forked from hyperledger-archives/sawtooth-core
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Jenkinsfile
126 lines (109 loc) · 5.67 KB
/
Jenkinsfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
#!groovy
// Copyright 2017 Intel Corporation
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
// ------------------------------------------------------------------------------
// Discard old builds after 31 days
properties([[$class: 'BuildDiscarderProperty', strategy:
[$class: 'LogRotator', artifactDaysToKeepStr: '',
artifactNumToKeepStr: '', daysToKeepStr: '31', numToKeepStr: '']]]);
node ('master') {
timestamps {
// Create a unique workspace so Jenkins doesn't reuse an existing one
ws("workspace/${env.BUILD_TAG}") {
stage("Clone Repo") {
checkout scm
sh 'git fetch --tag'
}
if (!(env.BRANCH_NAME == 'master' && env.JOB_BASE_NAME == 'master')) {
stage("Check Whitelist") {
readTrusted 'bin/whitelist'
sh './bin/whitelist "$CHANGE_AUTHOR" /etc/jenkins-authorized-builders'
}
}
stage("Check for Signed-Off Commits") {
sh '''#!/bin/bash -l
if [ -v CHANGE_URL ] ;
then
temp_url="$(echo $CHANGE_URL |sed s#github.com/#api.github.com/repos/#)/commits"
pull_url="$(echo $temp_url |sed s#pull#pulls#)"
IFS=$'\n'
for m in $(curl -s "$pull_url" | grep "message") ; do
if echo "$m" | grep -qi signed-off-by:
then
continue
else
echo "FAIL: Missing Signed-Off Field"
echo "$m"
exit 1
fi
done
unset IFS;
fi
'''
}
// Set the ISOLATION_ID environment variable for the whole pipeline
env.ISOLATION_ID = sh(returnStdout: true, script: 'printf $BUILD_TAG | sha256sum | cut -c1-64').trim()
env.COMPOSE_PROJECT_NAME = sh(returnStdout: true, script: 'printf $BUILD_TAG | sha256sum | cut -c1-64').trim()
// Use a docker container to build and protogen, so that the Jenkins
// environment doesn't need all the dependencies.
stage("Build Lint Requirements") {
sh 'docker-compose -f docker/compose/run-lint.yaml build'
sh 'docker-compose -f docker/compose/sawtooth-build.yaml up'
sh 'docker-compose -f docker/compose/sawtooth-build.yaml down'
}
stage("Run Lint") {
sh 'docker-compose -f docker/compose/run-lint.yaml up --abort-on-container-exit --exit-code-from lint-python lint-python'
sh 'docker-compose -f docker/compose/run-lint.yaml up --abort-on-container-exit --exit-code-from lint-go lint-go'
sh 'docker-compose -f docker/compose/run-lint.yaml up --abort-on-container-exit --exit-code-from lint-rust lint-rust'
sh 'docker-compose -f docker/compose/run-lint.yaml up --abort-on-container-exit --exit-code-from lint-validator lint-validator'
}
stage("Build Test Dependencies") {
sh 'docker-compose -f docker-compose-installed.yaml build'
sh 'docker-compose -f docker/compose/external.yaml build'
sh 'docker build -f docker/bandit -t bandit:$ISOLATION_ID .'
}
stage("Run Bandit") {
sh 'docker run --rm -v $(pwd):/project/sawtooth-core bandit:$ISOLATION_ID run_bandit'
}
// Run the tests
stage("Run Tests") {
sh 'INSTALL_TYPE="" ./bin/run_tests -i deployment'
}
stage("Compile coverage report") {
sh 'docker run --rm -v $(pwd):/project/sawtooth-core integration-tests:$ISOLATION_ID /bin/bash -c "cd coverage && coverage combine && coverage html -d html"'
}
stage("Create git archive") {
sh '''
REPO=$(git remote show -n origin | grep Fetch | awk -F'[/.]' '{print $6}')
VERSION=`git describe --dirty`
git archive HEAD --format=zip -9 --output=$REPO-$VERSION.zip
git archive HEAD --format=tgz -9 --output=$REPO-$VERSION.tgz
'''
}
stage ("Build documentation") {
sh 'docker build . -f ci/sawtooth-build-docs -t sawtooth-build-docs:$ISOLATION_ID'
sh 'docker run --rm -v $(pwd):/project/sawtooth-core sawtooth-build-docs:$ISOLATION_ID'
}
stage("Archive Build artifacts") {
sh 'docker-compose -f docker/compose/copy-debs.yaml up'
archiveArtifacts artifacts: '*.tgz, *.zip'
archiveArtifacts artifacts: 'build/debs/*.deb'
archiveArtifacts artifacts: 'build/bandit.html'
archiveArtifacts artifacts: 'coverage/html/*'
archiveArtifacts artifacts: 'docs/build/html/**, docs/build/latex/*.pdf'
sh 'docker-compose -f docker/compose/copy-debs.yaml down'
}
}
}
}