keremet/rpm-ostree
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
c349a14600
rpm-ostree/.cci.jenkinsfile

135 lines
4.6 KiB
Plaintext
Raw Normal View History

ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
// Documentation: https://github.com/coreos/coreos-ci/blob/master/README-upstream-ci.md
ci: re-use variable for container images Makes it less repetitive and allows controlling the images from a central place.
2019-12-13 20:12:53 +03:00
ci: Add Jenkins pipeline This is an experiment in using Jenkins pipelines for our CI. See similar initiatives in coreos-assembler[1] and fedora-coreos-config[2]. For now, this only does the following testing: - checks commit for unintended submodule bumps - checks the minimum Rust version - builds RPMs - builds FCOS (with the new RPMs both for executing the build itself, as well as included in the built OS) There are dummy placeholders for where we'd actually run the vmcheck and the compose testsuites. Let's address those trickier parts as follow-ups. [1] https://github.com/coreos/coreos-assembler/pull/667 [2] https://github.com/coreos/fedora-coreos-config/pull/131 Closes: #1899 Approved by: cgwalters
2019-07-22 19:50:18 +03:00
stage("Build") {
parallel rpms: {
ci: request 2G of RAM for compilation I think the `fork` errors CI is hitting might be due to more stringent memory limit enforcements in OCP4. Let's be more explicit and actually request 2G of RAM. We can adjust from there. (One related thing is CPU requests; it's possible we might need to also make that explicit and in turn adjust the `_smp_mflags` RPM macro, since the default is unlikely to be k8s/cgroups-aware.)
2020-07-13 02:35:42 +03:00
cosaPod(buildroot: true, runAsUser: 0, memory: "2Gi") {
ci: Add Jenkins pipeline This is an experiment in using Jenkins pipelines for our CI. See similar initiatives in coreos-assembler[1] and fedora-coreos-config[2]. For now, this only does the following testing: - checks commit for unintended submodule bumps - checks the minimum Rust version - builds RPMs - builds FCOS (with the new RPMs both for executing the build itself, as well as included in the built OS) There are dummy placeholders for where we'd actually run the vmcheck and the compose testsuites. Let's address those trickier parts as follow-ups. [1] https://github.com/coreos/coreos-assembler/pull/667 [2] https://github.com/coreos/fedora-coreos-config/pull/131 Closes: #1899 Approved by: cgwalters
2019-07-22 19:50:18 +03:00
checkout scm
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
shwrap("""
ci: Archive built RPMs That way, anyone can easily download the latest built RPMs from master or a specific PR. This isn't a replacement for automated builds in Koji though since it's not multi-arch. Also fetch the tags so that the NEVRA derived from `git describe` is nicer.
2019-12-13 20:14:32 +03:00
# fetch tags so `git describe` gives a nice NEVRA when building the RPM
git fetch origin --tags
ci: Add Jenkins pipeline This is an experiment in using Jenkins pipelines for our CI. See similar initiatives in coreos-assembler[1] and fedora-coreos-config[2]. For now, this only does the following testing: - checks commit for unintended submodule bumps - checks the minimum Rust version - builds RPMs - builds FCOS (with the new RPMs both for executing the build itself, as well as included in the built OS) There are dummy placeholders for where we'd actually run the vmcheck and the compose testsuites. Let's address those trickier parts as follow-ups. [1] https://github.com/coreos/coreos-assembler/pull/667 [2] https://github.com/coreos/fedora-coreos-config/pull/131 Closes: #1899 Approved by: cgwalters
2019-07-22 19:50:18 +03:00
ci/installdeps.sh
git submodule update --init
# We lose sanitizers (all the *san) here by building straight to RPMs, but we can
# restore those through a build opt later on. Being able to stash RPMs directly is
# super nice (and archiving later on will make it easy for anyone to download
# binaries from PRs in the future) and meshes well with the following stages.
ci: Adapt to workspace being HOME The CoreOS CI shared lib sets `HOME` to the workspace: https://github.com/coreos/coreos-ci-lib/commit/a81bfab789d71f620c9437c692834abffa33f1a5 and there's no easy way for it to detect when `HOME` is correctly set: https://github.com/coreos/coreos-ci-lib/commit/8574f04d969e046e1a12c2fc75d4c5957ed7e52a https://github.com/coreos/coreos-ci-lib/commit/853d5fdef3153b2b03c19218a00d516d2b59f853 For now, just work around this until we have a cleaner solution. (Though it makes sense overall to uses `$HOME` anyway instead of hardcoding `/root`).
2020-06-17 21:05:06 +03:00
export PATH="\$HOME/.cargo/bin:\$PATH"
ci: Add Jenkins pipeline This is an experiment in using Jenkins pipelines for our CI. See similar initiatives in coreos-assembler[1] and fedora-coreos-config[2]. For now, this only does the following testing: - checks commit for unintended submodule bumps - checks the minimum Rust version - builds RPMs - builds FCOS (with the new RPMs both for executing the build itself, as well as included in the built OS) There are dummy placeholders for where we'd actually run the vmcheck and the compose testsuites. Let's address those trickier parts as follow-ups. [1] https://github.com/coreos/coreos-assembler/pull/667 [2] https://github.com/coreos/fedora-coreos-config/pull/131 Closes: #1899 Approved by: cgwalters
2019-07-22 19:50:18 +03:00
cargo install cbindgen
cbindgen -c rust/cbindgen.toml -o rpmostree-rust.h rust
cd packaging
make -f Makefile.dist-packaging rpm
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
mv \$(find . -name '*.rpm') ..
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
""")
ci: Archive built RPMs That way, anyone can easily download the latest built RPMs from master or a specific PR. This isn't a replacement for automated builds in Koji though since it's not multi-arch. Also fetch the tags so that the NEVRA derived from `git describe` is nicer.
2019-12-13 20:14:32 +03:00
// make it easy for anyone to download the RPMs
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
archiveArtifacts '*.rpm'
stash excludes: '*.src.rpm', includes: '*.rpm', name: 'rpms'
ci: Add Jenkins pipeline This is an experiment in using Jenkins pipelines for our CI. See similar initiatives in coreos-assembler[1] and fedora-coreos-config[2]. For now, this only does the following testing: - checks commit for unintended submodule bumps - checks the minimum Rust version - builds RPMs - builds FCOS (with the new RPMs both for executing the build itself, as well as included in the built OS) There are dummy placeholders for where we'd actually run the vmcheck and the compose testsuites. Let's address those trickier parts as follow-ups. [1] https://github.com/coreos/coreos-assembler/pull/667 [2] https://github.com/coreos/fedora-coreos-config/pull/131 Closes: #1899 Approved by: cgwalters
2019-07-22 19:50:18 +03:00
}
},
codestyle: {
rust: rustfmt(*) and (re)add a CI check for it We haven't been consistent about doing this; I personally think rustfmt is a big aggressive with the line wrapping but eh, consistency is more important. And heh so I tried to `git push --set-upstream cgwalters` and that failed because there was an already extant `rustfmt` branch from a while ago...looking at that code it got lost in the CI refactoring - we're not running `build-check.sh` at the moment. Move the rustfmt bits into `codestyle.sh` which is closer to where it should be anyways.
2020-04-07 00:30:19 +03:00
cosaPod(buildroot: true) {
ci/jenkins: don't pass `GIT_COMMIT` to ci-commitmessage-submodules.sh Jenkins is tricky: it does an initial checkout, merges the PR head into the target branch, then creates the pod. Once in the pod, we do a `checkout scm` which *also* merges the PR head into the target branch. However, the `change.GIT_COMMIT` variable we get from that is set to the SHA of the first merge, not the second one. Which... yeah is super confusing since we explicitly assign `change` from that `checkout scm` operation. So that's probably a valid bug. This was then throwing off `ci-commitmessage-submodules.sh` since it didn't find the merge commit in the graph. Anyway, not going to spend more time on this. Let's just not pass any commit at all. The git range `origin/master..HEAD` already does what we want (go through all the commits in HEAD *not* in master).
2019-10-03 22:14:11 +03:00
checkout scm
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
shwrap("""
ci: Add Jenkins pipeline This is an experiment in using Jenkins pipelines for our CI. See similar initiatives in coreos-assembler[1] and fedora-coreos-config[2]. For now, this only does the following testing: - checks commit for unintended submodule bumps - checks the minimum Rust version - builds RPMs - builds FCOS (with the new RPMs both for executing the build itself, as well as included in the built OS) There are dummy placeholders for where we'd actually run the vmcheck and the compose testsuites. Let's address those trickier parts as follow-ups. [1] https://github.com/coreos/coreos-assembler/pull/667 [2] https://github.com/coreos/fedora-coreos-config/pull/131 Closes: #1899 Approved by: cgwalters
2019-07-22 19:50:18 +03:00
# Jenkins by default only fetches the branch it's testing. Explicitly fetch master
# for ci-commitmessage-submodules.sh
git fetch origin +refs/heads/master:refs/remotes/origin/master
ci/jenkins: don't pass `GIT_COMMIT` to ci-commitmessage-submodules.sh Jenkins is tricky: it does an initial checkout, merges the PR head into the target branch, then creates the pod. Once in the pod, we do a `checkout scm` which *also* merges the PR head into the target branch. However, the `change.GIT_COMMIT` variable we get from that is set to the SHA of the first merge, not the second one. Which... yeah is super confusing since we explicitly assign `change` from that `checkout scm` operation. So that's probably a valid bug. This was then throwing off `ci-commitmessage-submodules.sh` since it didn't find the merge commit in the graph. Anyway, not going to spend more time on this. Let's just not pass any commit at all. The git range `origin/master..HEAD` already does what we want (go through all the commits in HEAD *not* in master).
2019-10-03 22:14:11 +03:00
ci/ci-commitmessage-submodules.sh
ci: Add Jenkins pipeline This is an experiment in using Jenkins pipelines for our CI. See similar initiatives in coreos-assembler[1] and fedora-coreos-config[2]. For now, this only does the following testing: - checks commit for unintended submodule bumps - checks the minimum Rust version - builds RPMs - builds FCOS (with the new RPMs both for executing the build itself, as well as included in the built OS) There are dummy placeholders for where we'd actually run the vmcheck and the compose testsuites. Let's address those trickier parts as follow-ups. [1] https://github.com/coreos/coreos-assembler/pull/667 [2] https://github.com/coreos/fedora-coreos-config/pull/131 Closes: #1899 Approved by: cgwalters
2019-07-22 19:50:18 +03:00
ci/codestyle.sh
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
""")
ci: Add Jenkins pipeline This is an experiment in using Jenkins pipelines for our CI. See similar initiatives in coreos-assembler[1] and fedora-coreos-config[2]. For now, this only does the following testing: - checks commit for unintended submodule bumps - checks the minimum Rust version - builds RPMs - builds FCOS (with the new RPMs both for executing the build itself, as well as included in the built OS) There are dummy placeholders for where we'd actually run the vmcheck and the compose testsuites. Let's address those trickier parts as follow-ups. [1] https://github.com/coreos/coreos-assembler/pull/667 [2] https://github.com/coreos/fedora-coreos-config/pull/131 Closes: #1899 Approved by: cgwalters
2019-07-22 19:50:18 +03:00
}
},
ci: Run Rust unit tests We definitely want this too.
2019-12-20 22:16:24 +03:00
rust: {
ci: Constrain parallel build jobs The default `_NPROCESSORS_ONLN` heuristic we have isn't cgroups aware. So it thinks it has e.g. 40 CPUs when running in a k8s pod. This can then blow through our allocated resource limits. Declare some modest amount of RAM and CPU resources and override `make` parallelism. This matches what ostree does in https://github.com/ostreedev/ostree/pull/2151.
2020-07-14 02:18:22 +03:00
def n = 5
cosaPod(buildroot: true, runAsUser: 0, memory: "2Gi", cpu: "${n}") {
ci: Add Jenkins pipeline This is an experiment in using Jenkins pipelines for our CI. See similar initiatives in coreos-assembler[1] and fedora-coreos-config[2]. For now, this only does the following testing: - checks commit for unintended submodule bumps - checks the minimum Rust version - builds RPMs - builds FCOS (with the new RPMs both for executing the build itself, as well as included in the built OS) There are dummy placeholders for where we'd actually run the vmcheck and the compose testsuites. Let's address those trickier parts as follow-ups. [1] https://github.com/coreos/coreos-assembler/pull/667 [2] https://github.com/coreos/fedora-coreos-config/pull/131 Closes: #1899 Approved by: cgwalters
2019-07-22 19:50:18 +03:00
checkout scm
ci: Constrain parallel build jobs The default `_NPROCESSORS_ONLN` heuristic we have isn't cgroups aware. So it thinks it has e.g. 40 CPUs when running in a k8s pod. This can then blow through our allocated resource limits. Declare some modest amount of RAM and CPU resources and override `make` parallelism. This matches what ostree does in https://github.com/ostreedev/ostree/pull/2151.
2020-07-14 02:18:22 +03:00
shwrap("MAKE_JOBS=${n} CARGO_BUILD_JOBS=${n} ci/msrv.sh")
ci: Add Jenkins pipeline This is an experiment in using Jenkins pipelines for our CI. See similar initiatives in coreos-assembler[1] and fedora-coreos-config[2]. For now, this only does the following testing: - checks commit for unintended submodule bumps - checks the minimum Rust version - builds RPMs - builds FCOS (with the new RPMs both for executing the build itself, as well as included in the built OS) There are dummy placeholders for where we'd actually run the vmcheck and the compose testsuites. Let's address those trickier parts as follow-ups. [1] https://github.com/coreos/coreos-assembler/pull/667 [2] https://github.com/coreos/fedora-coreos-config/pull/131 Closes: #1899 Approved by: cgwalters
2019-07-22 19:50:18 +03:00
}
}}
tests/compose: Target FCOS 31, move off of PAPR Again, a lot going on here, but essentially, we adapt the compose tests to run either privileged or fully unprivileged via supermin, just like cosa. I actually got more than halfway through this initially using `cosa build` directly for testing. But in the end, we simply need more flexibility than that. We want to be able to manipulate exactly how rpm-ostree is called, and cosa is very opinionated about this (and may also change from under us in the future). (Another big difference for example is that cosa doesn't care about non-unified mode, whereas we *need* to have coverage for this until we fully kill it.) Really, the most important bit we want from there is the unprivileged-via-supermin bits. So we copy and adapt that here. One obvious improvement then is sharing this code more easily (e.g. a `cosa runasroot` or something?) However, we still use the FCOS manifest (frozen at a specific tag). It's a realistic example, and because of the lockfiles and pool, we get good reproducibility.
2019-12-22 01:42:09 +03:00
stage("Test") {
ci: Actually run kola tests Noticed in https://github.com/coreos/rpm-ostree/pull/2052#issuecomment-613694719
2020-04-15 00:51:16 +03:00
parallel insttests: {
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
def nhosts = 6
def mem = (nhosts * 1024) + 512
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
cosaPod(runAsUser: 0, memory: "${mem}Mi", cpu: "${nhosts}") {
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
stage("Build FCOS") {
checkout scm
unstash 'rpms'
// run this stage first without installing deps, so we match exactly the cosa pkgset
// (+ our built rpm-ostree)
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
shwrap("""
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
dnf install -y *.rpm
coreos-assembler init --force https://github.com/coreos/fedora-coreos-config
# include our built rpm-ostree in the image
mkdir -p overrides/rpm
ci: Download the latest ostree even if from stable repos Right now, rebuilding ostree into the continuous tag is manual, so we've only been doing it when necessary to fast-track something e.g. for rpm-ostree or cosa (see [1] for the long-term goal). Which means when finding an ostree to use to override in our CI-built FCOS, we should just let dnf find whatever the latest version is, even if it's just from the regular Fedora repos. [1] https://github.com/packit-service/packit/issues/264
2020-05-07 21:35:22 +03:00
# Let's make sure we're always composing with the latest ostree. This could be
# from the continuous repo (which for now we manually use to fast-track ostree
# builds which are needed to get rpm-ostree patches in, but eventually will be
# automated) or from the regular repos.
dnf download ostree ostree-libs --arch x86_64
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
mv *.rpm overrides/rpm
ci: Explicitly fetch before build See https://github.com/coreos/coreos-assembler/pull/1379
2020-04-21 19:56:38 +03:00
coreos-assembler fetch
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
coreos-assembler build
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
""")
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
}
stage("Install Deps") {
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
// really, we just need test deps, but meh...
shwrap("ci/installdeps.sh")
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
}
ci: Actually run kola tests Noticed in https://github.com/coreos/rpm-ostree/pull/2052#issuecomment-613694719
2020-04-15 00:51:16 +03:00
stage("Kola") {
tests/kola: Move into tests/kolainst, run installed Switch to the "installed" model introduced by: https://github.com/coreos/coreos-assembler/pull/1441 It's hard to support running tests *both* from the srcdir and installed; in this case because we have a symlink that needs to be followed, which kola knows how to do from the srcdir but not when installed. Let's establish a new convention of `tests/kolainst`. In our case we follow the symlink manually for now. That bit will be cleaned up when we eventually switch entirely to kola tests.
2020-05-23 17:34:57 +03:00
// TODO upstream this into coreos-ci-lib
shwrap("make -C tests/kolainst install")
ci: Actually run kola tests Noticed in https://github.com/coreos/rpm-ostree/pull/2052#issuecomment-613694719
2020-04-15 00:51:16 +03:00
fcosKola(cosaDir: "${env.WORKSPACE}", extraArgs: "ext.*", parallel: nhosts)
}
stage("vmcheck") {
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
try {
timeout(time: 30, unit: 'MINUTES') {
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
shwrap("""
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
fcos=\$(ls builds/latest/*/*.qcow2) # */
ln -sf "\$(realpath \${fcos})" tests/vmcheck/image.qcow2
JOBS=${nhosts} tests/vmcheck.sh
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
""")
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
}
} finally {
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
shwrap("""
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
if [ -d vmcheck-logs ]; then
tar -C vmcheck-logs -cf- . | xz -c9 > vmcheck-logs.tar.xz
fi
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
""")
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
archiveArtifacts allowEmptyArchive: true, artifacts: 'vmcheck-logs.tar.xz'
Rework vmcheck to use `kola spawn`, move off of PAPR There's a lot going on here, but essentially: 1. We change the `vmcheck` model so that it always operates on an immutable base image. It takes that image and dynamically launches a separate VM for each test using `kola spawn`. This means we can drop a lot of hacks around re-using the same VMs. 2. Following from 1., `vmoverlay` now takes as input a base image, overlays the built rpm-ostree bits, then creates a new base image. Of course, we don't have to do this in CI, because we build FCOS with the freshly built RPMs (so it uses `SKIP_VMOVERLAY=1`). `vmoverlay` then will be more for the developer case where one doesn't want to iterate via `cosa build` to test rpm-ostree changes. I say "will" because the functionality doesn't exist yet; I'd like to enhance `cosa dev-overlay` to do this. (Note `vmsync` should still works just as before too.) 3. `vmcheck` can be run without building the tree first, as `tests/vmcheck.sh`. The `make vmcheck` target still exists though for finger compatibility and better meshing with `vmoverlay` in the developer case. What's really nice about using kola spawn is that it takes care of a lot of things for us, such as the qemu command, journal and console gathering, and SSH. Similarly to the compose testsuites, we're using parallel here to run multiple vmcheck tests at once. (On developer laptops, we cap parallelism at `$(nproc) - 1`).
2019-12-13 20:23:41 +03:00
}
ci: Actually run kola tests Noticed in https://github.com/coreos/rpm-ostree/pull/2052#issuecomment-613694719
2020-04-15 00:51:16 +03:00
}
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
}
tests/compose: Target FCOS 31, move off of PAPR Again, a lot going on here, but essentially, we adapt the compose tests to run either privileged or fully unprivileged via supermin, just like cosa. I actually got more than halfway through this initially using `cosa build` directly for testing. But in the end, we simply need more flexibility than that. We want to be able to manipulate exactly how rpm-ostree is called, and cosa is very opinionated about this (and may also change from under us in the future). (Another big difference for example is that cosa doesn't care about non-unified mode, whereas we *need* to have coverage for this until we fully kill it.) Really, the most important bit we want from there is the unprivileged-via-supermin bits. So we copy and adapt that here. One obvious improvement then is sharing this code more easily (e.g. a `cosa runasroot` or something?) However, we still use the FCOS manifest (frozen at a specific tag). It's a realistic example, and because of the lockfiles and pool, we get good reproducibility.
2019-12-22 01:42:09 +03:00
},
compose: {
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
def jobs = 5
def mem = (jobs * 2048) + 512
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
cosaPod(runAsUser: 0, memory: "${mem}Mi", cpu: "${jobs}") {
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
checkout scm
unstash 'rpms'
stage("Install Deps") {
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
shwrap("""
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
ci/installdeps.sh # really, we just need test deps, but meh...
dnf install -y *.rpm # install our built rpm-ostree
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
""")
tests/compose: Target FCOS 31, move off of PAPR Again, a lot going on here, but essentially, we adapt the compose tests to run either privileged or fully unprivileged via supermin, just like cosa. I actually got more than halfway through this initially using `cosa build` directly for testing. But in the end, we simply need more flexibility than that. We want to be able to manipulate exactly how rpm-ostree is called, and cosa is very opinionated about this (and may also change from under us in the future). (Another big difference for example is that cosa doesn't care about non-unified mode, whereas we *need* to have coverage for this until we fully kill it.) Really, the most important bit we want from there is the unprivileged-via-supermin bits. So we copy and adapt that here. One obvious improvement then is sharing this code more easily (e.g. a `cosa runasroot` or something?) However, we still use the FCOS manifest (frozen at a specific tag). It's a realistic example, and because of the lockfiles and pool, we get good reproducibility.
2019-12-22 01:42:09 +03:00
}
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
stage("Run") {
try {
ci: Bump compose tests timeout to 45m Still trying to find the sweet spot on this. I think it may also depend on how fast/busy the node we get allocated to is.
2020-01-27 18:23:50 +03:00
timeout(time: 45, unit: 'MINUTES') {
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
shwrap("""
mkdir -p compose-logs /srv/tmpdir
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
TMPDIR=/srv/tmpdir JOBS=${jobs} ./tests/compose.sh
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
""")
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
}
} finally {
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
shwrap("""
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
if [ -d compose-logs ]; then
tar -C compose-logs -cf- . | xz -c9 > compose-logs.tar.xz
fi
ci: migrate to new coreos-ci project Mostly minor tweaks to adapt to the new custom steps. We have a pretty involved pipeline here so we don't actually use the higher-level steps like `fcosBuild`.
2020-03-02 22:14:29 +03:00
""")
ci: Re-org stages and parallelize tests Build FCOS and run vmcheck in the same container, since it's only used for that anyway right now. The main advantage is that we save time provisioning another container and not having to stash and unstash the FCOS image. Also, since the compose tests don't actually need to wait for the FCOS image, start running them in parallel with the FCOS + vmcheck branch.
2019-12-22 01:42:11 +03:00
archiveArtifacts allowEmptyArchive: true, artifacts: 'compose-logs.tar.xz'
}
}
}
tests/compose: Target FCOS 31, move off of PAPR Again, a lot going on here, but essentially, we adapt the compose tests to run either privileged or fully unprivileged via supermin, just like cosa. I actually got more than halfway through this initially using `cosa build` directly for testing. But in the end, we simply need more flexibility than that. We want to be able to manipulate exactly how rpm-ostree is called, and cosa is very opinionated about this (and may also change from under us in the future). (Another big difference for example is that cosa doesn't care about non-unified mode, whereas we *need* to have coverage for this until we fully kill it.) Really, the most important bit we want from there is the unprivileged-via-supermin bits. So we copy and adapt that here. One obvious improvement then is sharing this code more easily (e.g. a `cosa runasroot` or something?) However, we still use the FCOS manifest (frozen at a specific tag). It's a realistic example, and because of the lockfiles and pool, we get good reproducibility.
2019-12-22 01:42:09 +03:00
}}
Reference in New Issue Copy Permalink