Merge pull request #2089 from hyperledger/develop

Hyperledger Iroha v1.0 Release Candidate 3
hyperledger-iroha · Feb 11, 2019 · 731d2c7 · 731d2c7
2 parents 7fc63c0 + 228c49c
commit 731d2c7
Show file tree

Hide file tree

Showing 461 changed files with 8,476 additions and 13,150 deletions.
diff --git a/.jenkinsci-new/artifacts.groovy b/.jenkinsci-new/artifacts.groovy
@@ -0,0 +1,53 @@
+#!/usr/bin/env groovy
+/**
+ * Copyright Soramitsu Co., Ltd. All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+
+//
+// Upload Artifacts to nexus
+//
+
+def uploadArtifacts(filePaths, uploadPath, artifactServers=['nexus.iroha.tech']) {
+  def filePathsConverted = []
+  agentType = sh(script: 'uname', returnStdout: true).trim()
+  filePaths.each {
+    fp = sh(script: "ls -d ${it} | tr '\n' ','", returnStdout: true).trim()
+    filePathsConverted.addAll(fp.split(','))
+  }
+  def shaSumBinary = 'sha256sum'
+  def md5SumBinary = 'md5sum'
+  def gpgKeyBinary = 'gpg --armor --detach-sign --no-tty --batch --yes --passphrase-fd 0'
+  if (agentType == 'Darwin') {
+    shaSumBinary = 'shasum -a 256'
+    md5SumBinary = 'md5 -r'
+    gpgKeyBinary = 'GPG_TTY=\$(tty) gpg --pinentry-mode loopback --armor --detach-sign --no-tty --batch --yes --passphrase-fd 0'
+  }
+  sh "> \$(pwd)/batch.txt"
+
+  withCredentials([file(credentialsId: 'ci_gpg_privkey', variable: 'CI_GPG_PRIVKEY'), string(credentialsId: 'ci_gpg_masterkey', variable: 'CI_GPG_MASTERKEY')]) {
+    if (!agentType.contains('MSYS_NT')) {
+      sh "gpg --yes --batch --no-tty --import ${CI_GPG_PRIVKEY} || true"
+    }
+    filePathsConverted.each {
+      sh "echo ${it} >> \$(pwd)/batch.txt;"
+      sh "$shaSumBinary ${it} | cut -d' ' -f1 > \$(pwd)/\$(basename ${it}).sha256"
+      sh "$md5SumBinary ${it} | cut -d' ' -f1 > \$(pwd)/\$(basename ${it}).md5"
+      if (!agentType.contains('MSYS_NT')) {
+        sh "echo \"${CI_GPG_MASTERKEY}\" | $gpgKeyBinary -o \$(pwd)/\$(basename ${it}).ascfile ${it}"
+        sh "echo \$(pwd)/\$(basename ${it}).ascfile >> \$(pwd)/batch.txt;"
+      }
+      sh "echo \$(pwd)/\$(basename ${it}).sha256 >> \$(pwd)/batch.txt;"
+      sh "echo \$(pwd)/\$(basename ${it}).md5 >> \$(pwd)/batch.txt;"
+    }
+  }
+
+  withCredentials([usernamePassword(credentialsId: 'ci_nexus', passwordVariable: 'NEXUS_PASS', usernameVariable: 'NEXUS_USER')]) {
+    artifactServers.each {
+      sh(script: "while read line; do curl --http1.1 -u ${NEXUS_USER}:${NEXUS_PASS} --upload-file \$line https://${it}/repository/artifacts/${uploadPath}/ ; done < \$(pwd)/batch.txt")
+    }
+  }
+}
+
+return this
+
diff --git a/.jenkinsci-new/build.groovy b/.jenkinsci-new/build.groovy
@@ -0,0 +1,67 @@
+#!/usr/bin/env groovy
+/**
+ * Copyright Soramitsu Co., Ltd. All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+
+//
+// functions we use when build iroha
+//
+
+def cmakeConfigure(String buildDir, String cmakeOptions, String sourceTreeDir=".") {
+  sh "cmake -H${sourceTreeDir} -B${buildDir} ${cmakeOptions}"
+}
+
+def cmakeBuild(String buildDir, String cmakeOptions, int parallelism) {
+  sh "cmake --build ${buildDir} ${cmakeOptions} -- -j${parallelism}"
+  sh "ccache --show-stats"
+}
+
+def cmakeBuildWindows(String buildDir, String cmakeOptions) {
+  sh "cmake --build ${buildDir} ${cmakeOptions}"
+}
+
+def cppCheck(String buildDir, int parallelism) {
+  // github.com/jenkinsci/cppcheck-plugin/pull/36
+  sh "cppcheck -j${parallelism} --enable=all -i${buildDir} --template='{file},,{line},,{severity},,{id},,{message}' . 2> cppcheck.txt"
+  warnings (
+    parserConfigurations: [[parserName: 'Cppcheck', pattern: "cppcheck.txt"]], categoriesPattern: '',
+    defaultEncoding: '', excludePattern: '', healthy: '', includePattern: '', messagesPattern: '', unHealthy: ''
+  )
+}
+
+def sonarScanner(scmVars, environment) {
+  withEnv(environment) {
+    withCredentials([string(credentialsId: 'SONAR_TOKEN', variable: 'SONAR_TOKEN'), string(credentialsId: 'SORABOT_TOKEN', variable: 'SORABOT_TOKEN')]) {
+      sonar_option = ""
+      if (scmVars.CHANGE_ID != null)
+        sonar_option = "-Dsonar.github.pullRequest=${scmVars.CHANGE_ID}"
+      else
+        print "************** Warning No 'CHANGE_ID' Present run sonar without org.sonar.plugins.github.PullRequestProjectBuilder *****************"
+
+      sh """
+        sonar-scanner \
+          -Dsonar.github.disableInlineComments \
+          -Dsonar.github.repository='${env.DOCKER_REGISTRY_BASENAME}' \
+          -Dsonar.analysis.mode=preview \
+          -Dsonar.login=${SONAR_TOKEN} \
+          -Dsonar.projectVersion=${BUILD_TAG} \
+          -Dsonar.github.oauth=${SORABOT_TOKEN}  ${sonar_option}
+      """
+    }
+  }
+}
+
+def initialCoverage(String buildDir) {
+  sh "cmake --build ${buildDir} --target coverage.init.info"
+}
+
+def postCoverage(buildDir, String cobertura_bin) {
+  sh "cmake --build ${buildDir} --target coverage.info"
+  sh "python ${cobertura_bin} ${buildDir}/reports/coverage.info -o ${buildDir}/reports/coverage.xml"
+  cobertura autoUpdateHealth: false, autoUpdateStability: false,
+    coberturaReportFile: "**/${buildDir}/reports/coverage.xml", conditionalCoverageTargets: '75, 50, 0',
+    failUnhealthy: false, failUnstable: false, lineCoverageTargets: '75, 50, 0', maxNumberOfBuilds: 50,
+    methodCoverageTargets: '75, 50, 0', onlyStable: false, zoomCoverageChart: false
+}
+return this
diff --git a/.jenkinsci-new/builders/x64-linux-build-steps.groovy b/.jenkinsci-new/builders/x64-linux-build-steps.groovy
@@ -0,0 +1,177 @@
+#!/usr/bin/env groovy
+/**
+ * Copyright Soramitsu Co., Ltd. All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+
+//
+// Linux Build steps
+//
+
+def dockerManifestPush(dockerImageObj, String dockerTag, environment) {
+  def manifest = load ".jenkinsci-new/utils/docker-manifest.groovy"
+  withEnv(environment) {
+    if (manifest.manifestSupportEnabled()) {
+      manifest.manifestCreate("${env.DOCKER_REGISTRY_BASENAME}:${dockerTag}",
+        ["${env.DOCKER_REGISTRY_BASENAME}:x86_64-${dockerTag}"])
+      manifest.manifestAnnotate("${env.DOCKER_REGISTRY_BASENAME}:${dockerTag}",
+        [
+          [manifest: "${env.DOCKER_REGISTRY_BASENAME}:x86_64-${dockerTag}",
+           arch: 'amd64', os: 'linux', osfeatures: [], variant: ''],
+        ])
+      withCredentials([usernamePassword(credentialsId: 'docker-hub-credentials', usernameVariable: 'login', passwordVariable: 'password')]) {
+        manifest.manifestPush("${env.DOCKER_REGISTRY_BASENAME}:${dockerTag}", login, password)
+      }
+    }
+    else {
+      echo('[WARNING] Docker CLI does not support manifest management features. Manifest will not be updated')
+    }
+  }
+}
+
+def testSteps(String buildDir, List environment, String testList) {
+  withEnv(environment) {
+    sh "cd ${buildDir}; ctest --output-on-failure --no-compress-output --tests-regex '${testList}'  --test-action Test || true"
+    sh """ python .jenkinsci-new/helpers/platform_tag.py "Linux \$(uname -m)" \$(ls ${buildDir}/Testing/*/Test.xml) """
+    // Mark build as UNSTABLE if there are any failed tests (threshold <100%)
+    xunit testTimeMargin: '3000', thresholdMode: 2, thresholds: [passed(unstableThreshold: '100')], \
+      tools: [CTest(deleteOutputFiles: true, failIfNotNew: false, \
+      pattern: "${buildDir}/Testing/**/Test.xml", skipNoTestFiles: false, stopProcessingIfError: true)]
+  }
+}
+
+def buildSteps(int parallelism, List compilerVersions, String build_type, boolean specialBranch, boolean coverage,
+      boolean testing, String testList, boolean cppcheck, boolean sonar, boolean docs, boolean packagebuild, boolean sanitize, boolean fuzzing, List environment) {
+  withEnv(environment) {
+    scmVars = checkout scm
+    def build = load '.jenkinsci-new/build.groovy'
+    def vars = load ".jenkinsci-new/utils/vars.groovy"
+    def utils = load ".jenkinsci-new/utils/utils.groovy"
+    def dockerUtils = load ".jenkinsci-new/utils/docker-pull-or-build.groovy"
+    def doxygen = load ".jenkinsci-new/utils/doxygen.groovy"
+    buildDir = 'build'
+    compilers = vars.compilerMapping()
+    cmakeBooleanOption = [ (true): 'ON', (false): 'OFF' ]
+    platform = sh(script: 'uname -m', returnStdout: true).trim()
+    cmakeBuildOptions = ""
+    cmakeOptions = ""
+    if (packagebuild){
+      cmakeBuildOptions = " --target package "
+    }
+    if (sanitize){
+      cmakeOptions += " -DSANITIZE='address;leak' "
+    }
+
+    // Create postgres
+    // enable prepared transactions so that 2 phase commit works
+    // we set it to 100 as a safe value
+    sh """#!/bin/bash -xe
+      if [ ! "\$(docker ps -q -f name=${env.IROHA_POSTGRES_HOST})" ]; then
+        docker network create ${env.IROHA_NETWORK}
+        docker run -td -e POSTGRES_USER=${env.IROHA_POSTGRES_USER} \
+           -e POSTGRES_PASSWORD=${env.IROHA_POSTGRES_PASSWORD} --name ${env.IROHA_POSTGRES_HOST} \
+           --network=${env.IROHA_NETWORK} postgres:9.5 -c 'max_prepared_transactions=100'
+      fi
+    """
+
+    iC = dockerUtils.dockerPullOrBuild("${platform}-develop-build",
+        "${env.GIT_RAW_BASE_URL}/${scmVars.GIT_COMMIT}/docker/develop/Dockerfile",
+        "${env.GIT_RAW_BASE_URL}/${utils.previousCommitOrCurrent(scmVars)}/docker/develop/Dockerfile",
+        "${env.GIT_RAW_BASE_URL}/develop/docker/develop/Dockerfile",
+        scmVars,
+        environment,
+        ['PARALLELISM': parallelism])
+
+    iC.inside(""
+    + " -e IROHA_POSTGRES_HOST=${env.IROHA_POSTGRES_HOST}"
+    + " -e IROHA_POSTGRES_PORT=${env.IROHA_POSTGRES_PORT}"
+    + " -e IROHA_POSTGRES_USER=${env.IROHA_POSTGRES_USER}"
+    + " -e IROHA_POSTGRES_PASSWORD=${env.IROHA_POSTGRES_PASSWORD}"
+    + " --network=${env.IROHA_NETWORK}"
+    + " -v /var/jenkins/ccache:${env.CCACHE_DEBUG_DIR}") {
+      utils.ccacheSetup(5)
+      for (compiler in compilerVersions) {
+        stage ("build ${compiler}"){
+          build.cmakeConfigure(buildDir, "-DCMAKE_CXX_COMPILER=${compilers[compiler]['cxx_compiler']} \
+            -DCMAKE_C_COMPILER=${compilers[compiler]['cc_compiler']} \
+            -DCMAKE_BUILD_TYPE=${build_type} \
+            -DCOVERAGE=${cmakeBooleanOption[coverage]} \
+            -DTESTING=${cmakeBooleanOption[testing]} \
+            -DFUZZING=${cmakeBooleanOption[fuzzing]} \
+            -DPACKAGE_DEB=${cmakeBooleanOption[packagebuild]} \
+            -DPACKAGE_TGZ=${cmakeBooleanOption[packagebuild]} ${cmakeOptions}")
+          build.cmakeBuild(buildDir, cmakeBuildOptions, parallelism)
+        }
+        if (testing) {
+          stage("Test ${compiler}") {
+            coverage ? build.initialCoverage(buildDir) : echo('Skipping initial coverage...')
+            testSteps(buildDir, environment, testList)
+            coverage ? build.postCoverage(buildDir, '/tmp/lcov_cobertura.py') : echo('Skipping post coverage...')
+            // We run coverage once, using the first compiler as it is enough
+            coverage = false
+          }
+        } //end if
+      } //end for
+      stage("Analysis") {
+            cppcheck ? build.cppCheck(buildDir, parallelism) : echo('Skipping Cppcheck...')
+            sonar ? build.sonarScanner(scmVars, environment) : echo('Skipping Sonar Scanner...')
+      }
+      stage('Build docs'){
+        docs ? doxygen.doDoxygen(specialBranch, scmVars.GIT_LOCAL_BRANCH) : echo("Skipping Doxygen...")
+      }
+    } // end iC.inside
+    stage ('Docker ManifestPush'){
+      if (specialBranch) {
+        utils.dockerPush(iC, "${platform}-develop-build")
+        dockerManifestPush(iC, "develop-build", environment)
+      }
+    }
+  }
+}
+
+def successPostSteps(scmVars, boolean packagePush, String dockerTag, List environment) {
+  stage('Linux success PostSteps') {
+    withEnv(environment) {
+      if (packagePush) {
+        def artifacts = load ".jenkinsci-new/artifacts.groovy"
+        def utils = load ".jenkinsci-new/utils/utils.groovy"
+        platform = sh(script: 'uname -m', returnStdout: true).trim()
+        def commit = scmVars.GIT_COMMIT
+
+        // if we use several compilers only the last compiler, used for the build, will be used for iroha.deb and iroha.tar.gz archives
+        sh """
+          ls -lah ./build
+          mv ./build/iroha-*.deb ./build/iroha.deb
+          mv ./build/iroha-*.tar.gz ./build/iroha.tar.gz
+          cp ./build/iroha.deb docker/release/iroha.deb
+          mkdir -p build/artifacts
+          mv ./build/iroha.deb ./build/iroha.tar.gz build/artifacts
+        """
+        // publish docker
+        iCRelease = docker.build("${env.DOCKER_REGISTRY_BASENAME}:${commit}-${env.BUILD_NUMBER}-release", "--no-cache -f docker/release/Dockerfile ${WORKSPACE}/docker/release")
+        utils.dockerPush(iCRelease, "${platform}-${dockerTag}")
+        dockerManifestPush(iCRelease, dockerTag, environment)
+        sh "docker rmi ${iCRelease.id}"
+
+        // publish packages
+        filePaths = [ './build/artifacts/iroha.deb', './build/artifacts/iroha.tar.gz' ]
+        artifacts.uploadArtifacts(filePaths, sprintf('/iroha/linux/%4$s/%1$s-%2$s-%3$s', [scmVars.GIT_LOCAL_BRANCH, sh(script: 'date "+%Y%m%d"', returnStdout: true).trim(), commit.substring(0,6), platform]))
+      } else {
+        archiveArtifacts artifacts: 'build/iroha*.tar.gz', allowEmptyArchive: true
+        archiveArtifacts artifacts: 'build/iroha*.deb', allowEmptyArchive: true
+      }
+    }
+  }
+}
+
+def alwaysPostSteps(List environment) {
+  stage('Linux always PostSteps') {
+    withEnv(environment) {
+      sh "docker rm -f ${env.IROHA_POSTGRES_HOST} || true"
+      sh "docker network rm ${env.IROHA_NETWORK}"
+      cleanWs()
+    }
+  }
+}
+
+return this