.gitlab-ci.yml 30 KB
Newer Older
1
image: "dev.gitlab.org:5005/gitlab/gitlab-build-images:ruby-2.5.3-golang-1.11-git-2.18-chrome-71.0-node-10.x-yarn-1.12-postgresql-9.6-graphicsmagick-1.3.29"
2

Matija Čupić's avatar
Matija Čupić committed
3 4 5
include:
  - local: /lib/gitlab/ci/templates/Code-Quality.gitlab-ci.yml

6 7 8 9 10
.dedicated-runner: &dedicated-runner
  retry: 1
  tags:
    - gitlab-org

11
.default-cache: &default-cache
Stan Hu's avatar
Stan Hu committed
12
  key: "debian-stretch-ruby-2.5.3-node-10.x"
13
  paths:
14 15
    - vendor/ruby
    - .yarn-cache/
16
    - vendor/gitaly-ruby
17 18 19 20 21 22 23 24 25 26

.push-cache: &push-cache
  cache:
    <<: *default-cache
    policy: push

.pull-cache: &pull-cache
  cache:
    <<: *default-cache
    policy: pull
27

28 29
variables:
  MYSQL_ALLOW_EMPTY_PASSWORD: "1"
Kamil Trzcinski's avatar
Kamil Trzcinski committed
30
  RAILS_ENV: "test"
Mike Greiling's avatar
Mike Greiling committed
31
  NODE_ENV: "test"
Kamil Trzcinski's avatar
Kamil Trzcinski committed
32
  SIMPLECOV: "true"
33
  GIT_DEPTH: "20"
34
  GIT_SUBMODULE_STRATEGY: "none"
35
  GET_SOURCES_ATTEMPTS: "3"
36
  KNAPSACK_RSPEC_SUITE_REPORT_PATH: knapsack/${CI_PROJECT_NAME}/rspec_report-master.json
37
  FLAKY_RSPEC_SUITE_REPORT_PATH: rspec_flaky/report-suite.json
Ian Baum's avatar
Ian Baum committed
38
  BUILD_ASSETS_IMAGE: "false"
39

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
40
before_script:
Kamil Trzcinski's avatar
Test  
Kamil Trzcinski committed
41
  - bundle --version
42
  - date
43
  - source scripts/utils.sh
44
  - date
45
  - source scripts/prepare_build.sh
46 47 48 49
  - date

after_script:
  - date
50

Kamil Trzcinski's avatar
Kamil Trzcinski committed
51
stages:
52 53
  - build
  - prepare
54
  - merge
55 56 57
  - test
  - post-test
  - pages
58
  - post-cleanup
59

60
# Predefined scopes
61
.tests-metadata-state: &tests-metadata-state
62
  <<: *dedicated-runner
63
  variables:
64
    TESTS_METADATA_S3_BUCKET: "gitlab-ce-cache"
65 66
  before_script:
    - source scripts/utils.sh
67 68 69
  artifacts:
    expire_in: 31d
    paths:
70
      - knapsack/
71
      - rspec_flaky/
Stan Hu's avatar
Stan Hu committed
72
      - rspec_profiling/
73

74 75
.use-pg: &use-pg
  services:
76
    - postgres:9.6
77 78 79
    - redis:alpine

.use-mysql: &use-mysql
80
  services:
81
    - mysql:5.7
82
    - redis:alpine
83

84 85
# Skip all jobs except the ones that begin with 'docs/'.
# Used for commits including ONLY documentation changes.
86
# https://docs.gitlab.com/ce/development/documentation/#testing
87 88
.except-docs: &except-docs
  except:
89
    - /(^docs[\/-].*|.*-docs$)/
90

91 92 93 94
.except-qa: &except-qa
  except:
    - /(^qa[\/-].*|.*-qa$)/

95 96 97 98 99
.except-docs-and-qa: &except-docs-and-qa
  except:
    - /(^docs[\/-].*|.*-docs$)/
    - /(^qa[\/-].*|.*-qa$)/

100 101 102
# Jobs that only need to pull cache
.dedicated-no-docs-pull-cache-job: &dedicated-no-docs-pull-cache-job
  <<: *dedicated-runner
103
  <<: *except-docs
104 105 106 107 108 109 110 111 112 113 114
  <<: *pull-cache
  dependencies:
    - setup-test-env
  stage: test

# Jobs that do not need a DB
.dedicated-no-docs-no-db-pull-cache-job: &dedicated-no-docs-no-db-pull-cache-job
  <<: *dedicated-no-docs-pull-cache-job
  variables:
    SETUP_DB: "false"

115 116 117 118
.dedicated-no-docs-and-no-qa-pull-cache-job: &dedicated-no-docs-and-no-qa-pull-cache-job
  <<: *dedicated-no-docs-pull-cache-job
  <<: *except-docs-and-qa

119
.single-script-job: &single-script-job
Stan Hu's avatar
Stan Hu committed
120
  image: ruby:2.5-alpine
121
  stage: test
122 123 124 125 126
  cache: {}
  dependencies: []
  variables: &single-script-job-variables
    GIT_STRATEGY: none
  before_script:
127 128
    # We don't clone the repo by using GIT_STRATEGY: none and only download the
    # single script we need here so it's much faster than cloning.
129 130 131
    - export SCRIPT_NAME="${SCRIPT_NAME:-$CI_JOB_NAME}"
    - apk add --update openssl
    - wget $CI_PROJECT_URL/raw/$CI_COMMIT_SHA/scripts/$SCRIPT_NAME
Ian Baum's avatar
Ian Baum committed
132
    - chmod 755 $(basename $SCRIPT_NAME)
133

134 135 136 137 138
.rake-exec: &rake-exec
  <<: *dedicated-no-docs-no-db-pull-cache-job
  script:
    - bundle exec rake $CI_JOB_NAME

139
.rspec-metadata: &rspec-metadata
140
  <<: *dedicated-runner
141
  <<: *except-docs-and-qa
142
  <<: *pull-cache
143
  stage: test
144
  script:
145
    - JOB_NAME=( $CI_JOB_NAME )
146 147
    - TEST_TOOL=${JOB_NAME[0]}
    - export KNAPSACK_REPORT_PATH=knapsack/${CI_PROJECT_NAME}/${TEST_TOOL}_node_${CI_NODE_INDEX}_${CI_NODE_TOTAL}_report.json
148
    - export KNAPSACK_GENERATE_REPORT=true
149
    - export SUITE_FLAKY_RSPEC_REPORT_PATH=${FLAKY_RSPEC_SUITE_REPORT_PATH}
150 151
    - export FLAKY_RSPEC_REPORT_PATH=rspec_flaky/all_${TEST_TOOL}_${CI_NODE_INDEX}_${CI_NODE_TOTAL}_report.json
    - export NEW_FLAKY_RSPEC_REPORT_PATH=rspec_flaky/new_${TEST_TOOL}_${CI_NODE_INDEX}_${CI_NODE_TOTAL}_report.json
152
    - export FLAKY_RSPEC_GENERATE_REPORT=true
153
    - export CACHE_CLASSES=true
154
    - cp ${KNAPSACK_RSPEC_SUITE_REPORT_PATH} ${KNAPSACK_REPORT_PATH}
155
    - '[[ -f $FLAKY_RSPEC_REPORT_PATH ]] || echo "{}" > ${FLAKY_RSPEC_REPORT_PATH}'
156
    - '[[ -f $NEW_FLAKY_RSPEC_REPORT_PATH ]] || echo "{}" > ${NEW_FLAKY_RSPEC_REPORT_PATH}'
Jacob Vosmaer's avatar
Jacob Vosmaer committed
157
    - scripts/gitaly-test-spawn
158
    - knapsack rspec "--color --format documentation --format RspecJunitFormatter --out junit_rspec.xml"
159 160
  artifacts:
    expire_in: 31d
161
    when: always
162
    paths:
163 164
      - coverage/
      - knapsack/
165
      - rspec_flaky/
Stan Hu's avatar
Stan Hu committed
166
      - rspec_profiling/
167
      - tmp/capybara/
168 169
    reports:
      junit: junit_rspec.xml
170

171 172
.rspec-metadata-pg: &rspec-metadata-pg
  <<: *rspec-metadata
173 174
  <<: *use-pg

175 176
.rspec-metadata-mysql: &rspec-metadata-mysql
  <<: *rspec-metadata
177 178
  <<: *use-mysql

179 180 181 182 183 184 185
.only-canonical-masters: &only-canonical-masters
  only:
    - master@gitlab-org/gitlab-ce
    - master@gitlab-org/gitlab-ee
    - master@gitlab/gitlabhq
    - master@gitlab/gitlab-ee

186
.gitlab-setup: &gitlab-setup
187
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
188 189
  <<: *use-pg
  variables:
190
    SETUP_DB: "false"
191
  script:
192 193 194 195 196 197 198 199 200 201 202
    # Manually clone gitlab-test and only seed this project in
    # db/fixtures/development/04_project.rb thanks to SIZE=1 below
    - git clone https://gitlab.com/gitlab-org/gitlab-test.git
       /home/git/repositories/gitlab-org/gitlab-test.git
    - scripts/gitaly-test-spawn
    - force=yes SIZE=1 FIXTURE_PATH="db/fixtures/development" bundle exec rake gitlab:setup
  artifacts:
    when: on_failure
    expire_in: 1d
    paths:
      - log/development.log
203

204 205
# DB migration, rollback, and seed jobs
.db-migrate-reset: &db-migrate-reset
206
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
207 208 209 210
  script:
    - bundle exec rake db:migrate:reset

.migration-paths: &migration-paths
211
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
212
  variables:
213
    SETUP_DB: "false"
214 215 216
  script:
    - git fetch https://gitlab.com/gitlab-org/gitlab-ce.git v9.3.0
    - git checkout -f FETCH_HEAD
Stan Hu's avatar
Stan Hu committed
217 218
    - sed -i "s/gem 'oj', '~> 2.17.4'//" Gemfile
    - bundle update google-protobuf grpc
219 220 221 222 223
    - bundle install $BUNDLE_INSTALL_FLAGS
    - date
    - cp config/gitlab.yml.example config/gitlab.yml
    - bundle exec rake db:drop db:create db:schema:load db:seed_fu
    - date
224
    - git checkout -f $CI_COMMIT_SHA
225 226 227 228 229 230 231 232 233
    - bundle install $BUNDLE_INSTALL_FLAGS
    - date
    - . scripts/prepare_build.sh
    - date
    - bundle exec rake db:migrate

##
# Trigger a package build in omnibus-gitlab repository
#
234
package-and-qa:
235 236 237 238 239
  image: ruby:2.5-alpine
  stage: test
  before_script: []
  dependencies: []
  cache: {}
240
  variables:
241
    GIT_DEPTH: "1"
242
    API_TOKEN: "${GITLAB_BOT_MULTI_PROJECT_PIPELINE_POLLING_TOKEN}"
243
  retry: 0
244
  script:
245
    - apk add --update openssl curl jq
246 247
    - gem install gitlab --no-document
    - source ./scripts/review_apps/review-apps.sh
248
    - wait_for_job_to_be_done "gitlab:assets:compile"
249
    - ./scripts/trigger-build omnibus
250
  when: manual
251
  only:
252 253
    - /.+/@gitlab-org/gitlab-ce
    - /.+/@gitlab-org/gitlab-ee
254

255 256 257 258 259 260 261
# Review docs base
.review-docs: &review-docs
  <<: *dedicated-runner
  <<: *single-script-job
  variables:
    <<: *single-script-job-variables
    SCRIPT_NAME: trigger-build-docs
262
  environment:
263
    name: review-docs/$CI_COMMIT_REF_SLUG
264
    # DOCS_REVIEW_APPS_DOMAIN and DOCS_GITLAB_REPO_SUFFIX are CI variables
265
    # Discussion: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/14236/diffs#note_40140693
266
    url: http://$CI_ENVIRONMENT_SLUG.$DOCS_REVIEW_APPS_DOMAIN/$DOCS_GITLAB_REPO_SUFFIX
267
    on_stop: review-docs-cleanup
268 269 270 271 272 273

# Trigger a manual docs build in gitlab-docs only on non docs-only branches.
# Useful to preview the docs changes live.
review-docs-deploy-manual:
  <<: *review-docs
  stage: build
274
  script:
275
    - gem install gitlab --no-document
276
    - ./$SCRIPT_NAME deploy
277 278
  when: manual
  only:
279 280
    - branches@gitlab-org/gitlab-ce
    - branches@gitlab-org/gitlab-ee
281 282 283 284 285 286 287 288
  <<: *except-docs-and-qa

# Always trigger a docs build in gitlab-docs only on docs-only branches.
# Useful to preview the docs changes live.
review-docs-deploy:
  <<: *review-docs
  stage: post-test
  script:
289
    - gem install gitlab --no-document
290 291
    - ./$SCRIPT_NAME deploy
  only:
292 293
    - /(^docs[\/-].*|.*-docs$)/@gitlab-org/gitlab-ce
    - /(^docs[\/-].*|.*-docs$)/@gitlab-org/gitlab-ee
294
  <<: *except-qa
295 296 297 298 299 300

# Cleanup remote environment of gitlab-docs
review-docs-cleanup:
  <<: *review-docs
  stage: post-cleanup
  environment:
301
    name: review-docs/$CI_COMMIT_REF_SLUG
302 303
    action: stop
  script:
304
    - gem install gitlab --no-document
305
    - ./$SCRIPT_NAME cleanup
306 307 308 309
  when: manual
  only:
    - branches@gitlab-org/gitlab-ce
    - branches@gitlab-org/gitlab-ee
310

311 312 313 314
##
# Trigger a docker image build in CNG (Cloud Native GitLab) repository
#
cloud-native-image:
Stan Hu's avatar
Stan Hu committed
315
  image: ruby:2.5-alpine
316
  before_script: []
317
  dependencies: []
318
  stage: post-test
319
  allow_failure: true
320 321
  variables:
    GIT_DEPTH: "1"
322
  cache: {}
323
  when: manual
324
  script:
325 326
    - gem install gitlab --no-document
    - CNG_PROJECT_PATH="gitlab-org/build/CNG" BUILD_TRIGGER_TOKEN=$CI_JOB_TOKEN ./scripts/trigger-build cng
327 328 329 330
  only:
    - tags@gitlab-org/gitlab-ce
    - tags@gitlab-org/gitlab-ee

331 332 333
# Retrieve knapsack and rspec_flaky reports
retrieve-tests-metadata:
  <<: *tests-metadata-state
334
  <<: *except-docs-and-qa
335
  stage: prepare
336
  cache:
337
    key: tests_metadata
338
    policy: pull
339
  script:
340
    - mkdir -p knapsack/${CI_PROJECT_NAME}/
341
    - wget -O $KNAPSACK_RSPEC_SUITE_REPORT_PATH http://${TESTS_METADATA_S3_BUCKET}.s3.amazonaws.com/$KNAPSACK_RSPEC_SUITE_REPORT_PATH || rm $KNAPSACK_RSPEC_SUITE_REPORT_PATH
342
    - '[[ -f $KNAPSACK_RSPEC_SUITE_REPORT_PATH ]] || echo "{}" > ${KNAPSACK_RSPEC_SUITE_REPORT_PATH}'
343
    - mkdir -p rspec_flaky/
Stan Hu's avatar
Stan Hu committed
344
    - mkdir -p rspec_profiling/
345 346
    - wget -O $FLAKY_RSPEC_SUITE_REPORT_PATH http://${TESTS_METADATA_S3_BUCKET}.s3.amazonaws.com/$FLAKY_RSPEC_SUITE_REPORT_PATH || rm $FLAKY_RSPEC_SUITE_REPORT_PATH
    - '[[ -f $FLAKY_RSPEC_SUITE_REPORT_PATH ]] || echo "{}" > ${FLAKY_RSPEC_SUITE_REPORT_PATH}'
347

348 349
update-tests-metadata:
  <<: *tests-metadata-state
350
  <<: *only-canonical-masters
351
  stage: post-test
352
  cache:
353
    key: tests_metadata
354 355
    paths:
      - knapsack/
356
      - rspec_flaky/
357
    policy: push
358
  script:
Stan Hu's avatar
Stan Hu committed
359
    - retry gem install fog-aws mime-types activesupport rspec_profiling postgres-copy --no-document
360
    - scripts/merge-reports ${KNAPSACK_RSPEC_SUITE_REPORT_PATH} knapsack/${CI_PROJECT_NAME}/rspec-pg_node_*.json
361
    - scripts/merge-reports ${FLAKY_RSPEC_SUITE_REPORT_PATH} rspec_flaky/all_*_*.json
362
    - FLAKY_RSPEC_GENERATE_REPORT=1 scripts/prune-old-flaky-specs ${FLAKY_RSPEC_SUITE_REPORT_PATH}
blackst0ne's avatar
blackst0ne committed
363
    - '[[ -z ${TESTS_METADATA_S3_BUCKET} ]] || scripts/sync-reports put $TESTS_METADATA_S3_BUCKET $KNAPSACK_RSPEC_SUITE_REPORT_PATH'
364
    - '[[ -z ${TESTS_METADATA_S3_BUCKET} ]] || scripts/sync-reports put $TESTS_METADATA_S3_BUCKET $FLAKY_RSPEC_SUITE_REPORT_PATH'
365
    - rm -f knapsack/${CI_PROJECT_NAME}/*_node_*.json
366
    - rm -f rspec_flaky/all_*.json rspec_flaky/new_*.json
Stan Hu's avatar
Stan Hu committed
367
    - scripts/insert-rspec-profiling-data
368 369 370

flaky-examples-check:
  <<: *dedicated-runner
Stan Hu's avatar
Stan Hu committed
371
  image: ruby:2.5-alpine
372 373 374 375 376
  services: []
  before_script: []
  variables:
    SETUP_DB: "false"
    USE_BUNDLE_INSTALL: "false"
377
    NEW_FLAKY_SPECS_REPORT: rspec_flaky/report-new.json
378
  stage: post-test
379
  allow_failure: true
380
  retry: 0
381 382 383 384
  only:
    - branches
  except:
    - master
385
    - /(^docs[\/-].*|.*-docs$)/
386
    - /(^qa[\/-].*|.*-qa$)/
387 388 389 390 391 392
  artifacts:
    expire_in: 30d
    paths:
      - rspec_flaky/
  script:
    - '[[ -f $NEW_FLAKY_SPECS_REPORT ]] || echo "{}" > ${NEW_FLAKY_SPECS_REPORT}'
393
    - scripts/merge-reports ${NEW_FLAKY_SPECS_REPORT} rspec_flaky/new_*_*.json
394
    - scripts/detect-new-flaky-examples $NEW_FLAKY_SPECS_REPORT
395

396 397
.assets-compile-cache: &assets-compile-cache
  cache:
398
    key: "assets-compile:vendor_ruby:.yarn-cache:tmp_cache_assets_sprockets:v5"
399 400 401
    paths:
      - vendor/ruby/
      - .yarn-cache/
402
      - tmp/cache/assets/sprockets
403

404
compile-assets:
405
  <<: *dedicated-runner
406
  <<: *except-docs
407
  <<: *use-pg
408 409
  stage: prepare
  script:
410
    - node --version
411
    - yarn install --frozen-lockfile --cache-folder .yarn-cache
412
    - free -m
Mike Greiling's avatar
Mike Greiling committed
413
    - bundle exec rake gitlab:assets:compile
414
    - scripts/clean-old-cached-assets
415 416 417
  variables:
    # we override the max_old_space_size to prevent OOM errors
    NODE_OPTIONS: --max_old_space_size=3584
418 419 420
  artifacts:
    expire_in: 7d
    paths:
421
      - node_modules
422
      - public/assets
423
  <<: *assets-compile-cache
424 425 426 427 428 429 430 431 432 433 434 435 436 437

setup-test-env:
  <<: *dedicated-runner
  <<: *except-docs
  <<: *use-pg
  stage: prepare
  cache:
    <<: *default-cache
  script:
    - bundle exec ruby -Ispec -e 'require "spec_helper" ; TestEnv.init'
    - scripts/gitaly-test-build # Do not use 'bundle exec' here
  artifacts:
    expire_in: 7d
    paths:
438
      - tmp/tests
439
      - config/secrets.yml
440
      - vendor/gitaly-ruby
441

442
# GitLab Review apps
443
.review-only: &review-only
444 445
  only:
    refs:
446 447
      - branches@gitlab-org/gitlab-ce
      - branches@gitlab-org/gitlab-ee
448 449 450 451 452
    kubernetes: active
  except:
    refs:
      - master
      - /(^docs[\/-].*|.*-docs$)/
453

454 455 456 457 458 459 460 461 462 463 464
.review-schedules-only: &review-schedules-only
  only:
    refs:
      - schedules@gitlab-org/gitlab-ce
      - schedules@gitlab-org/gitlab-ee
    kubernetes: active
  except:
    refs:
      - tags
      - /(^docs[\/-].*|.*-docs$)/

465 466 467 468 469 470 471 472 473 474
.review-base: &review-base
  <<: *dedicated-no-docs-no-db-pull-cache-job
  <<: *review-only
  image: registry.gitlab.com/gitlab-org/gitlab-build-images:gitlab-charts-build-base
  stage: test
  cache: {}
  dependencies: []
  environment: &review-environment
    name: review/${CI_COMMIT_REF_NAME}
    url: https://gitlab-${CI_ENVIRONMENT_SLUG}.${REVIEW_APPS_DOMAIN}
475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493
  before_script: []

.review-docker: &review-docker
  <<: *review-base
  image: registry.gitlab.com/gitlab-org/gitlab-build-images:gitlab-qa-alpine
  services:
    - docker:stable-dind
  tags:
    - gitlab-org
    - docker
  variables: &review-docker-variables
    GIT_DEPTH: "1"
    DOCKER_DRIVER: overlay2
    DOCKER_HOST: tcp://docker:2375
    LATEST_QA_IMAGE: "gitlab/${CI_PROJECT_NAME}-qa:nightly"
    QA_IMAGE: "${CI_REGISTRY}/${CI_PROJECT_PATH}/gitlab/${CI_PROJECT_NAME}-qa:${CI_COMMIT_REF_SLUG}"

build-qa-image:
  <<: *review-docker
494 495 496
  variables:
    <<: *review-docker-variables
    GIT_DEPTH: "20"
497 498 499 500 501 502
  stage: prepare
  script:
    - time docker build --cache-from ${LATEST_QA_IMAGE} --tag ${QA_IMAGE} ./qa/
    - echo "${CI_JOB_TOKEN}" | docker login --username gitlab-ci-token --password-stdin ${CI_REGISTRY}
    - time docker push ${QA_IMAGE}

503
danger-review:
504
  <<: *pull-cache
505
  image: registry.gitlab.com/gitlab-org/gitlab-build-images:danger
506
  stage: test
507 508
  dependencies: []
  before_script: []
509
  only:
510 511
    variables:
      - $DANGER_GITLAB_API_TOKEN
512 513 514 515 516
  except:
    refs:
      - master
    variables:
      - $CI_COMMIT_REF_NAME =~ /^ce-to-ee-.*/
517
      - $CI_COMMIT_REF_NAME =~ /.*-stable(-ee)?-prepare-.*/
518 519
  script:
    - git version
520
    - node --version
521
    - yarn install --frozen-lockfile --cache-folder .yarn-cache
522 523
    - danger --fail-on-errors=true

524 525
rspec-pg:
  <<: *rspec-metadata-pg
526
  parallel: 50
527 528 529

rspec-mysql:
  <<: *rspec-metadata-mysql
530
  parallel: 50
531

532
.rspec-quarantine: &rspec-quarantine
533
  retry: 0
534 535 536 537 538 539 540 541 542 543 544 545 546 547 548
  script:
    - export CACHE_CLASSES=true
    - scripts/gitaly-test-spawn
    - bin/rspec --color --format documentation --tag quarantine spec/

rspec-pg-quarantine:
  <<: *rspec-metadata-pg
  <<: *rspec-quarantine
  allow_failure: true

rspec-mysql-quarantine:
  <<: *rspec-metadata-mysql
  <<: *rspec-quarantine
  allow_failure: true

549
static-analysis:
550 551 552 553
  <<: *dedicated-no-docs-no-db-pull-cache-job
  dependencies:
    - compile-assets
    - setup-test-env
554
  script:
555
    - scripts/static-analysis
Lin Jen-Shin's avatar
Lin Jen-Shin committed
556
  cache:
Stan Hu's avatar
Stan Hu committed
557
    key: "debian-stretch-ruby-2.5.3-node-10.x-and-rubocop"
Lin Jen-Shin's avatar
Lin Jen-Shin committed
558 559 560 561
    paths:
      - vendor/ruby
      - .yarn-cache/
      - tmp/rubocop_cache
562

563 564 565 566
# Documentation checks:
# - Check validity of relative links
# - Make sure cURL examples in API docs use the full switches
docs lint:
567
  <<: *dedicated-runner
568
  <<: *except-qa
Evan Read's avatar
Evan Read committed
569
  image: "registry.gitlab.com/gitlab-org/gitlab-build-images:gitlab-docs-lint"
570 571 572 573 574
  stage: test
  cache: {}
  dependencies: []
  before_script: []
  script:
575
    - scripts/lint-doc.sh
576
    - scripts/lint-changelog-yaml
577
    - mv doc/ /tmp/gitlab-docs/content/$DOCS_GITLAB_REPO_SUFFIX
Evan Read's avatar
Evan Read committed
578
    - cd /tmp/gitlab-docs
579 580 581
    # Build HTML from Markdown
    - bundle exec nanoc
    # Check the internal links
582
    - bundle exec nanoc check internal_links
583

584 585
downtime_check:
  <<: *rake-exec
586 587 588 589
  except:
    - master
    - tags
    - /^[\d-]+-stable(-ee)?$/
590
    - /(^docs[\/-].*|.*-docs$)/
591
    - /(^qa[\/-].*|.*-qa$)/
592

593 594
ee_compat_check:
  <<: *rake-exec
595
  dependencies: []
596 597 598
  except:
    - master
    - tags
599
    - /[\d-]+-stable(-ee)?/
600
    - /^security-/
601 602
    - branches@gitlab-org/gitlab-ee
    - branches@gitlab/gitlab-ee
603
  retry: 0
604
  artifacts:
605
    name: "${CI_JOB_NAME}_${CI_COMIT_REF_NAME}_${CI_COMMIT_SHA}"
606
    when: always
607 608 609 610
    expire_in: 10d
    paths:
      - ee_compat_check/patches/*.patch

611
db:migrate:reset-pg:
612 613 614
  <<: *db-migrate-reset
  <<: *use-pg

615
db:migrate:reset-mysql:
616 617 618
  <<: *db-migrate-reset
  <<: *use-mysql

619 620 621 622 623 624
db:check-schema-pg:
  <<: *db-migrate-reset
  <<: *use-pg
  script:
    - source scripts/schema_changed.sh

625 626 627 628 629 630 631 632
migration:path-pg:
  <<: *migration-paths
  <<: *use-pg

migration:path-mysql:
  <<: *migration-paths
  <<: *use-mysql

633
.db-rollback: &db-rollback
634
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
635
  script:
636
    - bundle exec rake db:migrate VERSION=20170523121229
637
    - bundle exec rake db:migrate
638

639
db:rollback-pg:
640 641 642
  <<: *db-rollback
  <<: *use-pg

643
db:rollback-mysql:
644 645 646
  <<: *db-rollback
  <<: *use-mysql

647 648
gitlab:setup-pg:
  <<: *gitlab-setup
649 650
  <<: *use-pg

651 652
gitlab:setup-mysql:
  <<: *gitlab-setup
653 654
  <<: *use-mysql

655
# Frontend-related jobs
656
gitlab:assets:compile:
657
  <<: *dedicated-no-docs-pull-cache-job
658
  image: dev.gitlab.org:5005/gitlab/gitlab-build-images:ruby-2.5.3-git-2.18-chrome-71.0-node-8.x-yarn-1.12-graphicsmagick-1.3.29-docker-18.06.1
659 660
  dependencies:
    - setup-test-env
661 662
  services:
    - docker:stable-dind
663 664 665 666 667
  variables:
    NODE_ENV: "production"
    RAILS_ENV: "production"
    SETUP_DB: "false"
    SKIP_STORAGE_VALIDATION: "true"
668
    WEBPACK_REPORT: "true"
669 670
    # we override the max_old_space_size to prevent OOM errors
    NODE_OPTIONS: --max_old_space_size=3584
671 672
    DOCKER_DRIVER: overlay2
    DOCKER_HOST: tcp://docker:2375
673
  script:
674
    - node --version
675
    - yarn install --frozen-lockfile --production --cache-folder .yarn-cache
676
    - free -m
677
    - bundle exec rake gitlab:assets:compile
678 679
    - time scripts/build_assets_image
    - scripts/clean-old-cached-assets
680 681 682 683
  artifacts:
    name: webpack-report
    expire_in: 31d
    paths:
684
      - webpack-report/
685
      - public/assets/
686
  <<: *assets-compile-cache
687
  only:
688 689 690 691
    - /.+/@gitlab-org/gitlab-ce
    - /.+/@gitlab-org/gitlab-ee
    - /.+/@gitlab/gitlabhq
    - /.+/@gitlab/gitlab-ee
692 693 694
  tags:
    - docker
    - gitlab-org
695

Clement Ho's avatar
Clement Ho committed
696 697 698 699
gitlab:ui:visual:
  tags:
    - gitlab-org
  before_script: []
700
  allow_failure: true
Clement Ho's avatar
Clement Ho committed
701 702 703 704 705 706 707 708 709 710 711 712 713 714 715
  dependencies:
    - compile-assets
  script:
    # Remove node modules from GitLab that may conflict with gitlab-ui
    - rm -r node_modules
    - git clone https://gitlab.com/gitlab-org/gitlab-ui.git
    - cp public/assets/application-*.css gitlab-ui/styles/application.css
    - cd gitlab-ui
    - yarn install
    - CSS_URL=./application.css yarn test
  only:
    changes:
      - app/assets/stylesheets/*.scss
      - app/assets/stylesheets/**/*.scss
      - app/assets/stylesheets/**/**/*.scss
716
  except:
Clement Ho's avatar
Clement Ho committed
717
    refs:
718
      - /(^docs[\/-].*|.*-docs$)/
Clement Ho's avatar
Clement Ho committed
719
      - master
720 721
    variables:
      - $CI_COMMIT_MESSAGE =~ /\[skip visual\]/i
Clement Ho's avatar
Clement Ho committed
722 723 724 725
  artifacts:
    paths:
      - tests/__image_snapshots__/

726
karma:
Rémy Coutable's avatar
Rémy Coutable committed
727
  <<: *dedicated-no-docs-pull-cache-job
728
  <<: *use-pg
729 730 731
  dependencies:
    - compile-assets
    - setup-test-env
732 733 734
  variables:
    # we override the max_old_space_size to prevent OOM errors
    NODE_OPTIONS: --max_old_space_size=3584
735
  script:
736
    - export BABEL_ENV=coverage CHROME_LOG_FILE=chrome_debug.log
737
    - date
Jacob Vosmaer's avatar
Jacob Vosmaer committed
738
    - scripts/gitaly-test-spawn
739
    - date
740
    - bundle exec rake karma
741
  coverage: '/^Statements *: (\d+\.\d+%)/'
742 743 744
  artifacts:
    name: coverage-javascript
    expire_in: 31d
745
    when: always
746
    paths:
747 748
      - chrome_debug.log
      - coverage-javascript/
749 750
    reports:
      junit: junit_karma.xml
751

Winnie Hellmann's avatar
Winnie Hellmann committed
752 753 754 755 756 757 758 759 760 761 762 763 764 765 766 767 768 769 770 771 772 773 774 775 776 777
jest:
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
  <<: *use-pg
  dependencies:
  - compile-assets
  - setup-test-env
  script:
    - scripts/gitaly-test-spawn
    - date
    - bundle exec rake karma:fixtures
    - date
    - yarn jest --ci --coverage
  artifacts:
    name: coverage-frontend
    expire_in: 31d
    when: always
    paths:
    - coverage-frontend/
    - junit_jest.xml
    reports:
      junit: junit_jest.xml
  cache:
    key: jest
    paths:
      - tmp/jest/jest/

Shinya Maeda's avatar
Shinya Maeda committed
778
code_quality:
779
  <<: *dedicated-no-docs-no-db-pull-cache-job
780 781 782
  # gitlab-org runners set `privileged: false` but we need to have it set to true
  # since we're using Docker in Docker
  tags: []
783 784 785
  before_script: []
  cache: {}
  dependencies: []
786 787
  variables:
    SETUP_DB: "false"
788

789
sast:
790 791
  <<: *dedicated-no-docs-no-db-pull-cache-job
  image: docker:stable
792
  variables:
793 794 795 796
    SAST_CONFIDENCE_LEVEL: 2
    DOCKER_DRIVER: overlay2
  allow_failure: true
  tags: []
797
  before_script: []
798 799 800 801
  cache: {}
  dependencies: []
  services:
    - docker:stable-dind
802
  script:
803 804 805 806 807 808
    - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
    - docker run
        --env SAST_CONFIDENCE_LEVEL="${SAST_CONFIDENCE_LEVEL:-3}"
        --volume "$PWD:/code"
        --volume /var/run/docker.sock:/var/run/docker.sock
        "registry.gitlab.com/gitlab-org/security-products/sast:$SP_VERSION" /app/bin/run /code
809
  artifacts:
810 811
    reports:
      sast: gl-sast-report.json
812

813 814 815 816 817 818 819 820 821 822 823 824 825 826 827 828 829 830 831 832
dependency_scanning:
  <<: *dedicated-no-docs-no-db-pull-cache-job
  image: docker:stable
  variables:
    DOCKER_DRIVER: overlay2
  allow_failure: true
  tags: []
  before_script: []
  cache: {}
  dependencies: []
  services:
    - docker:stable-dind
  script:
    - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
    - docker run
        --env DEP_SCAN_DISABLE_REMOTE_CHECKS="${DEP_SCAN_DISABLE_REMOTE_CHECKS:-false}"
        --volume "$PWD:/code"
        --volume /var/run/docker.sock:/var/run/docker.sock
        "registry.gitlab.com/gitlab-org/security-products/dependency-scanning:$SP_VERSION" /code
  artifacts:
833 834
    reports:
      dependency_scanning: gl-dependency-scanning-report.json
835

836
qa:internal:
837
  <<: *dedicated-no-docs-no-db-pull-cache-job
838 839 840 841 842 843
  services: []
  script:
    - cd qa/
    - bundle install
    - bundle exec rspec

844
qa:selectors:
845
  <<: *dedicated-no-docs-no-db-pull-cache-job
846 847 848 849
  services: []
  script:
    - cd qa/
    - bundle install
850
    - bundle exec bin/qa Test::Sanity::Selectors
851

852
.qa-frontend-node: &qa-frontend-node
853
  <<: *dedicated-no-docs-no-db-pull-cache-job
854 855 856 857 858 859 860 861 862 863 864 865