[lttng-ci.git] / scripts / common / coverity.sh

#!/bin/sh -xue
#
# Copyright (C) 2015 - Michael Jeanson <mjeanson@efficios.com>
#                      Jonathan Rajotte-Julien <jonathan.rajotte-julien@efficios.com>
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program.  If not, see <http://www.gnu.org/licenses/>.

# Coverity settings
# The project name and token have to be provided trough env variables
#COVERITY_SCAN_PROJECT_NAME=""
#COVERITY_SCAN_TOKEN=""
COVERITY_SCAN_VERSION=`git describe --always | sed 's|-|.|g'`
COVERITY_SCAN_DESCRIPTION="Automated CI build"
COVERITY_SCAN_NOTIFICATION_EMAIL="ci-notification@lists.lttng.org"
COVERITY_SCAN_BUILD_OPTIONS=""
#COVERITY_SCAN_BUILD_OPTIONS="--return-emit-failures 8 --parse-error-threshold 85"

NPROC=$(nproc)
PLATFORM=$(uname)
export CFLAGS="-O0 -g -DDEBUG"

TOOL_ARCHIVE=/tmp/cov-analysis-${PLATFORM}.tgz
TOOL_URL=https://scan.coverity.com/download/${PLATFORM}
TOOL_BASE=/tmp/coverity-scan-analysis

UPLOAD_URL="https://scan.coverity.com/builds"
SCAN_URL="https://scan.coverity.com"

RESULTS_DIR="$WORKSPACE/cov-int"


# liburcu dependency
if [ -d "$WORKSPACE/deps/liburcu" ]; then
  URCU_INCS="$WORKSPACE/deps/liburcu/build/include/"
  URCU_LIBS="$WORKSPACE/deps/liburcu/build/lib/"
  
  export CPPFLAGS="-I$URCU_INCS ${CPPFLAGS:-}"
  export LDFLAGS="-L$URCU_LIBS ${LDFLAGS:-}"
  export LD_LIBRARY_PATH="$URCU_LIBS:${LD_LIBRARY_PATH:-}"
fi


# lttng-ust dependency
if [ -d "$WORKSPACE/deps/lttng-ust" ]; then
  UST_INCS="$WORKSPACE/deps/lttng-ust/build/include/"
  UST_LIBS="$WORKSPACE/deps/lttng-ust/build/lib/"
  
  export CPPFLAGS="-I$UST_INCS ${CPPFLAGS:-}"
  export LDFLAGS="-L$UST_LIBS ${LDFLAGS:-}"
  export LD_LIBRARY_PATH="$UST_LIBS:${LD_LIBRARY_PATH:-}"
fi


# Verify upload is permitted
set +x
AUTH_RES=`curl -s --form project="$COVERITY_SCAN_PROJECT_NAME" --form token="$COVERITY_SCAN_TOKEN" $SCAN_URL/api/upload_permitted`
set -x
if [ "$AUTH_RES" = "Access denied" ]; then
  echo -e "\033[33;1mCoverity Scan API access denied. Check COVERITY_SCAN_PROJECT_NAME and COVERITY_SCAN_TOKEN.\033[0m"
  exit 1
else
  AUTH=`echo $AUTH_RES | jq .upload_permitted`
  if [ "$AUTH" = "true" ]; then
    echo -e "\033[33;1mCoverity Scan analysis authorized per quota.\033[0m"
  else
    WHEN=`echo $AUTH_RES | jq .next_upload_permitted_at`
    echo -e "\033[33;1mCoverity Scan analysis NOT authorized until $WHEN.\033[0m"
    exit 1
  fi
fi


# Download Coverity Scan Analysis Tool
if [ ! -d $TOOL_BASE ]; then
  if [ ! -e $TOOL_ARCHIVE ]; then
    echo -e "\033[33;1mDownloading Coverity Scan Analysis Tool...\033[0m"
    set +x
    wget -nv -O $TOOL_ARCHIVE $TOOL_URL --post-data "project=$COVERITY_SCAN_PROJECT_NAME&token=$COVERITY_SCAN_TOKEN"
    set -x
  fi

  # Extract Coverity Scan Analysis Tool
  echo -e "\033[33;1mExtracting Coverity Scan Analysis Tool...\033[0m"
  mkdir -p $TOOL_BASE
  cd $TOOL_BASE
  tar xzf $TOOL_ARCHIVE
  cd -
fi

TOOL_DIR=`find $TOOL_BASE -type d -name 'cov-analysis*'`
export PATH=$TOOL_DIR/bin:$PATH


# Prepare build dir
if [ -f "./bootstrap" ]; then
  ./bootstrap
  ./configure
fi

# Build
echo -e "\033[33;1mRunning Coverity Scan Analysis Tool...\033[0m"
cov-build --dir $RESULTS_DIR $COVERITY_SCAN_BUILD_OPTIONS make -j$NPROC
cov-import-scm --dir $RESULTS_DIR --scm git --log $RESULTS_DIR/scm_log.txt

# Tar results
echo -e "\033[33;1mTarring Coverity Scan Analysis results...\033[0m"
RESULTS_ARCHIVE=analysis-results.tgz
tar czf $RESULTS_ARCHIVE $RESULTS_DIR


# Upload results
echo -e "\033[33;1mUploading Coverity Scan Analysis results...\033[0m"
set +x
response=$(curl \
  --silent --write-out "\n%{http_code}\n" \
  --form project=$COVERITY_SCAN_PROJECT_NAME \
  --form token=$COVERITY_SCAN_TOKEN \
  --form email=$COVERITY_SCAN_NOTIFICATION_EMAIL \
  --form file=@$RESULTS_ARCHIVE \
  --form version=$COVERITY_SCAN_VERSION \
  --form description=$COVERITY_SCAN_DESCRIPTION \
  $UPLOAD_URL)
set -x
status_code=$(echo "$response" | sed -n '$p')
if [ "$status_code" != "201" ]; then
  TEXT=$(echo "$response" | sed '$d')
  echo -e "\033[33;1mCoverity Scan upload failed: $TEXT.\033[0m"
  exit 1
fi
Commit	Line	Data
87b23e49 MJ	1	#!/bin/sh -xue
	2	#
	3	# Copyright (C) 2015 - Michael Jeanson <mjeanson@efficios.com>
	4	# Jonathan Rajotte-Julien <jonathan.rajotte-julien@efficios.com>
	5	#
	6	# This program is free software: you can redistribute it and/or modify
	7	# it under the terms of the GNU General Public License as published by
	8	# the Free Software Foundation, either version 3 of the License, or
	9	# (at your option) any later version.
	10	#
	11	# This program is distributed in the hope that it will be useful,
	12	# but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	# GNU General Public License for more details.
	15	#
	16	# You should have received a copy of the GNU General Public License
	17	# along with this program. If not, see <http://www.gnu.org/licenses/>.
	18
	19	# Coverity settings
e8078c79	20	# The project name and token have to be provided trough env variables
87b23e49 MJ	21	#COVERITY_SCAN_PROJECT_NAME=""
	22	#COVERITY_SCAN_TOKEN=""
	23	COVERITY_SCAN_VERSION=`git describe --always \| sed 's\|-\|.\|g'`
	24	COVERITY_SCAN_DESCRIPTION="Automated CI build"
	25	COVERITY_SCAN_NOTIFICATION_EMAIL="ci-notification@lists.lttng.org"
	26	COVERITY_SCAN_BUILD_OPTIONS=""
	27	#COVERITY_SCAN_BUILD_OPTIONS="--return-emit-failures 8 --parse-error-threshold 85"
	28
	29	NPROC=$(nproc)
	30	PLATFORM=$(uname)
	31	export CFLAGS="-O0 -g -DDEBUG"
	32
	33	TOOL_ARCHIVE=/tmp/cov-analysis-${PLATFORM}.tgz
	34	TOOL_URL=https://scan.coverity.com/download/${PLATFORM}
	35	TOOL_BASE=/tmp/coverity-scan-analysis
	36
	37	UPLOAD_URL="https://scan.coverity.com/builds"
	38	SCAN_URL="https://scan.coverity.com"
	39
	40	RESULTS_DIR="$WORKSPACE/cov-int"
	41
	42
	43	# liburcu dependency
	44	if [ -d "$WORKSPACE/deps/liburcu" ]; then
	45	URCU_INCS="$WORKSPACE/deps/liburcu/build/include/"
	46	URCU_LIBS="$WORKSPACE/deps/liburcu/build/lib/"
	47
	48	export CPPFLAGS="-I$URCU_INCS ${CPPFLAGS:-}"
	49	export LDFLAGS="-L$URCU_LIBS ${LDFLAGS:-}"
	50	export LD_LIBRARY_PATH="$URCU_LIBS:${LD_LIBRARY_PATH:-}"
	51	fi
	52
	53
	54	# lttng-ust dependency
	55	if [ -d "$WORKSPACE/deps/lttng-ust" ]; then
	56	UST_INCS="$WORKSPACE/deps/lttng-ust/build/include/"
	57	UST_LIBS="$WORKSPACE/deps/lttng-ust/build/lib/"
	58
	59	export CPPFLAGS="-I$UST_INCS ${CPPFLAGS:-}"
	60	export LDFLAGS="-L$UST_LIBS ${LDFLAGS:-}"
	61	export LD_LIBRARY_PATH="$UST_LIBS:${LD_LIBRARY_PATH:-}"
	62	fi
	63
	64
	65	# Verify upload is permitted
e8078c79	66	set +x
87b23e49	67	AUTH_RES=`curl -s --form project="$COVERITY_SCAN_PROJECT_NAME" --form token="$COVERITY_SCAN_TOKEN" $SCAN_URL/api/upload_permitted`
e8078c79	68	set -x
87b23e49 MJ	69	if [ "$AUTH_RES" = "Access denied" ]; then
	70	echo -e "\033[33;1mCoverity Scan API access denied. Check COVERITY_SCAN_PROJECT_NAME and COVERITY_SCAN_TOKEN.\033[0m"
	71	exit 1
	72	else
	73	AUTH=`echo $AUTH_RES \| jq .upload_permitted`
	74	if [ "$AUTH" = "true" ]; then
	75	echo -e "\033[33;1mCoverity Scan analysis authorized per quota.\033[0m"
	76	else
	77	WHEN=`echo $AUTH_RES \| jq .next_upload_permitted_at`
	78	echo -e "\033[33;1mCoverity Scan analysis NOT authorized until $WHEN.\033[0m"
	79	exit 1
	80	fi
	81	fi
	82
	83
	84	# Download Coverity Scan Analysis Tool
	85	if [ ! -d $TOOL_BASE ]; then
	86	if [ ! -e $TOOL_ARCHIVE ]; then
	87	echo -e "\033[33;1mDownloading Coverity Scan Analysis Tool...\033[0m"
e8078c79	88	set +x
87b23e49	89	wget -nv -O $TOOL_ARCHIVE $TOOL_URL --post-data "project=$COVERITY_SCAN_PROJECT_NAME&token=$COVERITY_SCAN_TOKEN"
e8078c79	90	set -x
87b23e49 MJ	91	fi
	92
	93	# Extract Coverity Scan Analysis Tool
	94	echo -e "\033[33;1mExtracting Coverity Scan Analysis Tool...\033[0m"
	95	mkdir -p $TOOL_BASE
	96	cd $TOOL_BASE
	97	tar xzf $TOOL_ARCHIVE
	98	cd -
	99	fi
	100
	101	TOOL_DIR=`find $TOOL_BASE -type d -name 'cov-analysis*'`
	102	export PATH=$TOOL_DIR/bin:$PATH
	103
	104
	105	# Prepare build dir
	106	if [ -f "./bootstrap" ]; then
	107	./bootstrap
	108	./configure
	109	fi
	110
	111	# Build
	112	echo -e "\033[33;1mRunning Coverity Scan Analysis Tool...\033[0m"
	113	cov-build --dir $RESULTS_DIR $COVERITY_SCAN_BUILD_OPTIONS make -j$NPROC
	114	cov-import-scm --dir $RESULTS_DIR --scm git --log $RESULTS_DIR/scm_log.txt
	115
	116	# Tar results
	117	echo -e "\033[33;1mTarring Coverity Scan Analysis results...\033[0m"
	118	RESULTS_ARCHIVE=analysis-results.tgz
	119	tar czf $RESULTS_ARCHIVE $RESULTS_DIR
	120
	121
	122	# Upload results
	123	echo -e "\033[33;1mUploading Coverity Scan Analysis results...\033[0m"
e8078c79	124	set +x
87b23e49 MJ	125	response=$(curl \
	126	--silent --write-out "\n%{http_code}\n" \
	127	--form project=$COVERITY_SCAN_PROJECT_NAME \
	128	--form token=$COVERITY_SCAN_TOKEN \
	129	--form email=$COVERITY_SCAN_NOTIFICATION_EMAIL \
	130	--form file=@$RESULTS_ARCHIVE \
	131	--form version=$COVERITY_SCAN_VERSION \
	132	--form description=$COVERITY_SCAN_DESCRIPTION \
	133	$UPLOAD_URL)
e8078c79	134	set -x
87b23e49 MJ	135	status_code=$(echo "$response" \| sed -n '$p')
	136	if [ "$status_code" != "201" ]; then
	137	TEXT=$(echo "$response" \| sed '$d')
	138	echo -e "\033[33;1mCoverity Scan upload failed: $TEXT.\033[0m"
	139	exit 1
	140	fi