Draft: Licensing #1149
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,139 @@ | ||
| name: Check and update licenses | ||
|
|
||
| on: | ||
| push: | ||
| branches: [ "main" ] | ||
| pull_request: | ||
| branches: [ "main" ] | ||
| # types: [opened, synchronized] | ||
| permissions: | ||
| contents: read # we dont need to write | ||
|
|
||
| jobs: | ||
| license_update: | ||
|
|
||
| strategy: | ||
| fail-fast: false | ||
| matrix: | ||
| # we just do these two architectures for now as they are ones causing more discrepancies | ||
| include: | ||
| - runs_on: ubuntu-24.04-arm | ||
| EESSI_SOFTWARE_SUBDIR_OVERRIDE: aarch64/generic | ||
| - runs_on: ubuntu-24.04 | ||
| EESSI_SOFTWARE_SUBDIR_OVERRIDE: x86_64/generic | ||
|
|
||
| runs-on: ${{ matrix.runs_on }} | ||
|
|
||
| steps: | ||
| - uses: actions/checkout@v4 | ||
| - uses: eessi/github-action-eessi@v3 | ||
|
|
||
| - name: Check for missing installlations | ||
| env: | ||
| PR_NUMBER: ${{ github.event.number }} | ||
|
|
||
| run: | | ||
| export EESSI_SOFTWARE_SUBDIR_OVERRIDE=${{matrix.EESSI_SOFTWARE_SUBDIR_OVERRIDE}} | ||
| source /cvmfs/software.eessi.io/versions/${EESSI_VERSION}/init/bash | ||
|
|
||
| # set $EESSI_CPU_FAMILY to the CPU architecture that corresponds to $EESSI_SOFTWARE_SUBDIR_OVERRIDE (part before the first slash), | ||
| # to prevent issues with checks in the Easybuild configuration that use this variable | ||
| export EESSI_CPU_FAMILY=${EESSI_SOFTWARE_SUBDIR_OVERRIDE%%/*} | ||
| export EESSI_PREFIX=/cvmfs/software.eessi.io/versions/${EESSI_VERSION} | ||
| export EESSI_OS_TYPE=linux | ||
| env | grep ^EESSI | sort | ||
| module load EasyBuild | ||
|
|
||
| # create a temporary directory to store the output | ||
| LOCAL_TMPDIR=$(mktemp -d) | ||
| eb_missing_out=$LOCAL_TMPDIR/eb_missing.out | ||
| echo "eb_missing_out=$LOCAL_TMPDIR/eb_missing.out" >> $GITHUB_ENV | ||
| echo "Temporary directory created: ${eb_missing_out}" | ||
| file_list=$(curl -sS \ | ||
| -H "Accept: application/vnd.github+json" \ | ||
| "https://api.github.com/repos/${GITHUB_REPOSITORY}/pulls/${PR_NUMBER}/files?per_page=100" | | ||
| jq -r '.[].filename | select(test("easystack"))') | ||
| echo "Files to check:" | ||
| echo $file_list | ||
|
|
||
| for easystack_file in $file_list; do | ||
| eb_version=$(echo ${easystack_file} | sed 's/.*eb-\([0-9.]*\).*.yml/\1/g') | ||
| echo "check missing installations for ${easystack_file} with EasyBuild ${eb_version}..." | ||
| module purge | ||
| module load EasyBuild/${eb_version} | ||
| module load EESSI-extend/${EESSI_VERSION}-easybuild | ||
| which eb | ||
| ${EB:-eb} --version | ||
| ${EB:-eb} --missing --easystack ${easystack_file} 2>&1 | tee ${eb_missing_out} | ||
hvelab marked this conversation as resolved.
Show resolved
Hide resolved
|
||
|
|
||
| exit_code=${PIPESTATUS[0]} | ||
| echo "exit code for eb --missing --easystack ${easystack_file} is ${exit_code}" | ||
| grep " required modules missing:" ${eb_missing_out} # > /dev/null | ||
| exit_code=$? | ||
|
|
||
| if [[ ${exit_code} -eq 0 ]]; then echo "missing installations found for ${easystack_file}!" >&2; | ||
| else | ||
| echo "no missing installations found for ${easystack_file}." | ||
| exit 0 | ||
| fi | ||
| done | ||
|
|
||
| - name: Check for modules existing in licenses.json file | ||
| run: | | ||
| if [ -s licenses/licenses.json ]; then | ||
| echo "licenses.json file exists, checking for modules that are not in the file..." | ||
| echo "tmp file check: ${eb_missing_out}" | ||
| # cat ${eb_missing_out} | ||
| grep -oP '^\* \K[^ ]+' "${eb_missing_out}" | sort -u > missing.txt | ||
| echo "Modules to check" | ||
| cat missing.txt | ||
|
|
||
| # Check if module exists as key in JSON | ||
|
There was a problem hiding this comment. To understand this, you are using the full module name as a key? Isn't that too restrictive? Someone would have to add each new version to the file. I would have thought that you only check for the name. How will this cover extensions? You may want to consider a different approach to this check. Take a look at what I have done in https://github.com/EESSI/software-layer/blob/main/.github/workflows/test_compare_stacks.yml, you could reuse https://github.com/EESSI/software-layer/blob/main/.github/workflows/scripts/compare_stacks.py#L44 to gather all modules and extensions and check for them in your json file. I think you still need what you have, as you do want to fail the CI check if anything is missing (this will force maintainers to rerun the check before they merge, which will retrigger the license check). That seems like a decent design to me though then, we fail the CI if anything is missing. You can do a preliminary licence check based on There was a problem hiding this comment. That's something I discussed with Pedro, if we use the full name it would mean that for every update of the software we are re-checking the licensing, it's very unlikely that a software will change its license but it could happen. About extensions, it would go on a separate way and file (extension_licenses.json). We thought of maybe in the preliminary stages of the check, once we gathered the EasyConfig file, parse if there is an |
||
| while read -r module; do | ||
| if ! jq -e --arg key "$module" 'has($key)' "licenses/licenses.json" > /dev/null; then | ||
| echo "$module" >> missing_modules.txt | ||
| fi | ||
| done < missing.txt | ||
|
|
||
| echo "Modules not in licenses.json: " | ||
| cat missing_modules.txt | ||
|
|
||
| else | ||
| echo "licenses.json file does not exist? what happened?" | ||
| exit 1 | ||
| fi | ||
|
|
||
| - name : Search sources for missing modules | ||
| run: | | ||
| if [ -s missing_modules.txt ]; then | ||
| echo "Searching sources for missing modules..." | ||
| # Generates a "modules_results.json" file | ||
| module load Python-bundle-PyPI/2023.06-GCCcore-12.3.0 | ||
| python licenses/parsing_easyconfigs.py missing_modules.txt | ||
| cat modules_results.json | ||
| fi | ||
|
|
||
| - name : Try to fetch the license | ||
| run: | | ||
| if [ -s modules_results.json ]; then | ||
| echo "modules_results.json file exists, trying to fetch the license..." | ||
| module load Python-bundle-PyPI/2023.06-GCCcore-12.3.0 | ||
| module load BeautifulSoup/4.12.2-GCCcore-12.3.0 | ||
| python licenses/parse_licenses.py modules_results.json | ||
| cat licenses_test.json | ||
| else | ||
| echo "modules_results.json file does not exist, skipping license fetch." | ||
| fi | ||
|
|
||
| - name: Check for missing licenses | ||
| run: | | ||
| grep -3 "not found" licenses_test.json | ||
| exit_code=$? | ||
| if [[ ${exit_code} -ne 0 ]]; then | ||
| echo "No missing licenses found." | ||
| else | ||
| echo "Missing licenses found, please check the licenses.json file." | ||
hvelab marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| #exit 1 | ||
| fi | ||
|
|
||
|
|
||
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,3 @@ | ||
| see https://spdx.org/licenses | ||
|
|
||
| Python function to download SPDX list of licenses is available in `spdx.py` |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
You could consider something like
https://github.com/EESSI/software-layer-scripts/blob/99c82b562e243cc6f566e72fbcbbe1a23d568d0c/.github/workflows/test-eb-hooks.yml#L24-L27
here. That would mean you can just
Note that you can currently not creating any matrix (so your action is not quite correct yet). I wonder if you need to do an architecture override at all, it is probably enough to just do this on x86 and Arm since they sometimes have slightly different dependencies. An example of an OS matrix that does exactly that is https://github.com/EESSI/github-action-eessi/blob/main/.github/workflows/minimal-usage.yml
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Didn't consider that different architectures would mean different dependencies, do we have any know example for that?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
https://github.com/easybuilders/easybuild-easyconfigs/blob/develop/easybuild/easyconfigs/l/LAMMPS/LAMMPS-29Aug2024_update2-foss-2024a-kokkos.eb#L60-L65
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
i've checked in all easyconfigs and LAMMPS is the only one that adds dependencies depending on the arch, the rest just change some compilation options which is not relevant here, anyway i fixed the matrix (with only x86 and a64fx) and will add what you mentioned to add the EESSI version