luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity
open-vault/.github/workflows/test-go.yml

370 lines
16 KiB
YAML
Raw Normal View History

Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
on:
workflow_call:
inputs:
go-arch:
description: The execution architecture (arm, amd64, etc.)
required: true
type: string
Add the FIPS testing job to GitHub Actions CI workflow (#19742)
2023-03-24 17:17:21 +00:00
enterprise:
description: A flag indicating if this workflow is executing for the enterprise repository.
required: true
type: string
total-runners:
description: Number of runners to use for executing the tests on.
required: true
type: string
env-vars:
description: A map of environment variables as JSON.
required: false
type: string
default: '{}'
Add a GHA job running Go tests with race detection enabled to the CI … (#19561) * Add a GHA job running Go tests with race detection enabled to the CI workflow * Incorporate logic from test-go-race into the test-go testing matrix * Make test-go testing matrix job names more meaningful * Fix some a bug in script's logic * Experiment: bump wait time in the failing TestLoginMFASinglePhase test to see if that makes a difference * Lower the wait time in TestLoginMFASinglePhase * Change the wait time in TestLoginMFASinglePhase to 15 * Add more detail to test-go testing matrix job names * Test whether we already have access to larger runners * Run Go tests with enabled data race detection from a separate job than the standard suite of tests * Tweak runner sizes for OSS * Try rebalancing test buckets * Change instance type for larger ENT runners * Undo rebalancing of test buckets as it changed nothing * Change instance type for larger OSS runners * Change the way we generate names for matrix jobs * Consolidate the Go build tags variables, update them to use comma as a separator and fix the if statement in test-go * Fix a typo
2023-03-21 18:13:40 +00:00
extra-flags:
description: A space-separated list of additional build flags.
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
required: false
type: string
Add tests based on vault binary (#20224) First steps towards docker-based tests: tests using vault binary in -dev or -dev-three-node modes.
2023-04-24 13:57:37 +00:00
default: ''
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
runs-on:
description: An expression indicating which kind of runners to use.
required: false
type: string
default: ubuntu-latest
[QT-589] Use the go module cache between CI and build (#21764) (#21790) In order to reliably store Go test times in the Github Actions cache we need to reduce our cache thrashing by not using more than 10gb over all of our caches. This change reduces our cache usage significantly by sharing Go module cache between our Go CI workflows and our build workflows. We lose our per-builder cache which will result in a bit of performance hit, but we'll enable better automatic rebalancing of our CI workflows. Overall we should see a per branch reduction in cache sizes from ~17gb to ~850mb. Some preliminary investigation into this new strategy: Prior build workflow strategy on a cache miss: Download modules: ~20s Build Vault: ~40s Upload cache: ~30s Total: ~1m30s Prior build workflow strategy on a cache hit: Download and decompress modules and build cache: ~12s Build Vault: ~15s Total: ~28s New build workflow strategy on a cache miss: Download modules: ~20 Build Vault: ~40s Upload cache: ~6s Total: ~1m6s New build workflow strategy on a cache hit: Download and decompress modules: ~3s Build Vault: ~40s Total: ~43s Expected time if we used no Go caching: Download modules: ~20 Build Vault: ~40s Total: ~1m Signed-off-by: Ryan Cragun <me@ryan.ec> Co-authored-by: Ryan Cragun <me@ryan.ec>
2023-07-12 19:26:00 +00:00
go-tags:
fix inconsistencies in test-go.yml between OSS and ENT repositories (#19943)
2023-04-03 14:26:55 +00:00
description: A comma-separated list of additional build tags to consider satisfied during the build.
required: false
type: string
[QT-576] Optimize build workflow (#21486) (#21601) Improve our build workflow execution time by using custom runners, improved caching and conditional Web UI builds. Runners ------- We improve our build times[0] by using larger custom runners[1] when building the UI and Vault. Caching ------- We improve Vault caching by keeping a cache for each build job. This strategy has the following properties which should result in faster build times when `go.sum` hasn't been changed from prior builds, or when a pull request is retried or updated after a prior successful build: * Builds will restore cached Go modules and Go build cache according to the Go version, platform, architecture, go tags, and hash of `go.sum` that relates to each individual build workflow. This reduces the amount of time it will take to download the cache on hits and upload the cache on misses. * Parallel build workflows won't clobber each others build cache. This results in much faster compile times after cache hits because the Go compiler can reuse the platform, architecture, and tag specific build cache that it created on prior runs. * Older modules and build cache will not be uploaded when creating a new cache. This should result in lean cache sizes on an ongoing basis. * On cache misses we will have to upload our compressed module and build cache. This will slightly extend the build time for pull requests that modify `go.sum`. Web UI ------ We no longer build the web UI in every build workflow. Instead we separate the UI building into its own workflow and cache the resulting assets. The same UI assets are restored from cache during build worklows. This strategy has the following properties: * If the `ui` directory has not changed from prior builds we'll restore `http/web_ui` from cache and skip building the UI for no reason. * We continue to use the built-in `yarn` caching functionality in `action/setup-node`. The default mode saves the `yarn` global cache. to improve UI build times if the cache has not been modified. Changes ------- * Add per platform/archicture Go module and build caching * Move UI building into a separate job and cache the result * Restore UI cache during build * Pin workflows Notes ----- [0] https://hashicorp.atlassian.net/browse/QT-578 [1] https://github.com/hashicorp/vault/actions/runs/5415830307/jobs/9844829929 Signed-off-by: Ryan Cragun <me@ryan.ec>
2023-07-05 21:19:49 +00:00
name:
description: A suffix to append to archived test results
required: false
default: ''
type: string
go-test-parallelism:
description: The parallelism parameter for Go tests
required: false
default: 20
type: number
timeout-minutes:
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
description: The maximum number of minutes that this workflow should run
[QT-576] Optimize build workflow (#21486) (#21601) Improve our build workflow execution time by using custom runners, improved caching and conditional Web UI builds. Runners ------- We improve our build times[0] by using larger custom runners[1] when building the UI and Vault. Caching ------- We improve Vault caching by keeping a cache for each build job. This strategy has the following properties which should result in faster build times when `go.sum` hasn't been changed from prior builds, or when a pull request is retried or updated after a prior successful build: * Builds will restore cached Go modules and Go build cache according to the Go version, platform, architecture, go tags, and hash of `go.sum` that relates to each individual build workflow. This reduces the amount of time it will take to download the cache on hits and upload the cache on misses. * Parallel build workflows won't clobber each others build cache. This results in much faster compile times after cache hits because the Go compiler can reuse the platform, architecture, and tag specific build cache that it created on prior runs. * Older modules and build cache will not be uploaded when creating a new cache. This should result in lean cache sizes on an ongoing basis. * On cache misses we will have to upload our compressed module and build cache. This will slightly extend the build time for pull requests that modify `go.sum`. Web UI ------ We no longer build the web UI in every build workflow. Instead we separate the UI building into its own workflow and cache the resulting assets. The same UI assets are restored from cache during build worklows. This strategy has the following properties: * If the `ui` directory has not changed from prior builds we'll restore `http/web_ui` from cache and skip building the UI for no reason. * We continue to use the built-in `yarn` caching functionality in `action/setup-node`. The default mode saves the `yarn` global cache. to improve UI build times if the cache has not been modified. Changes ------- * Add per platform/archicture Go module and build caching * Move UI building into a separate job and cache the result * Restore UI cache during build * Pin workflows Notes ----- [0] https://hashicorp.atlassian.net/browse/QT-578 [1] https://github.com/hashicorp/vault/actions/runs/5415830307/jobs/9844829929 Signed-off-by: Ryan Cragun <me@ryan.ec>
2023-07-05 21:19:49 +00:00
required: false
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
default: 60
[QT-576] Optimize build workflow (#21486) (#21601) Improve our build workflow execution time by using custom runners, improved caching and conditional Web UI builds. Runners ------- We improve our build times[0] by using larger custom runners[1] when building the UI and Vault. Caching ------- We improve Vault caching by keeping a cache for each build job. This strategy has the following properties which should result in faster build times when `go.sum` hasn't been changed from prior builds, or when a pull request is retried or updated after a prior successful build: * Builds will restore cached Go modules and Go build cache according to the Go version, platform, architecture, go tags, and hash of `go.sum` that relates to each individual build workflow. This reduces the amount of time it will take to download the cache on hits and upload the cache on misses. * Parallel build workflows won't clobber each others build cache. This results in much faster compile times after cache hits because the Go compiler can reuse the platform, architecture, and tag specific build cache that it created on prior runs. * Older modules and build cache will not be uploaded when creating a new cache. This should result in lean cache sizes on an ongoing basis. * On cache misses we will have to upload our compressed module and build cache. This will slightly extend the build time for pull requests that modify `go.sum`. Web UI ------ We no longer build the web UI in every build workflow. Instead we separate the UI building into its own workflow and cache the resulting assets. The same UI assets are restored from cache during build worklows. This strategy has the following properties: * If the `ui` directory has not changed from prior builds we'll restore `http/web_ui` from cache and skip building the UI for no reason. * We continue to use the built-in `yarn` caching functionality in `action/setup-node`. The default mode saves the `yarn` global cache. to improve UI build times if the cache has not been modified. Changes ------- * Add per platform/archicture Go module and build caching * Move UI building into a separate job and cache the result * Restore UI cache during build * Pin workflows Notes ----- [0] https://hashicorp.atlassian.net/browse/QT-578 [1] https://github.com/hashicorp/vault/actions/runs/5415830307/jobs/9844829929 Signed-off-by: Ryan Cragun <me@ryan.ec>
2023-07-05 21:19:49 +00:00
type: number
Add the FIPS testing job to GitHub Actions CI workflow (#19742)
2023-03-24 17:17:21 +00:00
env: ${{ fromJSON(inputs.env-vars) }}
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
jobs:
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
test-matrix:
backport of commit 30aac443d0037852b0a5e4b50d59a9bedc5e4445 (#21324) Co-authored-by: miagilepner <mia.epner@hashicorp.com>
2023-06-16 17:10:36 +00:00
permissions:
id-token: write # Note: this permission is explicitly required for Vault auth
contents: read
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
runs-on: ${{ fromJSON(inputs.runs-on) }}
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
steps:
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
- uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
[QT-589] Use the go module cache between CI and build (#21764) (#21790) In order to reliably store Go test times in the Github Actions cache we need to reduce our cache thrashing by not using more than 10gb over all of our caches. This change reduces our cache usage significantly by sharing Go module cache between our Go CI workflows and our build workflows. We lose our per-builder cache which will result in a bit of performance hit, but we'll enable better automatic rebalancing of our CI workflows. Overall we should see a per branch reduction in cache sizes from ~17gb to ~850mb. Some preliminary investigation into this new strategy: Prior build workflow strategy on a cache miss: Download modules: ~20s Build Vault: ~40s Upload cache: ~30s Total: ~1m30s Prior build workflow strategy on a cache hit: Download and decompress modules and build cache: ~12s Build Vault: ~15s Total: ~28s New build workflow strategy on a cache miss: Download modules: ~20 Build Vault: ~40s Upload cache: ~6s Total: ~1m6s New build workflow strategy on a cache hit: Download and decompress modules: ~3s Build Vault: ~40s Total: ~43s Expected time if we used no Go caching: Download modules: ~20 Build Vault: ~40s Total: ~1m Signed-off-by: Ryan Cragun <me@ryan.ec> Co-authored-by: Ryan Cragun <me@ryan.ec>
2023-07-12 19:26:00 +00:00
- uses: ./.github/actions/set-up-go
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
with:
[QT-589] Use the go module cache between CI and build (#21764) (#21790) In order to reliably store Go test times in the Github Actions cache we need to reduce our cache thrashing by not using more than 10gb over all of our caches. This change reduces our cache usage significantly by sharing Go module cache between our Go CI workflows and our build workflows. We lose our per-builder cache which will result in a bit of performance hit, but we'll enable better automatic rebalancing of our CI workflows. Overall we should see a per branch reduction in cache sizes from ~17gb to ~850mb. Some preliminary investigation into this new strategy: Prior build workflow strategy on a cache miss: Download modules: ~20s Build Vault: ~40s Upload cache: ~30s Total: ~1m30s Prior build workflow strategy on a cache hit: Download and decompress modules and build cache: ~12s Build Vault: ~15s Total: ~28s New build workflow strategy on a cache miss: Download modules: ~20 Build Vault: ~40s Upload cache: ~6s Total: ~1m6s New build workflow strategy on a cache hit: Download and decompress modules: ~3s Build Vault: ~40s Total: ~43s Expected time if we used no Go caching: Download modules: ~20 Build Vault: ~40s Total: ~1m Signed-off-by: Ryan Cragun <me@ryan.ec> Co-authored-by: Ryan Cragun <me@ryan.ec>
2023-07-12 19:26:00 +00:00
github-token: ${{ secrets.ELEVATED_GITHUB_TOKEN }}
no-restore: true # We don't need the vault Go modules when generating indices
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
- name: Authenticate to Vault
id: vault-auth
if: github.repository == 'hashicorp/vault-enterprise'
run: vault-auth
- name: Fetch Secrets
id: secrets
if: github.repository == 'hashicorp/vault-enterprise'
uses: hashicorp/vault-action@130d1f5f4fe645bb6c83e4225c04d64cfb62de6e
with:
url: ${{ steps.vault-auth.outputs.addr }}
caCertificate: ${{ steps.vault-auth.outputs.ca_certificate }}
token: ${{ steps.vault-auth.outputs.token }}
secrets: |
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
kv/data/github/${{ github.repository }}/datadog-ci DATADOG_API_KEY;
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
kv/data/github/${{ github.repository }}/github-token username-and-token | github-token;
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
kv/data/github/${{ github.repository }}/license license_1 | VAULT_LICENSE_CI;
kv/data/github/${{ github.repository }}/license license_2 | VAULT_LICENSE_2;
kv/data/github/${{ github.repository }}/hcp-link HCP_API_ADDRESS;
kv/data/github/${{ github.repository }}/hcp-link HCP_AUTH_URL;
kv/data/github/${{ github.repository }}/hcp-link HCP_CLIENT_ID;
kv/data/github/${{ github.repository }}/hcp-link HCP_CLIENT_SECRET;
kv/data/github/${{ github.repository }}/hcp-link HCP_RESOURCE_ID;
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
- id: setup-git-private
name: Setup Git configuration (private)
if: github.repository == 'hashicorp/vault-enterprise'
run: |
git config --global url."https://${{ steps.secrets.outputs.github-token }}@github.com".insteadOf https://github.com
- id: setup-git-public
name: Setup Git configuration (public)
if: github.repository != 'hashicorp/vault-enterprise'
run: |
git config --global url."https://${{ secrets.ELEVATED_GITHUB_TOKEN}}@github.com".insteadOf https://github.com
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
- run: go install gotest.tools/gotestsum@v1.9.0
- run: mkdir -p test-results/go-test
# We use a unique "read-" prefix to guarantee that we're not scribbling on
# the aggregated test data in the event of test failure. This key is
# unique for every test run and just used to restore the previous
# aggregated data. We persist all test data after a successful run and
# store that in the go-test-reports- cache.
- id: restore-from-cache
uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3.3.1
with:
path: test-results/go-test
key: read-go-test-reports-${{ github.run_number }}
restore-keys: go-test-reports-
- name: List cached results
id: list-cached-results
run: ls -lhR test-results/go-test
- name: Build matrix excluding binary and integration tests
id: build-non-binary
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
env:
GOPRIVATE: github.com/hashicorp/*
run: |
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
(
go list ./... | grep -v "_binary" | grep -v "vault/integ" | gotestsum tool ci-matrix --debug \
--partitions 16 \
--timing-files 'test-results/go-test/*.json' > matrix.json
)
- name: Capture list of binary tests
id: list-binary-tests
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
run: |
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
LIST="$(go list ./... | grep "_binary" | xargs)"
echo "list=$LIST" >> "$GITHUB_OUTPUT"
- name: Build complete matrix
id: build
run: |
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
set -exo pipefail
export BINARY_TESTS="${{ steps.list-binary-tests.outputs.list }}"
(
echo -n "matrix="
jq -c --arg BINARY "${BINARY_TESTS}" \
'.include += [{
"id": 16,
"estimatedRuntime": "N/A",
"packages": $BINARY,
"description": "partition 16 - binary test packages"
}]' matrix.json
) >> "$GITHUB_OUTPUT"
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
outputs:
matrix: ${{ steps.build.outputs.matrix }}
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
test-go:
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
needs: test-matrix
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
permissions:
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
actions: read
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
contents: read
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
id-token: write # Note: this permission is explicitly required for Vault auth
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
runs-on: ${{ fromJSON(inputs.runs-on) }}
strategy:
fail-fast: false
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
matrix: ${{ fromJSON(needs.test-matrix.outputs.matrix) }}
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
env:
GOPRIVATE: github.com/hashicorp/*
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
TIMEOUT_IN_MINUTES: ${{ inputs.timeout-minutes }}
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
steps:
[QT-576] Optimize build workflow (#21486) (#21601) Improve our build workflow execution time by using custom runners, improved caching and conditional Web UI builds. Runners ------- We improve our build times[0] by using larger custom runners[1] when building the UI and Vault. Caching ------- We improve Vault caching by keeping a cache for each build job. This strategy has the following properties which should result in faster build times when `go.sum` hasn't been changed from prior builds, or when a pull request is retried or updated after a prior successful build: * Builds will restore cached Go modules and Go build cache according to the Go version, platform, architecture, go tags, and hash of `go.sum` that relates to each individual build workflow. This reduces the amount of time it will take to download the cache on hits and upload the cache on misses. * Parallel build workflows won't clobber each others build cache. This results in much faster compile times after cache hits because the Go compiler can reuse the platform, architecture, and tag specific build cache that it created on prior runs. * Older modules and build cache will not be uploaded when creating a new cache. This should result in lean cache sizes on an ongoing basis. * On cache misses we will have to upload our compressed module and build cache. This will slightly extend the build time for pull requests that modify `go.sum`. Web UI ------ We no longer build the web UI in every build workflow. Instead we separate the UI building into its own workflow and cache the resulting assets. The same UI assets are restored from cache during build worklows. This strategy has the following properties: * If the `ui` directory has not changed from prior builds we'll restore `http/web_ui` from cache and skip building the UI for no reason. * We continue to use the built-in `yarn` caching functionality in `action/setup-node`. The default mode saves the `yarn` global cache. to improve UI build times if the cache has not been modified. Changes ------- * Add per platform/archicture Go module and build caching * Move UI building into a separate job and cache the result * Restore UI cache during build * Pin workflows Notes ----- [0] https://hashicorp.atlassian.net/browse/QT-578 [1] https://github.com/hashicorp/vault/actions/runs/5415830307/jobs/9844829929 Signed-off-by: Ryan Cragun <me@ryan.ec>
2023-07-05 21:19:49 +00:00
- uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
[QT-589] Use the go module cache between CI and build (#21764) (#21790) In order to reliably store Go test times in the Github Actions cache we need to reduce our cache thrashing by not using more than 10gb over all of our caches. This change reduces our cache usage significantly by sharing Go module cache between our Go CI workflows and our build workflows. We lose our per-builder cache which will result in a bit of performance hit, but we'll enable better automatic rebalancing of our CI workflows. Overall we should see a per branch reduction in cache sizes from ~17gb to ~850mb. Some preliminary investigation into this new strategy: Prior build workflow strategy on a cache miss: Download modules: ~20s Build Vault: ~40s Upload cache: ~30s Total: ~1m30s Prior build workflow strategy on a cache hit: Download and decompress modules and build cache: ~12s Build Vault: ~15s Total: ~28s New build workflow strategy on a cache miss: Download modules: ~20 Build Vault: ~40s Upload cache: ~6s Total: ~1m6s New build workflow strategy on a cache hit: Download and decompress modules: ~3s Build Vault: ~40s Total: ~43s Expected time if we used no Go caching: Download modules: ~20 Build Vault: ~40s Total: ~1m Signed-off-by: Ryan Cragun <me@ryan.ec> Co-authored-by: Ryan Cragun <me@ryan.ec>
2023-07-12 19:26:00 +00:00
- uses: ./.github/actions/set-up-go
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
with:
[QT-589] Use the go module cache between CI and build (#21764) (#21790) In order to reliably store Go test times in the Github Actions cache we need to reduce our cache thrashing by not using more than 10gb over all of our caches. This change reduces our cache usage significantly by sharing Go module cache between our Go CI workflows and our build workflows. We lose our per-builder cache which will result in a bit of performance hit, but we'll enable better automatic rebalancing of our CI workflows. Overall we should see a per branch reduction in cache sizes from ~17gb to ~850mb. Some preliminary investigation into this new strategy: Prior build workflow strategy on a cache miss: Download modules: ~20s Build Vault: ~40s Upload cache: ~30s Total: ~1m30s Prior build workflow strategy on a cache hit: Download and decompress modules and build cache: ~12s Build Vault: ~15s Total: ~28s New build workflow strategy on a cache miss: Download modules: ~20 Build Vault: ~40s Upload cache: ~6s Total: ~1m6s New build workflow strategy on a cache hit: Download and decompress modules: ~3s Build Vault: ~40s Total: ~43s Expected time if we used no Go caching: Download modules: ~20 Build Vault: ~40s Total: ~1m Signed-off-by: Ryan Cragun <me@ryan.ec> Co-authored-by: Ryan Cragun <me@ryan.ec>
2023-07-12 19:26:00 +00:00
github-token: ${{ secrets.ELEVATED_GITHUB_TOKEN }}
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
- name: Authenticate to Vault
id: vault-auth
if: github.repository == 'hashicorp/vault-enterprise'
run: vault-auth
- name: Fetch Secrets
id: secrets
if: github.repository == 'hashicorp/vault-enterprise'
uses: hashicorp/vault-action@130d1f5f4fe645bb6c83e4225c04d64cfb62de6e
with:
url: ${{ steps.vault-auth.outputs.addr }}
caCertificate: ${{ steps.vault-auth.outputs.ca_certificate }}
token: ${{ steps.vault-auth.outputs.token }}
secrets: |
Add DataDog test visibility to the test-go job in CI (#19890)
2023-03-31 17:15:57 +00:00
kv/data/github/${{ github.repository }}/datadog-ci DATADOG_API_KEY;
fix inconsistencies in test-go.yml between OSS and ENT repositories (#19943)
2023-04-03 14:26:55 +00:00
kv/data/github/${{ github.repository }}/github-token username-and-token | github-token;
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
kv/data/github/${{ github.repository }}/license license_1 | VAULT_LICENSE_CI;
kv/data/github/${{ github.repository }}/license license_2 | VAULT_LICENSE_2;
kv/data/github/${{ github.repository }}/hcp-link HCP_API_ADDRESS;
kv/data/github/${{ github.repository }}/hcp-link HCP_AUTH_URL;
kv/data/github/${{ github.repository }}/hcp-link HCP_CLIENT_ID;
kv/data/github/${{ github.repository }}/hcp-link HCP_CLIENT_SECRET;
kv/data/github/${{ github.repository }}/hcp-link HCP_RESOURCE_ID;
fix inconsistencies in test-go.yml between OSS and ENT repositories (#19943)
2023-04-03 14:26:55 +00:00
- id: setup-git-private
name: Setup Git configuration (private)
if: github.repository == 'hashicorp/vault-enterprise'
run: |
git config --global url."https://${{ steps.secrets.outputs.github-token }}@github.com".insteadOf https://github.com
- id: setup-git-public
name: Setup Git configuration (public)
if: github.repository != 'hashicorp/vault-enterprise'
run: |
git config --global url."https://${{ secrets.ELEVATED_GITHUB_TOKEN}}@github.com".insteadOf https://github.com
Use a dedicated runner for the binary-based tests. (#20377)
2023-04-27 13:41:49 +00:00
- id: build
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
if: contains(matrix.packages, '_binary')
Use a dedicated runner for the binary-based tests. (#20377)
2023-04-27 13:41:49 +00:00
env:
GOPRIVATE: github.com/hashicorp/*
run: time make ci-bootstrap dev
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
- id: run-go-tests
name: Run Go tests
timeout-minutes: ${{ fromJSON(env.TIMEOUT_IN_MINUTES) }}
Docker testing: handle licensing, different images per node (#20347)
2023-04-25 21:11:46 +00:00
env:
COMMIT_SHA: ${{ github.sha }}
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
run: |
set -exo pipefail
# Build the dynamically generated source files.
make prep
# We don't want VAULT_LICENSE set when running Go tests, because that's
# not what developers have in their environments and it could break some
# tests; it would be like setting VAULT_TOKEN. However some non-Go
# CI commands, like the UI tests, shouldn't have to worry about licensing.
[QT-589] Use the go module cache between CI and build (#21764) (#21790) In order to reliably store Go test times in the Github Actions cache we need to reduce our cache thrashing by not using more than 10gb over all of our caches. This change reduces our cache usage significantly by sharing Go module cache between our Go CI workflows and our build workflows. We lose our per-builder cache which will result in a bit of performance hit, but we'll enable better automatic rebalancing of our CI workflows. Overall we should see a per branch reduction in cache sizes from ~17gb to ~850mb. Some preliminary investigation into this new strategy: Prior build workflow strategy on a cache miss: Download modules: ~20s Build Vault: ~40s Upload cache: ~30s Total: ~1m30s Prior build workflow strategy on a cache hit: Download and decompress modules and build cache: ~12s Build Vault: ~15s Total: ~28s New build workflow strategy on a cache miss: Download modules: ~20 Build Vault: ~40s Upload cache: ~6s Total: ~1m6s New build workflow strategy on a cache hit: Download and decompress modules: ~3s Build Vault: ~40s Total: ~43s Expected time if we used no Go caching: Download modules: ~20 Build Vault: ~40s Total: ~1m Signed-off-by: Ryan Cragun <me@ryan.ec> Co-authored-by: Ryan Cragun <me@ryan.ec>
2023-07-12 19:26:00 +00:00
# So we provide the tests which want an externally supplied license with licenses
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
# via the VAULT_LICENSE_CI and VAULT_LICENSE_2 environment variables, and here we unset it.
Migrating CircleCI Jobs to GHA Workflow (#19662) * address lint reports * add diff-oss-ci and test-ui jobs to ci GHA workflow * Add actions linter workflow * Fix actions linter errors * pin 3rd party components with SHA hash and limit actionlint workflow to pull requests touching paths under .github directory * Fix actionlint runner * pin SHA hash of 3rd party components use .go-version file to provide go version to setup-go action remove unncessary ref parameter in checkout action --------- Co-authored-by: Brian Shore <bshore@hashicorp.com>
2023-03-22 19:02:06 +00:00
# shellcheck disable=SC2034
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
VAULT_LICENSE=
# Assign test licenses to relevant variables if they aren't already
if [[ ${{ github.repository }} == 'hashicorp/vault' ]]; then
export VAULT_LICENSE_CI=${{ secrets.ci_license }}
export VAULT_LICENSE_2=${{ secrets.ci_license_2 }}
export HCP_API_ADDRESS=${{ secrets.HCP_API_ADDRESS }}
export HCP_AUTH_URL=${{ secrets.HCP_AUTH_URL }}
export HCP_CLIENT_ID=${{ secrets.HCP_CLIENT_ID }}
export HCP_CLIENT_SECRET=${{ secrets.HCP_CLIENT_SECRET }}
export HCP_RESOURCE_ID=${{ secrets.HCP_RESOURCE_ID }}
comment out HCP_SCADA_ADDRESS environment variable (#19583)
2023-03-16 17:04:23 +00:00
# Temporarily removing this variable to cause HCP Link tests
# to be skipped.
#export HCP_SCADA_ADDRESS=${{ secrets.HCP_SCADA_ADDRESS }}
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
fi
Add tests based on vault binary (#20224) First steps towards docker-based tests: tests using vault binary in -dev or -dev-three-node modes.
2023-04-24 13:57:37 +00:00
if [ -f bin/vault ]; then
VAULT_BINARY="$(pwd)/bin/vault"
export VAULT_BINARY
fi
[QT-589] Use the go module cache between CI and build (#21764) (#21790) In order to reliably store Go test times in the Github Actions cache we need to reduce our cache thrashing by not using more than 10gb over all of our caches. This change reduces our cache usage significantly by sharing Go module cache between our Go CI workflows and our build workflows. We lose our per-builder cache which will result in a bit of performance hit, but we'll enable better automatic rebalancing of our CI workflows. Overall we should see a per branch reduction in cache sizes from ~17gb to ~850mb. Some preliminary investigation into this new strategy: Prior build workflow strategy on a cache miss: Download modules: ~20s Build Vault: ~40s Upload cache: ~30s Total: ~1m30s Prior build workflow strategy on a cache hit: Download and decompress modules and build cache: ~12s Build Vault: ~15s Total: ~28s New build workflow strategy on a cache miss: Download modules: ~20 Build Vault: ~40s Upload cache: ~6s Total: ~1m6s New build workflow strategy on a cache hit: Download and decompress modules: ~3s Build Vault: ~40s Total: ~43s Expected time if we used no Go caching: Download modules: ~20 Build Vault: ~40s Total: ~1m Signed-off-by: Ryan Cragun <me@ryan.ec> Co-authored-by: Ryan Cragun <me@ryan.ec>
2023-07-12 19:26:00 +00:00
backport of commit 20675ccef0944571f17fd06969147fa476fc68ba (#21834) Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
2023-07-13 20:08:22 +00:00
# On a release branch, add a flag to rerun failed tests
backport of commit 384cdd791c5a473374fe1a0f7cb9b9d3f972bcf7 (#21845) Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
2023-07-14 01:22:15 +00:00
if [[ "${{ github.ref_name }}" = "release/*" ]]; then
backport of commit 20675ccef0944571f17fd06969147fa476fc68ba (#21834) Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
2023-07-13 20:08:22 +00:00
RERUN_FAILS="--rerun-fails"
fi
backport of commit 384cdd791c5a473374fe1a0f7cb9b9d3f972bcf7 (#21845) Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
2023-07-14 01:22:15 +00:00
# shellcheck disable=SC2086 # can't quote RERUN_FAILS
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
GOARCH=${{ inputs.go-arch }} \
go run gotest.tools/gotestsum --format=short-verbose \
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
--junitfile test-results/go-test/results-${{ matrix.id }}.xml \
--jsonfile test-results/go-test/results-${{ matrix.id }}.json \
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
--jsonfile-timing-events failure-summary-${{ matrix.id }}${{ inputs.name != '' && '-' || '' }}${{ inputs.name }}.json \
backport of commit 20675ccef0944571f17fd06969147fa476fc68ba (#21834) Co-authored-by: akshya96 <87045294+akshya96@users.noreply.github.com>
2023-07-13 20:08:22 +00:00
$RERUN_FAILS \
--packages "${{ matrix.packages }}" \
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
-- \
[QT-589] Use the go module cache between CI and build (#21764) (#21790) In order to reliably store Go test times in the Github Actions cache we need to reduce our cache thrashing by not using more than 10gb over all of our caches. This change reduces our cache usage significantly by sharing Go module cache between our Go CI workflows and our build workflows. We lose our per-builder cache which will result in a bit of performance hit, but we'll enable better automatic rebalancing of our CI workflows. Overall we should see a per branch reduction in cache sizes from ~17gb to ~850mb. Some preliminary investigation into this new strategy: Prior build workflow strategy on a cache miss: Download modules: ~20s Build Vault: ~40s Upload cache: ~30s Total: ~1m30s Prior build workflow strategy on a cache hit: Download and decompress modules and build cache: ~12s Build Vault: ~15s Total: ~28s New build workflow strategy on a cache miss: Download modules: ~20 Build Vault: ~40s Upload cache: ~6s Total: ~1m6s New build workflow strategy on a cache hit: Download and decompress modules: ~3s Build Vault: ~40s Total: ~43s Expected time if we used no Go caching: Download modules: ~20 Build Vault: ~40s Total: ~1m Signed-off-by: Ryan Cragun <me@ryan.ec> Co-authored-by: Ryan Cragun <me@ryan.ec>
2023-07-12 19:26:00 +00:00
-tags "${{ inputs.go-tags }}" \
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
-timeout=${{ env.TIMEOUT_IN_MINUTES }}m \
[QT-576] Optimize build workflow (#21486) (#21601) Improve our build workflow execution time by using custom runners, improved caching and conditional Web UI builds. Runners ------- We improve our build times[0] by using larger custom runners[1] when building the UI and Vault. Caching ------- We improve Vault caching by keeping a cache for each build job. This strategy has the following properties which should result in faster build times when `go.sum` hasn't been changed from prior builds, or when a pull request is retried or updated after a prior successful build: * Builds will restore cached Go modules and Go build cache according to the Go version, platform, architecture, go tags, and hash of `go.sum` that relates to each individual build workflow. This reduces the amount of time it will take to download the cache on hits and upload the cache on misses. * Parallel build workflows won't clobber each others build cache. This results in much faster compile times after cache hits because the Go compiler can reuse the platform, architecture, and tag specific build cache that it created on prior runs. * Older modules and build cache will not be uploaded when creating a new cache. This should result in lean cache sizes on an ongoing basis. * On cache misses we will have to upload our compressed module and build cache. This will slightly extend the build time for pull requests that modify `go.sum`. Web UI ------ We no longer build the web UI in every build workflow. Instead we separate the UI building into its own workflow and cache the resulting assets. The same UI assets are restored from cache during build worklows. This strategy has the following properties: * If the `ui` directory has not changed from prior builds we'll restore `http/web_ui` from cache and skip building the UI for no reason. * We continue to use the built-in `yarn` caching functionality in `action/setup-node`. The default mode saves the `yarn` global cache. to improve UI build times if the cache has not been modified. Changes ------- * Add per platform/archicture Go module and build caching * Move UI building into a separate job and cache the result * Restore UI cache during build * Pin workflows Notes ----- [0] https://hashicorp.atlassian.net/browse/QT-578 [1] https://github.com/hashicorp/vault/actions/runs/5415830307/jobs/9844829929 Signed-off-by: Ryan Cragun <me@ryan.ec>
2023-07-05 21:19:49 +00:00
-parallel=${{ inputs.go-test-parallelism }} \
Add a GHA job running Go tests with race detection enabled to the CI … (#19561) * Add a GHA job running Go tests with race detection enabled to the CI workflow * Incorporate logic from test-go-race into the test-go testing matrix * Make test-go testing matrix job names more meaningful * Fix some a bug in script's logic * Experiment: bump wait time in the failing TestLoginMFASinglePhase test to see if that makes a difference * Lower the wait time in TestLoginMFASinglePhase * Change the wait time in TestLoginMFASinglePhase to 15 * Add more detail to test-go testing matrix job names * Test whether we already have access to larger runners * Run Go tests with enabled data race detection from a separate job than the standard suite of tests * Tweak runner sizes for OSS * Try rebalancing test buckets * Change instance type for larger ENT runners * Undo rebalancing of test buckets as it changed nothing * Change instance type for larger OSS runners * Change the way we generate names for matrix jobs * Consolidate the Go build tags variables, update them to use comma as a separator and fix the if statement in test-go * Fix a typo
2023-03-21 18:13:40 +00:00
${{ inputs.extra-flags }} \
Add DataDog test visibility to the test-go job in CI (#19890)
2023-03-31 17:15:57 +00:00
- name: Prepare datadog-ci
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
if: github.repository == 'hashicorp/vault' && (success() || failure())
Add DataDog test visibility to the test-go job in CI (#19890)
2023-03-31 17:15:57 +00:00
continue-on-error: true
run: |
curl -L --fail "https://github.com/DataDog/datadog-ci/releases/latest/download/datadog-ci_linux-x64" --output "/usr/local/bin/datadog-ci"
chmod +x /usr/local/bin/datadog-ci
- name: Upload test results to DataDog
continue-on-error: true
env:
DD_ENV: ci
run: |
if [[ ${{ github.repository }} == 'hashicorp/vault' ]]; then
export DATADOG_API_KEY=${{ secrets.DATADOG_API_KEY }}
fi
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
datadog-ci junit upload --service "$GITHUB_REPOSITORY" test-results/go-test/results-${{ matrix.id }}.xml
backport of commit eecae3a827f523a25359068ad6714af8f28c6ced (#21550) (#21556) Co-authored-by: miagilepner <mia.epner@hashicorp.com>
2023-07-04 15:07:05 +00:00
if: success() || failure()
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
- name: Archive test results
ci: request vpc quota increase (#20360) * Fix regions on two service quotas * Request an increase in VPCs per region * Pin github actions workflows Signed-off-by: Ryan Cragun <me@ryan.ec>
2023-05-22 17:18:06 +00:00
uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
with:
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
name: test-results${{ inputs.name != '' && '-' || '' }}${{ inputs.name }}
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
path: test-results/go-test
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
if: success() || failure()
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
# GitHub Actions doesn't expose the job ID or the URL to the job execution,
# so we have to fetch it from the API
- name: Fetch job logs URL
uses: actions/github-script@d7906e4ad0b1822421a7e6a35d5ca353c962f410 # v6.4.1
if: success() || failure()
continue-on-error: true
with:
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
retries: 3
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
script: |
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
// We surround the whole script with a try-catch block, to avoid each of the matrix jobs
// displaying an error in the GHA workflow run annotations, which gets very noisy.
// If an error occurs, it will be logged so that we don't lose any information about the reason for failure.
try {
const fs = require("fs");
const result = await github.rest.actions.listJobsForWorkflowRun({
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
owner: context.repo.owner,
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
per_page: 100,
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
repo: context.repo.repo,
run_id: context.runId,
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
});
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
// Determine what job name to use for the query. These values are hardcoded, because GHA doesn't
// expose them in any of the contexts available within a workflow run.
let prefixToSearchFor;
switch ("${{ inputs.name }}") {
case "race":
prefixToSearchFor = 'Run Go tests with data race detection / test-go (${{ matrix.id }},'
break
case "fips":
prefixToSearchFor = 'Run Go tests with FIPS configuration / test-go (${{ matrix.id }},'
break
default:
prefixToSearchFor = 'Run Go tests / test-go (${{ matrix.id }},'
}
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
const jobData = result.data.jobs.filter(
(job) => job.name.startsWith(prefixToSearchFor)
);
const url = jobData[0].html_url;
const envVarName = "GH_JOB_URL";
const envVar = envVarName + "=" + url;
const envFile = process.env.GITHUB_ENV;
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
fs.appendFile(envFile, envVar, (err) => {
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
if (err) throw err;
console.log("Successfully set " + envVarName + " to: " + url);
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
});
} catch (error) {
console.log("Error: " + error);
return
}
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
- name: Prepare failure summary
if: success() || failure()
Go test failure summaries fixes and improvements (#21888) (#21892) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-17 16:13:15 +00:00
continue-on-error: true
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
run: |
# This jq query filters out successful tests, leaving only the failures.
# Then, it formats the results into rows of a Markdown table.
# An example row will resemble this:
# | github.com/hashicorp/vault/package | TestName | fips | 0 | 2 | [view results](github.com/link-to-logs) |
jq -r -n 'inputs
| select(.Action == "fail")
| "| ${{inputs.name}} | \(.Package) | \(.Test // "-") | \(.Elapsed) | ${{ matrix.id }} | [view test results :scroll:](${{ env.GH_JOB_URL }}) |"' \
failure-summary-${{ matrix.id }}${{ inputs.name != '' && '-' || '' }}${{inputs.name}}.json \
>> failure-summary-${{ matrix.id }}${{ inputs.name != '' && '-' || '' }}${{inputs.name}}.md
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
- name: Upload failure summary
uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
if: success() || failure()
Introduce GitHub Actions CI Workflow (#19449) * Migrate subset of CircleCI ci workflow to GitHub Actions Runs test-go and test-go-remote-docker with a static splitting of test packages * [skip actions] add comment to explain the purpose of test-generate-test-package-lists.sh and what to do if it fails * change trigger to push --------- Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-03-06 21:57:55 +00:00
with:
VAULT-17592 Extract failed Go test results across runners (#21625) (#21672) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-07 17:52:01 +00:00
name: failure-summary
VAULT-12958 Add link to logs to the test failure summary in CI (#21736) (#21825) Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
2023-07-13 18:36:30 +00:00
path: failure-summary-${{ matrix.id }}${{ inputs.name != '' && '-' || '' }}${{inputs.name}}.md
backport of commit 702c52148988fc6907b8ee6457accd1536a2c25f (#21781) Co-authored-by: Mike Palmiotto <mike.palmiotto@hashicorp.com>
2023-07-13 15:23:53 +00:00
test-collect-reports:
needs: test-go
runs-on: ${{ fromJSON(inputs.runs-on) }}
steps:
- uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3.3.1
with:
path: test-results/go-test
key: go-test-reports-${{ github.run_number }}
restore-keys: go-test-reports-
- uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
with:
name: test-results
path: test-results/go-test
- run: |
ls -lhR test-results/go-test
find test-results/go-test -mindepth 1 -mtime +3 -delete
ls -lhR test-results/go-test