name: Release on: push: tags: - 'v*' permissions: contents: write jobs: # Phase 1: Build in parallel and output artifacts build: name: Build ${{ matrix.platform }} runs-on: ${{ matrix.os }} strategy: fail-fast: false matrix: include: - os: macos-latest platform: darwin/amd64 os_name: MacOS arch_name: Amd64 build_name: gonavi-build-darwin-amd64 wails_tags: "" artifact_suffix: "" build_optional_agents: true linux_webkit: "" - os: macos-latest platform: darwin/arm64 os_name: MacOS arch_name: Arm64 build_name: gonavi-build-darwin-arm64 wails_tags: "" artifact_suffix: "" build_optional_agents: true linux_webkit: "" - os: windows-latest platform: windows/amd64 os_name: Windows arch_name: Amd64 build_name: gonavi-build-windows-amd64 wails_tags: "" artifact_suffix: "" build_optional_agents: true linux_webkit: "" - os: windows-latest platform: windows/arm64 os_name: Windows arch_name: Arm64 build_name: gonavi-build-windows-arm64 wails_tags: "" artifact_suffix: "" build_optional_agents: true linux_webkit: "" - os: ubuntu-22.04 platform: linux/amd64 os_name: Linux arch_name: Amd64 build_name: gonavi-build-linux-amd64 wails_tags: "" artifact_suffix: "" build_optional_agents: true linux_webkit: "4.0" # Debian 13 (trixie) 默认仓库已切到 WebKitGTK 4.1:单独提供 4.1 变体产物 - os: ubuntu-24.04 platform: linux/amd64 os_name: Linux arch_name: Amd64 build_name: gonavi-build-linux-amd64-webkit41 wails_tags: "webkit2_41" artifact_suffix: "-WebKit41" build_optional_agents: false linux_webkit: "4.1" steps: - name: Checkout code uses: actions/checkout@v4 - name: Setup Go uses: actions/setup-go@v5 with: go-version: '1.24' check-latest: true - name: Setup Node uses: actions/setup-node@v4 with: node-version: '20' - name: Install UPX (macOS) if: contains(matrix.platform, 'darwin') run: | brew install upx upx --version - name: Install UPX (Windows) if: contains(matrix.platform, 'windows') shell: pwsh run: | choco install upx --no-progress -y $upxCmd = Get-Command upx -ErrorAction SilentlyContinue if ($null -eq $upxCmd) { Write-Error "❌ 未检测到 upx,无法保证 Windows 产物经过压缩" exit 1 } & upx --version # Linux Dependencies (GTK3, WebKit2GTK required by Wails) - name: Install Linux Dependencies if: contains(matrix.platform, 'linux') run: | sudo apt-get update sudo apt-get install -y libgtk-3-dev # WebKitGTK 4.1 需要 libsoup3;4.0 使用 libsoup2(通常由 webkit2gtk dev 包拉起) if [ "${{ matrix.linux_webkit }}" = "4.1" ]; then sudo apt-get install -y libwebkit2gtk-4.1-dev libsoup-3.0-dev else sudo apt-get install -y libwebkit2gtk-4.0-dev fi sudo apt-get install -y upx-ucl || sudo apt-get install -y upx upx --version # AppImage 运行/打包可能需要 FUSE2。不同发行版/版本包名不同,做兼容兜底。 sudo apt-get install -y libfuse2 || sudo apt-get install -y libfuse2t64 || true # Download linuxdeploy tools for AppImage packaging LINUXDEPLOY_URL="https://github.com/linuxdeploy/linuxdeploy/releases/download/continuous/linuxdeploy-x86_64.AppImage" PLUGIN_URL="https://github.com/linuxdeploy/linuxdeploy-plugin-gtk/releases/download/continuous/linuxdeploy-plugin-gtk-x86_64.AppImage" echo "📥 下载 linuxdeploy..." wget --retry-connrefused --waitretry=1 --read-timeout=20 --timeout=15 --tries=3 \ -O /tmp/linuxdeploy "$LINUXDEPLOY_URL" || { echo "⚠️ linuxdeploy 下载失败,AppImage 打包将跳过" touch /tmp/skip-appimage } echo "📥 下载 linuxdeploy-plugin-gtk..." wget --retry-connrefused --waitretry=1 --read-timeout=20 --timeout=15 --tries=3 \ -O /tmp/linuxdeploy-plugin-gtk "$PLUGIN_URL" || { echo "⚠️ linuxdeploy-plugin-gtk 下载失败,AppImage 打包将跳过" touch /tmp/skip-appimage } if [ ! -f /tmp/skip-appimage ]; then chmod +x /tmp/linuxdeploy /tmp/linuxdeploy-plugin-gtk echo "✅ AppImage 工具准备完成" fi - name: Install Wails run: go install -v github.com/wailsapp/wails/v2/cmd/wails@latest - name: Setup MSYS2 Toolchain For DuckDB (Windows AMD64) id: msys2_duckdb if: ${{ matrix.build_optional_agents && matrix.platform == 'windows/amd64' }} continue-on-error: true uses: msys2/setup-msys2@v2 with: msystem: UCRT64 update: true install: >- mingw-w64-ucrt-x86_64-gcc - name: Configure DuckDB CGO Toolchain (Windows AMD64) if: ${{ matrix.build_optional_agents && matrix.platform == 'windows/amd64' }} shell: pwsh run: | function Find-MingwBin([string[]]$candidates) { foreach ($bin in $candidates) { if ([string]::IsNullOrWhiteSpace($bin)) { continue } $gcc = Join-Path $bin 'gcc.exe' $gxx = Join-Path $bin 'g++.exe' if ((Test-Path $gcc) -and (Test-Path $gxx)) { return $bin } } return $null } $msys2Outcome = "${{ steps.msys2_duckdb.outcome }}" $msys2Location = "${{ steps.msys2_duckdb.outputs['msys2-location'] }}" $candidateBins = @() if (-not [string]::IsNullOrWhiteSpace($msys2Location)) { $candidateBins += Join-Path $msys2Location 'ucrt64\bin' } $candidateBins += @( 'C:\msys64\ucrt64\bin', 'D:\a\_temp\msys64\ucrt64\bin' ) $candidateBins = @($candidateBins | Select-Object -Unique) $mingwBin = Find-MingwBin $candidateBins if (-not $mingwBin) { if ($msys2Outcome -ne 'success') { Write-Warning "⚠️ MSYS2 安装步骤结果为 $msys2Outcome,回退到 UCRT64 本机路径探测" } else { Write-Warning "⚠️ MSYS2 已执行,但未找到 UCRT64 gcc/g++,回退到本机路径探测" } $mingwBin = Find-MingwBin $candidateBins } if (-not $mingwBin) { Write-Error "❌ 未找到可用的 DuckDB UCRT64 编译器。已检查:$($candidateBins -join ', ')" exit 1 } $gcc = (Join-Path $mingwBin 'gcc.exe') $gxx = (Join-Path $mingwBin 'g++.exe') if (!(Test-Path $gcc) -or !(Test-Path $gxx)) { Write-Error "❌ DuckDB 编译器缺失:gcc=$gcc g++=$gxx" exit 1 } "$mingwBin" | Out-File -FilePath $env:GITHUB_PATH -Append -Encoding utf8 "CC=$gcc" | Out-File -FilePath $env:GITHUB_ENV -Append -Encoding utf8 "CXX=$gxx" | Out-File -FilePath $env:GITHUB_ENV -Append -Encoding utf8 Write-Host "✅ 已配置 DuckDB cgo 编译器: gcc=$gcc g++=$gxx" - name: Verify DuckDB CGO Toolchain (Windows AMD64) if: ${{ matrix.build_optional_agents && matrix.platform == 'windows/amd64' }} shell: pwsh run: | & "$env:CC" --version & "$env:CXX" --version - name: Build shell: bash run: | set -euo pipefail if [ -n "${{ matrix.wails_tags }}" ]; then wails build -platform ${{ matrix.platform }} -clean -o ${{ matrix.build_name }} -tags "${{ matrix.wails_tags }}" -ldflags "-s -w -X GoNavi-Wails/internal/app.AppVersion=${{ github.ref_name }}" else wails build -platform ${{ matrix.platform }} -clean -o ${{ matrix.build_name }} -ldflags "-s -w -X GoNavi-Wails/internal/app.AppVersion=${{ github.ref_name }}" fi - name: Build Optional Driver Agents if: ${{ matrix.build_optional_agents }} shell: bash run: | set -euo pipefail TARGET_PLATFORM="${{ matrix.platform }}" GOOS="${TARGET_PLATFORM%%/*}" GOARCH="${TARGET_PLATFORM##*/}" DRIVERS=(mariadb doris sphinx sqlserver sqlite duckdb dameng kingbase highgo vastbase mongodb tdengine clickhouse) OUTDIR="drivers/${{ matrix.os_name }}" mkdir -p "$OUTDIR" for DRIVER in "${DRIVERS[@]}"; do BUILD_DRIVER="$DRIVER" if [ "$DRIVER" = "doris" ]; then BUILD_DRIVER="diros" fi if [ "$DRIVER" = "duckdb" ] && [ "$GOOS" = "windows" ] && [ "$GOARCH" != "amd64" ]; then echo "⚠️ 跳过 DuckDB driver(当前平台 ${GOOS}/${GOARCH} 不受支持,仅支持 windows/amd64)" continue fi TAG="gonavi_${BUILD_DRIVER}_driver" OUTPUT="${DRIVER}-driver-agent-${GOOS}-${GOARCH}" if [ "$GOOS" = "windows" ]; then OUTPUT="${OUTPUT}.exe" fi OUTPUT_PATH="${OUTDIR}/${OUTPUT}" echo "🔧 构建 ${OUTPUT_PATH} (tag=${TAG})" if [ "$DRIVER" = "duckdb" ]; then CGO_ENABLED=1 GOOS="$GOOS" GOARCH="$GOARCH" go build \ -tags "${TAG}" \ -trimpath \ -ldflags "-s -w" \ -o "${OUTPUT_PATH}" \ ./cmd/optional-driver-agent else CGO_ENABLED=0 GOOS="$GOOS" GOARCH="$GOARCH" go build \ -tags "${TAG}" \ -trimpath \ -ldflags "-s -w" \ -o "${OUTPUT_PATH}" \ ./cmd/optional-driver-agent fi done # macOS Packaging - name: Package macOS DMG if: contains(matrix.platform, 'darwin') run: | brew install create-dmg VERSION="${{ github.ref_name }}" VERSION="${VERSION#v}" cd build/bin APP_PATH=$(find . -maxdepth 1 -name "*.app" | head -n 1) if [ -z "$APP_PATH" ]; then echo "❌ 未找到 .app 应用包!" exit 1 fi APP_NAME=$(basename "$APP_PATH") APP_BIN=$(find "$APP_PATH/Contents/MacOS" -maxdepth 1 -type f | head -n 1) if [ -z "$APP_BIN" ]; then echo "❌ 未找到 macOS 应用主程序,无法进行 UPX 压缩!" exit 1 fi BEFORE_BYTES=$(wc -c <"$APP_BIN" | tr -d '[:space:]') echo "🗜️ 正在使用 UPX 压缩 macOS 可执行文件: $APP_BIN ..." upx --best --lzma --force "$APP_BIN" upx -t "$APP_BIN" AFTER_BYTES=$(wc -c <"$APP_BIN" | tr -d '[:space:]') if [ "$AFTER_BYTES" -lt "$BEFORE_BYTES" ]; then SAVED_BYTES=$((BEFORE_BYTES - AFTER_BYTES)) awk -v b="$BEFORE_BYTES" -v a="$AFTER_BYTES" -v s="$SAVED_BYTES" 'BEGIN { printf "✅ macOS UPX 压缩完成:%.2fMB -> %.2fMB,减少 %.2fMB\n", b/1024/1024, a/1024/1024, s/1024/1024 }' else awk -v b="$BEFORE_BYTES" -v a="$AFTER_BYTES" 'BEGIN { printf "ℹ️ macOS UPX 压缩完成:%.2fMB -> %.2fMB\n", b/1024/1024, a/1024/1024 }' fi echo "🔏 正在进行 Ad-hoc 签名..." # 注意:Ad-hoc + hardened runtime(--options runtime)在未配置 entitlements 时, # 可能导致部分 macOS 机型上应用双击无响应。这里保持 Ad-hoc 深签名但禁用 runtime hardened。 codesign --force --deep --sign - "$APP_NAME" DMG_NAME="${{ matrix.build_name }}.dmg" FINAL_NAME="GoNavi-$VERSION-${{ matrix.os_name }}-${{ matrix.arch_name }}${{ matrix.artifact_suffix }}.dmg" echo "📦 正在生成 DMG: $DMG_NAME..." create-dmg \ --volname "GoNavi Installer" \ --window-pos 200 120 \ --window-size 800 400 \ --icon-size 100 \ --icon "$APP_NAME" 200 190 \ --hide-extension "$APP_NAME" \ --app-drop-link 600 185 \ "$DMG_NAME" \ "$APP_NAME" mv "$DMG_NAME" "../../$FINAL_NAME" # Windows Packaging - name: Package Windows EXE if: contains(matrix.platform, 'windows') shell: pwsh run: | Set-Location build/bin $version = "${{ github.ref_name }}" if ($version.StartsWith("v")) { $version = $version.Substring(1) } $target = "${{ matrix.build_name }}" $finalExeName = "GoNavi-$version-${{ matrix.os_name }}-${{ matrix.arch_name }}${{ matrix.artifact_suffix }}.exe" if (Test-Path "$target.exe") { $finalExe = "$target.exe" } elseif (Test-Path "$target") { Rename-Item -Path "$target" -NewName "$target.exe" $finalExe = "$target.exe" } else { Write-Error "❌ 未找到构建产物 '$target'!" exit 1 } $upxCmd = Get-Command upx -ErrorAction SilentlyContinue if ($null -eq $upxCmd) { Write-Error "❌ 未找到 upx,无法保证 Windows 产物经过压缩" exit 1 } $beforeBytes = (Get-Item -LiteralPath $finalExe).Length Write-Host "🗜️ 使用 UPX 压缩 $finalExe ..." & upx --best --lzma --force $finalExe | Out-Host & upx -t $finalExe | Out-Host $afterBytes = (Get-Item -LiteralPath $finalExe).Length if ($afterBytes -lt $beforeBytes) { $savedBytes = $beforeBytes - $afterBytes Write-Host ("✅ UPX 压缩完成:{0:N2}MB -> {1:N2}MB,减少 {2:N2}MB" -f ($beforeBytes / 1MB), ($afterBytes / 1MB), ($savedBytes / 1MB)) } else { Write-Host ("ℹ️ UPX 压缩完成:{0:N2}MB -> {1:N2}MB" -f ($beforeBytes / 1MB), ($afterBytes / 1MB)) } Write-Host "📦 输出 Windows 可执行文件 $finalExeName..." Copy-Item -LiteralPath $finalExe -Destination "..\\..\\$finalExeName" -Force # Linux Packaging (tar.gz and AppImage) - name: Package Linux if: contains(matrix.platform, 'linux') run: | VERSION="${{ github.ref_name }}" VERSION="${VERSION#v}" cd build/bin TARGET="${{ matrix.build_name }}" TAR_NAME="GoNavi-$VERSION-${{ matrix.os_name }}-${{ matrix.arch_name }}${{ matrix.artifact_suffix }}.tar.gz" APPIMAGE_NAME="GoNavi-$VERSION-${{ matrix.os_name }}-${{ matrix.arch_name }}${{ matrix.artifact_suffix }}.AppImage" if [ ! -f "$TARGET" ]; then echo "❌ 未找到构建产物 '$TARGET'!" exit 1 fi chmod +x "$TARGET" BEFORE_BYTES=$(wc -c <"$TARGET" | tr -d '[:space:]') echo "🗜️ 正在使用 UPX 压缩 Linux 可执行文件: $TARGET ..." upx --best --lzma --force "$TARGET" upx -t "$TARGET" AFTER_BYTES=$(wc -c <"$TARGET" | tr -d '[:space:]') if [ "$AFTER_BYTES" -lt "$BEFORE_BYTES" ]; then SAVED_BYTES=$((BEFORE_BYTES - AFTER_BYTES)) awk -v b="$BEFORE_BYTES" -v a="$AFTER_BYTES" -v s="$SAVED_BYTES" 'BEGIN { printf "✅ Linux UPX 压缩完成:%.2fMB -> %.2fMB,减少 %.2fMB\n", b/1024/1024, a/1024/1024, s/1024/1024 }' else awk -v b="$BEFORE_BYTES" -v a="$AFTER_BYTES" 'BEGIN { printf "ℹ️ Linux UPX 压缩完成:%.2fMB -> %.2fMB\n", b/1024/1024, a/1024/1024 }' fi # 1. Create tar.gz echo "📦 正在打包 $TAR_NAME..." tar -czvf "$TAR_NAME" "$TARGET" mv "$TAR_NAME" ../../ # 2. Create AppImage (skip for ARM64 or if tools unavailable) if [ -f /tmp/skip-appimage ]; then echo "⚠️ 跳过 AppImage 打包" exit 0 fi echo "📦 正在生成 AppImage..." # Create AppDir structure mkdir -p AppDir/usr/bin mkdir -p AppDir/usr/share/applications mkdir -p AppDir/usr/share/icons/hicolor/256x256/apps cp "$TARGET" AppDir/usr/bin/gonavi # Create desktop file printf '%s\n' \ '[Desktop Entry]' \ 'Name=GoNavi' \ 'Exec=gonavi' \ 'Icon=gonavi' \ 'Type=Application' \ 'Categories=Development;Database;' \ 'Comment=Database Management Tool' \ > AppDir/usr/share/applications/gonavi.desktop cp AppDir/usr/share/applications/gonavi.desktop AppDir/gonavi.desktop # Create a simple icon (or use existing if available) if [ -f "../../build/appicon.png" ]; then cp "../../build/appicon.png" AppDir/usr/share/icons/hicolor/256x256/apps/gonavi.png cp "../../build/appicon.png" AppDir/gonavi.png else # Create a placeholder icon convert -size 256x256 xc:#336791 -fill white -gravity center -pointsize 48 -annotate 0 "GoNavi" AppDir/gonavi.png || \ wget -q "https://via.placeholder.com/256/336791/FFFFFF?text=GoNavi" -O AppDir/gonavi.png || \ touch AppDir/gonavi.png cp AppDir/gonavi.png AppDir/usr/share/icons/hicolor/256x256/apps/gonavi.png fi # Build AppImage export DEPLOY_GTK_VERSION=3 /tmp/linuxdeploy --appdir AppDir --plugin gtk --output appimage || { echo "⚠️ AppImage 生成失败,但 tar.gz 已成功生成" exit 0 } # Rename output mv GoNavi*.AppImage "$APPIMAGE_NAME" 2>/dev/null || { echo "⚠️ AppImage 重命名失败" exit 0 } if [ -f "$APPIMAGE_NAME" ]; then mv "$APPIMAGE_NAME" ../../ echo "✅ AppImage 生成成功" fi # Upload to Actions Artifacts (Temporary Storage) - name: Upload Artifact uses: actions/upload-artifact@v4 with: name: build-artifacts-${{ strategy.job-index }} # Unique name per job path: | GoNavi-*.dmg GoNavi-*.exe GoNavi-*.tar.gz GoNavi-*.AppImage drivers/** retention-days: 1 # Phase 2: Collect all artifacts and Publish Release (Single Job) release: name: Publish Release needs: build runs-on: ubuntu-latest steps: - name: Download All Artifacts uses: actions/download-artifact@v4 with: path: release-assets pattern: build-artifacts-* merge-multiple: true - name: List Assets run: ls -R release-assets - name: Verify Optional Driver Assets shell: bash run: | set -euo pipefail cd release-assets REQUIRED_FILES=( "drivers/Windows/duckdb-driver-agent-windows-amd64.exe" "drivers/MacOS/duckdb-driver-agent-darwin-amd64" "drivers/MacOS/duckdb-driver-agent-darwin-arm64" "drivers/Linux/duckdb-driver-agent-linux-amd64" "drivers/Windows/clickhouse-driver-agent-windows-amd64.exe" "drivers/MacOS/clickhouse-driver-agent-darwin-amd64" "drivers/MacOS/clickhouse-driver-agent-darwin-arm64" "drivers/Linux/clickhouse-driver-agent-linux-amd64" ) missing=0 for file in "${REQUIRED_FILES[@]}"; do if [ ! -f "$file" ]; then echo "❌ 缺少驱动资产:$file" missing=1 else echo "✅ 已找到驱动资产:$file" fi done if [ "$missing" -ne 0 ]; then echo "❌ 可选驱动资产不完整,终止发布" exit 1 fi - name: Package Driver Agents Bundle shell: bash run: | set -euo pipefail cd release-assets if [ ! -d drivers ]; then echo "⚠️ 未找到 drivers 目录,跳过驱动总包打包" exit 0 fi if [ -z "$(find drivers -type f 2>/dev/null | head -n 1)" ]; then echo "⚠️ drivers 目录为空,跳过驱动总包打包" rm -rf drivers exit 0 fi echo "📦 打包驱动总包:GoNavi-DriverAgents.zip" python3 - <<'PY' import json import os import zipfile from pathlib import Path out_name = "GoNavi-DriverAgents.zip" index_name = "GoNavi-DriverAgents-Index.json" base = Path("drivers") out_path = Path(out_name) index_path = Path(index_name) if out_path.exists(): out_path.unlink() if index_path.exists(): index_path.unlink() size_index = {} with zipfile.ZipFile(out_path, "w", compression=zipfile.ZIP_DEFLATED) as zf: for p in base.rglob("*"): if not p.is_file(): continue arcname = p.relative_to(base).as_posix() zf.write(p, arcname) size_index[p.name] = p.stat().st_size index_path.write_text( json.dumps({"assets": size_index}, ensure_ascii=False, indent=2), encoding="utf-8", ) print(f"created {out_name} size={out_path.stat().st_size} bytes") print(f"created {index_name} entries={len(size_index)}") PY # Release 只发布一个驱动总包,避免大量平铺资产污染 Release 页面 rm -rf drivers - name: Generate SHA256SUMS shell: bash run: | cd release-assets FILES=() while IFS= read -r file; do if [ -n "$file" ]; then FILES+=("$file") fi done < <(find . -maxdepth 1 -type f ! -name SHA256SUMS -exec basename {} \; | sort) if [ ${#FILES[@]} -eq 0 ]; then echo "⚠️ 未找到可签名资产,生成空 SHA256SUMS" : > SHA256SUMS else sha256sum "${FILES[@]}" > SHA256SUMS fi - name: Create Release uses: softprops/action-gh-release@v2 if: startsWith(github.ref, 'refs/tags/') with: files: release-assets/* draft: true make_latest: true generate_release_notes: true env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}