workspace: introduce bazel downloader config and replace bazeldnf mirror
This rather small change does rework the way we cache our dependencies
by instructing bazel to fetch everything through a custom proxy. See
//build/mirror_proxy:README.me for more infos.
Closes monogon-dev/monogon#178
Change-Id: Ic671fc8233a1cbf37427bbc96339ea8108310e21
Reviewed-on: https://review.monogon.dev/c/monogon/+/3686
Tested-by: Jenkins CI
Reviewed-by: Lorenz Brun <lorenz@monogon.tech>
diff --git a/build/mirror_proxy/BUILD.bazel b/build/mirror_proxy/BUILD.bazel
new file mode 100644
index 0000000..f3c7778
--- /dev/null
+++ b/build/mirror_proxy/BUILD.bazel
@@ -0,0 +1,45 @@
+load("@io_bazel_rules_go//go:def.bzl", "go_binary", "go_library")
+
+go_library(
+ name = "mirror_proxy_lib",
+ srcs = ["main.go"],
+ importpath = "source.monogon.dev/build/mirror_proxy",
+ visibility = ["//visibility:private"],
+ deps = [
+ "@com_google_cloud_go_storage//:storage",
+ "@org_golang_google_api//option",
+ ],
+)
+
+go_binary(
+ name = "mirror_proxy",
+ embed = [":mirror_proxy_lib"],
+ visibility = ["//visibility:public"],
+)
+
+load("@rules_pkg//pkg:tar.bzl", "pkg_tar")
+
+pkg_tar(
+ name = "mirror_proxy_layer",
+ srcs = [":mirror_proxy"],
+)
+
+load("@rules_oci//oci:defs.bzl", "oci_image")
+
+oci_image(
+ name = "mirror_proxy_image",
+ base = "@distroless_base",
+ entrypoint = ["/mirror_proxy"],
+ tars = [":mirror_proxy_layer"],
+ visibility = ["//visibility:public"],
+ workdir = "/app",
+)
+
+load("@rules_oci//oci:defs.bzl", "oci_push")
+
+oci_push(
+ name = "mirror_proxy_push",
+ image = ":mirror_proxy_image",
+ remote_tags = ["latest"],
+ repository = "gcr.io/monogon-infra/build/mirror_proxy",
+)