2022-02-10 10:44:50 +00:00
|
|
|
name: NightlyBuilds
|
|
|
|
|
|
|
|
env:
|
|
|
|
# Force the stdout and stderr streams to be unbuffered
|
|
|
|
PYTHONUNBUFFERED: 1
|
|
|
|
|
|
|
|
"on":
|
|
|
|
schedule:
|
2022-02-14 00:24:42 +00:00
|
|
|
- cron: '13 3 * * *'
|
2022-03-23 14:26:22 +00:00
|
|
|
workflow_dispatch:
|
2022-02-10 10:44:50 +00:00
|
|
|
|
|
|
|
jobs:
|
|
|
|
DockerHubPushAarch64:
|
|
|
|
runs-on: [self-hosted, style-checker-aarch64]
|
|
|
|
steps:
|
|
|
|
- name: Clear repository
|
|
|
|
run: |
|
|
|
|
sudo rm -fr "$GITHUB_WORKSPACE" && mkdir "$GITHUB_WORKSPACE"
|
|
|
|
- name: Check out repository code
|
|
|
|
uses: actions/checkout@v2
|
|
|
|
- name: Images check
|
|
|
|
run: |
|
|
|
|
cd "$GITHUB_WORKSPACE/tests/ci"
|
|
|
|
python3 docker_images_check.py --suffix aarch64 --all
|
|
|
|
- name: Upload images files to artifacts
|
|
|
|
uses: actions/upload-artifact@v2
|
|
|
|
with:
|
|
|
|
name: changed_images_aarch64
|
|
|
|
path: ${{ runner.temp }}/docker_images_check/changed_images_aarch64.json
|
|
|
|
DockerHubPushAmd64:
|
|
|
|
runs-on: [self-hosted, style-checker]
|
|
|
|
steps:
|
|
|
|
- name: Clear repository
|
|
|
|
run: |
|
|
|
|
sudo rm -fr "$GITHUB_WORKSPACE" && mkdir "$GITHUB_WORKSPACE"
|
|
|
|
- name: Check out repository code
|
|
|
|
uses: actions/checkout@v2
|
|
|
|
- name: Images check
|
|
|
|
run: |
|
|
|
|
cd "$GITHUB_WORKSPACE/tests/ci"
|
|
|
|
python3 docker_images_check.py --suffix amd64 --all
|
|
|
|
- name: Upload images files to artifacts
|
|
|
|
uses: actions/upload-artifact@v2
|
|
|
|
with:
|
|
|
|
name: changed_images_amd64
|
|
|
|
path: ${{ runner.temp }}/docker_images_check/changed_images_amd64.json
|
|
|
|
DockerHubPush:
|
|
|
|
needs: [DockerHubPushAmd64, DockerHubPushAarch64]
|
|
|
|
runs-on: [self-hosted, style-checker]
|
|
|
|
steps:
|
|
|
|
- name: Clear repository
|
|
|
|
run: |
|
|
|
|
sudo rm -fr "$GITHUB_WORKSPACE" && mkdir "$GITHUB_WORKSPACE"
|
|
|
|
- name: Check out repository code
|
|
|
|
uses: actions/checkout@v2
|
|
|
|
- name: Download changed aarch64 images
|
|
|
|
uses: actions/download-artifact@v2
|
|
|
|
with:
|
|
|
|
name: changed_images_aarch64
|
|
|
|
path: ${{ runner.temp }}
|
|
|
|
- name: Download changed amd64 images
|
|
|
|
uses: actions/download-artifact@v2
|
|
|
|
with:
|
|
|
|
name: changed_images_amd64
|
|
|
|
path: ${{ runner.temp }}
|
|
|
|
- name: Images check
|
|
|
|
run: |
|
|
|
|
cd "$GITHUB_WORKSPACE/tests/ci"
|
|
|
|
python3 docker_manifests_merge.py --suffix amd64 --suffix aarch64
|
|
|
|
- name: Upload images files to artifacts
|
|
|
|
uses: actions/upload-artifact@v2
|
|
|
|
with:
|
|
|
|
name: changed_images
|
|
|
|
path: ${{ runner.temp }}/changed_images.json
|
2022-03-14 13:51:50 +00:00
|
|
|
BuilderCoverity:
|
|
|
|
needs: DockerHubPush
|
|
|
|
runs-on: [self-hosted, builder]
|
|
|
|
steps:
|
|
|
|
- name: Set envs
|
|
|
|
run: |
|
|
|
|
cat >> "$GITHUB_ENV" << 'EOF'
|
2022-04-07 16:21:13 +00:00
|
|
|
BUILD_NAME=coverity
|
2022-03-14 13:51:50 +00:00
|
|
|
CACHES_PATH=${{runner.temp}}/../ccaches
|
|
|
|
CHECK_NAME=ClickHouse build check (actions)
|
2022-04-07 16:21:13 +00:00
|
|
|
IMAGES_PATH=${{runner.temp}}/images_path
|
|
|
|
REPO_COPY=${{runner.temp}}/build_check/ClickHouse
|
|
|
|
TEMP_PATH=${{runner.temp}}/build_check
|
2022-03-14 13:51:50 +00:00
|
|
|
EOF
|
2022-04-07 16:21:13 +00:00
|
|
|
echo "COVERITY_TOKEN=${{ secrets.COVERITY_TOKEN }}" >> "$GITHUB_ENV"
|
2022-03-14 13:51:50 +00:00
|
|
|
- name: Download changed images
|
|
|
|
uses: actions/download-artifact@v2
|
|
|
|
with:
|
|
|
|
name: changed_images
|
|
|
|
path: ${{ env.IMAGES_PATH }}
|
|
|
|
- name: Clear repository
|
|
|
|
run: |
|
|
|
|
sudo rm -fr "$GITHUB_WORKSPACE" && mkdir "$GITHUB_WORKSPACE"
|
|
|
|
- name: Check out repository code
|
|
|
|
id: coverity-checkout
|
|
|
|
uses: actions/checkout@v2
|
|
|
|
with:
|
|
|
|
submodules: 'true'
|
|
|
|
fetch-depth: 0 # otherwise we will have no info about contributors
|
|
|
|
- name: Build
|
|
|
|
run: |
|
|
|
|
sudo rm -fr "$TEMP_PATH"
|
|
|
|
mkdir -p "$TEMP_PATH"
|
|
|
|
cp -r "$GITHUB_WORKSPACE" "$TEMP_PATH"
|
2022-04-07 16:21:13 +00:00
|
|
|
cd "$REPO_COPY/tests/ci" && python3 build_check.py "$CHECK_NAME" "$BUILD_NAME"
|
2022-03-14 13:51:50 +00:00
|
|
|
- name: Upload Coverity Analysis
|
|
|
|
if: ${{ success() || failure() }}
|
|
|
|
run: |
|
2022-04-07 16:21:13 +00:00
|
|
|
curl --form token="${COVERITY_TOKEN}" \
|
|
|
|
--form email='security+coverity@clickhouse.com' \
|
2022-04-06 08:13:09 +00:00
|
|
|
--form file="@$TEMP_PATH/$BUILD_NAME/clickhouse-scan.tgz" \
|
2022-03-14 13:51:50 +00:00
|
|
|
--form version="${GITHUB_REF#refs/heads/}-${GITHUB_SHA::6}" \
|
|
|
|
--form description="Nighly Scan: $(date +'%Y-%m-%dT%H:%M:%S')" \
|
|
|
|
https://scan.coverity.com/builds?project=ClickHouse%2FClickHouse
|
|
|
|
- name: Cleanup
|
|
|
|
if: always()
|
|
|
|
run: |
|
|
|
|
docker kill "$(docker ps -q)" ||:
|
|
|
|
docker rm -f "$(docker ps -a -q)" ||:
|
|
|
|
sudo rm -fr "$TEMP_PATH" "$CACHES_PATH"
|