X-Git-Url: https://gerrit.opnfv.org/gerrit/gitweb?a=blobdiff_plain;f=jjb%2Ffunctest%2Fxtesting.yaml;h=cecd047076411202c40dc924d354f8d7459f345f;hb=39104196379b50039ee7801514536837768112ee;hp=1de5bf2c24815b6ba53ead8b01af3d499a9abfa2;hpb=bff28787740d77257ae44cc7f208b29297a69d8e;p=releng.git diff --git a/jjb/functest/xtesting.yaml b/jjb/functest/xtesting.yaml index 1de5bf2c2..cecd04707 100644 --- a/jjb/functest/xtesting.yaml +++ b/jjb/functest/xtesting.yaml @@ -15,43 +15,49 @@ from: build_args: branch: master - slave: lf-virtual1 - dependency: 3.14 - - wallaby: + node: xtesting + dependency: 3.17 + - 2023.1: from: build_args: - branch: stable/wallaby - slave: lf-virtual1 - dependency: 3.13 - - leguer: + branch: stable/2023.1 + node: xtesting + dependency: 3.17 + - zed: from: build_args: - branch: stable/leguer - slave: lf-virtual1 - dependency: 3.12 - - kali: + branch: stable/zed + node: xtesting + dependency: 3.16 + - yoga: from: build_args: - branch: stable/kali - slave: lf-virtual1 - dependency: 3.11 - - jerma: + branch: stable/yoga + node: xtesting + dependency: 3.16 + - xena: from: build_args: - branch: stable/jerma - slave: lf-virtual1 - dependency: 3.10 + branch: stable/xena + node: xtesting + dependency: 3.14 + - wallaby: + from: + build_args: + branch: stable/wallaby + node: xtesting + dependency: 3.13 - xtesting-jobs: &xtesting-jobs name: 'xtesting-jobs' current-parameters: true - parameter: - name: xtesting-slave + name: xtesting-node parameters: - label: - name: slave - default: '{slave}' + name: node + default: '{node}' - parameter: name: xtesting-build_tag @@ -67,6 +73,9 @@ volumes: '{volumes}' env: '{env}' network: '{network}' + uid: '{uid}' + gid: '{gid}' + published_ports: '{published_ports}' - builder: name: xtesting-pull-containers @@ -97,6 +106,11 @@ for i in $(eval echo {env} | tr -d '[]' |sed "s/, / /g" ); \ do env="-e $i $env"; done fi + published_ports=; + if [ "{published_ports}" != "None" ]; then + for i in $(echo {published_ports} | tr -d '[]' |sed "s/, / /g" ); \ + do published_ports="-p $i $published_ports"; done + fi [ ! -z "$WORKSPACE" ] && sudo rm -rf $WORKSPACE/results || true if [ "{repo}" = "_" ]; then image={container}:{tag} @@ -105,18 +119,21 @@ else image={repo}:{port}/{container}:{tag} fi + sudo mkdir -p $WORKSPACE/results + sudo chown {uid}:{gid} $WORKSPACE/results sudo docker run --rm \ --privileged={privileged} \ --network={network} \ $volumes \ $env \ + $published_ports \ -e S3_ENDPOINT_URL=https://storage.googleapis.com \ -e S3_DST_URL=s3://artifacts.opnfv.org/xtesting/$BUILD_TAG/$JOB_NAME-$BUILD_ID \ -e HTTP_DST_URL=http://artifacts.opnfv.org/xtesting/$BUILD_TAG/$JOB_NAME-$BUILD_ID \ - -v /home/opnfv/xtesting/.boto:/root/.boto \ + -v /home/opnfv/xtesting/.boto:/etc/boto.cfg \ -e TEST_DB_URL=http://testresults.opnfv.org/test/api/v1/results \ -e TEST_DB_EXT_URL=http://testresults.opnfv.org/test/api/v1/results \ - -e NODE_NAME=$slave \ + -e NODE_NAME=$node \ -e BUILD_TAG=$BUILD_TAG \ -v $WORKSPACE/../$JOB_NAME/results:/var/lib/xtesting/results \ $image run_tests -t {test} -p -r @@ -138,8 +155,8 @@ - job-template: name: 'xtesting-{repo}-{container}-{tag}-pull' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' builders: - xtesting-pull-containers: <<: *xtesting-containers @@ -151,18 +168,11 @@ jobs: - 'xtesting-{repo}-{container}-{tag}-pull' -- project: - name: 'xtesting-opnfv-xtesting-mts-pull' - <<: *xtesting-params - container: 'xtesting-mts' - jobs: - - 'xtesting-{repo}-{container}-{tag}-pull' - - job-template: name: 'xtesting-{repo}-{container}-{tag}-rmi' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' builders: - xtesting-remove-images: <<: *xtesting-containers @@ -174,18 +184,11 @@ jobs: - 'xtesting-{repo}-{container}-{tag}-rmi' -- project: - name: 'xtesting-opnfv-xtesting-mts-rmi' - <<: *xtesting-params - container: 'xtesting-mts' - jobs: - - 'xtesting-{repo}-{container}-{tag}-rmi' - - job-template: name: 'xtesting-opnfv-xtesting-{tag}-{test}-run' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' - xtesting-build_tag: build_tag: '' builders: @@ -197,6 +200,7 @@ <<: *xtesting-params volumes: env: + published_ports: container: 'xtesting' test: - first @@ -206,42 +210,19 @@ - fifth - sixth - eighth + - nineth privileged: 'false' network: bridge + uid: 1000 + gid: 1000 exclude: - - tag: leguer - test: eighth - - tag: kali - test: eighth - - tag: jerma - test: eighth + - tag: wallaby + test: nineth + - tag: xena + test: nineth jobs: - 'xtesting-opnfv-xtesting-{tag}-{test}-run' -- job-template: - name: 'xtesting-opnfv-xtesting-mts-{tag}-{test}-run' - parameters: - - xtesting-slave: - slave: '{slave}' - - xtesting-build_tag: - build_tag: '' - builders: - - xtesting-run-containers: - <<: *xtesting-run-containers - -- project: - name: 'xtesting-opnfv-xtesting-mts' - <<: *xtesting-params - volumes: - env: - container: 'xtesting-mts' - test: - - seventh - privileged: 'false' - network: bridge - jobs: - - 'xtesting-opnfv-xtesting-mts-{tag}-{test}-run' - - builder: name: xtesting-zip builders: @@ -257,6 +238,11 @@ for i in $(eval echo {env} | tr -d '[]' |sed "s/, / /g" ); \ do env="-e $i $env"; done fi + published_ports=; + if [ "{published_ports}" != "None" ]; then + for i in $(echo {published_ports} | tr -d '[]' |sed "s/, / /g" ); \ + do published_ports="-p $i $published_ports"; done + fi [ ! -z "$WORKSPACE" ] && sudo rm -rf $WORKSPACE/results || true if [ "{repo}" = "_" ]; then image={container}:{tag} @@ -265,13 +251,16 @@ else image={repo}:{port}/{container}:{tag} fi + sudo mkdir -p $WORKSPACE/results + sudo chown {uid}:{gid} $WORKSPACE/results sudo docker run --rm \ $volumes \ $env \ + $published_ports \ -e S3_ENDPOINT_URL=https://storage.googleapis.com \ -e S3_DST_URL=s3://artifacts.opnfv.org/xtesting \ -e HTTP_DST_URL=http://artifacts.opnfv.org/xtesting \ - -v /home/opnfv/xtesting/.boto:/root/.boto \ + -v /home/opnfv/xtesting/.boto:/etc/boto.cfg \ -e TEST_DB_URL=http://testresults.opnfv.org/test/api/v1/results \ -e TEST_DB_EXT_URL=http://testresults.opnfv.org/test/api/v1/results \ -e BUILD_TAG=$BUILD_TAG \ @@ -281,8 +270,8 @@ - job-template: name: 'xtesting-{tag}-zip' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' - xtesting-build_tag: build_tag: '' builders: @@ -290,13 +279,19 @@ <<: *xtesting-containers volumes: '{volumes}' env: '{env}' + uid: '{uid}' + gid: '{gid}' + published_ports: '{published_ports}' - project: name: 'xtesting-{tag}-zip' <<: *xtesting-params volumes: env: + published_ports: container: 'xtesting' + uid: 1000 + gid: 1000 jobs: - 'xtesting-{tag}-zip' @@ -306,8 +301,8 @@ triggers: - timed: '@daily' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' - xtesting-build_tag: build_tag: '' # PyYAML and yamllint differ here @@ -324,15 +319,11 @@ projects: - name: 'xtesting-opnfv-xtesting-{tag}-rmi' <<: *xtesting-jobs - - name: 'xtesting-opnfv-xtesting-mts-{tag}-rmi' - <<: *xtesting-jobs - multijob: name: pull containers projects: - name: 'xtesting-opnfv-xtesting-{tag}-pull' <<: *xtesting-jobs - - name: 'xtesting-opnfv-xtesting-mts-{tag}-pull' - <<: *xtesting-jobs - multijob: name: opnfv/xtesting:{tag} projects: @@ -350,16 +341,19 @@ <<: *xtesting-jobs - name: 'xtesting-opnfv-xtesting-{tag}-eighth-run' <<: *xtesting-jobs - - multijob: - name: opnfv/xtesting-mts:{tag} - projects: - - name: 'xtesting-opnfv-xtesting-mts-{tag}-seventh-run' + - name: 'xtesting-opnfv-xtesting-{tag}-nineth-run' <<: *xtesting-jobs - multijob: name: dump all campaign data projects: - name: 'xtesting-{tag}-zip' <<: *xtesting-jobs + publishers: + - email-ext: + failure: false + first-failure: true + fixed: true + recipients: cedric.ollivier@orange.com - project: name: 'xtesting-daily' @@ -462,8 +456,8 @@ - job-template: name: 'xtesting-{repo}-{tag}-dep-pull' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' builders: - xtesting-pull-dep-images: <<: *xtesting-dep @@ -477,8 +471,8 @@ - job-template: name: 'xtesting-{repo}-{tag}-dep-rmi' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' builders: - xtesting-remove-dep-images: <<: *xtesting-dep @@ -494,17 +488,20 @@ builders: - shell: | set +x - sudo apt-get update && \ - sudo DEBIAN_FRONTEND=noninteractive apt-get dist-upgrade -y + sudo apt-get -o DPkg::Lock::Timeout=300 update && \ + sudo DEBIAN_FRONTEND=noninteractive apt-get \ + -o DPkg::Lock::Timeout=300 dist-upgrade -y sudo DEBIAN_FRONTEND=noninteractive \ - apt-get install software-properties-common gpg -y + apt-get -o DPkg::Lock::Timeout=300 install software-properties-common gpg -y sudo add-apt-repository -y ppa:deadsnakes/ppa - sudo apt-get update && sudo DEBIAN_FRONTEND=noninteractive \ - apt-get install \ + sudo apt-get -o DPkg::Lock::Timeout=300 update && \ + sudo DEBIAN_FRONTEND=noninteractive apt-get \ + -o DPkg::Lock::Timeout=300 install \ + libxml2-dev libxslt-dev libffi-dev libjpeg-dev \ + python3.10 python3.10-dev python3.10-distutils \ python3.9 python3.9-dev python3.9-distutils \ python3.8 python3.8-dev python3.8-distutils \ - python3.7 python3.7-dev python3.6 python3.6-dev \ - python python-dev python3-pip enchant -y + python3-pip enchant-2 -y sudo pip3 install tox tox-pip-version tox @@ -518,8 +515,8 @@ - xtesting-patchset-created: branch: '{branch}' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' builders: - xtesting-tox: @@ -532,8 +529,8 @@ - job-template: name: 'xtesting-{repo}-{container}-{tag}-gate' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' scm: - xtesting-scm: ref: $GERRIT_REFSPEC @@ -552,15 +549,6 @@ jobs: - 'xtesting-{repo}-{container}-{tag}-gate' -- project: - name: xtesting-opnfv-xtesting-mts-{tag}-gate - <<: *xtesting-params - container: xtesting-mts - ref_arg: BRANCH - path: docker/mts - jobs: - - 'xtesting-{repo}-{container}-{tag}-gate' - - trigger: name: xtesting-patchset-created triggers: @@ -585,8 +573,8 @@ - xtesting-patchset-created: branch: '{branch}' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' - xtesting-build_tag: build_tag: '' # PyYAML and yamllint differ here @@ -603,8 +591,6 @@ projects: - name: 'xtesting-opnfv-xtesting-{tag}-rmi' <<: *xtesting-jobs - - name: 'xtesting-opnfv-xtesting-mts-{tag}-rmi' - <<: *xtesting-jobs - multijob: name: remove dependency projects: @@ -620,11 +606,6 @@ projects: - name: 'xtesting-opnfv-xtesting-{tag}-gate' <<: *xtesting-jobs - - multijob: - name: opnfv/xtesting-mts - projects: - - name: 'xtesting-opnfv-xtesting-mts-{tag}-gate' - <<: *xtesting-jobs - multijob: name: opnfv/xtesting:{tag} projects: @@ -642,11 +623,14 @@ <<: *xtesting-jobs - name: 'xtesting-opnfv-xtesting-{tag}-eighth-run' <<: *xtesting-jobs - - multijob: - name: opnfv/xtesting-mts:{tag} - projects: - - name: 'xtesting-opnfv-xtesting-mts-{tag}-seventh-run' + - name: 'xtesting-opnfv-xtesting-{tag}-nineth-run' <<: *xtesting-jobs + publishers: + - email-ext: + failure: false + first-failure: true + fixed: true + recipients: cedric.ollivier@orange.com - project: name: 'xtesting-review' @@ -701,8 +685,8 @@ - job-template: name: 'xtesting-{repo}-{container}-{tag}-build' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' scm: - xtesting-scm: ref: '{branch}' @@ -724,15 +708,6 @@ jobs: - 'xtesting-{repo}-{container}-{tag}-build' -- project: - name: xtesting-opnfv-xtesting-mts-{tag}-build - <<: *xtesting-params - container: xtesting-mts - ref_arg: BRANCH - path: docker/mts - jobs: - - 'xtesting-{repo}-{container}-{tag}-build' - - job-template: name: 'xtesting-{tag}-docker' project-type: multijob @@ -742,8 +717,8 @@ - xtesting-scm: ref: '{branch}' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' # PyYAML and yamllint differ here # see https://github.com/yaml/pyyaml/issues/234 # yamllint disable rule:indentation @@ -768,18 +743,20 @@ projects: - name: 'xtesting-opnfv-xtesting-{tag}-build' <<: *xtesting-jobs - - multijob: - name: opnfv/xtesting-mts - projects: - - name: 'xtesting-opnfv-xtesting-mts-{tag}-build' - <<: *xtesting-jobs + publishers: + - email-ext: + failure: false + first-failure: true + fixed: true + recipients: cedric.ollivier@orange.com - builder: name: xtesting-trivy builders: - shell: | - sudo apt-get update && sudo DEBIAN_FRONTEND=noninteractive \ - apt-get install curl -y + sudo apt-get -o DPkg::Lock::Timeout=300 update && \ + sudo DEBIAN_FRONTEND=noninteractive apt-get \ + -o DPkg::Lock::Timeout=300 install curl -y curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sudo sh -s -- -b . if [ "{repo}" = "_" ]; then @@ -789,18 +766,24 @@ else image={repo}:{port}/{container}:{tag} fi - ./trivy --exit-code 1 $image + ./trivy image --exit-code 1 $image - job-template: name: 'xtesting-{repo}-{container}-{tag}-trivy' triggers: - timed: '@daily' parameters: - - xtesting-slave: - slave: '{slave}' + - xtesting-node: + node: '{node}' builders: - xtesting-trivy: <<: *xtesting-containers + publishers: + - email-ext: + failure: false + first-failure: true + fixed: true + recipients: cedric.ollivier@orange.com - project: name: 'xtesting-opnfv-xtesting-trivy' @@ -809,12 +792,90 @@ jobs: - 'xtesting-{repo}-{container}-{tag}-trivy' +- builder: + name: xtesting-grype + builders: + - shell: | + sudo apt-get -o DPkg::Lock::Timeout=300 update && \ + sudo DEBIAN_FRONTEND=noninteractive apt-get \ + -o DPkg::Lock::Timeout=300 install curl -y + + curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sudo sh -s -- -b . + if [ "{repo}" = "_" ]; then + image={container}:{tag} + elif [ "{port}" = "None" ]; then + image={repo}/{container}:{tag} + else + image={repo}:{port}/{container}:{tag} + fi + ./grype -q $image + +- job-template: + name: 'xtesting-{repo}-{container}-{tag}-grype' + triggers: + - timed: '@daily' + parameters: + - xtesting-node: + node: '{node}' + builders: + - xtesting-grype: + <<: *xtesting-containers + publishers: + - email-ext: + failure: false + first-failure: true + fixed: true + recipients: cedric.ollivier@orange.com + - project: - name: 'xtesting-opnfv-xtesting-mts-trivy' + name: 'xtesting-opnfv-xtesting-grype' <<: *xtesting-params - container: 'xtesting-mts' + container: 'xtesting' jobs: - - 'xtesting-{repo}-{container}-{tag}-trivy' + - 'xtesting-{repo}-{container}-{tag}-grype' + +- builder: + name: xtesting-sbom + builders: + - shell: | + sudo apt-get -o DPkg::Lock::Timeout=300 update && \ + sudo DEBIAN_FRONTEND=noninteractive apt-get \ + -o DPkg::Lock::Timeout=300 install curl -y + + sudo mkdir -p ~/.docker + curl -sSfL https://raw.githubusercontent.com/docker/sbom-cli-plugin/main/install.sh | sudo sh -s -- + if [ "{repo}" = "_" ]; then + image={container}:{tag} + elif [ "{port}" = "None" ]; then + image={repo}/{container}:{tag} + else + image={repo}:{port}/{container}:{tag} + fi + sudo docker sbom $image + +- job-template: + name: 'xtesting-{repo}-{container}-{tag}-sbom' + triggers: + - timed: '@daily' + parameters: + - xtesting-node: + node: '{node}' + builders: + - xtesting-sbom: + <<: *xtesting-containers + publishers: + - email-ext: + failure: false + first-failure: true + fixed: true + recipients: cedric.ollivier@orange.com + +- project: + name: 'xtesting-opnfv-xtesting-sbom' + <<: *xtesting-params + container: 'xtesting' + jobs: + - 'xtesting-{repo}-{container}-{tag}-sbom' - project: name: 'xtesting' @@ -845,3 +906,27 @@ - last-failure - last-duration regex: (?!xtesting-pi)^xtesting-[a-z-0-9.]+-trivy$ + +- view: + name: xtesting-grype + view-type: list + columns: + - status + - weather + - job + - last-success + - last-failure + - last-duration + regex: (?!xtesting-pi)^xtesting-[a-z-0-9.]+-grype$ + +- view: + name: xtesting-sbom + view-type: list + columns: + - status + - weather + - job + - last-success + - last-failure + - last-duration + regex: (?!xtesting-pi)^xtesting-[a-z-0-9.]+-sbom$