Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Docker cache share #1388

Open
wants to merge 18 commits into
base: dev
Choose a base branch
from
Open

Docker cache share #1388

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
18 commits
Select commit Hold shift + click to select a range
55f1ace
migrate to ARC
coolkingcole Oct 19, 2023
12a287c
gh down
coolkingcole Nov 27, 2023
518b8a6
add dead snakes
coolkingcole Nov 27, 2023
9812bac
add dead snakes 2
coolkingcole Nov 27, 2023
e502b73
change tag
coolkingcole Nov 27, 2023
cbdef9c
Update parallel_tests.yml
coolkingcole Nov 28, 2023
7fe47d9
Update parallel_tests.yml
coolkingcole Nov 28, 2023
de35d30
proctoc and proto test
coolkingcole Nov 28, 2023
c5f6a60
add proctoc
coolkingcole Nov 28, 2023
571fbfb
Update parallel_tests.yml
coolkingcole Nov 28, 2023
9170857
Update parallel_tests.yml
coolkingcole Nov 28, 2023
c4c7773
Update parallel_tests.yml
coolkingcole Nov 28, 2023
852581c
Update parallel_tests.yml
coolkingcole Nov 28, 2023
a7d7c90
debug
coolkingcole Nov 28, 2023
4259daf
Update parallel_tests.yml
coolkingcole Nov 28, 2023
a509b86
wait for test for debug
coolkingcole Nov 28, 2023
a249e6c
dont wait for test for debug
coolkingcole Nov 28, 2023
3e54ce9
buildx dying
coolkingcole Nov 28, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
6 changes: 3 additions & 3 deletions .github/workflows/local_tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,12 +7,12 @@ name: Local

jobs:
local_build_container:
runs-on: ubuntu:22.04
runs-on: panda-arc
steps:
- uses: actions/checkout@v2 # Clones to $GITHUB_WORKSPACE. NOTE: this requires git > 2.18 (not on ubuntu 18.04 by default) to get .git directory

- name: Build docker container from project root
run: echo $GITHUB_WORKSPACE; cd $GITHUB_WORKSPACE && DOCKER_BUILDKIT=1 docker build --progress=plain --target developer -t panda_local_${{ github.sha }} .
run: echo $GITHUB_WORKSPACE; cd $GITHUB_WORKSPACE && DOCKER_BUILDKIT=1 docker build --progress=plain --target developer -t panda_local:${{ github.sha }} .

- name: Minimal test of built container # Just test to see if one of our binaries is built
run: docker run --rm "panda_local_${{ github.sha }}" /bin/bash -c 'exit $(/panda/build/arm-softmmu/panda-system-arm -help | grep -q "usage. panda-system-arm")'
run: docker run --rm "panda_local:${{ github.sha }}" /bin/bash -c 'exit $(/panda/build/arm-softmmu/panda-system-arm -help | grep -q "usage. panda-system-arm")'
201 changes: 127 additions & 74 deletions .github/workflows/parallel_tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,8 +1,7 @@
name: Parallel Tests
# For PRs to dev or pushes that modify the root Dockerfile, build from scratch
# then run CI tests using that container in parallel
# For forked repos that can't use our self-hosted test suite, just build and run make check

# For forked repos that can't use our panda-arc test suite, just build and run make check
on:
pull_request:
branches:
Expand All @@ -16,121 +15,175 @@ on:

jobs:

test_installer: # test install_ubuntu.sh
runs-on: ubuntu-20.04 # Note 22.04 would work, but it requires docker > 20.10.7 which is not on our CI box (yet)
test_installer:
runs-on: panda-arc # Note 22.04 would work, but it requires docker > 20.10.7 which is not on our CI box (yet)
steps:
- name: Update
run: sudo apt-get update -y
- name: Install ssl
run: sudo apt-get install -y libssl-dev software-properties-common protobuf-compiler
- name: Add Dead Snakes
run: sudo add-apt-repository -y ppa:deadsnakes/ppa
- name: Update
run: sudo apt-get update -y
- name: Set up Python
uses: actions/setup-python@v4
with:
python-version: '3.9'
- name: Install Python dev headers
run: sudo apt-get install -y libpython3.9-dev
- uses: actions/checkout@v2 # Clones to $GITHUB_WORKSPACE. NOTE: this requires git > 2.18 (not on ubuntu 18.04 by default) to get .git directory
- name: Lint PyPANDA with flake8
run: |
python -m pip install --upgrade pip
python -m pip install flake8
python -m flake8 $GITHUB_WORKSPACE/panda/python/core/pandare/ --count --select=E9,F63,F7,F82 --show-source --statistics
pip cache purge
pip install --upgrade pip
pip install flake8
pip uninstall protobuf python3-protobuf
pip install protobuf==3.6.1
pip show protobuf
flake8 $GITHUB_WORKSPACE/panda/python/core/pandare/ --count --select=E9,F63,F7,F82 --show-source --statistics
# python -m flake8 $GITHUB_WORKSPACE/panda/python/core/pandare/ --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
- name: Run install_ubuntu.sh
run: cd $GITHUB_WORKSPACE && ./panda/scripts/install_ubuntu.sh


build_container:
if: github.repository == 'panda-re/panda'
runs-on: self-hosted
runs-on: panda-arc
steps:

- uses: actions/checkout@v2 # Clones to $GITHUB_WORKSPACE. NOTE: this requires git > 2.18 (not on ubuntu 18.04 by default) to get .git directory

- name: Build docker container from project root
run: cd $GITHUB_WORKSPACE && DOCKER_BUILDKIT=1 docker build --progress=plain --target developer -t panda_local_${{ github.sha }} .

- name: Minimal test of built container # Just test to see if one of our binaries is built
run: docker run --rm "panda_local_${{ github.sha }}" /bin/bash -c 'exit $(/panda/build/arm-softmmu/panda-system-arm -help | grep -q "usage. panda-system-arm")'

taint_tests:
- name: Install git
run: sudo apt-get update -y && sudo apt-get install git -y
- uses: actions/checkout@v2 # Clones to $GITHUB_WORKSPACE. NOTE: this requires git > 2.18 (not on ubuntu 18.04 by default) to get .git directory
with:
fetch-depth: 0

#- name: Set up Docker Buildx
# uses: docker/setup-buildx-action@v3
- name: Build and push
uses: docker/build-push-action@v5
with:
context: ${{ github.workspace }}
tags: panda_local:${{ github.sha }}
target: developer
- name: Debug Docker Info
run: docker info
- name: Debug Docker Info 2
run: ls -alh /var/run/docker.sock
- name: Minimal test of built container # Just test to see if one of our binaries is built
run: sudo docker run --rm "panda_local:${{ github.sha }}" /bin/bash -c 'exit $(/panda/build/arm-softmmu/panda-system-arm -help | grep -q "usage. panda-system-arm")'

tests:
if: github.repository == 'panda-re/panda'
runs-on: self-hosted
runs-on: panda-arc
needs: [build_container]

strategy:
matrix:
target: [i386, x86_64]
include:
- test_type: "taint"
target: "i386"
- test_type: "taint"
target: "x86_64"
- test_type: "sym_trace"
target: "x86_64"
- test_type: "pypanda"
test_script: "dyn_hooks"
- test_type: "pypanda"
test_script: "copy_test"
- test_type: "pypanda"
test_script: "file_fake"
- test_type: "pypanda"
test_script: "file_hook"
- test_type: "pypanda"
test_script: "generic_tests"
- test_type: "pypanda"
test_script: "monitor_cmds"
- test_type: "pypanda"
test_script: "multi_proc_cbs"
- test_type: "pypanda"
test_script: "sleep_in_cb"
- test_type: "pypanda"
test_script: "syscalls"
- test_type: "pypanda"
test_script: "record_no_snap"
- test_type: "pypanda"
test_script: "sig_suppress"
- test_type: "make_check"
test_script: "check-qtest-x86_64"
- test_type: "make_check"
test_script: "check-qtest-i386"
- test_type: "make_check"
test_script: "check-qtest-arm"
- test_type: "make_check"
test_script: "check-qtest-mips"
- test_type: "make_check"
test_script: "check-qtest-mipsel"
- test_type: "make_check"
test_script: "check-qtest-ppc"
- test_type: "make_check"
test_script: "check-block"
- test_type: "make_check"
test_script: "check-unit"
- test_type: "make_check"
test_script: "check-qapi-schema"


steps:
# Given a container with PANDA installed at /panda, run the taint tests
- name: Run taint tests inside current container
- name: Update
run: sudo apt-get update -y
- name: Install ssl
run: sudo apt-get install -y wget
- name: Run Taint Tests
if: matrix.test_type == 'taint'
run: >-
wget -q -O wheezy_panda2.qcow2 https://panda-re.mit.edu/qcows/linux/debian/7.3/x86/debian_7.3_x86.qcow;
wget -q https://panda-re.mit.edu/qcows/linux/ubuntu/1804/x86_64/bionic-server-cloudimg-amd64-noaslr-nokaslr.qcow2;
docker run --name panda_test_${{ matrix.target }}_${GITHUB_RUN_ID}
--mount type=bind,source=/home/panda/regdir/qcows/wheezy_panda2.qcow2,target=/home/panda/regdir/qcows/wheezy_panda2.qcow2
--mount type=bind,source=/home/panda/regdir/qcows/bionic-server-cloudimg-amd64-noaslr-nokaslr.qcow2,target=/home/panda/regdir/qcows/bionic-server-cloudimg-amd64-noaslr-nokaslr.qcow2
--rm -t "panda_local_${{ github.sha }}" bash -c
--mount type=bind,source=$(pwd)/wheezy_panda2.qcow2,target=/home/panda/regdir/qcows/wheezy_panda2.qcow2
--mount type=bind,source=$(pwd)/bionic-server-cloudimg-amd64-noaslr-nokaslr.qcow2,target=/home/panda/regdir/qcows/bionic-server-cloudimg-amd64-noaslr-nokaslr.qcow2
--rm -t "panda_local:${{ github.sha }}" bash -c
"cd /tmp; git clone https://github.com/panda-re/panda_test;
cd ./panda_test/tests/taint2;
echo 'Running Record:';
python3 taint2_multi_arch_record_or_replay.py --arch ${{ matrix.target }} --mode record;
echo 'Running Replay:';
python3 taint2_multi_arch_record_or_replay.py --arch ${{ matrix.target }} --mode replay;
sed -i '/^\s*$/d' taint2_log;
if cat taint2_log; then echo 'Taint unit test log found!'; else echo 'Taint unit test log NOT found!' && exit 1; fi;
echo -e '\nFailures:';
if grep 'fail' taint2_log; then echo 'TEST FAILED!' && exit 1; else echo -e 'None.\nTEST PASSED!' && exit 0; fi"

sym_trace_tests:
if: github.repository == 'panda-re/panda'
runs-on: self-hosted
needs: [build_container]

strategy:
matrix:
target: [x86_64]

steps:
# Given a container with PANDA installed at /panda, run the taint tests
- name: Run symbolic tracing tests inside current container
- name: Run symbolic tracing tests
if: matrix.test_type == 'sym_trace'
run: >-
docker run --name panda_sym_test_${{ matrix.target }}_${GITHUB_RUN_ID}
--rm -t "panda_local_${{ github.sha }}" bash -c
--rm -t "panda_local:${{ github.sha }}" bash -c
"pip3 install capstone keystone-engine z3-solver; python3 /panda/panda/python/examples/unicorn/taint_sym_x86_64.py;
if [ $? -eq 0 ]; then echo -e 'TEST PASSED!' && exit 0; else echo 'TEST FAILED!' && exit 1; fi"

make_check:
if: github.repository == 'panda-re/panda'
runs-on: self-hosted
needs: [build_container]

strategy:
matrix:
# See output from `make check-help`: we're just splitting `make check` into all the things it does
# so we can run them in parallel: arch-specific qtests, plus a few others
target: [check-qtest-x86_64, check-qtest-i386, check-qtest-arm, check-qtest-mips, check-qtest-mipsel, check-qtest-ppc, check-block, check-unit, check-qapi-schema]

steps:
- name: Run Individual QEMU tests
- name: Run PyPanda Tests
if: matrix.test_type == 'pypanda'
run: >-
docker run --name panda_test_${{ matrix.target }}_${GITHUB_RUN_ID}
wget -q https://panda-re.mit.edu/qcows/linux/ubuntu/1604/x86/ubuntu_1604_x86.qcow;
docker run --name panda_test_${{ matrix.test_script }}_${GITHUB_RUN_ID}
--mount type=bind,source=$(pwd)/ubuntu_1604_x86.qcow,target=/root/.panda/ubuntu_1604_x86.qcow
-e PANDA_TEST=yes --cap-add SYS_NICE
--rm -t "panda_local_${{ github.sha }}" bash -c
"cd /panda/build && make ${{ matrix.target }}"

pypanda_tests:
if: github.repository == 'panda-re/panda'
runs-on: self-hosted
needs: [build_container]

strategy:
matrix:
# See output from `make check-help`: we're just splitting `make check` into all the things it does
# so we can run them in parallel: arch-specific qtests, plus a few others
test_script: [dyn_hooks, copy_test, file_fake, file_hook, generic_tests, monitor_cmds, multi_proc_cbs, sleep_in_cb, syscalls, record_no_snap, sig_suppress]
--rm -t "panda_local:${{ github.sha }}" bash -c
"cd /panda/panda/python/tests/ && make && pip3 install -r requirements.txt && python3 ${{ matrix.test_script }}.py"

steps:
- name: Run individual pypanda tests
# TODO: pip requirements install here should be moved to Docker image build to save test time
- name: Run make Tests
if: matrix.test_type == 'make_check'
run: >-
docker run --name panda_test_${{ matrix.test_script }}_${GITHUB_RUN_ID}
--mount type=bind,source=/home/panda/regdir/qcows/ubuntu_1604_x86.qcow,target=/root/.panda/ubuntu_1604_x86.qcow
-e PANDA_TEST=yes --cap-add SYS_NICE
--rm -t "panda_local_${{ github.sha }}" bash -c
"cd /panda/panda/python/tests/ && make && pip3 install -r requirements.txt && python3 ${{ matrix.test_script }}.py"
--rm -t "panda_local:${{ github.sha }}" bash -c
"cd /panda/build && make ${{ matrix.test_script }}"

cleanup:
# Cleanup after prior jobs finish - even if they fail
needs: [taint_tests, sym_trace_tests, make_check, pypanda_tests]
runs-on: self-hosted
needs: [tests]
runs-on: panda-arc
if: always()

steps:
Expand All @@ -143,9 +196,9 @@ jobs:
docker image prune --all -f --filter "until=72h"
docker builder prune -af --filter "until=72h"

build_and_check_fork: # Forked repos can't use self-hosted test suite - just checkout and run make check
build_and_check_fork: # Forked repos can't use panda-arc test suite - just checkout and run make check
if: github.repository != 'panda-re/panda'
runs-on: ubuntu-latest
runs-on: panda-arc

steps:
- uses: actions/checkout@v1 # Clones code into to /home/runner/work/panda
Expand Down
29 changes: 16 additions & 13 deletions .github/workflows/publish_docker.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,24 +9,27 @@ on:
jobs:
build_dev:
if: github.repository == 'panda-re/panda' && github.ref == 'refs/heads/dev'
runs-on: self-hosted
runs-on: panda-arc
steps:
- name: Checkout PANDA at current commit
uses: actions/checkout@v2

- name: Docker login
run: docker login -u pandare -p ${{secrets.pandare_dockerhub}}

- name: Build Bionic container
# Push both dev and regular container
run: DOCKER_BUILDKIT=1 docker build --progress=plain --target=panda -t pandare/panda:${GITHUB_SHA} $GITHUB_WORKSPACE;
docker tag pandare/panda:${GITHUB_SHA} pandare/panda:latest;
docker push pandare/panda:${GITHUB_SHA};
docker push pandare/panda;
DOCKER_BUILDKIT=1 docker build --progress=plain --target=developer -t pandare/pandadev:${GITHUB_SHA} $GITHUB_WORKSPACE;
docker tag pandare/pandadev:${GITHUB_SHA} pandare/pandadev:latest;
docker push pandare/pandadev:${GITHUB_SHA};
docker push pandare/pandadev;

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3

- name: Build panda:latest
uses: docker/build-push-action@v5
with:
tags: pandare/panda:${GITHUB_SHA}
target: panda
- name: Build pandadev:latest
uses: docker/build-push-action@v5
with:
tags: pandare/pandadev:${GITHUB_SHA}
target: developer

- name: Checkout docs and reset
run: rm -rf "${GITHUB_WORKSPACE}/auto_pydoc";
Expand Down Expand Up @@ -55,7 +58,7 @@ jobs:

build_stable:
if: github.repository == 'panda-re/panda' && github.ref == 'refs/heads/stable'
runs-on: self-hosted
runs-on: panda-arc
steps:
- name: Checkout PANDA at current commit
uses: actions/checkout@v1
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/stale.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ on:
jobs:
stale:

runs-on: ubuntu-latest
runs-on: panda-arc
permissions:
issues: write
pull-requests: write
Expand Down
22 changes: 11 additions & 11 deletions .gitmodules
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,36 +1,36 @@
[submodule "roms/vgabios"]
path = roms/vgabios
url = https://git.qemu.org/git/vgabios.git
url = https://gitlab.com/qemu-project/vgabios.git
[submodule "roms/seabios"]
path = roms/seabios
url = https://git.qemu.org/git/seabios.git
url = https://gitlab.com/qemu-project/seabios.git
[submodule "roms/SLOF"]
path = roms/SLOF
url = https://git.qemu.org/git/SLOF.git
url = https://gitlab.com/qemu-project/SLOF.git
[submodule "roms/ipxe"]
path = roms/ipxe
url = https://git.qemu.org/git/ipxe.git
url = https://gitlab.com/qemu-project/ipxe.git
[submodule "roms/openbios"]
path = roms/openbios
url = https://git.qemu.org/git/openbios.git
url = https://gitlab.com/qemu-project/openbios.git
[submodule "roms/openhackware"]
path = roms/openhackware
url = https://git.qemu.org/git/openhackware.git
url = https://gitlab.com/qemu-project/openhackware.git
[submodule "roms/qemu-palcode"]
path = roms/qemu-palcode
url = https://github.com/rth7680/qemu-palcode.git
[submodule "roms/sgabios"]
path = roms/sgabios
url = https://git.qemu.org/git/sgabios.git
url = https://gitlab.com/qemu-project/sgabios.git
[submodule "pixman"]
path = pixman
url = https://anongit.freedesktop.org/git/pixman
url = https://github.com/coolkingcole/pixman.git
[submodule "dtc"]
path = dtc
url = https://git.qemu.org/git/dtc.git
url = https://github.com/qemu/dtc.git
[submodule "roms/u-boot"]
path = roms/u-boot
url = https://git.qemu.org/git/u-boot.git
url = https://gitlab.com/qemu-project/u-boot.git
[submodule "roms/skiboot"]
path = roms/skiboot
url = https://git.qemu.org/git/skiboot.git
url = https://gitlab.com/qemu-project/skiboot.git