mirror of
https://github.com/cunnie/sslip.io.git
synced 2025-10-24 16:10:23 +08:00

I don't need this k8s configuration for sslip.io (DNS, NTP) because I'm no longer hosting on GKE now that it has an ephemeral IP instead of a reserved IP because otherwise I'd have to pay $360 extra per year for a premium-tier load balancer.
107 lines
4.5 KiB
Markdown
107 lines
4.5 KiB
Markdown
## Release Procedure
|
|
|
|
These instructions are meant primarily for me when deploying a new release;
|
|
they might not make sense unless you're on my workstation.
|
|
|
|
```bash
|
|
export OLD_VERSION=2.7.0
|
|
export VERSION=3.0.0
|
|
cd ~/workspace/sslip.io
|
|
git pull -r --autostash
|
|
# update the version number for the TXT record for version.status.sslip.io
|
|
sed -i '' "s/$OLD_VERSION/$VERSION/g" \
|
|
bin/make_all \
|
|
spec/check-dns_spec.rb
|
|
# update the download instructions on the website
|
|
sed -i '' "s~/$OLD_VERSION/~/$VERSION/~g" \
|
|
k8s/document_root_sslip.io/index.html \
|
|
k8s/Dockerfile-sslip.io-dns-server
|
|
```
|
|
Optional: Update the version for the ns-aws, ns-azure install scripts
|
|
```bash
|
|
pushd ~/bin
|
|
sed -i '' "s~/$OLD_VERSION/~/$VERSION/~g" \
|
|
~/bin/install_ns-a*.sh
|
|
git add -p
|
|
git ci -m"Update sslip.io DNS server $OLD_VERSION → $VERSION"
|
|
git push
|
|
popd
|
|
```
|
|
Build & start the new executables:
|
|
```bash
|
|
bin/make_all
|
|
# Start the server, assuming macOS M1. Adjust path for GOOS, GOARCH. Linux requires `sudo`
|
|
bin/sslip.io-dns-server-darwin-arm64
|
|
```
|
|
Test from another window:
|
|
```bash
|
|
export DNS_SERVER_IP=127.0.0.1
|
|
export VERSION=3.0.0
|
|
# quick sanity test
|
|
dig +short 127.0.0.1.example.com @$DNS_SERVER_IP
|
|
echo 127.0.0.1
|
|
dig +short ns example.com @$DNS_SERVER_IP
|
|
printf "ns-aws.sslip.io.\nns-azure.sslip.io.\nns-gce.sslip.io.\n"
|
|
dig +short mx example.com @$DNS_SERVER_IP
|
|
echo "0 example.com."
|
|
dig +short mx sslip.io @$DNS_SERVER_IP
|
|
printf "10 mail.protonmail.ch.\n20 mailsec.protonmail.ch.\n"
|
|
dig +short txt sslip.io @$DNS_SERVER_IP
|
|
printf "\"protonmail-verification=ce0ca3f5010aa7a2cf8bcc693778338ffde73e26\"\n\"v=spf1 include:_spf.protonmail.ch mx ~all\"\n"
|
|
dig +short txt 127.0.0.1.sslip.io @$DNS_SERVER_IP # no records
|
|
dig +short cname sslip.io @$DNS_SERVER_IP # no records
|
|
dig +short cname protonmail._domainkey.sslip.io @$DNS_SERVER_IP
|
|
echo protonmail.domainkey.dw4gykv5i2brtkjglrf34wf6kbxpa5hgtmg2xqopinhgxn5axo73a.domains.proton.ch.
|
|
dig a _Acme-ChallengE.127-0-0-1.sslip.io @$DNS_SERVER_IP | grep "^127"
|
|
echo "127-0-0-1.sslip.io. 604800 IN A 127.0.0.1"
|
|
dig +short sSlIp.Io
|
|
echo 78.46.204.247
|
|
dig @$DNS_SERVER_IP txt ip.sslip.io +short | tr -d '"'
|
|
echo 127.0.0.1
|
|
dig @$DNS_SERVER_IP txt version.status.sslip.io +short | grep $VERSION
|
|
echo "\"$VERSION\""
|
|
echo " ===" # separator because the results are too similar
|
|
dig @$DNS_SERVER_IP 1.0.0.127.in-addr.arpa ptr +short
|
|
echo "127-0-0-1.sslip.io."
|
|
dig @$DNS_SERVER_IP metrics.status.sslip.io txt +short | grep '"Queries: '
|
|
echo '"Queries: 12 (?.?/s)"'
|
|
```
|
|
Review the output then close the second window. Stop the server in the
|
|
original window. Commit our changes:
|
|
```bash
|
|
git add -p
|
|
# and commit (but DON'T push)
|
|
git ci -vm"$VERSION: enable TCP binding in addition to UDP"
|
|
git tag $VERSION
|
|
git push
|
|
git push --tags
|
|
scp bin/sslip.io-dns-server-linux-arm64 ns-aws:
|
|
scp bin/sslip.io-dns-server-linux-amd64 ns-azure:
|
|
ssh ns-aws sudo install sslip.io-dns-server-linux-arm64 /usr/bin/sslip.io-dns-server
|
|
ssh ns-aws sudo shutdown -r now
|
|
sleep 10; while ! dig @ns-aws.sslip.io ns-aws.sslip.io; do sleep 5; done # wait until it's back up before rebooting ns-azure
|
|
ssh ns-azure sudo install sslip.io-dns-server-linux-amd64 /usr/bin/sslip.io-dns-server
|
|
ssh ns-azure sudo shutdown -r now
|
|
sleep 10; while ! dig @ns-azure.sslip.io ns-azure.sslip.io; do sleep 5; done # wait until it's back up before rebooting ns-azure
|
|
dig @ns-aws.sslip.io version.status.sslip.io txt +short # confirm new version
|
|
dig @ns-azure.sslip.io version.status.sslip.io txt +short # confirm new version
|
|
```
|
|
- Browse to <https://github.com/cunnie/sslip.io/releases/new> to draft a new release
|
|
- Drag and drop the executables in `bin/` to the _Attach binaries..._ section.
|
|
- Click "Publish release"
|
|
```bash
|
|
fly -t nono trigger-job -j sslip.io/build-and-push-sslip.io-dns-server
|
|
```
|
|
Update the webservers with the HTML with new versions:
|
|
```bash
|
|
ssh nono.io curl -L -o /www/sslip.io/document_root/index.html https://raw.githubusercontent.com/cunnie/sslip.io/main/k8s/document_root_sslip.io/index.html
|
|
ssh ns-aws.sslip.io curl -L -o /var/nginx/sslip.io/index.html https://raw.githubusercontent.com/cunnie/sslip.io/main/k8s/document_root_sslip.io/index.html
|
|
ssh ns-azure.sslip.io curl -L -o /var/nginx/sslip.io/index.html https://raw.githubusercontent.com/cunnie/sslip.io/main/k8s/document_root_sslip.io/index.html
|
|
```
|
|
Check that the versions of the sslip.io DNS servers are the same:
|
|
```bash
|
|
for IAAS in aws azure gce; do printf "\n$IAAS:\n"; dig @ns-$IAAS.sslip.io version.status.sslip.io txt +short; done
|
|
fly -t nono trigger-job -j sslip.io/dns-servers
|
|
```
|
|
Browse to <https://ci.nono.io/teams/main/pipelines/sslip.io>
|