3 # Copyright (C) 2019 Michael Jeanson <mjeanson@efficios.com>
4 # Copyright (C) 2015 Jonathan Rajotte-Julien <jonathan.rajotte-julien@efficios.com>
6 # This program is free software: you can redistribute it and/or modify
7 # it under the terms of the GNU General Public License as published by
8 # the Free Software Foundation, either version 3 of the License, or
9 # (at your option) any later version.
11 # This program is distributed in the hope that it will be useful,
12 # but WITHOUT ANY WARRANTY; without even the implied warranty of
13 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 # GNU General Public License for more details.
16 # You should have received a copy of the GNU General Public License
17 # along with this program. If not, see <http://www.gnu.org/licenses/>.
20 WORKSPACE
=${WORKSPACE:-}
23 # The project name and token have to be provided trough env variables
24 #COVERITY_SCAN_PROJECT_NAME=""
25 #COVERITY_SCAN_TOKEN=""
26 COVERITY_SCAN_DESCRIPTION
="Automated CI build"
27 COVERITY_SCAN_NOTIFICATION_EMAIL
="ci-notification@lists.lttng.org"
28 COVERITY_SCAN_BUILD_OPTIONS
=""
29 #COVERITY_SCAN_BUILD_OPTIONS="--return-emit-failures 8 --parse-error-threshold 85"
31 DEPS_INC
="$WORKSPACE/deps/build/include"
32 DEPS_LIB
="$WORKSPACE/deps/build/lib"
33 DEPS_PKGCONFIG
="$DEPS_LIB/pkgconfig"
34 DEPS_BIN
="$WORKSPACE/deps/build/bin"
36 export PATH
="$DEPS_BIN:$PATH"
37 export LD_LIBRARY_PATH
="$DEPS_LIB:${LD_LIBRARY_PATH:-}"
38 export PKG_CONFIG_PATH
="$DEPS_PKGCONFIG"
39 export CPPFLAGS
="-I$DEPS_INC"
40 export LDFLAGS
="-L$DEPS_LIB"
42 SRCDIR
="$WORKSPACE/src/${COVERITY_SCAN_PROJECT_NAME}"
43 TMPDIR
="$WORKSPACE/tmp"
47 export CFLAGS
="-O0 -g -DDEBUG"
49 TOOL_ARCHIVE
="$TMPDIR/cov-analysis-${PLATFORM}.tgz"
50 TOOL_URL
=https
://scan.coverity.com
/download
/${PLATFORM}
51 TOOL_BASE
="$TMPDIR/coverity-scan-analysis"
53 UPLOAD_URL
="https://scan.coverity.com/builds"
54 SCAN_URL
="https://scan.coverity.com"
56 RESULTS_DIR_NAME
="cov-int"
57 RESULTS_DIR
="$WORKSPACE/$RESULTS_DIR_NAME"
58 RESULTS_ARCHIVE
=analysis-results.tgz
60 # Create tmp directory
66 case "$COVERITY_SCAN_PROJECT_NAME" in
68 CONF_OPTS
="--enable-python-bindings --enable-python-bindings-doc --enable-python-plugins"
69 BUILD_TYPE
="autotools"
73 BUILD_TYPE
="autotools"
77 BUILD_TYPE
="autotools"
81 BUILD_TYPE
="autotools"
84 CONF_OPTS
="--enable-java-agent-all --enable-python-agent"
85 BUILD_TYPE
="autotools"
86 export CLASSPATH
="/usr/share/java/log4j-1.2.jar"
88 lttng-scope|ctf-java|libdelorean-java|jabberwocky
)
91 MVN_BIN
="$HOME/tools/hudson.tasks.Maven_MavenInstallation/default/bin/mvn"
95 BUILD_TYPE
="linux-rseq"
98 echo "Generic project, no configure options."
100 BUILD_TYPE
="autotools"
104 if [ -d "$WORKSPACE/src/linux" ]; then
105 export KERNELDIR
="$WORKSPACE/src/linux"
108 # Enter the source directory
111 # Verify upload is permitted
112 # Added "--insecure" because Coverity can't be bothered to properly install SSL certificate chains
114 AUTH_RES
=$
(curl
-s --insecure --form project
="$COVERITY_SCAN_PROJECT_NAME" --form token
="$COVERITY_SCAN_TOKEN" $SCAN_URL/api
/upload_permitted
)
116 if [ "$AUTH_RES" = "Access denied" ]; then
117 echo -e "\033[33;1mCoverity Scan API access denied. Check COVERITY_SCAN_PROJECT_NAME and COVERITY_SCAN_TOKEN.\033[0m"
120 AUTH
=$
(echo "$AUTH_RES" | jq .upload_permitted
)
121 if [ "$AUTH" = "true" ]; then
122 echo -e "\033[33;1mCoverity Scan analysis authorized per quota.\033[0m"
124 WHEN
=$
(echo "$AUTH_RES" | jq .next_upload_permitted_at
)
125 echo -e "\033[33;1mCoverity Scan analysis NOT authorized until $WHEN.\033[0m"
131 # Download Coverity Scan Analysis Tool
132 if [ ! -d "$TOOL_BASE" ]; then
133 if [ ! -e "$TOOL_ARCHIVE" ]; then
134 echo -e "\033[33;1mDownloading Coverity Scan Analysis Tool...\033[0m"
136 curl
-s --insecure --form project
="$COVERITY_SCAN_PROJECT_NAME" --form token
="$COVERITY_SCAN_TOKEN" -o "$TOOL_ARCHIVE" "$TOOL_URL"
140 # Extract Coverity Scan Analysis Tool
141 echo -e "\033[33;1mExtracting Coverity Scan Analysis Tool...\033[0m"
142 mkdir
-p "$TOOL_BASE"
143 cd "$TOOL_BASE" ||
exit 1
144 tar xzf
"$TOOL_ARCHIVE"
148 TOOL_DIR
=$
(find "$TOOL_BASE" -type d
-name 'cov-analysis*')
149 export PATH
=$TOOL_DIR/bin
:$PATH
151 COVERITY_SCAN_VERSION
=$
(git describe
--always |
sed 's|-|.|g')
154 echo -e "\033[33;1mRunning Coverity Scan Analysis Tool...\033[0m"
155 case "$BUILD_TYPE" in
158 cov-build
--dir "$RESULTS_DIR" $COVERITY_SCAN_BUILD_OPTIONS "$MVN_BIN" \
160 -Dmaven.repo.
local="$WORKSPACE/.repository" \
161 -Dmaven.compiler.fork
=true \
162 -Dmaven.compiler.forceJavaCompilerUse
=true \
163 -Dmaven.
test.skip
=true \
168 # Prepare build dir for autotools based projects
169 if [ -f "./bootstrap" ]; then
171 .
/configure
$CONF_OPTS
174 cov-build
--dir "$RESULTS_DIR" $COVERITY_SCAN_BUILD_OPTIONS make -j"$NPROC" V
=1
178 make -j"$NPROC" prepare
179 cov-build
--dir "$RESULTS_DIR" $COVERITY_SCAN_BUILD_OPTIONS make -j"$NPROC" kernel
/rseq.o kernel
/do_on_cpu
/core.o kernel
/do_on_cpu
/interpreter.o kernel
/do_on_cpu
/validate.o V
=1
182 echo "Unsupported build type: $BUILD_TYPE"
189 cov-import-scm
--dir "$RESULTS_DIR" --scm git
--log "$RESULTS_DIR/scm_log.txt"
194 echo -e "\033[33;1mTarring Coverity Scan Analysis results...\033[0m"
195 tar czf
$RESULTS_ARCHIVE $RESULTS_DIR_NAME
198 echo -e "\033[33;1mUploading Coverity Scan Analysis results...\033[0m"
200 response
=$
(curl
--insecure \
201 --silent --write-out "\n%{http_code}\n" \
202 --form project
="$COVERITY_SCAN_PROJECT_NAME" \
203 --form token
="$COVERITY_SCAN_TOKEN" \
204 --form email
="$COVERITY_SCAN_NOTIFICATION_EMAIL" \
205 --form file=@
"$RESULTS_ARCHIVE" \
206 --form version
="$COVERITY_SCAN_VERSION" \
207 --form description
="$COVERITY_SCAN_DESCRIPTION" \
210 status_code
=$
(echo "$response" |
sed -n '$p')
211 if [ "${status_code:0:1}" == "2" ]; then
212 echo -e "\033[33;1mCoverity Scan upload successful.\033[0m"
214 TEXT
=$
(echo "$response" |
sed '$d')
215 echo -e "\033[33;1mCoverity Scan upload failed: $TEXT.\033[0m"