1 # see https://docs.gitlab.com/ce/ci/yaml/README.html for all available options
5 # images: Build the images with the bootstrap script
6 # build_first: Build one thing first to find silly errors (fast job)
7 # (don't pay for 35 machines until something compiles)
8 # build: The main parallel job
9 # (keep these to 1hour as we are billed per hour)
10 # report: Code coverage reporting
21 # "--enable-coverage" or ""
22 SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE: ""
24 # we run autobuild.py inside a samba CI docker image located on gitlab's registry
25 # overwrite this variable if you want use your own image registry.
27 # Or better ask for access to the shared development repository, see
28 # https://wiki.samba.org/index.php/Samba_CI_on_gitlab#Getting_Access
30 SAMBA_CI_CONTAINER_REGISTRY: registry.gitlab.com/samba-team/devel/samba
32 # Set this to the contents of bootstrap/sha1sum.txt
33 # which is generated by bootstrap/template.py --render
35 SAMBA_CI_CONTAINER_TAG: c4c00eb35cae36d8d6e752ee01fd943432993721
37 # We use the ubuntu1804 image as default as
38 # it matches what we have on sn-devel-184.
40 SAMBA_CI_CONTAINER_IMAGE: ubuntu1804
42 # The following images are available
43 # Please see the samba-o3 sections at the end of this file!
44 # We should run that for each available image
46 SAMBA_CI_CONTAINER_IMAGE_ubuntu1604: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-ubuntu1604:${SAMBA_CI_CONTAINER_TAG}
47 SAMBA_CI_CONTAINER_IMAGE_ubuntu1804: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-ubuntu1804:${SAMBA_CI_CONTAINER_TAG}
48 SAMBA_CI_CONTAINER_IMAGE_ubuntu2004: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-ubuntu2004:${SAMBA_CI_CONTAINER_TAG}
49 SAMBA_CI_CONTAINER_IMAGE_debian9: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-debian9:${SAMBA_CI_CONTAINER_TAG}
50 SAMBA_CI_CONTAINER_IMAGE_debian10: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-debian10:${SAMBA_CI_CONTAINER_TAG}
51 SAMBA_CI_CONTAINER_IMAGE_opensuse151: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-opensuse151:${SAMBA_CI_CONTAINER_TAG}
52 SAMBA_CI_CONTAINER_IMAGE_opensuse152: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-opensuse152:${SAMBA_CI_CONTAINER_TAG}
53 SAMBA_CI_CONTAINER_IMAGE_fedora32: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-fedora32:${SAMBA_CI_CONTAINER_TAG}
54 SAMBA_CI_CONTAINER_IMAGE_fedora33: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-fedora33:${SAMBA_CI_CONTAINER_TAG}
55 SAMBA_CI_CONTAINER_IMAGE_centos7: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-centos7:${SAMBA_CI_CONTAINER_TAG}
56 SAMBA_CI_CONTAINER_IMAGE_centos8: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-centos8:${SAMBA_CI_CONTAINER_TAG}
59 # The image creation details are specified in a separate file
60 # See bootstrap/README.md for details
61 - 'bootstrap/.gitlab-ci.yml'
64 # All Samba jobs are interruptible, this avoids burning CPU when a
65 # newer branch is pushed.
69 AUTOBUILD_JOB_NAME: $CI_JOB_NAME
70 image: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-${SAMBA_CI_CONTAINER_IMAGE}:${SAMBA_CI_CONTAINER_TAG}
76 key: ccache.${CI_JOB_NAME}
89 # ld will fail if coverage enabled, force link ld to ld.bfd
90 - if [ -n "$SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE" ]; then sudo ln -sf $(which ld.bfd) $(which ld); fi
91 # See bootstrap/.gitlab-ci.yml how to generate a new image
92 - echo "SAMBA_CI_CONTAINER_REGISTRY[${SAMBA_CI_CONTAINER_REGISTRY}]"
93 - echo "SAMBA_CI_CONTAINER_TAG[${SAMBA_CI_CONTAINER_TAG}]"
94 - bootstrap/template.py --sha1sum > /tmp/sha1sum-template.txt
95 - diff -u bootstrap/sha1sum.txt /tmp/sha1sum-template.txt
96 - echo "${SAMBA_CI_CONTAINER_TAG}" > /tmp/sha1sum-tag.txt
97 - diff -u bootstrap/sha1sum.txt /tmp/sha1sum-tag.txt
98 - diff -u bootstrap/sha1sum.txt /sha1sum.txt
99 - echo "${CI_COMMIT_SHA} ${CI_COMMIT_TITLE}" > /tmp/commit.txt
100 - export CCACHE_BASEDIR="${PWD}"
101 - export CCACHE_DIR="${PWD}/ccache" && mkdir -pv "$CCACHE_DIR"
102 - export CC="ccache cc"
103 - export CXX="ccache c++"
111 - CCACHE_BASEDIR="${PWD}" CCACHE_DIR="${PWD}/ccache" ccache -s -c
122 - runner_system_failure
123 - stuck_or_timeout_failure
125 # gitlab predefines CI_JOB_NAME for each job. The gitlab job usually matches the
126 # autobuild name, which means we can define a default template that runs most autobuild jobs
127 - script/autobuild.py $AUTOBUILD_JOB_NAME $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase
129 # Ensure when adding a new job below that you also add it to
130 # the dependencies for 'pages' below for the code coverage page
134 extends: .shared_template
136 - script/autobuild.py ldb $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/ldb
137 - script/autobuild.py pidl $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/pidl
138 - script/autobuild.py replace $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/replace
139 - script/autobuild.py talloc $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/talloc
140 - script/autobuild.py tdb $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/tdb
141 - script/autobuild.py tevent $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/tevent
142 - script/autobuild.py samba-xc $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/samba-xc
143 - script/autobuild.py docs-xml $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase/docs-xml
145 .shared_template_build_only:
146 extends: .shared_template
155 - samba-testbase.tar.gz
157 # gitlab predefines CI_JOB_NAME for each job. The gitlab job usually matches the
158 # autobuild name, which means we can define a default template that runs most autobuild jobs
159 - script/autobuild.py $AUTOBUILD_JOB_NAME $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase
160 # On success we need to pack everything into an artifacts file
161 # which needs to be in the git checkout.
162 # As tar doesn't handle hardlink of read-only files,
163 # we remember the acls and add write permissions
164 # before creating the archive. The consumer will apply
166 - cp -a /sha1sum.txt /tmp/samba-testbase/image-sha1sum.txt
167 - cp -a /tmp/commit.txt /tmp/samba-testbase/commit.txt
168 - pushd /tmp && getfacl -R samba-testbase > samba-testbase.acl.dump && popd
169 - chmod -R +w /tmp/samba-testbase
170 - mv /tmp/samba-testbase.acl.dump /tmp/samba-testbase/
171 - tar cfz samba-testbase.tar.gz /tmp/samba-testbase
172 - ls -la samba-testbase.tar.gz
173 - sha1sum samba-testbase.tar.gz
175 .shared_template_test_only:
176 extends: .shared_template
179 # We unpack the artifacts file created by the .shared_template_build_only
181 - ls -la samba-testbase.tar.gz
182 - sha1sum samba-testbase.tar.gz
183 - tar xfz samba-testbase.tar.gz -C /
184 - diff -u /tmp/samba-testbase/image-sha1sum.txt /sha1sum.txt
185 - diff -u /tmp/samba-testbase/commit.txt /tmp/commit.txt
186 - mv /tmp/samba-testbase/samba-testbase.acl.dump /tmp/samba-testbase.acl.dump
187 - pushd /tmp && setfacl --restore=/tmp/samba-testbase.acl.dump && popd
188 # gitlab predefines CI_JOB_NAME for each job. The gitlab job usually matches the
189 # autobuild name, which means we can define a default template that runs most autobuild jobs
190 - script/autobuild.py $AUTOBUILD_JOB_NAME $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE --skip-dependencies --verbose --nocleanup --keeplogs --tail --full-testbase /tmp/samba-testbase
193 extends: .shared_template_build_only
195 .needs_samba-def-build:
196 extends: .shared_template_test_only
198 - job: samba-def-build
202 extends: .shared_template_build_only
204 .needs_samba-mit-build:
205 extends: .shared_template_test_only
207 - job: samba-mit-build
211 extends: .shared_template
214 extends: .shared_template
217 extends: .shared_template
220 extends: .needs_samba-def-build
223 extends: .needs_samba-def-build
226 extends: .needs_samba-def-build
229 extends: .needs_samba-def-build
232 extends: .needs_samba-def-build
235 extends: .needs_samba-def-build
238 extends: .shared_template
241 extends: .shared_template
242 image: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-ubuntu1604:${SAMBA_CI_CONTAINER_TAG}
245 extends: .shared_template
248 extends: .shared_template
251 extends: .needs_samba-def-build
254 extends: .needs_samba-mit-build
256 samba-ad-dc-4-mitkrb5:
257 extends: .needs_samba-mit-build
259 # This task is run first to ensure we compile before we start the
260 # main run as it is the fastest full compile of Samba.
262 extends: .shared_template
263 image: $SAMBA_CI_CONTAINER_IMAGE_fedora33
266 extends: .shared_template
272 # These jobs are only run if the gitlab repo has private runners available.
273 # To enable private jobs, you must add the following var and value to
274 # your gitlab repo by navigating to:
275 # settings -> CI/CD -> Environment variables
276 - $SUPPORT_PRIVATE_TEST == "yes"
279 extends: .private_template
282 extends: .private_template
285 extends: .private_template
288 extends: .private_template
291 extends: .private_template
293 samba-ad-dc-1-mitkrb5:
294 extends: .private_template
297 extends: .private_template
299 # 'pages' is a special job which can publish artifacts in `public` dir to gitlab pages
301 image: ${SAMBA_CI_CONTAINER_REGISTRY}/samba-ci-${SAMBA_CI_CONTAINER_IMAGE}:${SAMBA_CI_CONTAINER_TAG}
306 dependencies: # tell gitlab to download artifacts for these jobs
323 - samba-ad-dc-4-mitkrb5
328 - samba-schemaupgrade
329 - samba-ad-dc-1-mitkrb5
332 - ./configure.developer
334 - lcov $(ls *.info | xargs -I{} echo -n "-a {} ") -o all.info
335 - genhtml all.info --output-directory public --prefix=$(pwd) --title "coverage report for $CI_COMMIT_REF_NAME $CI_COMMIT_SHORT_SHA"
342 - $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE == "--enable-coverage"
347 image: $SAMBA_CI_CONTAINER_IMAGE_fedora33
352 - wget https://scan.coverity.com/download/linux64 --post-data "token=$COVERITY_SCAN_TOKEN&project=$COVERITY_SCAN_PROJECT_NAME" -O /tmp/coverity_tool.tgz
353 - tar xf /tmp/coverity_tool.tgz
354 - ./configure.developer --with-system-mitkrb5 --with-experimental-mit-ad-dc
355 - cov-analysis-linux64-*/bin/cov-build --dir cov-int make -j$(nproc)
356 - tar czf cov-int.tar.gz cov-int
358 --form token=$COVERITY_SCAN_TOKEN
359 --form email=$COVERITY_SCAN_EMAIL
360 --form file=@cov-int.tar.gz
361 --form version="`git describe --tags`"
362 --form description="CI build"
363 https://scan.coverity.com/builds?project=$COVERITY_SCAN_PROJECT_NAME
369 - $COVERITY_SCAN_TOKEN != null
370 - $COVERITY_SCAN_PROJECT_NAME != null
371 - $COVERITY_SCAN_EMAIL != null
379 # We build samba-o3 on all supported distributions
383 extends: .shared_template
385 AUTOBUILD_JOB_NAME: samba-o3
388 # do not run o3 for coverage since they are using different images
389 - $SAMBA_CI_AUTOBUILD_ENABLE_COVERAGE == ""
392 extends: .samba-o3-template
393 image: $SAMBA_CI_CONTAINER_IMAGE_ubuntu1804
396 extends: .samba-o3-template
397 image: $SAMBA_CI_CONTAINER_IMAGE_ubuntu2004
400 extends: .samba-o3-template
401 image: $SAMBA_CI_CONTAINER_IMAGE_debian10
403 opensuse151-samba-o3:
404 extends: .samba-o3-template
405 image: $SAMBA_CI_CONTAINER_IMAGE_opensuse151
407 opensuse152-samba-o3:
408 extends: .samba-o3-template
409 image: $SAMBA_CI_CONTAINER_IMAGE_opensuse152
412 extends: .samba-o3-template
413 image: $SAMBA_CI_CONTAINER_IMAGE_centos7
415 # Git on CentOS doesn't support shallow git cloning
417 # We need a newer GnuTLS version on CentOS7
418 PKG_CONFIG_PATH: "/usr/lib64/compat-gnutls34/pkgconfig:/usr/lib64/compat-nettle32/pkgconfig"
421 extends: .samba-o3-template
422 image: $SAMBA_CI_CONTAINER_IMAGE_centos8
425 extends: .samba-o3-template
426 image: $SAMBA_CI_CONTAINER_IMAGE_fedora32
429 extends: .samba-o3-template
430 image: $SAMBA_CI_CONTAINER_IMAGE_fedora33
433 # Keep the samba-o3 sections at the end ...