-          docker run --rm --privileged multiarch/qemu-user-static --reset -p yes
-          docker buildx create --name multiarch --driver docker-container --use
-          docker buildx inspect --bootstrap
-
-      # Build and push the image
-      - name: Build and Push Controller Image
-        uses: docker/build-push-action@v2
-        with:
-          platforms: linux/arm64
-          push: ${{ github.event_name != 'pull_request' && (github.ref == 'refs/heads/main' || startsWith(github.ref, 'refs/tags/v')) }}
-          tags: ghcr.io/pelotech/jsonnet-controller:${{ steps.version.outputs.tag }}
-          cache-from: type=local,src=/tmp/.buildx-cache
-          cache-to: type=local,dest=/tmp/.buildx-cache-new
-
-      # This ugly bit is necessary if you don't want your cache to grow forever
-      # till it hits GitHub's limit of 5GB.
-      # Temp fix
-      # https://github.com/docker/build-push-action/issues/252
-      # https://github.com/moby/buildkit/issues/1896
-      - name: Move cache
-        run: |
-          rm -rf /tmp/.buildx-cache
-          mv /tmp/.buildx-cache-new /tmp/.buildx-cache
-
-  build-armv7:
-    name: Build armv7 Docker Image
-    runs-on: ubuntu-latest
-    steps:
-      # Check out code
-      - name: Checkout
-        uses: actions/checkout@v2
-
-      # Determine tag we will use for images
-      - name: Get image version
-        shell: bash
-        run: |
-          echo ::set-output name=tag::$([[ "${GITHUB_REF##*/}" == "main" ]] && echo latest || echo ${GITHUB_REF##*/})
-        id: version
+      # Setup QEMU
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v1
 
       # Set up a buildx runner
       - name: Set up Docker Buildx
@@ -150,9 +36,9 @@ jobs:
         uses: actions/cache@v2
         with:
           path: /tmp/.buildx-cache
-          key: ${{ runner.os }}-armv7-buildx-${{ github.sha }}
+          key: ${{ runner.os }}-buildx-${{ github.sha }}
           restore-keys: |
-            ${{ runner.os }}-armv7-buildx-
+            ${{ runner.os }}-buildx-
 
       # Login to the container registry
       - name: Login to Container Registry
@@ -169,7 +55,7 @@ jobs:
       - name: Build and Push Controller Image
         uses: docker/build-push-action@v2
         with:
-          platforms: linux/arm/v7
+          platforms: linux/amd64,linux/arm64,linux/arm/v7
           push: ${{ github.event_name != 'pull_request' && (github.ref == 'refs/heads/main' || startsWith(github.ref, 'refs/tags/v')) }}
           tags: ghcr.io/pelotech/jsonnet-controller:${{ steps.version.outputs.tag }}
           cache-from: type=local,src=/tmp/.buildx-cache

Dockerfile

@@ -1,6 +1,6 @@
 FROM golang:1.16 as builder
 
-# RUN apt-get update && apt-get install -y upx
+RUN apt-get update && apt-get install -y upx
 
 WORKDIR /workspace
 
@@ -18,7 +18,7 @@ COPY controllers/ controllers/
 COPY pkg/ pkg/
 
 # Build
-RUN CGO_ENABLED=0 GOOS=linux go build -tags netgo -ldflags="-s -w" -a -o manager main.go
+RUN CGO_ENABLED=0 GOOS=linux go build -tags netgo -ldflags="-s -w" -a -o manager main.go && upx -9 manager
 
 # Use distroless as minimal base image to package the manager binary
 # Refer to https://github.com/GoogleContainerTools/distroless for more details

config/bundle/manifest.yaml

@@ -1,26 +1,4 @@
 ---
-apiVersion: v1
-kind: Service
-metadata:
-  annotations: {}
-  labels:
-    app: jsonnet-controller
-    control_plane: manager
-  name: jsonnet-controller
-  namespace: flux-system
-spec:
-  ports:
-  - name: http
-    port: 9443
-    targetPort: 9443
-  - name: metrics
-    port: 8080
-    targetPort: 8080
-  selector:
-    app: jsonnet-controller
-    control_plane: manager
-  type: ClusterIP
----
 apiVersion: apiextensions.k8s.io/v1
 kind: CustomResourceDefinition
 metadata:
@@ -427,7 +405,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: ghcr.io/pelotech/jsonnet-controller:latest
+        image: ghcr.io/pelotech/jsonnet-controller:v0.0.4
         imagePullPolicy: IfNotPresent
         livenessProbe:
           httpGet:
@@ -620,3 +598,25 @@ subjects:
 - kind: ServiceAccount
   name: jsonnet-controller-sa
   namespace: flux-system
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: {}
+  labels:
+    app: jsonnet-controller
+    control_plane: manager
+  name: jsonnet-controller
+  namespace: flux-system
+spec:
+  ports:
+  - name: http
+    port: 9443
+    targetPort: 9443
+  - name: metrics
+    port: 8080
+    targetPort: 8080
+  selector:
+    app: jsonnet-controller
+    control_plane: manager
+  type: ClusterIP