davidlt
/
kernel-ark
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
kernel-ark/.gitlab-ci.yml

285 lines
8.5 KiB
YAML
Raw Permalink Blame History

# This CI will only work for project members. CI for public contributors
# runs via a webhook on the merge requests. There's nothing you have to do if
# you want your changes tested -- created pipeline will be automatically
# linked in the merge request and appropriate labels will be added to it.
# Changes to this file will NOT be reflected in the webhook testing.
include:
- project: cki-project/pipeline-definition
ref: main
file: kernel_templates.yml
stages:
- test
- build
- deploy
workflow:
rules:
- if: '$CI_PIPELINE_SOURCE == "schedule"' # ARK release pipelines
- if: '$CI_MERGE_REQUEST_PROJECT_PATH =~ /^cki-project.kernel-ark/' # ARK MR CI
variables:
REQUESTED_PIPELINE_TYPE: 'ark-ci'
# We cannot merge rules through !reference and have to copy them over from the
# CKI pipeline: https://gitlab.com/gitlab-org/gitlab/-/issues/322992
- if: '$CI_MERGE_REQUEST_PROJECT_PATH =~ /^redhat.rhel/ || $CI_PROJECT_PATH =~ /^redhat.rhel/'
variables:
REQUESTED_PIPELINE_TYPE: 'internal'
- if: '$CI_MERGE_REQUEST_PROJECT_PATH =~ /^redhat.centos-stream/ || $CI_PROJECT_PATH =~ /^redhat.centos-stream/'
variables:
REQUESTED_PIPELINE_TYPE: '/^(trusted|centos-rhel)$/'
# We need to differentiate between the pipeline types that are triggered from this
# single file. Once the mirroring to c9s stops this anchor can be dropped and the
# regular ".trusted" anchor and "trusted" type can be used. The template is added
# here instead of into CKI to avoid having to clear up two places after mirror drop.
.trusted-ark:
trigger:
project: redhat/red-hat-ci-tools/kernel/cki-internal-pipelines/cki-trusted-contributors
strategy: depend
variables:
PIPELINE_TYPE: 'ark-ci'
kernel_type: 'upstream'
.trigger_ark_pipeline:
stage: test
trigger:
branch: kernel-ark
variables:
name: kernel-ark
builder_image: registry.gitlab.com/cki-project/containers/builder-rawhide
builder_image_tag: latest
srpm_make_target: dist-srpm
# We only need srpm so skip the rest of the stages
skip_build: 'true'
skip_publish: 'true'
skip_test: 'true'
skip_results: 'true'
.9-common:
variables:
builder_image_tag: latest
srpm_make_target: dist-srpm
native_tools: 'true'
architectures: 'x86_64 ppc64le aarch64 s390x'
POWER_BUILDER_SUFFIX: '-p9'
.trigger_c9s_pipeline:
trigger:
branch: c9s
variables:
name: centos-stream-9
builder_image: registry.gitlab.com/cki-project/containers/builder-stream9
kpet_tree_family: c9s
kernel_type: 'upstream' # Needs to be overriden due to inheriting from .rhel_common
.trigger_rhel9_pipeline:
trigger:
branch: rhel9
variables:
name: rhel9
builder_image: quay.io/cki/builder-rhel9
kpet_tree_family: rhel9
.realtime_check_c9s:
trigger:
branch: c9s-rt
variables:
merge_branch: main-rt
name: kernel-rt-c9s
.realtime_check_rhel9:
trigger:
branch: rhel9-rt
variables:
merge_branch: main-rt
name: kernel-rt-rhel9
.trigger_rhel9_build:
extends: .trigger_rhel9_pipeline
variables:
skip_test: 'true'
skip_results: 'true'
.realtime_full_c9s:
variables:
name: kernel-rt-c9s
kpet_tree_family: c9s-rt
RUN_ONLY_FOR_RT: 'true'
.realtime_full_rhel9:
variables:
name: kernel-rt-rhel9
kpet_tree_family: rhel9-rt
RUN_ONLY_FOR_RT: 'true'
# ARK CI
ark_merge_request:
extends: [.trusted-ark, .merge_request, .trigger_ark_pipeline]
# c9s CI
c9s_merge_request:
extends: [.trusted, .merge_request, .rhel_common,
.9-common, .trigger_c9s_pipeline]
c9s_realtime_check_merge_request:
extends: [.trusted, .merge_request,
.9-common,
.realtime_check_common,
.trigger_c9s_pipeline, .realtime_check_c9s]
c9s_baseline:
extends: [.trusted, .baseline, .rhel_common,
.9-common, .trigger_c9s_pipeline]
c9s_rhel9_compat_merge_request:
extends: [.centos_stream_rhel_internal, .merge_request, .rhel_common,
.9-common, .trigger_rhel9_build]
c9s_rhel9_compat_baseline:
extends: [.centos_stream_rhel_internal, .baseline, .rhel_common,
.9-common, .trigger_rhel9_build]
# c9s realtime branch CI
c9s_realtime_merge_request:
extends: [.trusted, .merge_request,
.9-common,
.realtime_pipeline_common,
.trigger_c9s_pipeline, .realtime_full_c9s]
c9s_realtime_baseline:
extends: [.trusted, .baseline,
.9-common,
.realtime_pipeline_common,
.trigger_c9s_pipeline, .realtime_full_c9s]
# RHEL9 CI
rhel9_merge_request:
extends: [.internal, .merge_request, .rhel_common,
.9-common, .trigger_rhel9_pipeline]
rhel9_realtime_check_merge_request:
extends: [.internal, .merge_request,
.9-common,
.realtime_check_common,
.trigger_rhel9_pipeline, .realtime_check_rhel9]
rhel9_baseline:
extends: [.internal, .baseline, .rhel_common,
.9-common, .trigger_rhel9_pipeline]
# RHEL9 realtime branch CI
rhel9_realtime_merge_request:
extends: [.internal, .merge_request,
.9-common,
.realtime_pipeline_common,
.trigger_rhel9_pipeline, .realtime_full_rhel9]
rhel9_realtime_baseline:
extends: [.internal, .baseline,
.9-common,
.realtime_pipeline_common,
.trigger_rhel9_pipeline, .realtime_full_rhel9]
# scheduled job
.scheduled_setup:
image: registry.gitlab.com/cki-project/containers/builder-fedora
variables:
GIT_DEPTH: "0"
GIT_CLONE_PATH: $CI_BUILDS_DIR/$CI_CONCURRENT_ID/kernel-ark
before_script:
- echo "fastestmirror=true" >> /etc/dnf/dnf.conf
- dnf -y install python3-gitlab git openssh-clients dnf-utils gnupg2
- git config user.name "Fedora Kernel Team"
- git config user.email "kernel-team@fedoraproject.org"
- echo "$PYTHON_GITLAB_CONFIG" >> ~/.python-gitlab.cfg
# Need SSH since the clone is set up without write access.
- eval $(ssh-agent -s)
- echo "$PRIVATE_KEY" | tr -d '\r' | ssh-add - > /dev/null
- mkdir -p ~/.ssh
- chmod 700 ~/.ssh
- echo "$GITLAB_KNOWN_HOSTS" >> ~/.ssh/known_hosts
- chmod 644 ~/.ssh/known_hosts
- git remote add gitlab git@gitlab.com:cki-project/kernel-ark.git
- gpg2 --import "$TORVALDS_GPG_KEY"
- git checkout --track origin/master && git describe
- export PROJECT_ID="$CI_PROJECT_ID"
merge_upstream:
extends: .scheduled_setup
script:
- git checkout --track origin/os-build && git describe
- make dist-merge-upstream-push || exit 1
retry: 2
rules:
- if: '$CI_PIPELINE_SOURCE == "schedule" && $RAWHIDE_RELEASE == "false"'
# scheduled job
rawhide_release:
extends: .scheduled_setup
script:
- git checkout --track origin/ark-latest && git describe
- git checkout --track origin/ark-infra && git describe
- git checkout --track origin/os-build && git describe
- redhat/scripts/ci/ark-create-release.sh "master" "$CI_PROJECT_ID" || exit_code=$?
- if [ $exit_code -eq 3 ]; then echo "Tag exists, halting" && exit 0; fi;
- if [ $exit_code -ne 0 ]; then echo "Unable to create release tag" && exit 1; fi;
- git push gitlab os-build
# ark-create-release.sh creates a tag for ark-latest to be pushed.
# Make sure the ark-latest branch is checked out.
- git checkout ark-latest
- git push gitlab "$(git describe)"
- git push gitlab ark/*
- git push -f gitlab ark-latest
- git push -f gitlab ark-infra
retry: 2
rules:
- if: '$CI_PIPELINE_SOURCE == "schedule" && $RAWHIDE_RELEASE == "true"'
test_docs:
stage: test
image: registry.gitlab.com/cki-project/containers/python
before_script:
- python3 -m venv ~/docs-venv
- source ~/docs-venv/bin/activate
- pip install sphinx
- cd redhat/docs/
script: make SPHINXOPTS="-W" html
rules:
- if: '$CI_MERGE_REQUEST_TARGET_BRANCH_NAME == "os-build"'
changes:
- redhat/docs/**/*
docs:
stage: build
image: registry.gitlab.com/cki-project/containers/python
before_script:
- python3 -m venv ~/docs-venv
- source ~/docs-venv/bin/activate
- pip install sphinx
- cd redhat/docs/
script: make SPHINXOPTS="-W" html
artifacts:
paths:
- redhat/docs/_build/html/
rules:
- if: '$CI_COMMIT_BRANCH == "os-build"'
changes:
- redhat/docs/**/*
pages:
stage: deploy
image: registry.gitlab.com/cki-project/containers/python
dependencies:
- docs
script:
- mv redhat/docs/_build/html/ public/
artifacts:
paths:
- public
rules:
- if: '$CI_COMMIT_BRANCH == "os-build"'
changes:
- redhat/docs/**/*
Reference in New Issue View Git Blame Copy Permalink