luciano/d2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge pull request #58 from terrastruct/fixes-5b09

Browse source 
ci/sub: Make submodule again
This commit is contained in:
Anmol Sethi 2022-11-08 17:42:44 -05:00 committed by GitHub
commit a2613c856a
11 changed files with 8 additions and 514 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
.github/workflows/ci.yml vendored
View file

@ -11,7 +11,7 @@ jobs:
- uses: actions/checkout@v3
with:
submodules: recursive
- run: ./make.sh assert-linear
- run: TERM=xterm-256color ./make.sh assert-linear
env:
GITHUB_TOKEN: ${{ secrets._GITHUB_TOKEN }}
DISCORD_WEBHOOK_URL: ${{ secrets.DISCORD_WEBHOOK_URL }}
@ -25,7 +25,7 @@ jobs:
with:
go-version-file: ./go.mod
cache: true
- run: ./make.sh fmt
- run: TERM=xterm-256color ./make.sh fmt
env:
GITHUB_TOKEN: ${{ secrets._GITHUB_TOKEN }}
DISCORD_WEBHOOK_URL: ${{ secrets.DISCORD_WEBHOOK_URL }}
@ -39,7 +39,7 @@ jobs:
with:
go-version-file: ./go.mod
cache: true
- run: ./make.sh lint
- run: TERM=xterm-256color ./make.sh lint
env:
GITHUB_TOKEN: ${{ secrets._GITHUB_TOKEN }}
DISCORD_WEBHOOK_URL: ${{ secrets.DISCORD_WEBHOOK_URL }}
@ -53,7 +53,7 @@ jobs:
with:
go-version-file: ./go.mod
cache: true
- run: ./make.sh build
- run: TERM=xterm-256color ./make.sh build
env:
GITHUB_TOKEN: ${{ secrets._GITHUB_TOKEN }}
DISCORD_WEBHOOK_URL: ${{ secrets.DISCORD_WEBHOOK_URL }}
@ -67,7 +67,7 @@ jobs:
with:
go-version-file: ./go.mod
cache: true
- run: ./make.sh test
- run: TERM=xterm-256color ./make.sh test
env:
GITHUB_TOKEN: ${{ secrets._GITHUB_TOKEN }}
DISCORD_WEBHOOK_URL: ${{ secrets.DISCORD_WEBHOOK_URL }}
@ -86,7 +86,7 @@ jobs:
with:
go-version-file: ./go.mod
cache: true
- run: ./make.sh race
- run: TERM=xterm-256color ./make.sh race
env:
GITHUB_TOKEN: ${{ secrets._GITHUB_TOKEN }}
DISCORD_WEBHOOK_URL: ${{ secrets.DISCORD_WEBHOOK_URL }}

2
.github/workflows/daily.yml vendored
View file

@ -20,7 +20,7 @@ jobs:
with:
go-version-file: ./go.mod
cache: true
- run: CI_ALL=1 ./make.sh
- run: CI_ALL=1 TERM=xterm-256color ./make.sh
env:
GITHUB_TOKEN: ${{ secrets._GITHUB_TOKEN }}
DISCORD_WEBHOOK_URL: ${{ secrets.DISCORD_WEBHOOK_URL }}

1
ci/sub Submodule

@ -0,0 +1 @@
Subproject commit 7ff8380897435e73d53e329a7cd39dc38c7ad227

3
ci/sub/README.md
View file

@ -1,3 +0,0 @@
# ci
Terrastruct's CI scripts.

24
ci/sub/assert_linear.sh
View file

@ -1,24 +0,0 @@
#!/bin/sh
set -eu
. "$(dirname "$0")/lib.sh"
cd -- "$(dirname "$0")/.."
# assert_linear.sh ensures that the current commit does not contain any PR merge commits
# compared to master as if it does, then that means our diffing mechanisms will be
# incorrect. We want all changes compared to master to be checked, not all changed
# relative to the previous PR into this branch.
if [ "$(git rev-parse --is-shallow-repository)" = true ]; then
git fetch --unshallow origin master
fi
merge_base="$(git merge-base HEAD origin/master)"
merges="$(git --no-pager log --merges --grep="Merge pull request" --grep="\[ci-base\]" --format=%h "$merge_base"..HEAD)"
if [ -n "$merges" ]; then
echoerr <<EOF
Found merge pull request commit(s) in PR: $(_echo "$merges" | tr '\n' ' ')
Each pull request must be merged separately for CI to run correctly.
EOF
exit 1
fi

11
ci/sub/bin/echop
View file

@ -1,11 +0,0 @@
#!/bin/sh
set -eu
. "$(dirname "$0")/../lib.sh"
prefix="$1"
shift
if [ -z "${COLOR:-}" ]; then
COLOR="$(get_rand_color "$prefix")"
fi
printf '%s: %s\n' "$(setaf "$COLOR" "$prefix")" "$*"

38
ci/sub/bin/prefix
View file

@ -1,38 +0,0 @@
#!/bin/sh
set -eu
. "$(dirname "$0")/../lib.sh"
main() {
prefix="$1"
shift
COLOR="$(get_rand_color "$prefix")"
prefix="$(setaf "$COLOR" "$prefix")"
_echo "$prefix^:" "$*"
# We need to make sure we exit with a non zero exit if the command fails.
# /bin/sh does not support -o pipefail unfortunately.
fifo="$(mktemp -d)/fifo"
mkfifo "$fifo"
# We add the prefix to all lines and remove any lines about recursive make.
# We cannot silence these with -s which is unfortunate.
sed -e "s#^#$prefix: #" -e "/make\[.\]: warning: -j/d" "$fifo" &
exit_trap() {
code="$?"
end="$(awk 'BEGIN{srand(); print srand()}')"
dur="$((end - start))"
if [ "$code" -eq 0 ]; then
_echo "$prefix\$:" "$(setaf 2 success)" "($(echo_dur $dur))"
else
_echo "$prefix\$:" "$(setaf 1 failure)" "($(echo_dur $dur))"
fi
}
trap exit_trap EXIT
start="$(awk 'BEGIN{srand(); print srand()}')"
"$@" >"$fifo" 2>&1
}
main "$@"

10
ci/sub/bin/xargsd
View file

@ -1,10 +0,0 @@
#!/bin/sh
set -eu
. "$(dirname "$0")/../lib.sh"
set_changed_files
pattern="$1"
shift
< "$CHANGED_FILES" grep "$pattern" | hide xargs ${CI:+-r} -t -P16 "-n${XARGS_N:-256}" -- "$@"

49
ci/sub/fmt/Makefile
View file

@ -1,49 +0,0 @@
.POSIX:
.PHONY: all
all:
ifdef CI
git -c color.ui=always diff --exit-code
endif
ifdef CI_FMT_GO
all: go
endif
.PHONY: go
go: gofmt goimports
.PHONY: gofmt
gofmt:
prefix "$@" xargsd '\.go$$' gofmt -s -w
.PHONY: goimports
goimports: gofmt
prefix "$@" xargsd '\.go$$' go run golang.org/x/tools/cmd/goimports@v0.1.12 \
-w -local="$$CI_GOIMPORTS_LOCAL"
ifdef CI_FMT_PRETTIER
all: prettier
endif
.PHONY: prettier
prettier:
prefix "$@" xargsd '\.\(js\|jsx\|ts\|tsx\|scss\|css\|html\)$$' \
npx prettier@2.7.1 --print-width=90 --write
ifdef CI_FMT_MARKDOWN
all: markdown-toc
endif
.PHONY: markdown-toc
markdown-toc:
XARGS_N=1 prefix "$@" xargsd '\.md$$' npx markdown-toc@1.2.0 -i
ifdef CI_FMT_GO_MODULE
all: gomodtidy
endif
.PHONY: gomodtidy
gomodtidy:
prefix "$@" go mod tidy
ifdef CI_FMT_NODE_MODULE
all: yarn
endif
.PHONY: yarn
yarn:
prefix "$@" yarn $${CI:+--immutable} $${CI:+--immutable-cache}

32
ci/sub/fmt/make.sh
View file

@ -1,32 +0,0 @@
#!/bin/sh
set -eu
. "$(dirname "$0")/../lib.sh"
PATH="$(cd -- "$(dirname "$0")" && pwd)/../bin:$PATH"
set_changed_files
gomod_path="$(search_up go.mod || true)"
if [ "$gomod_path" ]; then
export CI_FMT_GO_MODULE=1
module_name="$(cat "$gomod_path" | head -n1 | cut -d' ' -f2 )"
if [ "${CI_GOIMPORTS_LOCAL:-}" ]; then
export CI_GOIMPORTS_LOCAL="$CI_GOIMPORTS_LOCAL,$module_name"
else
export CI_GOIMPORTS_LOCAL="$module_name"
fi
fi
if search_up package.json > /dev/null; then
export CI_FMT_NODE_MODULE=1
fi
if < "$CHANGED_FILES" grep -qm1 '\.go$'; then
export CI_FMT_GO=1
fi
if < "$CHANGED_FILES" grep -qm1 '\.md$'; then
if [ -z "${CI:-}" ]; then
# Only locally for now.
export CI_FMT_MARKDOWN=1
fi
fi
if < "$CHANGED_FILES" grep -qm1 '\.\(js\|jsx\|ts\|tsx\|scss\|css\|html\)$'; then
export CI_FMT_PRETTIER=1
fi
_make -f "$(dirname "$0")/Makefile" "$@"

340
ci/sub/lib.sh
View file

@ -1,340 +0,0 @@
#!/bin/sh
if [ "${CI_DEBUG:-}" ]; then
set -x
fi
# ***
# logging
# ***
_echo() {
printf '%s\n' "$*"
}
setaf() {
if [ -z "${TERM:-}" ]; then
export TERM=xterm-256color
fi
tput setaf "$1"
shift
printf '%s' "$*"
tput sgr0
}
echoerr() {
printf '%s ' "$(setaf 1 err:)" >&2
if [ "$#" -gt 0 ]; then
printf '%s\n' "$*" >&2
else
cat >&2
fi
}
sh_c() {
printf '%s %s\n' "$(setaf 3 exec:)" "$*"
"$@"
}
get_rand_color() {
# 1-6 are regular and 9-14 are bright.
# 1,2 and 9,10 are red and green but we use those for success and failure.
pick "$*" 3 4 5 6 11 12 13 14
}
hide() {
out="$(mktemp)"
set +e
"$@" >"$out" 2>&1
code="$?"
set -e
if [ "$code" -eq 0 -a -z "${CI_DEBUG:-}" ]; then
return
fi
cat "$out" >&2
exit "$code"
}
echo_dur() {
local dur=$1
local h=$((dur/60/60))
local m=$((dur/60%60))
local s=$((dur%60))
printf '%dh%dm%ds' "$h" "$m" "$s"
}
sponge() {
dst="$1"
tmp="$(mktemp)"
cat > "$tmp"
cat "$tmp" > "$dst"
}
stripansi() {
# First regex gets rid of standard xterm escape sequences for controlling
# visual attributes.
# The second regex I'm not 100% sure, the reference says it selects the US
# encoding but I'm not sure why that's necessary or why it always occurs
# in tput sgr0 before the standard escape sequence.
# See tput sgr0 | xxd
sed -e $'s/\x1b\[[0-9;]*m//g' -e $'s/\x1b(.//g'
}
runtty() {
case "$(uname)" in
Darwin)
script -q /dev/null "$@"
;;
Linux)
script -eqc "$*"
;;
*)
echoerr "runtty: unsupported OS $(uname)"
esac
}
# ***
# rand
# ***
rand() {(
seed="$1"
range="$2"
seed_file="$(mktemp)"
_echo "$seed" | md5sum > "$seed_file"
shuf -i "$range" -n 1 --random-source="$seed_file"
)}
pick() {(
seed="$1"
shift
i="$(rand "$seed" "1-$#")"
eval "_echo \$$i"
)}
# ***
# git
# ***
set_git_base() {
if [ -n "${GIT_BASE_DONE:-}" ]; then
return
fi
if [ -n "${CI_ALL:-}" ]; then
return
fi
if git show --no-patch --format=%s%n%b | grep -qiF '\[ci-all\]'; then
return
fi
if [ "$(git rev-parse --is-shallow-repository)" = true ]; then
git fetch --unshallow origin master
fi
# Unfortunately --grep searches the whole commit message but we just want the header
# searched. Should fix by using grep directly later.
export GIT_BASE="$(git log --merges --grep="Merge pull request" --grep="\[ci-base\]" --format=%h HEAD~1 | head -n1)"
export GIT_BASE_DONE=1
if [ -n "$GIT_BASE" ]; then
echop make "GIT_BASE=$GIT_BASE"
fi
}
is_changed() {
set_git_base
if [ -z "${GIT_BASE:-}" ]; then
return
fi
! git diff --quiet "$GIT_BASE" -- "$@" ||
[ -n "$(git ls-files --other --exclude-standard -- "$@")" ]
}
set_changed_files() {
set_git_base
filter_exists() {
while read -r p; do
if [ -e "$p" ]; then
printf '%s\n' "$p"
fi
done
}
if [ -n "${CHANGED_FILES:-}" ]; then
return
fi
CHANGED_FILES=./.changed-files
git ls-files --other --exclude-standard > "$CHANGED_FILES"
if [ -n "${GIT_BASE:-}" ]; then
git diff --relative --name-only "$GIT_BASE" | filter_exists >> "$CHANGED_FILES"
else
git ls-files >> "$CHANGED_FILES"
fi
export CHANGED_FILES
}
# ***
# make
# ***
_make() {
if [ "${CI:-}" ]; then
if ! is_changed .; then
return
fi
if [ "${GITHUB_TOKEN:-}" ]; then
git config --global credential.helper store
cat > ~/.git-credentials <<EOF
https://cyborg-ts:$GITHUB_TOKEN@github.com
EOF
fi
git submodule update --init --recursive
fi
if [ -z "${MAKE_LOG:-}" ]; then
CI_MAKE_ROOT=1
export MAKE_LOG="./.make-log"
set +e
# runtty is necessary to allow make to write its output unbuffered. Otherwise the
# output is printed in surges as the write buffer is exceeded rather than a continous
# stream. Remove the runtty prefix to experience the laggy behaviour without it.
runtty make -sj8 "$@" \
| tee /dev/stderr "$MAKE_LOG" \
| stripansi > "$MAKE_LOG.txt"
else
CI_MAKE_ROOT=0
set +e
make -sj8 "$@" 2>&1
fi
code="$?"
set -e
if [ "$code" -ne 0 ]; then
notify "$code"
return "$code"
fi
# make doesn't return a nonsuccess exit code on recipe failures.
if <"$MAKE_LOG" grep -q 'make.* \*\*\* .* Error'; then
notify 1
return 1
fi
if [ -n "${CI:-}" ]; then
# Make sure nothing has changed
if ! git -c color.ui=always diff --exit-code; then
notify 1
return 1
fi
fi
notify 0
}
# ***
# misc
# ***
search_up() {(
file="$1"
git_root="$(git rev-parse --show-toplevel)"
while true; do
if [ -e "$file" ]; then
_echo "$file"
return
fi
if [ "$PWD" = "$git_root" ]; then
break
fi
cd ..
done
return 1
)}
# ***
# integrations
# ***
aws() {
# Without the redirection aws's cli will write directly to /dev/tty bypassing prefix.
command aws "$@" > /dev/stdout
}
notify() {
if [ "$CI_MAKE_ROOT" -eq 0 -o -z "${CI:-}" ]; then
return
fi
if [ -z "${SLACK_WEBHOOK_URL:-}" -a -z "${DISCORD_WEBHOOK_URL:-}" ]; then
# Not all repos need CI failure notifications.
return
fi
if [ -z "${GITHUB_RUN_ID:-}" ]; then
# For testing.
GITHUB_WORKFLOW=ci
GITHUB_JOB=fmt
GITHUB_REPOSITORY=terrastruct/src
GITHUB_RUN_ID=3086720699
GITHUB_JOB=all
elif [ "$GITHUB_REF_PROTECTED" != true ]; then
# We only want to notify on protected branch failures.
return
fi
code="$1"
if [ "$code" -eq 0 ]; then
status=success
emoji=🟢
else
status='failure'
emoji=🛑
if [ "${SLACK_WEBHOOK_URL:-}" ]; then
status="$status <!here>"
fi
fi
GITHUB_JOB_URL="$(curl -fsSL -H "Authorization: token $GITHUB_TOKEN" "https://api.github.com/repos/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID/jobs?per_page=100" | \
jq -r ".jobs[] | select( .name == \"$GITHUB_JOB\") | .html_url")"
if [ -z "$GITHUB_JOB_URL" ]; then
status="failed to query github job URL <!here>"
emoji=🛑
GITHUB_JOB_URL="https://github.com/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID"
fi
commit_sha="$(git rev-parse --short HEAD)"
commit_title="$(git show --no-patch '--format=%s')"
# We need to escape any & < > in $commit_title.
# See https://api.slack.com/reference/surfaces/formatting#escaping
commit_title="$(_echo "$commit_title" | sed -e 's/&/\&amp;/g' )"
commit_title="$(_echo "$commit_title" | sed -e 's/</\&lt;/g' )"
commit_title="$(_echo "$commit_title" | sed -e 's/>/\&gt;/g' )"
# Three differences.
# 1. @here doesn't work in discord code blocks but do in slack.
# 2. URLs don't work in discord code blocks but do in slack.
# 3. content vs text for the request JSON payload.
# 4. Discord handles spacing in and around code blocks really weirdly. If $GITHUB_JOB_URL
# has a newline between it and the end of the code block, it's rendered as a separate
# paragraph instead of just below the code block.
if [ "${DISCORD_WEBHOOK_URL:-}" ]; then
msg="---"
if [ "$code" -ne 0 ]; then
msg="$msg @here"
fi
msg="$msg\`\`\`
$emoji $commit_sha - $commit_title | $GITHUB_WORKFLOW/$GITHUB_JOB: $status
\`\`\`$GITHUB_JOB_URL"
json="{\"content\":$(printf %s "$msg" | jq -sR .)}"
url="$DISCORD_WEBHOOK_URL"
elif [ "${SLACK_WEBHOOK_URL:-}" ]; then
msg="\`\`\`
$emoji $commit_sha - $commit_title | $GITHUB_WORKFLOW/$GITHUB_JOB: $status
$GITHUB_JOB_URL
\`\`\`"
json="{\"text\":$(printf %s "$msg" | jq -sR .)}"
url="$SLACK_WEBHOOK_URL"
fi
sh_c curl -fsSL -X POST -H 'Content-type: application/json' --data "$json" "$url" > /dev/null
}