feat(packages): add nextgen tiflow route and delivery

[wuhuizuo]

Summary

• add nextgen support to the latest tiflow package route and keep the darwin nodejs bootstrap in the new profile
• add nextgen delivery rules for tiflow, dm, and sync-diff-inspector images in the tidbx registry path
• include sync-diff-inspector in the delivery target image enumeration helper so local delivery validation matches the configured rules

Closes #956

Verification

• pre-change: gen-package-images-with-config.sh tiflow linux amd64 v9.0.0 nextgen ... failed with No package routes matched
• pre-change: get-delivery-target-images.ts --version=v26.3.1-nextgen --registry=us-docker.pkg.dev/pingcap-testing-account/tidbx did not include dm / tiflow / sync-diff-inspector targets
• post-change: the same gen-package-images-with-config.sh command generates a script with NEXT_GEN=1 make dm-master-with-webui dm-worker dmctl dm-syncer sync-diff-inspector and tidbx image destinations for all three tiflow-family images
• post-change: the same delivery target generation now includes us.gcr.io/pingcap-public/tidbx/dm:v26.3.1-nextgen, .../tiflow:v26.3.1-nextgen, and .../sync-diff-inspector:v26.3.1-nextgen
• post-change: release generation still emits the classic hub/pingcap/tiflow/images/{sync-diff-inspector,dm,tiflow} destinations

[ti-chi-bot]

I have already done a preliminary review for you, and I hope to help you do a better job.

Summary
This PR adds nextgen support for the tiflow package route and delivery, including related images dm, tiflow, and sync-diff-inspector under the tidbx registry path. It updates package build profiles, delivery rules, and local validation scripts to reflect these additions. The changes are well-scoped, address the stated issue (#956), and verification steps indicate correctness. The overall structure is clear, but some areas could improve on maintainability and robustness.

---

Critical Issues

• None found. The code changes appear functionally correct based on the description and diff.

---

Code Improvements

• packages.yaml.tmpl (lines ~2244-2295):
  The shell script in the nextgen profile step installs Node.js and yarn manually. This approach may fail silently or be slow on repeated runs, and it lacks error handling.

  Suggestion:

  • Add error checking after critical commands (curl, nvm install, nvm use, npm install).
  • Consider caching or detecting if the right Node.js version is already installed to avoid redundant installs.
  • Alternatively, document that this step assumes a clean environment.

  Example improvement snippet:

  set -e
  if ! command -v node >/dev/null || [ "$(node -v)" != "$NODE_VERSION" ]; then
    # install Node/NVM
    # ...
  fi

• get-delivery-target-images.ts (line ~38):
  The addition of "pingcap/tiflow/images/sync-diff-inspector" is good, but consider making this list data-driven or configurable to reduce manual enumeration and risk of future drift.

  For example, define an array or config object at the top and reference it here and elsewhere.

• delivery.yaml (lines ~487-500):
  The new delivery rules duplicate the pattern in other rules. If more nextgen images are added in the future, this could be error-prone.

  Consider templating or using YAML anchors more extensively to DRY up repeated structures.

---

Best Practices

• Documentation

  • Add a brief comment explaining the purpose of the new nextgen profile and delivery rules in packages.yaml.tmpl and delivery.yaml for future maintainers.
  • Document the environment expectations for the node bootstrap step (e.g., network access for curl).

• Testing Coverage

  • The PR description lists manual verification steps but does not mention automated tests.
  • Add or update automated tests (unit or integration) to cover:
    • The new nextgen profile in packages.yaml.tmpl.
    • The updated image enumeration in get-delivery-target-images.ts.
    • Delivery rules validation if possible.

• Style / Naming

  • The naming is consistent and clear.
  • In the shell script, consider quoting variables for robustness:

    mkdir -p "$NVM_DIR"

    and

    if [ ! -s "$NVM_DIR/nvm.sh" ]; then

---

Summary of Suggested Fixes

# packages/packages.yaml.tmpl - nextgen node bootstrap with error handling and quoting
+            - script: |
+                set -e
+                NODE_VERSION="v16.20.2"
+                NVM_VERSION="v0.39.5"
+                NVM_DIR="$HOME/.nvm"
+                mkdir -p "$NVM_DIR"
+
+                if [ ! -s "$NVM_DIR/nvm.sh" ]; then
+                  curl -fsSL "https://raw.githubusercontent.com/nvm-sh/nvm/${NVM_VERSION}/install.sh" | bash
+                fi
+                . "$NVM_DIR/nvm.sh"
+
+                # Install node if not already installed or wrong version
+                if ! command -v node >/dev/null || [ "$(node -v)" != "$NODE_VERSION" ]; then
+                  nvm install "${NODE_VERSION}"
+                fi
+                nvm use "${NODE_VERSION}"
+                nvm alias default "${NODE_VERSION}"
+
+                node --version && npm --version
+                npm install -g yarn

• Add comments in delivery.yaml and packages.yaml.tmpl explaining new nextgen additions.
• Refactor get-delivery-target-images.ts to use a central config for image paths to avoid manual sync issues.
• Add automated tests for the new functionality.

---

Overall, the PR is a solid incremental feature addition. Addressing the above points will improve robustness, maintainability, and clarity for future contributors.

[gemini-code-assist]

Code Review

This pull request updates the delivery and packaging configuration for tiflow components by adding image copy rules for dm, tiflow, and sync-diff-inspector. It also introduces a nextgen profile in the package template, which includes a Node.js toolchain setup for Darwin environments. A review comment suggests reducing code duplication in the package template by using YAML anchors or Go template blocks for the repeated Node.js installation steps.

[gemini-code-assist]

The nextgen profile steps for darwin are identical to the release profile steps. While this follows the existing pattern in this file, it introduces significant code duplication. Consider defining a reusable YAML anchor or a Go template block for the Node.js toolchain installation to improve maintainability.

[ti-chi-bot]

I have already done a preliminary review for you, and I hope to help you do a better job.

Summary:
This PR adds support for a new nextgen profile in the tiflow package build and delivery system, integrating it alongside the existing release profile. It updates delivery rules to include nextgen variants for tiflow, dm, and sync-diff-inspector images targeting the tidbx registry, and modifies the packaging templates to generate appropriate artifacts and image tags. The approach is consistent and incremental, maintaining backward compatibility with the release profile. The code changes are generally clear and well-structured, but some improvements and clarifications would enhance maintainability and robustness.

---

Critical Issues

• Potential Missing Delivery Rule for sync-diff-inspector in delivery.yaml
  In packages/delivery.yaml, the PR adds a delivery rule for dm under the tidbx registry path but does not explicitly add one for sync-diff-inspector or tiflow under us-docker.pkg.dev/pingcap-testing-account/tidbx. The description mentions adding nextgen delivery rules for all three images, but the diff only shows dm.
  • File: packages/delivery.yaml lines ~487-491
  • Issue: This could lead to missing delivery targets for sync-diff-inspector and tiflow images in the tidbx path, causing inconsistencies or failed deployments.
  • Suggestion: Add similar delivery rules for sync-diff-inspector and tiflow under the appropriate source repository keys, e.g.:

    us-docker.pkg.dev/pingcap-testing-account/tidbx/pingcap/tiflow/images/sync-diff-inspector:
      - <<: *sync_nextgen
        dest_repositories:
          - us.gcr.io/pingcap-public/tidbx/sync-diff-inspector
    us-docker.pkg.dev/pingcap-testing-account/tidbx/pingcap/tiflow/images/tiflow:
      - <<: *sync_nextgen
        dest_repositories:
          - us.gcr.io/pingcap-public/tidbx/tiflow

---

Code Improvements

• DRY and Consistency in packages.yaml.tmpl Profile Conditions
  The current changes add nextgen to the profile list at line 2246 and separately exclude nextgen artifacts via if: {{ ne "nextgen" .Release.profile }} conditions at lines 2327, 2339, and 2362. This pattern risks duplication and errors if more artifact sections are added later.

  • File: packages/packages.yaml.tmpl lines 2244-2370
  • Issue: The exclusion logic is repeated for multiple artifacts and can be error-prone if the nextgen profile changes.
  • Suggestion: Consider grouping if conditions or using a single variable for profile-based artifact filtering. For example, define a template variable like isNextGen once and reuse it. This improves readability and reduces duplication.

• Hardcoded Node.js and NVM Versions in Nextgen Profile Setup
  The nextgen profile bootstrap script installs specific versions of Node.js (v16.20.2) and NVM (v0.39.5) directly.

  • File: packages/packages.yaml.tmpl lines ~2250-2268
  • Issue: Hardcoding versions makes upgrades and maintenance more cumbersome. These versions may become outdated and cause environment drift.
  • Suggestion: Extract these versions into variables at the top of the template or external config, or parameterize them with environment variables. This makes upgrades easier and avoids potential security issues from old Node.js versions.

• Missing sync-diff-inspector in Nextgen Make Targets
  In the nextgen profile build step, the make targets are:

  NEXT_GEN=1 make dm-master-with-webui dm-worker dmctl dm-syncer

  However, sync-diff-inspector is present in the release profile but absent here.

  • File: packages/packages.yaml.tmpl lines ~2269-2274
  • Issue: Omitting sync-diff-inspector from the nextgen make targets may cause it not to be built or delivered under nextgen, contradicting the PR description.
  • Suggestion: Add sync-diff-inspector to the make command in the nextgen profile:

    NEXT_GEN=1 make dm-master-with-webui dm-worker dmctl dm-syncer sync-diff-inspector

---

Best Practices

• Add Comments Explaining nextgen Profile Purpose and Differences
  The template additions introduce a new nextgen profile with some nodejs bootstrap and altered build targets, but there is no inline documentation explaining what nextgen represents or how it differs from release.

  • File: packages/packages.yaml.tmpl starting line 2240 and 2250
  • Issue: Lack of comments makes it harder for future maintainers to understand design intent.
  • Suggestion: Add comments briefly describing the nextgen profile, its intended usage, and why Node.js bootstrap is necessary.

• Consistent Use of Profile Filtering in Artifacts
  The artifact definitions for sync-diff-inspector and tiflow-engine images explicitly exclude nextgen profile artifacts. This is good but should be consistently applied across all relevant artifact blocks.

  • File: packages/packages.yaml.tmpl lines 2326-2365
  • Suggestion: Review all artifact blocks to ensure correct filtering and consider centralizing profile-based filtering logic for maintainability.

• Testing Coverage
  The PR description shows manual verification commands but does not mention automated tests for the new nextgen profile or delivery rules.

  • Suggestion: Add or update automated tests (unit, integration, or end-to-end) that verify the nextgen build and delivery paths, including image enumeration and delivery rule application. This reduces regression risk.

---

Summary of Recommended Changes:

1. Add missing delivery rules for sync-diff-inspector and tiflow in packages/delivery.yaml for nextgen/tidbx registry paths.
2. Include sync-diff-inspector in the nextgen make targets in packages.yaml.tmpl.
3. Refactor artifact filtering logic by profile to reduce duplication and improve clarity.
4. Parameterize Node.js and NVM version variables in the bootstrap script.
5. Add comments explaining the purpose and setup steps of the nextgen profile.
6. Add or update automated tests covering the new nextgen profile and delivery rules.

Addressing these points will improve correctness, maintainability, and reduce potential future issues.

[dillon-zheng]

lgtm

[ti-chi-bot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: dillon-zheng

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [dillon-zheng]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[ti-chi-bot]

[LGTM Timeline notifier]

Timeline:

• 2026-04-10 06:05:04.760242446 +0000 UTC m=+1109109.965602513: ☑️ agreed by dillon-zheng.