1 # see https://docs.gitlab.com/ce/ci/yaml/README.html for all available options
5 # images: Build the images with the bootstrap script
6 # build_first: Build one thing first to find silly errors (fast job)
7 # (don't pay for 35 machines until something compiles)
8 # build: The main parallel job
9 # (keep these to 1hour as we are billed per hour)
10 # report: Code coverage reporting
21 # "--enable-coverage" or ""
22 SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE: ""
24 # we run autobuild.py inside a samba CI docker image located on gitlab's registry
25 # overwrite this variable if you want use your own image registry.
27 # Or better ask for access to the shared development repository, see
28 # https://wiki.samba.org/index.php/Samba_CI_on_gitlab#Getting_Access
30 SAMBA_CI_CONTAINER_REGISTRY: registry.gitlab.com/samba-team/devel/samba
32 # Set this to the contents of bootstrap/sha1sum.txt
33 # which is generated by bootstrap/template.py --render
35 SAMBA_CI_CONTAINER_TAG: c4c00eb35cae36d8d6e752ee01fd943432993721
37 # We use the ubuntu1804 image as default as
38 # it matches what we have on sn-devel-184.
40 SAMBA_CI_CONTAINER_IMAGE: ubuntu1804
42 # The following images are available
43 # Please see the samba-o3 sections at the end of this file!
44 # We should run that for each available image
46 SAMBA_CI_CONTAINER_IMAGE_ubuntu1604: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-ubuntu1604:${SAMBA_CI_CONTAINER_TAG}
47 SAMBA_CI_CONTAINER_IMAGE_ubuntu1804: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-ubuntu1804:${SAMBA_CI_CONTAINER_TAG}
48 SAMBA_CI_CONTAINER_IMAGE_ubuntu2004: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-ubuntu2004:${SAMBA_CI_CONTAINER_TAG}
49 SAMBA_CI_CONTAINER_IMAGE_debian9: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-debian9:${SAMBA_CI_CONTAINER_TAG}
50 SAMBA_CI_CONTAINER_IMAGE_debian10: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-debian10:${SAMBA_CI_CONTAINER_TAG}
51 SAMBA_CI_CONTAINER_IMAGE_opensuse151: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-opensuse151:${SAMBA_CI_CONTAINER_TAG}
52 SAMBA_CI_CONTAINER_IMAGE_opensuse152: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-opensuse152:${SAMBA_CI_CONTAINER_TAG}
53 SAMBA_CI_CONTAINER_IMAGE_fedora32: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-fedora32:${SAMBA_CI_CONTAINER_TAG}
54 SAMBA_CI_CONTAINER_IMAGE_fedora33: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-fedora33:${SAMBA_CI_CONTAINER_TAG}
55 SAMBA_CI_CONTAINER_IMAGE_centos7: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-centos7:${SAMBA_CI_CONTAINER_TAG}
56 SAMBA_CI_CONTAINER_IMAGE_centos8: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-centos8:${SAMBA_CI_CONTAINER_TAG}
59 # The image creation details are specified in a separate file
60 # See bootstrap/README.md for details
61 - 'bootstrap/.gitlab-ci.yml'
64 # All Samba jobs are interruptible, this avoids burning CPU when a
65 # newer branch is pushed.
70 AUTOBUILD_JOB_NAME: $CI_JOB_NAME
71 image: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-${SAMBA_CI_CONTAINER_IMAGE}:${SAMBA_CI_CONTAINER_TAG}
77 key: ccache.${CI_JOB_NAME}
90 # ld will fail if coverage enabled, force link ld to ld.bfd
91 - if [ -n "$SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE" ]; then sudo ln -sf $(which ld.bfd) $(which ld); fi
92 # See bootstrap/.gitlab-ci.yml how to generate a new image
93 - echo "SAMBA_CI_CONTAINER_REGISTRY[${SAMBA_CI_CONTAINER_REGISTRY}]"
94 - echo "SAMBA_CI_CONTAINER_TAG[${SAMBA_CI_CONTAINER_TAG}]"
95 - bootstrap/template.py --sha1sum > /tmp/sha1sum-template.txt
96 - diff -u bootstrap/sha1sum.txt /tmp/sha1sum-template.txt
97 - echo "${SAMBA_CI_CONTAINER_TAG}" > /tmp/sha1sum-tag.txt
98 - diff -u bootstrap/sha1sum.txt /tmp/sha1sum-tag.txt
99 - diff -u bootstrap/sha1sum.txt /sha1sum.txt
100 - echo "${CI_COMMIT_SHA} ${CI_COMMIT_TITLE}" > /tmp/commit.txt
101 - export CCACHE_BASEDIR="${PWD}"
102 - export CCACHE_DIR="${PWD}/ccache" && mkdir -pv "$CCACHE_DIR"
103 - export CC="ccache cc"
104 - export CXX="ccache c++"
112 - CCACHE_BASEDIR="${PWD}" CCACHE_DIR="${PWD}/ccache" ccache -s -c
123 - runner_system_failure
124 - stuck_or_timeout_failure
126 # gitlab predefines CI_JOB_NAME for each job. The gitlab job usually matches the
127 # autobuild name, which means we can define a default template that runs most autobuild jobs
128 - script/autobuild.py $AUTOBUILD_JOB_NAME $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase
130 # Ensure when adding a new job below that you also add it to
131 # the dependencies for 'pages' below for the code coverage page
135 extends: .shared_template
137 - script/autobuild.py ldb $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/ldb
138 - script/autobuild.py pidl $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/pidl
139 - script/autobuild.py replace $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/replace
140 - script/autobuild.py talloc $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/talloc
141 - script/autobuild.py tdb $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/tdb
142 - script/autobuild.py tevent $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/tevent
143 - script/autobuild.py samba-xc $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/samba-xc
144 - script/autobuild.py docs-xml $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/docs-xml
146 .shared_template_build_only:
147 extends: .shared_template
157 - samba-testbase.tar.gz
159 # gitlab predefines CI_JOB_NAME for each job. The gitlab job usually matches the
160 # autobuild name, which means we can define a default template that runs most autobuild jobs
161 - script/autobuild.py $AUTOBUILD_JOB_NAME $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase
162 # On success we need to pack everything into an artifacts file
163 # which needs to be in the git checkout.
164 # As tar doesn't handle hardlink of read-only files,
165 # we remember the acls and add write permissions
166 # before creating the archive. The consumer will apply
168 - cp -a /sha1sum.txt /tmp/samba-testbase/image-sha1sum.txt
169 - cp -a /tmp/commit.txt /tmp/samba-testbase/commit.txt
170 - pushd /tmp && getfacl -R samba-testbase > samba-testbase.acl.dump && popd
171 - chmod -R +w /tmp/samba-testbase
172 - mv /tmp/samba-testbase.acl.dump /tmp/samba-testbase/
173 - tar cfz samba-testbase.tar.gz /tmp/samba-testbase
174 - ls -la samba-testbase.tar.gz
175 - sha1sum samba-testbase.tar.gz
177 .shared_template_test_only:
178 extends: .shared_template
181 # We unpack the artifacts file created by the .shared_template_build_only
183 - ls -la samba-testbase.tar.gz
184 - sha1sum samba-testbase.tar.gz
185 - tar xfz samba-testbase.tar.gz -C /
186 - diff -u /tmp/samba-testbase/image-sha1sum.txt /sha1sum.txt
187 - diff -u /tmp/samba-testbase/commit.txt /tmp/commit.txt
188 - mv /tmp/samba-testbase/samba-testbase.acl.dump /tmp/samba-testbase.acl.dump
189 - pushd /tmp && setfacl --restore=/tmp/samba-testbase.acl.dump && popd
190 # gitlab predefines CI_JOB_NAME for each job. The gitlab job usually matches the
191 # autobuild name, which means we can define a default template that runs most autobuild jobs
192 - script/autobuild.py $AUTOBUILD_JOB_NAME $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --skip-dependencies --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase
195 extends: .shared_template_build_only
197 .needs_samba-def-build:
198 extends: .shared_template_test_only
200 - job: samba-def-build
204 extends: .shared_template_build_only
206 .needs_samba-mit-build:
207 extends: .shared_template_test_only
209 - job: samba-mit-build
213 extends: .shared_template
216 extends: .shared_template
219 extends: .shared_template
222 extends: .needs_samba-def-build
225 extends: .needs_samba-def-build
228 extends: .needs_samba-def-build
231 extends: .needs_samba-def-build
234 extends: .needs_samba-def-build
237 extends: .needs_samba-def-build
240 extends: .shared_template
243 extends: .shared_template
244 image: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-ubuntu1604:${SAMBA_CI_CONTAINER_TAG}
247 extends: .shared_template
250 extends: .shared_template
253 extends: .needs_samba-def-build
256 extends: .needs_samba-mit-build
258 samba-ad-dc-4-mitkrb5:
259 extends: .needs_samba-mit-build
261 # This task is run first to ensure we compile before we start the
262 # main run as it is the fastest full compile of Samba.
264 extends: .shared_template
265 image: $SAMBA_CI_CONTAINER_IMAGE_fedora33
268 extends: .shared_template
274 # These jobs are only run if the gitlab repo has private runners available.
275 # To enable private jobs, you must add the following var and value to
276 # your gitlab repo by navigating to:
277 # settings -> CI/CD -> Environment variables
278 - $SUPPORT_PRIVATE_TEST == "yes"
281 extends: .private_template
284 extends: .private_template
287 extends: .private_template
290 extends: .private_template
293 extends: .private_template
295 samba-ad-dc-1-mitkrb5:
296 extends: .private_template
299 extends: .private_template
301 # 'pages' is a special job which can publish artifacts in `public` dir to gitlab pages
303 image: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-${SAMBA_CI_CONTAINER_IMAGE}:${SAMBA_CI_CONTAINER_TAG}
308 dependencies: # tell gitlab to download artifacts for these jobs
325 - samba-ad-dc-4-mitkrb5
330 - samba-schemaupgrade
331 - samba-ad-dc-1-mitkrb5
334 - ./configure.developer
336 - lcov $(ls *.info | xargs -I{} echo -n "-a {} ") -o all.info
337 - genhtml all.info --output-directory public --prefix=$(pwd) --title "coverage report for $CI_COMMIT_REF_NAME $CI_COMMIT_SHORT_SHA"
344 - $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE == "--enable-coverage"
349 image: $SAMBA_CI_CONTAINER_IMAGE_fedora33
354 - wget https://scan.coverity.com/download/linux64 --post-data "token=$COVERITY_SCAN_TOKEN&project=$COVERITY_SCAN_PROJECT_NAME" -O /tmp/coverity_tool.tgz
355 - tar xf /tmp/coverity_tool.tgz
356 - ./configure.developer --with-system-mitkrb5 --with-experimental-mit-ad-dc
357 - cov-analysis-linux64-*/bin/cov-build --dir cov-int make -j$(nproc)
358 - tar czf cov-int.tar.gz cov-int
360 --form token=$COVERITY_SCAN_TOKEN
361 --form email=$COVERITY_SCAN_EMAIL
362 --form file=@cov-int.tar.gz
363 --form version="`git describe --tags`"
364 --form description="CI build"
365 https://scan.coverity.com/builds?project=$COVERITY_SCAN_PROJECT_NAME
371 - $COVERITY_SCAN_TOKEN != null
372 - $COVERITY_SCAN_PROJECT_NAME != null
373 - $COVERITY_SCAN_EMAIL != null
381 # We build samba-o3 on all supported distributions
385 extends: .shared_template
387 AUTOBUILD_JOB_NAME: samba-o3
390 # do not run o3 for coverage since they are using different images
391 - $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE == ""
394 extends: .samba-o3-template
395 image: $SAMBA_CI_CONTAINER_IMAGE_ubuntu1804
398 extends: .samba-o3-template
399 image: $SAMBA_CI_CONTAINER_IMAGE_ubuntu2004
402 extends: .samba-o3-template
403 image: $SAMBA_CI_CONTAINER_IMAGE_debian10
405 opensuse151-samba-o3:
406 extends: .samba-o3-template
407 image: $SAMBA_CI_CONTAINER_IMAGE_opensuse151
409 opensuse152-samba-o3:
410 extends: .samba-o3-template
411 image: $SAMBA_CI_CONTAINER_IMAGE_opensuse152
414 extends: .samba-o3-template
415 image: $SAMBA_CI_CONTAINER_IMAGE_centos7
417 # Git on CentOS doesn't support shallow git cloning
419 # We need a newer GnuTLS version on CentOS7
420 PKG_CONFIG_PATH: "/usr/lib64/compat-gnutls34/pkgconfig:/usr/lib64/compat-nettle32/pkgconfig"
423 extends: .samba-o3-template
424 image: $SAMBA_CI_CONTAINER_IMAGE_centos8
427 extends: .samba-o3-template
428 image: $SAMBA_CI_CONTAINER_IMAGE_fedora32
431 extends: .samba-o3-template
432 image: $SAMBA_CI_CONTAINER_IMAGE_fedora33
435 # Keep the samba-o3 sections at the end ...