-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
3 changed files
with
127 additions
and
43 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -2,9 +2,15 @@ on: | |
schedule: | ||
- cron: '0 0 * * *' | ||
workflow_dispatch: | ||
push: | ||
|
||
# Cancel previous versions of this job that are still running. | ||
concurrency: | ||
group: nightly | ||
cancel-in-progress: true | ||
|
||
jobs: | ||
nightly: | ||
update-flake: | ||
runs-on: [self-hosted, linux, nix] | ||
steps: | ||
- name: checkout | ||
|
@@ -13,42 +19,122 @@ jobs: | |
- name: update | ||
run: ./update.sh | ||
|
||
# Commit the update onto a new branch | ||
- name: commit | ||
run: | | ||
[[ $(git diff) != "" ]] || exit 0 | ||
git config --local user.name "Prosecco" | ||
git config --local user.email "[email protected]" | ||
git checkout -b nightly | ||
git commit -am "nightly update" | ||
git push --force | ||
# This would be nicer as a matrix, but that hits limits of what github actions can currenctly express. See e.g.: | ||
# - https://github.com/orgs/community/discussions/17245 | ||
# - https://github.com/orgs/community/discussions/26640 | ||
# - https://github.com/actions/runner/pull/2477 | ||
hax: | ||
needs: update-flake | ||
runs-on: [self-hosted, linux, nix] | ||
steps: | ||
- name: checkout | ||
uses: actions/checkout@v4 | ||
with: | ||
ref: nightly | ||
- run: nix build -L --no-link ".#hax" | ||
|
||
charon: | ||
needs: update-flake | ||
runs-on: [self-hosted, linux, nix] | ||
steps: | ||
- name: checkout | ||
uses: actions/checkout@v4 | ||
with: | ||
ref: nightly | ||
- run: nix build -L --no-link ".#charon" | ||
|
||
eurydice: | ||
needs: update-flake | ||
runs-on: [self-hosted, linux, nix] | ||
steps: | ||
- name: checkout | ||
uses: actions/checkout@v4 | ||
with: | ||
ref: nightly | ||
- run: nix build -L --no-link ".#eurydice" | ||
|
||
- name: push | ||
uses: ad-m/github-push-action@master | ||
ml-kem: | ||
needs: update-flake | ||
runs-on: [self-hosted, linux, nix] | ||
steps: | ||
- name: checkout | ||
with: | ||
branch: main | ||
ref: nightly | ||
uses: actions/checkout@v4 | ||
# - run: nix build -L --no-link ".#ml-kem" | ||
- run: false | ||
|
||
bertie: | ||
needs: update-flake | ||
runs-on: [self-hosted, linux, nix] | ||
steps: | ||
- name: checkout | ||
with: | ||
ref: nightly | ||
uses: actions/checkout@v4 | ||
- run: nix build -L --no-link ".#bertie" | ||
|
||
success: | ||
needs: [hax, charon, eurydice, ml-kem, bertie] | ||
runs-on: [self-hosted, linux, nix] | ||
steps: | ||
- name: checkout | ||
uses: actions/checkout@v4 | ||
with: | ||
ref: nightly | ||
|
||
- name: commit the good flake.lock | ||
run: | | ||
[[ $(git diff) != "" ]] || exit 0 | ||
git config --local user.name "Prosecco" | ||
git config --local user.email "[email protected]" | ||
cp flake.lock good.lock | ||
git commit -am "record the last-good flake lock" | ||
git push | ||
complete: | ||
needs: [hax, charon, eurydice, ml-kem, bertie, success] | ||
runs-on: [self-hosted, linux, nix] | ||
if: ${{ success() || failure() }} # Will always run unless canceled | ||
steps: | ||
- name: generate zulip message | ||
env: | ||
RESULTS: ${{ toJSON(needs) }} | ||
run: | | ||
echo "$RESULT" > result.json | ||
{ | ||
echo 'MSG<<EOF' | ||
echo "*Nightly update*" | ||
nix shell nixpkgs#jq --command ./message.sh | ||
echo EOF | ||
} >> "$GITHUB_ENV" | ||
echo "$GITHUB_ENV" | ||
env: | ||
RUN: ${{ github.run_id }} | ||
|
||
- name: send zulip info message | ||
uses: slackapi/[email protected] | ||
with: | ||
payload: | | ||
{ "text": ${{ toJSON(env.MSG) }} } | ||
env: | ||
SLACK_WEBHOOK_URL: ${{ secrets.ZULIP_WEBHOOK_URL }} | ||
# - name: send zulip info message | ||
# uses: slackapi/[email protected] | ||
# with: | ||
# payload: | | ||
# { "text": ${{ toJSON(env.MSG) }} } | ||
# env: | ||
# SLACK_WEBHOOK_URL: ${{ secrets.ZULIP_WEBHOOK_URL }} | ||
|
||
- name: send zulip error message | ||
if: ${{ failure() }} | ||
uses: slackapi/[email protected] | ||
with: | ||
payload: | | ||
{ "text": "Unexpected Error: ${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" } | ||
env: | ||
SLACK_WEBHOOK_URL: ${{ secrets.ZULIP_WEBHOOK_URL }} | ||
# - name: send zulip error message | ||
# if: ${{ failure() }} | ||
# uses: slackapi/[email protected] | ||
# with: | ||
# payload: | | ||
# { "text": "Unexpected Error: ${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" } | ||
# env: | ||
# SLACK_WEBHOOK_URL: ${{ secrets.ZULIP_WEBHOOK_URL }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,19 +1,36 @@ | ||
#!/usr/bin/env bash | ||
|
||
cat STATUS.txt | grep '❌' > /dev/null && echo '❌❌❌' || echo '✅✅✅' | ||
if [[ "$(jq -r .success.result result.json)" == "success" ]]; then | ||
echo '✅✅✅' | ||
else | ||
echo '❌❌❌' | ||
fi | ||
echo "" | ||
echo "*Links:*" | ||
echo "commit: https://github.com/inria-prosecco/circus-green/commit/$(git show-ref --hash refs/heads/main)" | ||
echo "run: https://github.com/inria-prosecco/circus-green/actions/runs/$RUN" | ||
echo "" | ||
|
||
echo "*Statuses:*" | ||
cat STATUS.txt | ||
for project in hax charon eurydice ml-kem bertie; do | ||
if [[ "$(jq -r ".$project.result" result.json)" == "success" ]]; then | ||
status='✅' | ||
else | ||
status='❌' | ||
fi | ||
echo "$status $project (main)" | ||
done | ||
echo "" | ||
|
||
echo "*Tried to update:*" | ||
cat flake.lock good.lock | jq -s -r ' | ||
map( .nodes | | ||
[ .fstar, .karamel, .hax, .charon, .eurydice, .libcrux, .bertie ] | | ||
map( .locked ) | ||
) | transpose | map(select(.[0].rev != .[1].rev)) | .[] | | ||
(.[0].repo + ": [" + .[1].rev[0:8] + ".." + .[0].rev[0:8] + "](https://github.com/" + .[0].owner + "/" + .[0].repo + "/compare/" + .[1].rev[0:8] + "..." + .[0].rev[0:8] + ")") | ||
) | ||
| transpose | ||
| .[] | ||
| select(.[0].rev != .[1].rev) | ||
| "\(.[1].rev[0:8])..\(.[0].rev[0:8])" as $range | ||
| "\(.[0].repo): [\($range)](https://github.com/\(.[0].owner)/\(.[0].repo)/compare/\($range))" | ||
' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters