echo "---> release-job.sh"
set -eu -o pipefail
-echo "INFO: creating virtual environment"
-virtualenv -p python3 /tmp/venv
-PATH=/tmp/venv/bin:$PATH
-pipup="python -m pip install -q --upgrade pip lftools jsonschema niet twine yq"
-echo "INFO: $pipup"
-$pipup
+# shellcheck disable=SC1090
+source ~/lf-env.sh
+
+# Version controlled by JJB_VERSION
+lf-activate-venv lftools pip idna==2.9 lftools jsonschema twine yq readline
+
+# show installed versions
+python -m pip --version
+python -m pip freeze
#Functions.
NEXUS_PATH="${SILO}/${JENKINS_HOSTNAME}/"
# Verify if using release file or parameters
if $USE_RELEASE_FILE ; then
- release_files=$(git diff-tree -m --no-commit-id -r "$GIT_COMMIT" --name-only -- "releases/" ".releases/")
+ release_files=$(git diff-tree -m --no-commit-id -r "$GIT_COMMIT" "$GIT_COMMIT^1" \
+ --name-only -- "releases/" ".releases/")
if (( $(grep -c . <<<"$release_files") > 1 )); then
echo "INFO: RELEASE FILES ARE AS FOLLOWS: $release_files"
- echo "ERROR: Committing multiple release files in the same commit OR rename/amend of existing files is not supported."
+ echo "ERROR: Adding multiple release files in the same commit"
+ echo "ERROR: OR rename/amend/delete of existing files is not supported."
exit 1
else
release_file="$release_files"
fi
# Jenkins parameter drop-down defaults DISTRIBUTION_TYPE to None
+ # in the contain/maven release job; get value from release yaml.
+ # Packagecloud and PyPI jobs set the appropriate value.
DISTRIBUTION_TYPE="${DISTRIBUTION_TYPE:-None}"
if [[ $DISTRIBUTION_TYPE == "None" ]]; then
- DISTRIBUTION_TYPE="$(niet ".distribution_type" "$release_file")"
+ if ! DISTRIBUTION_TYPE=$(yq -r ".distribution_type" "$release_file"); then
+ echo "ERROR: Failed to get distribution_type from $release_file"
+ exit 1
+ fi
fi
- PATCH_DIR="$(mktemp -d)"
+ PATCH_DIR=$(mktemp -d)
+
+ TAG_RELEASE="${TAG_RELEASE:-None}"
+ if [[ $TAG_RELEASE == "None" ]]; then
+ if grep -q "tag_release" $release_file ; then
+ TAG_RELEASE=$(yq -r .tag_release "$release_file")
+ else
+ TAG_RELEASE=true
+ fi
+ fi
# Displaying Release Information (Common variables)
printf "\t%-30s\n" RELEASE_ENVIRONMENT_INFO:
- printf "\t%-30s %s\n" RELEASE_FILE: $release_file
- printf "\t%-30s %s\n" LOGS_SERVER: $LOGS_SERVER
- printf "\t%-30s %s\n" NEXUS_PATH: $NEXUS_PATH
- printf "\t%-30s %s\n" JENKINS_HOSTNAME: $JENKINS_HOSTNAME
- printf "\t%-30s %s\n" SILO: $SILO
- printf "\t%-30s %s\n" PROJECT: $PROJECT
- printf "\t%-30s %s\n" PROJECT-DASHED: ${PROJECT//\//-}
- printf "\t%-30s %s\n" DISTRIBUTION_TYPE: $DISTRIBUTION_TYPE
+ printf "\t%-30s %s\n" RELEASE_FILE: "$release_file"
+ printf "\t%-30s %s\n" LOGS_SERVER: "$LOGS_SERVER"
+ printf "\t%-30s %s\n" NEXUS_PATH: "$NEXUS_PATH"
+ printf "\t%-30s %s\n" JENKINS_HOSTNAME: "$JENKINS_HOSTNAME"
+ printf "\t%-30s %s\n" SILO: "$SILO"
+ printf "\t%-30s %s\n" PROJECT: "$PROJECT"
+ printf "\t%-30s %s\n" PROJECT-DASHED: "${PROJECT//\//-}"
+ printf "\t%-30s %s\n" TAG_RELEASE: "$TAG_RELEASE"
+ printf "\t%-30s %s\n" DISTRIBUTION_TYPE: "$DISTRIBUTION_TYPE"
+ printf "\t%-30s %s\n" OVERRIDE_SEMVER_REGEX: "${OVERRIDE_SEMVER_REGEX:-None}"
}
set_variables_maven(){
echo "INFO: Setting maven variables"
if [[ -z ${VERSION:-} ]]; then
- VERSION="$(niet ".version" "$release_file")"
+ VERSION=$(yq -r ".version" "$release_file")
fi
if [[ -z ${GIT_TAG:-} ]]; then
if grep -q "git_tag" "$release_file" ; then
- GIT_TAG="$(niet ".git_tag" "$release_file")"
+ GIT_TAG=$(yq -r ".git_tag" "$release_file")
else
GIT_TAG="$VERSION"
fi
fi
if [[ -z ${LOG_DIR:-} ]]; then
- LOG_DIR="$(niet ".log_dir" "$release_file")"
+ LOG_DIR=$(yq -r ".log_dir" "$release_file")
fi
LOGS_URL="${LOGS_SERVER}/${NEXUS_PATH}${LOG_DIR}"
LOGS_URL=${LOGS_URL%/} # strip any trailing '/'
# Continuing displaying Release Information (Maven)
printf "\t%-30s\n" RELEASE_MAVEN_INFO:
- printf "\t%-30s %s\n" VERSION: $VERSION
- printf "\t%-30s %s\n" GIT_TAG: $GIT_TAG
- printf "\t%-30s %s\n" LOG_DIR: $LOG_DIR
- printf "\t%-30s %s\n" LOGS_URL: $LOGS_URL
+ printf "\t%-30s %s\n" VERSION: "$VERSION"
+ printf "\t%-30s %s\n" GIT_TAG: "$GIT_TAG"
+ printf "\t%-30s %s\n" LOG_DIR: "$LOG_DIR"
+ printf "\t%-30s %s\n" LOGS_URL: "$LOGS_URL"
}
set_variables_container(){
echo "INFO: Setting container variables"
if [[ -z ${VERSION:-} ]]; then
- VERSION="$(niet ".container_release_tag" "$release_file")"
+ VERSION=$(yq -r ".container_release_tag" "$release_file")
fi
if [[ -z ${GIT_TAG:-} ]]; then
if grep -q "git_tag" "$release_file" ; then
- GIT_TAG="$(niet ".git_tag" "$release_file")"
+ GIT_TAG=$(yq -r ".git_tag" "$release_file")
else
GIT_TAG="$VERSION"
fi
fi
if grep -q "container_pull_registry" "$release_file" ; then
- CONTAINER_PULL_REGISTRY="$(niet ".container_pull_registry" "$release_file")"
+ CONTAINER_PULL_REGISTRY=$(yq -r ".container_pull_registry" "$release_file")
fi
if grep -q "container_push_registry" "$release_file" ; then
- CONTAINER_PUSH_REGISTRY="$(niet ".container_push_registry" "$release_file")"
+ CONTAINER_PUSH_REGISTRY=$(yq -r ".container_push_registry" "$release_file")
fi
# Make sure both pull and push registries are defined
if [ -z ${CONTAINER_PULL_REGISTRY+x} ] || [ -z ${CONTAINER_PUSH_REGISTRY+x} ]; then
echo "ERROR: CONTAINER_PULL_REGISTRY and CONTAINER_PUSH_REGISTRY need to be defined"
exit 1
fi
- ref="$(niet ".ref" "$release_file")"
+ ref=$(yq -r ".ref" "$release_file")
# Continuing displaying Release Information (Container)
printf "\t%-30s\n" RELEASE_CONTAINER_INFO:
- printf "\t%-30s %s\n" CONTAINER_RELEASE_TAG: $VERSION
- printf "\t%-30s %s\n" CONTAINER_PULL_REGISTRY: $CONTAINER_PULL_REGISTRY
- printf "\t%-30s %s\n" CONTAINER_PUSH_REGISTRY: $CONTAINER_PUSH_REGISTRY
- printf "\t%-30s %s\n" GERRIT_REF_TO_TAG: $ref
- printf "\t%-30s %s\n" GIT_TAG: $GIT_TAG
+ printf "\t%-30s %s\n" CONTAINER_RELEASE_TAG: "$VERSION"
+ printf "\t%-30s %s\n" CONTAINER_PULL_REGISTRY: "$CONTAINER_PULL_REGISTRY"
+ printf "\t%-30s %s\n" CONTAINER_PUSH_REGISTRY: "$CONTAINER_PUSH_REGISTRY"
+ printf "\t%-30s %s\n" GERRIT_REF_TO_TAG: "$ref"
+ printf "\t%-30s %s\n" GIT_TAG: "$GIT_TAG"
}
set_variables_pypi(){
echo "INFO: Setting pypi variables"
if [[ -z ${LOG_DIR:-} ]]; then
- LOG_DIR="$(niet ".log_dir" "$release_file")"
+ LOG_DIR=$(yq -r ".log_dir" "$release_file")
fi
LOGS_URL="${LOGS_SERVER}/${NEXUS_PATH}${LOG_DIR}"
LOGS_URL=${LOGS_URL%/} # strip any trailing '/'
if [[ -z ${PYPI_PROJECT:-} ]]; then
- PYPI_PROJECT="$(niet ".pypi_project" "$release_file")"
+ PYPI_PROJECT=$(yq -r ".pypi_project" "$release_file")
fi
if [[ -z ${PYTHON_VERSION:-} ]]; then
- PYTHON_VERSION="$(niet ".python_version" "$release_file")"
+ PYTHON_VERSION=$(yq -r ".python_version" "$release_file")
fi
if [[ -z ${VERSION:-} ]]; then
- VERSION="$(niet ".version" "$release_file")"
+ VERSION=$(yq -r ".version" "$release_file")
fi
if [[ -z ${GIT_TAG:-} ]]; then
if grep -q "git_tag" "$release_file" ; then
- GIT_TAG="$(niet ".git_tag" "$release_file")"
+ GIT_TAG=$(yq -r ".git_tag" "$release_file")
else
GIT_TAG="$VERSION"
fi
printf "\t%-30s %s\n" PYPI_PROJECT: "$PYPI_PROJECT"
printf "\t%-30s %s\n" PYTHON_VERSION: "$PYTHON_VERSION"
printf "\t%-30s %s\n" VERSION: "$VERSION"
- printf "\t%-30s %s\n" GIT_TAG: $GIT_TAG
+ printf "\t%-30s %s\n" GIT_TAG: "$GIT_TAG"
+}
+
+set_variables_packagecloud(){
+ echo "INFO: Setting packagecloud variables"
+ if [[ -z ${VERSION:-} ]]; then
+ VERSION=$(yq -r ".version" "$release_file")
+ fi
+ if [[ -z ${GIT_TAG:-} ]]; then
+ if grep -q "git_tag" $release_file ; then
+ GIT_TAG=$(yq -r ".git_tag" "$release_file")
+ else
+ GIT_TAG="$VERSION"
+ fi
+ fi
+ if [[ -z ${LOG_DIR:-} ]]; then
+ LOG_DIR=$(yq -r ".log_dir" "$release_file")
+ fi
+ if [[ -z ${REF:-} ]]; then
+ REF=$(yq -r ".ref" "$release_file")
+ fi
+ if [[ -z ${PACKAGE_NAME:-} ]]; then
+ PACKAGE_NAME=$(yq -r ".package_name" "$release_file")
+ fi
+ logs_url="${LOGS_SERVER}/${NEXUS_PATH}${LOG_DIR}"
+ logs_url=${logs_url%/} # strip any trailing '/'
+
+ printf "\t%-30s %s\n" PACKAGE_NAME: "$PACKAGE_NAME"
+ printf "\t%-30s %s\n" LOG_DIR: "$LOG_DIR"
+ printf "\t%-30s %s\n" LOGS_URL: "$logs_url"
+ printf "\t%-30s %s\n" GERRIT_REF_TO_TAG: "$REF"
+ printf "\t%-30s %s\n" VERSION: "$VERSION"
+ printf "\t%-30s %s\n" GIT_TAG: "$GIT_TAG"
}
verify_schema(){
}
verify_version(){
- # Verify allowed patterns "#.#.#" (SemVer) or "v#.#.#"
+
+ # Override the regex for projects that do not follow https://semver.org
+ OVERRIDE_SEMVER_REGEX="${OVERRIDE_SEMVER_REGEX:-None}"
+ if [[ $OVERRIDE_SEMVER_REGEX == "None" ]]; then
+ # Use the semver regex taken from https://github.com/fsaintjacques/semver-tool
+ semver_regex="^[vV]?(0|[1-9][0-9]*)\.(0|[1-9][0-9]*)\.(0|[1-9][0-9]*)(\-(0|[1-9][0-9]*|[0-9]*[A-Za-z-][0-9A-Za-z-]*)(\.(0|[1-9][0-9]*|[0-9]*[A-Za-z-][0-9A-Za-z-]*))*)?(\+[0-9A-Za-z-]+(\.[0-9A-Za-z-]+)*)?$"
+ else
+ semver_regex="${OVERRIDE_SEMVER_REGEX}"
+ fi
+
+ # Verify SemVer "#.#.#" (SemVer) or "v#.#.#"
echo "INFO: Verifying version $VERSION"
- allowed_version_regex="^((v?)([0-9]+)\.([0-9]+)\.([0-9]+))$"
- if [[ $VERSION =~ $allowed_version_regex ]]; then
+ if [[ $VERSION =~ $semver_regex ]]; then
echo "INFO: The version $VERSION is valid"
else
echo "ERROR: The version $VERSION is not valid"
echo "ERROR: Valid versions are \"#.#.#\" (SemVer) or \"v#.#.#\""
- echo "ERROR: See https://semver.org/ for more details on SemVer"
+ echo "ERROR: Valid version will be matched against \"${semver_regex}\""
+ echo "ERROR: Refer to https://semver.org/ for more details on SemVer"
+ echo "ERROR: Refer SemVer examples from https://github.com/fsaintjacques/semver-tool/#examples"
exit 1
fi
}
fi
}
+verify_packagecloud_match_release(){
+ echo "INFO: Fetching console log from $logs_url"
+ wget -q -P /tmp "${logs_url}/"console.log.gz
+ echo "INFO: Searching for uploaded step, package name $PACKAGE_NAME and version $VERSION in job log"
+ if zgrep -E "Pushing.*$PACKAGE_NAME.*$VERSION.*success\!" /tmp/console.log.gz; then
+ echo "INFO: found expected strings in job log"
+ else
+ echo "ERROR: failed to find expected strings in job log"
+ exit 1
+ fi
+}
+
# sigul is only available on Centos
# TODO: write tag-github-repo function
tag-gerrit-repo(){
+ if [[ $TAG_RELEASE == false ]]; then
+ echo "INFO: Skipping gerrit repo tag"
+ return
+ fi
+
echo "INFO: tag gerrit with $GIT_TAG"
# Import public signing key
gpg --import "$SIGNING_PUBKEY"
container_release_file(){
echo "INFO: Processing container release"
+ docker --version
local lfn_umbrella
lfn_umbrella="$(echo "$GERRIT_URL" | awk -F"." '{print $2}')"
- for namequoted in $(cat $release_file | yq '.containers[].name'); do
- versionquoted=$(cat $release_file | yq ".containers[] |select(.name==$namequoted) |.version")
+ for namequoted in $(yq '.containers[].name' $release_file); do
+ versionquoted=$(yq ".containers[] |select(.name==$namequoted) |.version" $release_file)
#Remove extra yaml quotes
name="${namequoted#\"}"
else
echo "INFO: $VERSION not found in releases, release will be prepared. Continuing..."
docker pull "$CONTAINER_PULL_REGISTRY"/"$lfn_umbrella"/"$name":"$version"
- container_image_id="$(docker images | grep $name | grep $version | awk '{print $3}')"
+ container_image_id=$(docker images | grep "$name" | grep "$version" | awk '{print $3}')
echo "INFO: Merge will run the following commands:"
echo "docker tag $container_image_id $CONTAINER_PUSH_REGISTRY/$lfn_umbrella/$name:$VERSION"
echo "docker push $CONTAINER_PUSH_REGISTRY/$lfn_umbrella/$name:$VERSION"
echo "WARN: failed to download source distribution"
fi
echo "INFO: Checking files in $tgtdir"
+ # shellcheck disable=SC2012
filecount=$(ls $tgtdir | wc -l)
if [[ $filecount = 0 ]] ; then
echo "ERROR: no files downloaded"
destination="$2/release" "$promote_url" \
| echo "INFO: Promoted package location: \
https://packagecloud.io$(yq -r .package_html_url)"
+ git checkout "$REF"
+ tag-gerrit-repo
}
############################## End Function Declarations ################################
;;
packagecloud)
- release_schema="release-packagecloud-schema.yaml"
- package_name=$(yq -r '.package_name' $release_file)
- packagecloud_account=$(cat "$ACCOUNT_NAME_FILE")
- echo "INFO: Fetching schema $release_schema"
- wget -q https://raw.githubusercontent.com/lfit/releng-global-jjb/master/schema/${release_schema}
- verify_schema
- for name in $(yq -r '.package_name[].name' $release_file); do
- package_name=$name
- packagecloud_verify "$package_name" "$packagecloud_account"
+ if $USE_RELEASE_FILE ; then
+ release_schema="release-packagecloud-schema.yaml"
+ packagecloud_account=$(cat "$ACCOUNT_NAME_FILE")
+ echo "INFO: Fetching schema $release_schema"
+ wget -q https://raw.githubusercontent.com/lfit/releng-global-jjb/master/schema/${release_schema}
+ verify_schema
+ fi
+ set_variables_packagecloud
+ verify_packagecloud_match_release
+ for name in $(yq -r '.packages[].name' $release_file); do
+ package=$name
+ packagecloud_verify "$package" "$packagecloud_account"
if [[ "$JOB_NAME" =~ "merge" ]] && ! $DRY_RUN; then
- packagecloud_promote "$package_name" "$packagecloud_account"
+ packagecloud_promote "$package" "$packagecloud_account"
fi
done
;;
Code Review / releng / global-jjb.git / blobdiff