saltstack/salt
1
0
Fork 0
mirror of https://github.com/saltstack/salt.git synced 2025-04-17 10:10:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Preliminary support to download artifacts to run the test suite locally

Browse source 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
This commit is contained in:
Pedro Algarvio 2023-08-14 13:40:52 +01:00 committed by Megan Wilhite
parent 77d795c469
commit d7d5bb30be
4 changed files with 475 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
.gitignore vendored
View file

@ -128,6 +128,7 @@ Session.vim
# Nox requirements archives
nox.*.tar.bzip2
nox.*.tar.xz
# Debian packages
/debian

1
tools/__init__.py
View file

@ -12,6 +12,7 @@ ptscripts.register_tools_module("tools.pkg.repo.create")
ptscripts.register_tools_module("tools.pkg.repo.publish")
ptscripts.register_tools_module("tools.pre_commit")
ptscripts.register_tools_module("tools.release")
ptscripts.register_tools_module("tools.ts")
ptscripts.register_tools_module("tools.vm")
for name in ("boto3", "botocore", "urllib3"):

327
tools/ts.py Normal file
View file

@ -0,0 +1,327 @@
"""
These commands are related to the test suite.
"""
# pylint: disable=resource-leakage,broad-except,3rd-party-module-not-gated
from __future__ import annotations
import json
import logging
import shutil
import sys
import zipfile
from typing import TYPE_CHECKING
from ptscripts import Context, command_group
import tools.utils
with tools.utils.REPO_ROOT.joinpath("cicd", "golden-images.json").open() as rfh:
OS_SLUGS = sorted(json.load(rfh))
log = logging.getLogger(__name__)
# Define the command group
ts = command_group(name="ts", help="Test Suite Related Commands", description=__doc__)
@ts.command(
name="download-onedir-artifact",
arguments={
"run_id": {
"help": "The workflow run ID from where to download artifacts from",
"required": True,
},
"platform": {
"help": "The onedir platform artifact to download",
"choices": ("linux", "darwin", "windows"),
"required": True,
},
"arch": {
"help": "The onedir artifact architecture",
"choices": ("x86_64", "aarch64", "amd64", "x86"),
},
"repository": {
"help": "The repository to query, e.g. saltstack/salt",
},
},
)
def download_onedir_artifact(
ctx: Context,
run_id: int = None,
platform: str = None,
arch: str = "x86_64",
repository: str = "saltstack/salt",
):
"""
Download CI onedir artifacts.
"""
if TYPE_CHECKING:
assert run_id is not None
assert platform is not None
if platform == "windows":
if arch in ("x64", "x86_64"):
ctx.info(f"Turning passed arch {arch!r} into 'amd64'")
arch = "amd64"
if arch not in ("amd64", "x86"):
ctx.error(
"The allowed values for '--arch' on Windows are 'amd64' and 'x86'"
)
ctx.exit(1)
else:
if arch == "arm64":
ctx.info(f"Turning passed arch {arch!r} into 'aarch64'")
arch = "aarch64"
elif arch == "x64":
ctx.info(f"Turning passed arch {arch!r} into 'x86_64'")
arch = "x86_64"
if arch not in ("x86_64", "aarch64"):
ctx.error(
f"The allowed values for '--arch' on {platform.title()} are 'x86_64', 'aarch64' or 'arm64'"
)
ctx.exit(1)
artifacts_path = tools.utils.REPO_ROOT / "artifacts"
artifacts_path.mkdir(exist_ok=True)
if artifacts_path.joinpath("salt").exists():
ctx.error("The 'artifacts/salt' directory already exists ...")
ctx.exit(1)
artifact_name = f"salt-*-onedir-{platform}-{arch}"
if sys.platform.startswith("win"):
artifact_name += ".zip"
else:
artifact_name += ".tar.xz"
found_artifact_name = tools.utils.download_artifact(
ctx,
dest=artifacts_path,
run_id=run_id,
artifact_name=artifact_name,
repository=repository,
)
found_artifact_path = artifacts_path / found_artifact_name
artifact_expected_checksum = (
artifacts_path.joinpath(f"{found_artifact_name}.SHA512").read_text().strip()
)
artifact_checksum = tools.utils.get_file_checksum(found_artifact_path, "sha512")
if artifact_expected_checksum != artifact_checksum:
ctx.error("The 'sha512' checksum does not match")
ctx.error(f"{artifact_checksum!r} != {artifact_expected_checksum!r}")
ctx.exit(1)
if found_artifact_path.suffix == ".zip":
with zipfile.ZipFile(found_artifact_path) as zfile:
zfile.extractall(path=artifacts_path)
else:
ctx.run("tar", "xf", found_artifact_name, cwd=artifacts_path)
@ts.command(
name="download-nox-artifact",
arguments={
"run_id": {
"help": "The workflow run ID from where to download artifacts from",
"required": True,
},
"slug": {
"help": "The OS slug",
"required": True,
"choices": OS_SLUGS,
},
"nox_env": {
"help": "The nox environment name.",
},
"repository": {
"help": "The repository to query, e.g. saltstack/salt",
},
},
)
def download_nox_artifact(
ctx: Context,
run_id: int = None,
slug: str = None,
nox_env: str = "ci-test-onedir",
repository: str = "saltstack/salt",
):
"""
Download CI nox artifacts.
"""
if TYPE_CHECKING:
assert run_id is not None
assert slug is not None
artifacts_path = tools.utils.REPO_ROOT / ".nox" / nox_env
if artifacts_path.exists():
ctx.error("The '.nox/' directory already exists ...")
ctx.exit(1)
artifact_name = f"nox-{slug}-{nox_env}"
found_artifact_name = tools.utils.download_artifact(
ctx,
dest=tools.utils.REPO_ROOT,
run_id=run_id,
artifact_name=artifact_name,
repository=repository,
)
nox = shutil.which("nox")
if nox is None:
ctx.error("Could not find the 'nox' binary in $PATH")
ctx.exit(1)
ctx.run(nox, "-e", "decompress-dependencies", "--", slug)
@ts.command(
name="setup",
arguments={
"run_id": {
"help": "The workflow run ID from where to download artifacts from",
"metavar": "RUN_ID_NUMBER",
},
"branch": {
"help": "The branch from where to look for artifacts.",
"metavar": "BRANCH_NAME",
},
"pr": {
"help": "The pull-request from where to look for artifacts.",
"metavar": "PR_NUMBER",
},
"nightly": {
"help": "The nightly build branch from where to look for artifacts.",
"metavar": "BRANCH_NAME",
},
"platform": {
"help": "The onedir platform artifact to download",
"choices": ("linux", "darwin", "windows"),
"required": True,
},
"arch": {
"help": "The onedir artifact architecture",
"choices": ("x86_64", "aarch64", "amd64", "x86"),
},
"slug": {
"help": "The OS slug",
"required": True,
"choices": OS_SLUGS,
},
"repository": {
"help": "The repository to query, e.g. saltstack/salt",
},
"nox_env": {
"help": "The nox environment name.",
},
},
)
def setup_testsuite(
ctx: Context,
run_id: int = None,
branch: str = None,
nightly: str = None,
pr: int = None,
platform: str = None,
arch="x86_64",
slug: str = None,
repository: str = "saltstack/salt",
nox_env: str = "ci-test-onedir",
):
"""
Setup the local test suite.
"""
if TYPE_CHECKING:
assert platform is not None
assert slug is not None
mutually_exclusive_flags = [
run_id is not None,
branch is not None,
pr is not None,
nightly is not None,
]
if not any(mutually_exclusive_flags):
ctx.error("Pass one of '--run-id', '--branch', '--pr' or '--nightly'")
ctx.exit(1)
if len(list(filter(None, mutually_exclusive_flags))) > 1:
ctx.error("Pass only one of '--run-id', '--branch', '--pr' or '--nightly'")
ctx.exit(1)
if run_id is None:
run_id = _discover_run_id(ctx, branch=branch, nightly=nightly, pr=pr)
if run_id is None:
ctx.error("Unable to find the appropriate workflow run ID")
ctx.exit(1)
download_onedir_artifact(
ctx, run_id=run_id, platform=platform, arch=arch, repository=repository
)
download_nox_artifact(
ctx, run_id=run_id, slug=slug, nox_env=nox_env, repository=repository
)
def _discover_run_id(
ctx: Context,
branch: str = None,
nightly: str = None,
pr: int = None,
repository: str = "saltstack/salt",
):
run_id: int | None = None
with ctx.web as web:
headers = {
"Accept": "application/vnd.github+json",
}
github_token = tools.utils.get_github_token(ctx)
if github_token is not None:
headers["Authorization"] = f"Bearer {github_token}"
web.headers.update(headers)
if branch is not None:
event = "push"
ret = web.get(
f"https://api.github.com/repos/{repository}/git/ref/heads/{branch}"
)
data = ret.json()
if "message" in data:
ctx.error(f"Could not find HEAD commit for branch {branch}")
ctx.exit(1)
head_sha = data["object"]["sha"]
elif pr is not None:
event = "pull_request"
ret = web.get(f"https://api.github.com/repos/{repository}/pulls/{pr}")
data = ret.json()
head_sha = data["head"]["sha"]
elif nightly == "master":
event = "schedule"
ret = web.get(
f"https://api.github.com/repos/{repository}/git/ref/heads/{nightly}"
)
data = ret.json()
if "message" in data:
ctx.error(f"Could not find HEAD commit for branch {nightly}")
ctx.exit(1)
head_sha = data["object"]["sha"]
else:
event = "workflow_dispatch"
ret = web.get(
f"https://api.github.com/repos/{repository}/git/ref/heads/{nightly}"
)
data = ret.json()
if "message" in data:
ctx.error(f"Could not find HEAD commit for branch {nightly}")
ctx.exit(1)
head_sha = data["object"]["sha"]
page = 0
while True:
page += 1
ret = web.get(
f"https://api.github.com/repos/{repository}/actions/runs?per_page=100&page={page}&event={event}&head_sha={head_sha}"
)
data = ret.json()
if not data["workflow_runs"]:
break
workflow_runs = data["workflow_runs"]
for workflow_run in workflow_runs:
run_id = workflow_run["id"]
break
if run_id:
ctx.info(f"Discovered run_id: {run_id}")
return run_id

147
tools/utils.py
View file

@ -1,10 +1,15 @@
# pylint: disable=resource-leakage,broad-except,3rd-party-module-not-gated
# pylint: disable=resource-leakage,broad-except,3rd-party-module-not-gated,bad-whitespace
from __future__ import annotations
import fnmatch
import hashlib
import json
import os
import pathlib
import shutil
import sys
import tempfile
import zipfile
from datetime import datetime
from typing import Any
@ -296,3 +301,143 @@ def create_full_repo_path(
create_repo_path = create_repo_path / "minor" / salt_version
create_repo_path.mkdir(exist_ok=True, parents=True)
return create_repo_path
def get_file_checksum(fpath: pathlib.Path, hash_name: str) -> str:
with fpath.open("rb") as rfh:
try:
digest = hashlib.file_digest(rfh, hash_name) # type: ignore[attr-defined]
except AttributeError:
# Python < 3.11
buf = bytearray(2**18) # Reusable buffer to reduce allocations.
view = memoryview(buf)
digest = getattr(hashlib, hash_name)()
while True:
size = rfh.readinto(buf)
if size == 0:
break # EOF
digest.update(view[:size])
hexdigest: str = digest.hexdigest()
return hexdigest
def get_github_token(ctx: Context) -> str | None:
"""
Get the GITHUB_TOKEN to be able to authenticate to the API.
"""
github_token = os.environ.get("GITHUB_TOKEN")
if github_token is None:
gh = shutil.which("gh")
ret = ctx.run(gh, "auth", "token", check=False, capture=True)
if ret.returncode == 0:
github_token = ret.stdout.decode().strip() or None
return github_token
def download_artifact(
ctx: Context,
dest: pathlib.Path,
run_id: int,
repository: str = "saltstack/salt",
artifact_name: str | None = None,
):
"""
Download CI artifacts.
"""
github_token = get_github_token(ctx)
if github_token is None:
ctx.error("Downloading artifacts requires being authenticated to GitHub.")
ctx.info(
"Either set 'GITHUB_TOKEN' to a valid token, or configure the 'gh' tool such that "
"'gh auth token' returns a token."
)
ctx.exit(1)
with ctx.web as web:
headers = {
"Accept": "application/vnd.github+json",
"Authorization": f"Bearer {github_token}",
}
web.headers.update(headers)
page = 0
found_artifact = False
while True:
if found_artifact:
break
page += 1
ret = web.get(
f"https://api.github.com/repos/{repository}/actions/runs/{run_id}/artifacts?per_page=100&page={page}"
)
if ret.status_code != 200:
ctx.error(
f"Failed to get the artifacts for the run ID {run_id} for repository {repository!r}: {ret.reason}"
)
ctx.exit(1)
data = ret.json()
if not data["artifacts"]:
break
for artifact in data["artifacts"]:
if fnmatch.fnmatch(artifact["name"], artifact_name):
found_artifact = artifact["name"]
tempdir_path = pathlib.Path(tempfile.gettempdir())
download_url = artifact["archive_download_url"]
ctx.info(f"Downloading {download_url}")
downloaded_artifact = _download_file(
ctx,
download_url,
tempdir_path / f"{artifact['name']}.zip",
headers=headers,
)
ctx.info("Downloaded", downloaded_artifact)
with zipfile.ZipFile(downloaded_artifact) as zfile:
zfile.extractall(path=dest)
break
if found_artifact is False:
ctx.error(f"Failed to find an artifact by the name of {artifact_name!r}")
ctx.exit(1)
return found_artifact
def _download_file(
ctx: Context,
url: str,
dest: pathlib.Path,
auth: str | None = None,
headers: dict[str, str] | None = None,
) -> pathlib.Path:
curl = shutil.which("curl")
if curl is not None:
command = [curl, "-sS", "-L"]
if headers:
for key, value in headers.items():
command.extend(["-H", f"{key}: {value}"])
command.extend(["-o", str(dest), url])
ret = ctx.run(*command)
if ret.returncode:
ctx.error(f"Failed to download {url}")
ctx.exit(1)
return dest
wget = shutil.which("wget")
if wget is not None:
with ctx.cwd(dest.parent):
command = [wget, "--no-verbose"]
if headers:
for key, value in headers.items():
command.append(f"--header={key}: {value}")
command.append(url)
ret = ctx.run(*command)
if ret.returncode:
ctx.error(f"Failed to download {url}")
ctx.exit(1)
return dest
# NOTE the stream=True parameter below
ctx.info(f"Downloading {url} ...")
with ctx.web as web:
web.headers.update(headers)
with web.get(url, stream=True, auth=auth) as r:
r.raise_for_status()
with dest.open("wb") as f:
for chunk in r.iter_content(chunk_size=8192):
if chunk:
f.write(chunk)
return dest