Build arm64 MSI packages additionally to the current amd64 ones #482
Conversation
philipbalinov
changed the title
.github/workflows/pkg_msi.yaml
Outdated
| @@ -53,12 +53,17 @@ jobs: | |||
| echo "trimmed_version=$(echo ${V} | sed 's/-.*//')" >> $GITHUB_OUTPUT | |||
| - name: Ensure version of cnquery and cnspec are available | |||
| run: | | |||
| curl -sL --head --fail https://github.com/mondoohq/cnquery/releases/download/v${{ steps.version.outputs.version }}/cnquery_${{ steps.version.outputs.version }}_windows_amd64.zip | |||
| curl -sL --head --fail https://github.com/mondoohq/cnspec/releases/download/v${{ steps.version.outputs.version }}/cnspec_${{ steps.version.outputs.version }}_windows_amd64.zip | |||
| curl -sL --head --fail https://github.com/mondoohq/cnquery/releases/download/v11.26.0/cnquery_11.26.0_windows_amd64.zip \ | |||
There was a problem hiding this comment.
why do I feel this command went from being parameterized to be hardcoded? 🤔
There was a problem hiding this comment.
oops! fixed 👍
| <?define RegistrationTokenRequired = "0"?> | ||
| <?define OtherSKU = "$(var.UpgradeCodeEnterprise)"?> | ||
| <?else?> | ||
| <?define InstallerVersion="200"?> |
There was a problem hiding this comment.
for my own learning, what are these InstallerVersion for and, why these numbers 200 and 500?¿
There was a problem hiding this comment.
apparently - I'm not expert mysel - that is the minimum MS Installer version, these are the recommendations for x64 and arm as per https://wixtoolset.org/docs/v3/xsd/wix/package/
In reality, 200 seems to be Windows 2000-era, and 500 - Windows 7, so these numbers are super conservative.
packages/msi/package.ps1
Outdated
| cd msi | ||
| # delete previous intermediate files | ||
| Remove-Item .\Product.wixobj -ErrorAction Ignore | ||
| Remove-Item .\mondoo.wixpdb -ErrorAction Ignore | ||
| # build package | ||
| dir 'C:\Program Files (x86)\' | ||
| info "run candle (standard)" | ||
| & 'C:\Program Files (x86)\WiX Toolset v3.14\bin\candle' -nologo -arch x64 -dMondooSKU="standard" -dProductVersion="$version" -ext WixUtilExtension Product.wxs | ||
| & 'C:\Program Files (x86)\WiX Toolset v3.14\bin\candle' -nologo -dMondooSKU="standard" -darch="$platform" -dProductVersion="$version" -ext WixUtilExtension Product.wxs |
There was a problem hiding this comment.
nit extra whitespace
| & 'C:\Program Files (x86)\WiX Toolset v3.14\bin\candle' -nologo -dMondooSKU="standard" -darch="$platform" -dProductVersion="$version" -ext WixUtilExtension Product.wxs | |
| & 'C:\Program Files (x86)\WiX Toolset v3.14\bin\candle' -nologo -dMondooSKU="standard" -darch="$platform" -dProductVersion="$version" -ext WixUtilExtension Product.wxs |
packages/msi/msi/Product.wxs
Outdated
| <Wix xmlns="http://schemas.microsoft.com/wix/2006/wi" | ||
| xmlns:util="http://schemas.microsoft.com/wix/UtilExtension"> | ||
| <Product Name="$(var.ProductName)" Version="$(var.ProductVersion)" Manufacturer="Mondoo, Inc." Language="1033" Codepage="1252" Id="*" UpgradeCode="$(var.UpgradeCode)"> | ||
| <!-- custom action do not work if its not privileged--> | ||
| <Package | ||
| Description="Mondoo verifies your system for known vulnerabilities" | ||
| Manufacturer="Mondoo, Inc." | ||
| InstallerVersion="200" | ||
| InstallerVersion="$(var.InstallerVersion)" | ||
| Compressed="yes" | ||
| Comments="Windows Installer Package" | ||
| Platform="x64" |
There was a problem hiding this comment.
shouldn't there be an arm section too?
There was a problem hiding this comment.
removed the Platform attribute entirely - it's considered deprecated and is overriden by passing -arch to candle.exe anyway
| @@ -16,22 +19,24 @@ function info($msg) { Write-Host $msg -f white } | |||
|
|
|||
| info "build msi package $version" | |||
| # delete previous build | |||
| Remove-Item .\mondoo.msi -ErrorAction Ignore | |||
| Remove-Item ".\mondoo_${arch}.msi" -ErrorAction Ignore | |||
There was a problem hiding this comment.
If the intend is to delete previous builds, for x64, should we try to remove the previous location too?
There was a problem hiding this comment.
kept both lines just in case, although in reality this runs in CI against an empty directory each time, so none of the files will ever be there
- remove hardcoded amd64 string everywhere - parametrize builds to run for both amd64 and arm64 Signed-off-by: Philip Balinov <[email protected]>
…nker to produce an .exe may fix it
…g the linker to produce an .exe may fix it" This reverts commit 87528ed.
philipbalinov
force-pushed
the
philip/arm64-msi-installer
branch
from
72993ee
to
2985bf1
Compare
- Try to remove old installer filename `mondoo.msi' as well - Remove some extra whitespace
There was a problem hiding this comment.
Fully tested cnquery installed by MSI on an Azure ARM Windows 11 Enterprise instance. Worked perfectly. Binaries are properly signed.
Great job @philipbalinov !!!
remove hardcoded amd64 string everywhere
parametrize builds to run for both amd64 and arm64
Successfully tested against local windows 10 arm64 VM
Caveats
mondoo.msitomondoo_<arch>.msi, e.g.mondoo_arm64.msi