.gitlab-ci.yml 29.9 KB
Newer Older
1
image: "dev.gitlab.org:5005/gitlab/gitlab-build-images:ruby-2.3.7-golang-1.9-git-2.17-chrome-65.0-node-8.x-yarn-1.2-postgresql-9.6"
2

3 4 5
include:
  - local: /lib/gitlab/ci/templates/Code-Quality.gitlab-ci.yml

6 7 8 9 10
.dedicated-runner: &dedicated-runner
  retry: 1
  tags:
    - gitlab-org

11
.default-cache: &default-cache
12
  key: "ruby-2.3.7-debian-stretch-with-yarn"
13
  paths:
14 15
    - vendor/ruby
    - .yarn-cache/
16
    - vendor/gitaly-ruby
17 18 19 20 21 22 23 24 25 26

.push-cache: &push-cache
  cache:
    <<: *default-cache
    policy: push

.pull-cache: &pull-cache
  cache:
    <<: *default-cache
    policy: pull
27

28 29
variables:
  MYSQL_ALLOW_EMPTY_PASSWORD: "1"
Kamil Trzcinski's avatar
Kamil Trzcinski committed
30
  RAILS_ENV: "test"
31
  NODE_ENV: "test"
Kamil Trzcinski's avatar
Kamil Trzcinski committed
32
  SIMPLECOV: "true"
33
  GIT_DEPTH: "20"
34
  GIT_SUBMODULE_STRATEGY: "none"
35
  GET_SOURCES_ATTEMPTS: "3"
36
  KNAPSACK_RSPEC_SUITE_REPORT_PATH: knapsack/${CI_PROJECT_NAME}/rspec_report-master.json
37
  FLAKY_RSPEC_SUITE_REPORT_PATH: rspec_flaky/report-suite.json
38
  BUILD_ASSETS_IMAGE: "false"
39

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
40
before_script:
Kamil Trzcinski's avatar
Kamil Trzcinski committed
41
  - bundle --version
42
  - date
43
  - source scripts/utils.sh
44
  - date
45
  - source scripts/prepare_build.sh
46 47 48 49
  - date

after_script:
  - date
50

Kamil Trzcinski's avatar
Kamil Trzcinski committed
51
stages:
52 53
  - build
  - prepare
54
  - merge
55 56 57
  - test
  - post-test
  - pages
58
  - post-cleanup
59

60
# Predefined scopes
61
.tests-metadata-state: &tests-metadata-state
62
  <<: *dedicated-runner
63
  variables:
64
    TESTS_METADATA_S3_BUCKET: "gitlab-ce-cache"
65 66
  before_script:
    - source scripts/utils.sh
67 68 69
  artifacts:
    expire_in: 31d
    paths:
70
      - knapsack/
71
      - rspec_flaky/
72
      - rspec_profiling/
73

74 75
.use-pg: &use-pg
  services:
76
    - postgres:9.6
77 78 79
    - redis:alpine

.use-mysql: &use-mysql
80
  services:
81
    - mysql:5.7
82
    - redis:alpine
83

84 85
# Skip all jobs except the ones that begin with 'docs/'.
# Used for commits including ONLY documentation changes.
86
# https://docs.gitlab.com/ce/development/documentation/#testing
87 88
.except-docs: &except-docs
  except:
89
    - /(^docs[\/-].*|.*-docs$)/
90

91 92 93 94
.except-qa: &except-qa
  except:
    - /(^qa[\/-].*|.*-qa$)/

95 96 97 98 99
.except-docs-and-qa: &except-docs-and-qa
  except:
    - /(^docs[\/-].*|.*-docs$)/
    - /(^qa[\/-].*|.*-qa$)/

100 101 102
# Jobs that only need to pull cache
.dedicated-no-docs-pull-cache-job: &dedicated-no-docs-pull-cache-job
  <<: *dedicated-runner
103
  <<: *except-docs
104 105 106 107 108 109 110 111 112 113 114
  <<: *pull-cache
  dependencies:
    - setup-test-env
  stage: test

# Jobs that do not need a DB
.dedicated-no-docs-no-db-pull-cache-job: &dedicated-no-docs-no-db-pull-cache-job
  <<: *dedicated-no-docs-pull-cache-job
  variables:
    SETUP_DB: "false"

115 116 117 118
.dedicated-no-docs-and-no-qa-pull-cache-job: &dedicated-no-docs-and-no-qa-pull-cache-job
  <<: *dedicated-no-docs-pull-cache-job
  <<: *except-docs-and-qa

119
.single-script-job: &single-script-job
Stan Hu's avatar
Stan Hu committed
120
  image: ruby:2.5-alpine
121
  stage: test
122 123 124 125 126
  cache: {}
  dependencies: []
  variables: &single-script-job-variables
    GIT_STRATEGY: none
  before_script:
127 128
    # We don't clone the repo by using GIT_STRATEGY: none and only download the
    # single script we need here so it's much faster than cloning.
129 130 131
    - export SCRIPT_NAME="${SCRIPT_NAME:-$CI_JOB_NAME}"
    - apk add --update openssl
    - wget $CI_PROJECT_URL/raw/$CI_COMMIT_SHA/scripts/$SCRIPT_NAME
Ian Baum's avatar
Ian Baum committed
132
    - chmod 755 $(basename $SCRIPT_NAME)
133

134 135 136 137 138
.rake-exec: &rake-exec
  <<: *dedicated-no-docs-no-db-pull-cache-job
  script:
    - bundle exec rake $CI_JOB_NAME

139
.rspec-metadata: &rspec-metadata
140
  <<: *dedicated-runner
141
  <<: *except-docs-and-qa
142
  <<: *pull-cache
143
  stage: test
144
  script:
145
    - JOB_NAME=( $CI_JOB_NAME )
146 147
    - TEST_TOOL=${JOB_NAME[0]}
    - export KNAPSACK_REPORT_PATH=knapsack/${CI_PROJECT_NAME}/${TEST_TOOL}_node_${CI_NODE_INDEX}_${CI_NODE_TOTAL}_report.json
148
    - export KNAPSACK_GENERATE_REPORT=true
149
    - export SUITE_FLAKY_RSPEC_REPORT_PATH=${FLAKY_RSPEC_SUITE_REPORT_PATH}
150 151
    - export FLAKY_RSPEC_REPORT_PATH=rspec_flaky/all_${TEST_TOOL}_${CI_NODE_INDEX}_${CI_NODE_TOTAL}_report.json
    - export NEW_FLAKY_RSPEC_REPORT_PATH=rspec_flaky/new_${TEST_TOOL}_${CI_NODE_INDEX}_${CI_NODE_TOTAL}_report.json
152
    - export FLAKY_RSPEC_GENERATE_REPORT=true
153
    - export CACHE_CLASSES=true
154
    - cp ${KNAPSACK_RSPEC_SUITE_REPORT_PATH} ${KNAPSACK_REPORT_PATH}
155
    - '[[ -f $FLAKY_RSPEC_REPORT_PATH ]] || echo "{}" > ${FLAKY_RSPEC_REPORT_PATH}'
156
    - '[[ -f $NEW_FLAKY_RSPEC_REPORT_PATH ]] || echo "{}" > ${NEW_FLAKY_RSPEC_REPORT_PATH}'
Jacob Vosmaer's avatar
Jacob Vosmaer committed
157
    - scripts/gitaly-test-spawn
158
    - knapsack rspec "--color --format documentation --format RspecJunitFormatter --out junit_rspec.xml"
159 160
  artifacts:
    expire_in: 31d
161
    when: always
162
    paths:
163 164
      - coverage/
      - knapsack/
165
      - rspec_flaky/
166
      - rspec_profiling/
167
      - tmp/capybara/
168 169
    reports:
      junit: junit_rspec.xml
170

171 172
.rspec-metadata-pg: &rspec-metadata-pg
  <<: *rspec-metadata
173 174
  <<: *use-pg

175 176
.rspec-metadata-mysql: &rspec-metadata-mysql
  <<: *rspec-metadata
177 178
  <<: *use-mysql

179 180 181 182 183 184 185
.only-canonical-masters: &only-canonical-masters
  only:
    - master@gitlab-org/gitlab-ce
    - master@gitlab-org/gitlab-ee
    - master@gitlab/gitlabhq
    - master@gitlab/gitlab-ee

186
.gitlab-setup: &gitlab-setup
187
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
188 189
  <<: *use-pg
  variables:
190
    SETUP_DB: "false"
191
  script:
192 193 194 195 196 197 198 199 200 201 202
    # Manually clone gitlab-test and only seed this project in
    # db/fixtures/development/04_project.rb thanks to SIZE=1 below
    - git clone https://gitlab.com/gitlab-org/gitlab-test.git
       /home/git/repositories/gitlab-org/gitlab-test.git
    - scripts/gitaly-test-spawn
    - force=yes SIZE=1 FIXTURE_PATH="db/fixtures/development" bundle exec rake gitlab:setup
  artifacts:
    when: on_failure
    expire_in: 1d
    paths:
      - log/development.log
203

204 205
# DB migration, rollback, and seed jobs
.db-migrate-reset: &db-migrate-reset
206
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
207 208 209 210
  script:
    - bundle exec rake db:migrate:reset

.migration-paths: &migration-paths
211
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
212
  variables:
213
    SETUP_DB: "false"
214 215 216
  script:
    - git fetch https://gitlab.com/gitlab-org/gitlab-ce.git v9.3.0
    - git checkout -f FETCH_HEAD
Stan Hu's avatar
Stan Hu committed
217 218
    - sed -i "s/gem 'oj', '~> 2.17.4'//" Gemfile
    - bundle update google-protobuf grpc
219 220 221 222 223
    - bundle install $BUNDLE_INSTALL_FLAGS
    - date
    - cp config/gitlab.yml.example config/gitlab.yml
    - bundle exec rake db:drop db:create db:schema:load db:seed_fu
    - date
224
    - git checkout -f $CI_COMMIT_SHA
225 226 227 228 229 230 231 232 233
    - bundle install $BUNDLE_INSTALL_FLAGS
    - date
    - . scripts/prepare_build.sh
    - date
    - bundle exec rake db:migrate

##
# Trigger a package build in omnibus-gitlab repository
#
234
package-and-qa:
235 236 237 238 239
  image: ruby:2.5-alpine
  stage: test
  before_script: []
  dependencies: []
  cache: {}
240
  variables:
241
    GIT_DEPTH: "1"
242
    API_TOKEN: "${GITLAB_BOT_MULTI_PROJECT_PIPELINE_POLLING_TOKEN}"
243
  retry: 0
244
  script:
245
    - apk add --update openssl curl jq
246 247
    - gem install gitlab --no-document
    - source ./scripts/review_apps/review-apps.sh
248
    - wait_for_job_to_be_done "gitlab:assets:compile"
249
    - ./scripts/trigger-build omnibus
250
  when: manual
251
  only:
252 253
    - /.+/@gitlab-org/gitlab-ce
    - /.+/@gitlab-org/gitlab-ee
254

255 256 257 258 259 260 261
# Review docs base
.review-docs: &review-docs
  <<: *dedicated-runner
  <<: *single-script-job
  variables:
    <<: *single-script-job-variables
    SCRIPT_NAME: trigger-build-docs
262
  environment:
263
    name: review-docs/$CI_COMMIT_REF_SLUG
264
    # DOCS_REVIEW_APPS_DOMAIN and DOCS_GITLAB_REPO_SUFFIX are CI variables
265
    # Discussion: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/14236/diffs#note_40140693
266
    url: http://$CI_ENVIRONMENT_SLUG.$DOCS_REVIEW_APPS_DOMAIN/$DOCS_GITLAB_REPO_SUFFIX
267
    on_stop: review-docs-cleanup
268 269 270 271 272 273

# Trigger a manual docs build in gitlab-docs only on non docs-only branches.
# Useful to preview the docs changes live.
review-docs-deploy-manual:
  <<: *review-docs
  stage: build
274
  script:
275
    - gem install gitlab --no-document
276
    - ./$SCRIPT_NAME deploy
277 278
  when: manual
  only:
279 280
    - branches@gitlab-org/gitlab-ce
    - branches@gitlab-org/gitlab-ee
281 282 283 284 285 286 287 288
  <<: *except-docs-and-qa

# Always trigger a docs build in gitlab-docs only on docs-only branches.
# Useful to preview the docs changes live.
review-docs-deploy:
  <<: *review-docs
  stage: post-test
  script:
289
    - gem install gitlab --no-document
290 291
    - ./$SCRIPT_NAME deploy
  only:
292 293
    - /(^docs[\/-].*|.*-docs$)/@gitlab-org/gitlab-ce
    - /(^docs[\/-].*|.*-docs$)/@gitlab-org/gitlab-ee
294
  <<: *except-qa
295 296 297 298 299 300

# Cleanup remote environment of gitlab-docs
review-docs-cleanup:
  <<: *review-docs
  stage: post-cleanup
  environment:
301
    name: review-docs/$CI_COMMIT_REF_SLUG
302 303
    action: stop
  script:
304
    - gem install gitlab --no-document
305
    - ./$SCRIPT_NAME cleanup
306 307 308 309
  when: manual
  only:
    - branches@gitlab-org/gitlab-ce
    - branches@gitlab-org/gitlab-ee
310

311 312 313 314
##
# Trigger a docker image build in CNG (Cloud Native GitLab) repository
#
cloud-native-image:
Stan Hu's avatar
Stan Hu committed
315
  image: ruby:2.5-alpine
316
  before_script: []
317
  dependencies: []
318
  stage: post-test
319
  allow_failure: true
320 321
  variables:
    GIT_DEPTH: "1"
322
  cache: {}
323
  when: manual
324
  script:
325 326
    - gem install gitlab --no-document
    - CNG_PROJECT_PATH="gitlab-org/build/CNG" BUILD_TRIGGER_TOKEN=$CI_JOB_TOKEN ./scripts/trigger-build cng
327 328 329 330
  only:
    - tags@gitlab-org/gitlab-ce
    - tags@gitlab-org/gitlab-ee

331 332 333
# Retrieve knapsack and rspec_flaky reports
retrieve-tests-metadata:
  <<: *tests-metadata-state
334
  <<: *except-docs-and-qa
335
  stage: prepare
336
  cache:
337
    key: tests_metadata
338
    policy: pull
339
  script:
340
    - mkdir -p knapsack/${CI_PROJECT_NAME}/
341
    - wget -O $KNAPSACK_RSPEC_SUITE_REPORT_PATH http://${TESTS_METADATA_S3_BUCKET}.s3.amazonaws.com/$KNAPSACK_RSPEC_SUITE_REPORT_PATH || rm $KNAPSACK_RSPEC_SUITE_REPORT_PATH
342
    - '[[ -f $KNAPSACK_RSPEC_SUITE_REPORT_PATH ]] || echo "{}" > ${KNAPSACK_RSPEC_SUITE_REPORT_PATH}'
343
    - mkdir -p rspec_flaky/
344
    - mkdir -p rspec_profiling/
345 346
    - wget -O $FLAKY_RSPEC_SUITE_REPORT_PATH http://${TESTS_METADATA_S3_BUCKET}.s3.amazonaws.com/$FLAKY_RSPEC_SUITE_REPORT_PATH || rm $FLAKY_RSPEC_SUITE_REPORT_PATH
    - '[[ -f $FLAKY_RSPEC_SUITE_REPORT_PATH ]] || echo "{}" > ${FLAKY_RSPEC_SUITE_REPORT_PATH}'
347

348 349
update-tests-metadata:
  <<: *tests-metadata-state
350
  <<: *only-canonical-masters
351
  stage: post-test
352
  cache:
353
    key: tests_metadata
354 355
    paths:
      - knapsack/
356
      - rspec_flaky/
357
    policy: push
358
  script:
359
    - retry gem install fog-aws mime-types activesupport rspec_profiling postgres-copy --no-document
360
    - scripts/merge-reports ${KNAPSACK_RSPEC_SUITE_REPORT_PATH} knapsack/${CI_PROJECT_NAME}/rspec-pg_node_*.json
361
    - scripts/merge-reports ${FLAKY_RSPEC_SUITE_REPORT_PATH} rspec_flaky/all_*_*.json
362
    - FLAKY_RSPEC_GENERATE_REPORT=1 scripts/prune-old-flaky-specs ${FLAKY_RSPEC_SUITE_REPORT_PATH}
blackst0ne's avatar
blackst0ne committed
363
    - '[[ -z ${TESTS_METADATA_S3_BUCKET} ]] || scripts/sync-reports put $TESTS_METADATA_S3_BUCKET $KNAPSACK_RSPEC_SUITE_REPORT_PATH'
364
    - '[[ -z ${TESTS_METADATA_S3_BUCKET} ]] || scripts/sync-reports put $TESTS_METADATA_S3_BUCKET $FLAKY_RSPEC_SUITE_REPORT_PATH'
365
    - rm -f knapsack/${CI_PROJECT_NAME}/*_node_*.json
366
    - rm -f rspec_flaky/all_*.json rspec_flaky/new_*.json
367
    - scripts/insert-rspec-profiling-data
368 369 370

flaky-examples-check:
  <<: *dedicated-runner
Stan Hu's avatar
Stan Hu committed
371
  image: ruby:2.5-alpine
372 373 374 375 376
  services: []
  before_script: []
  variables:
    SETUP_DB: "false"
    USE_BUNDLE_INSTALL: "false"
377
    NEW_FLAKY_SPECS_REPORT: rspec_flaky/report-new.json
378
  stage: post-test
379
  allow_failure: true
380
  retry: 0
381 382 383 384
  only:
    - branches
  except:
    - master
385
    - /(^docs[\/-].*|.*-docs$)/
386
    - /(^qa[\/-].*|.*-qa$)/
387 388 389 390 391 392
  artifacts:
    expire_in: 30d
    paths:
      - rspec_flaky/
  script:
    - '[[ -f $NEW_FLAKY_SPECS_REPORT ]] || echo "{}" > ${NEW_FLAKY_SPECS_REPORT}'
393
    - scripts/merge-reports ${NEW_FLAKY_SPECS_REPORT} rspec_flaky/new_*_*.json
394
    - scripts/detect-new-flaky-examples $NEW_FLAKY_SPECS_REPORT
395

396 397
.assets-compile-cache: &assets-compile-cache
  cache:
398
    key: "assets-compile:vendor_ruby:.yarn-cache:tmp_cache_assets_sprockets:v5"
399 400 401
    paths:
      - vendor/ruby/
      - .yarn-cache/
402
      - tmp/cache/assets/sprockets
403

404
compile-assets:
405
  <<: *dedicated-runner
406
  <<: *except-docs
407
  <<: *use-pg
408 409
  stage: prepare
  script:
410
    - node --version
411
    - yarn install --frozen-lockfile --cache-folder .yarn-cache
412
    - free -m
Mike Greiling's avatar
Mike Greiling committed
413
    - bundle exec rake gitlab:assets:compile
414
    - scripts/clean-old-cached-assets
415 416 417
  variables:
    # we override the max_old_space_size to prevent OOM errors
    NODE_OPTIONS: --max_old_space_size=3584
418 419 420
  artifacts:
    expire_in: 7d
    paths:
421
      - node_modules
422
      - public/assets
423
  <<: *assets-compile-cache
424 425 426 427 428 429 430 431 432 433 434 435 436 437

setup-test-env:
  <<: *dedicated-runner
  <<: *except-docs
  <<: *use-pg
  stage: prepare
  cache:
    <<: *default-cache
  script:
    - bundle exec ruby -Ispec -e 'require "spec_helper" ; TestEnv.init'
    - scripts/gitaly-test-build # Do not use 'bundle exec' here
  artifacts:
    expire_in: 7d
    paths:
438
      - tmp/tests
439
      - config/secrets.yml
440
      - vendor/gitaly-ruby
441

442
# GitLab Review apps
443
.review-only: &review-only
444 445
  only:
    refs:
446 447
      - branches@gitlab-org/gitlab-ce
      - branches@gitlab-org/gitlab-ee
448 449 450 451 452
    kubernetes: active
  except:
    refs:
      - master
      - /(^docs[\/-].*|.*-docs$)/
453

454 455 456 457 458 459 460 461 462 463 464
.review-schedules-only: &review-schedules-only
  only:
    refs:
      - schedules@gitlab-org/gitlab-ce
      - schedules@gitlab-org/gitlab-ee
    kubernetes: active
  except:
    refs:
      - tags
      - /(^docs[\/-].*|.*-docs$)/

465 466 467 468 469 470 471 472 473 474
.review-base: &review-base
  <<: *dedicated-no-docs-no-db-pull-cache-job
  <<: *review-only
  image: registry.gitlab.com/gitlab-org/gitlab-build-images:gitlab-charts-build-base
  stage: test
  cache: {}
  dependencies: []
  environment: &review-environment
    name: review/${CI_COMMIT_REF_NAME}
    url: https://gitlab-${CI_ENVIRONMENT_SLUG}.${REVIEW_APPS_DOMAIN}
475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493
  before_script: []

.review-docker: &review-docker
  <<: *review-base
  image: registry.gitlab.com/gitlab-org/gitlab-build-images:gitlab-qa-alpine
  services:
    - docker:stable-dind
  tags:
    - gitlab-org
    - docker
  variables: &review-docker-variables
    GIT_DEPTH: "1"
    DOCKER_DRIVER: overlay2
    DOCKER_HOST: tcp://docker:2375
    LATEST_QA_IMAGE: "gitlab/${CI_PROJECT_NAME}-qa:nightly"
    QA_IMAGE: "${CI_REGISTRY}/${CI_PROJECT_PATH}/gitlab/${CI_PROJECT_NAME}-qa:${CI_COMMIT_REF_SLUG}"

build-qa-image:
  <<: *review-docker
494 495 496
  variables:
    <<: *review-docker-variables
    GIT_DEPTH: "20"
497 498 499 500 501 502
  stage: prepare
  script:
    - time docker build --cache-from ${LATEST_QA_IMAGE} --tag ${QA_IMAGE} ./qa/
    - echo "${CI_JOB_TOKEN}" | docker login --username gitlab-ci-token --password-stdin ${CI_REGISTRY}
    - time docker push ${QA_IMAGE}

503
danger-review:
504
  <<: *pull-cache
505
  image: registry.gitlab.com/gitlab-org/gitlab-build-images:danger
506
  stage: test
507 508
  dependencies: []
  before_script: []
509
  only:
510 511
    variables:
      - $DANGER_GITLAB_API_TOKEN
512 513 514 515 516
  except:
    refs:
      - master
    variables:
      - $CI_COMMIT_REF_NAME =~ /^ce-to-ee-.*/
517
      - $CI_COMMIT_REF_NAME =~ /.*-stable(-ee)?-prepare-.*/
518 519
  script:
    - git version
520
    - node --version
521
    - yarn install --frozen-lockfile --cache-folder .yarn-cache
522 523
    - danger --fail-on-errors=true

524 525
rspec-pg:
  <<: *rspec-metadata-pg
526
  parallel: 50
527 528 529

rspec-mysql:
  <<: *rspec-metadata-mysql
530
  parallel: 50
531

532
.rspec-quarantine: &rspec-quarantine
533
  retry: 0
534 535 536 537 538 539 540 541 542 543 544 545 546 547 548
  script:
    - export CACHE_CLASSES=true
    - scripts/gitaly-test-spawn
    - bin/rspec --color --format documentation --tag quarantine spec/

rspec-pg-quarantine:
  <<: *rspec-metadata-pg
  <<: *rspec-quarantine
  allow_failure: true

rspec-mysql-quarantine:
  <<: *rspec-metadata-mysql
  <<: *rspec-quarantine
  allow_failure: true

549
static-analysis:
550 551 552 553
  <<: *dedicated-no-docs-no-db-pull-cache-job
  dependencies:
    - compile-assets
    - setup-test-env
554
  script:
555
    - scripts/static-analysis
556
  cache:
557
    key: "ruby-2.3.7-debian-stretch-with-yarn-and-rubocop"
558 559 560 561
    paths:
      - vendor/ruby
      - .yarn-cache/
      - tmp/rubocop_cache
562

563 564 565 566
# Documentation checks:
# - Check validity of relative links
# - Make sure cURL examples in API docs use the full switches
docs lint:
567
  <<: *dedicated-runner
568
  <<: *except-qa
569
  image: "registry.gitlab.com/gitlab-org/gitlab-build-images:gitlab-docs-lint"
570 571 572 573 574
  stage: test
  cache: {}
  dependencies: []
  before_script: []
  script:
575
    - scripts/lint-doc.sh
576
    - scripts/lint-changelog-yaml
577
    - mv doc/ /tmp/gitlab-docs/content/$DOCS_GITLAB_REPO_SUFFIX
578
    - cd /tmp/gitlab-docs
579 580 581
    # Build HTML from Markdown
    - bundle exec nanoc
    # Check the internal links
582
    - bundle exec nanoc check internal_links
583

584 585
downtime_check:
  <<: *rake-exec
586 587 588 589
  except:
    - master
    - tags
    - /^[\d-]+-stable(-ee)?$/
590
    - /(^docs[\/-].*|.*-docs$)/
591
    - /(^qa[\/-].*|.*-qa$)/
592

593 594
ee_compat_check:
  <<: *rake-exec
595
  dependencies: []
596 597 598
  except:
    - master
    - tags
599
    - /[\d-]+-stable(-ee)?/
600
    - /^security-/
601 602
    - branches@gitlab-org/gitlab-ee
    - branches@gitlab/gitlab-ee
603
  retry: 0
604
  artifacts:
605
    name: "${CI_JOB_NAME}_${CI_COMIT_REF_NAME}_${CI_COMMIT_SHA}"
606
    when: always
607 608 609 610
    expire_in: 10d
    paths:
      - ee_compat_check/patches/*.patch

611
db:migrate:reset-pg:
612 613 614
  <<: *db-migrate-reset
  <<: *use-pg

615
db:migrate:reset-mysql:
616 617 618
  <<: *db-migrate-reset
  <<: *use-mysql

619 620 621 622 623 624
db:check-schema-pg:
  <<: *db-migrate-reset
  <<: *use-pg
  script:
    - source scripts/schema_changed.sh

625 626 627 628 629 630 631 632
migration:path-pg:
  <<: *migration-paths
  <<: *use-pg

migration:path-mysql:
  <<: *migration-paths
  <<: *use-mysql

633
.db-rollback: &db-rollback
634
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
635
  script:
636
    - bundle exec rake db:migrate VERSION=20170523121229
637
    - bundle exec rake db:migrate
638

639
db:rollback-pg:
640 641 642
  <<: *db-rollback
  <<: *use-pg

643
db:rollback-mysql:
644 645 646
  <<: *db-rollback
  <<: *use-mysql

647 648
gitlab:setup-pg:
  <<: *gitlab-setup
649 650
  <<: *use-pg

651 652
gitlab:setup-mysql:
  <<: *gitlab-setup
653 654
  <<: *use-mysql

655
# Frontend-related jobs
656
gitlab:assets:compile:
657
  <<: *dedicated-no-docs-pull-cache-job
Stan Hu's avatar
Stan Hu committed
658
  image: dev.gitlab.org:5005/gitlab/gitlab-build-images:ruby-2.5.3-git-2.18-chrome-73.0-node-8.x-yarn-1.12-graphicsmagick-1.3.29-docker-18.06.1
659 660
  dependencies:
    - setup-test-env
661 662
  services:
    - docker:stable-dind
663 664 665 666 667
  variables:
    NODE_ENV: "production"
    RAILS_ENV: "production"
    SETUP_DB: "false"
    SKIP_STORAGE_VALIDATION: "true"
668
    WEBPACK_REPORT: "true"
669 670
    # we override the max_old_space_size to prevent OOM errors
    NODE_OPTIONS: --max_old_space_size=3584
671 672
    DOCKER_DRIVER: overlay2
    DOCKER_HOST: tcp://docker:2375
673
  script:
674
    - node --version
675
    - yarn install --frozen-lockfile --production --cache-folder .yarn-cache
676
    - free -m
677
    - bundle exec rake gitlab:assets:compile
678 679
    - time scripts/build_assets_image
    - scripts/clean-old-cached-assets
680 681 682 683
  artifacts:
    name: webpack-report
    expire_in: 31d
    paths:
684
      - webpack-report/
685
      - public/assets/
686
  <<: *assets-compile-cache
687
  only:
688 689 690 691
    - /.+/@gitlab-org/gitlab-ce
    - /.+/@gitlab-org/gitlab-ee
    - /.+/@gitlab/gitlabhq
    - /.+/@gitlab/gitlab-ee
692 693 694
  tags:
    - docker
    - gitlab-org
695

696 697 698 699
gitlab:ui:visual:
  tags:
    - gitlab-org
  before_script: []
700
  allow_failure: true
701 702 703 704 705 706 707 708 709 710 711 712 713 714 715
  dependencies:
    - compile-assets
  script:
    # Remove node modules from GitLab that may conflict with gitlab-ui
    - rm -r node_modules
    - git clone https://gitlab.com/gitlab-org/gitlab-ui.git
    - cp public/assets/application-*.css gitlab-ui/styles/application.css
    - cd gitlab-ui
    - yarn install
    - CSS_URL=./application.css yarn test
  only:
    changes:
      - app/assets/stylesheets/*.scss
      - app/assets/stylesheets/**/*.scss
      - app/assets/stylesheets/**/**/*.scss
716
  except:
717
    refs:
718
      - /(^docs[\/-].*|.*-docs$)/
719
      - master
720 721
    variables:
      - $CI_COMMIT_MESSAGE =~ /\[skip visual\]/i
722 723 724 725
  artifacts:
    paths:
      - tests/__image_snapshots__/

726
karma:
727
  <<: *dedicated-no-docs-pull-cache-job
728
  <<: *use-pg
729 730 731
  dependencies:
    - compile-assets
    - setup-test-env
732 733 734
  variables:
    # we override the max_old_space_size to prevent OOM errors
    NODE_OPTIONS: --max_old_space_size=3584
735
  script:
736
    - export BABEL_ENV=coverage CHROME_LOG_FILE=chrome_debug.log
737
    - date
Jacob Vosmaer's avatar
Jacob Vosmaer committed
738
    - scripts/gitaly-test-spawn
739
    - date
740
    - bundle exec rake karma
741
  coverage: '/^Statements *: (\d+\.\d+%)/'
742 743 744
  artifacts:
    name: coverage-javascript
    expire_in: 31d
745
    when: always
746
    paths:
747 748
      - chrome_debug.log
      - coverage-javascript/
749 750
    reports:
      junit: junit_karma.xml
751

752 753 754 755 756 757 758 759 760 761 762 763 764 765 766 767 768 769 770 771 772 773 774 775 776 777
jest:
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
  <<: *use-pg
  dependencies:
  - compile-assets
  - setup-test-env
  script:
    - scripts/gitaly-test-spawn
    - date
    - bundle exec rake karma:fixtures
    - date
    - yarn jest --ci --coverage
  artifacts:
    name: coverage-frontend
    expire_in: 31d
    when: always
    paths:
    - coverage-frontend/
    - junit_jest.xml
    reports:
      junit: junit_jest.xml
  cache:
    key: jest
    paths:
      - tmp/jest/jest/

Shinya Maeda's avatar
Shinya Maeda committed
778
code_quality:
779
  <<: *dedicated-no-docs-no-db-pull-cache-job
780 781 782
  # gitlab-org runners set `privileged: false` but we need to have it set to true
  # since we're using Docker in Docker
  tags: []
783 784 785
  before_script: []
  cache: {}
  dependencies: []
786 787
  variables:
    SETUP_DB: "false"
788

789
sast:
790 791
  <<: *dedicated-no-docs-no-db-pull-cache-job
  image: docker:stable
792
  variables:
793 794 795 796
    SAST_CONFIDENCE_LEVEL: 2
    DOCKER_DRIVER: overlay2
  allow_failure: true
  tags: []
797
  before_script: []
798 799 800 801
  cache: {}
  dependencies: []
  services:
    - docker:stable-dind
802
  script:
803 804 805 806 807 808
    - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
    - docker run
        --env SAST_CONFIDENCE_LEVEL="${SAST_CONFIDENCE_LEVEL:-3}"
        --volume "$PWD:/code"
        --volume /var/run/docker.sock:/var/run/docker.sock
        "registry.gitlab.com/gitlab-org/security-products/sast:$SP_VERSION" /app/bin/run /code
809
  artifacts:
810 811
    reports:
      sast: gl-sast-report.json
812

813 814 815 816 817 818 819 820 821 822 823 824 825 826 827 828 829 830 831 832
dependency_scanning:
  <<: *dedicated-no-docs-no-db-pull-cache-job
  image: docker:stable
  variables:
    DOCKER_DRIVER: overlay2
  allow_failure: true
  tags: []
  before_script: []
  cache: {}
  dependencies: []
  services:
    - docker:stable-dind
  script:
    - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
    - docker run
        --env DEP_SCAN_DISABLE_REMOTE_CHECKS="${DEP_SCAN_DISABLE_REMOTE_CHECKS:-false}"
        --volume "$PWD:/code"
        --volume /var/run/docker.sock:/var/run/docker.sock
        "registry.gitlab.com/gitlab-org/security-products/dependency-scanning:$SP_VERSION" /code
  artifacts:
833 834
    reports:
      dependency_scanning: gl-dependency-scanning-report.json
835

836
qa:internal:
837
  <<: *dedicated-no-docs-no-db-pull-cache-job
838 839 840 841 842 843
  services: []
  script:
    - cd qa/
    - bundle install
    - bundle exec rspec

844
qa:selectors:
845
  <<: *dedicated-no-docs-no-db-pull-cache-job
846 847 848 849
  services: []
  script:
    - cd qa/
    - bundle install
850
    - bundle exec bin/qa Test::Sanity::Selectors
851

852
.qa-frontend-node: &qa-frontend-node
853
  <<: *dedicated-no-docs-no-db-pull-cache-job
854 855 856 857 858 859 860 861 862 863 864 865 866 867 868 869 870 871 872 873 874 875 876 877 878 879
  stage: test
  cache:
    key: "$CI_JOB_NAME"
    paths:
      - .yarn-cache/
  dependencies: []
  before_script: []
  script:
    - date
    - yarn install --frozen-lockfile --cache-folder .yarn-cache
    - date
    - yarn run webpack-prod

qa-frontend-node:8:
  <<: *qa-frontend-node
  image: node:8-alpine

qa-frontend-node:10:
  <<: *qa-frontend-node
  image: node:10-alpine

qa-frontend-node:latest:
  <<: *qa-frontend-node
  image: node:alpine
  allow_failure: true

880
coverage:
881 882 883 884 885 886 887
  # Don't include dedicated-no-docs-no-db-pull-cache-job here since we need to
  # download artifacts from all the rspec jobs instead of from setup-test-env only
  <<: *dedicated-runner
  <<: *except-docs-and-qa
  <<: *pull-cache
  variables:
    SETUP_DB: "false"
888
  stage: post-test
889 890
  script:
    - bundle exec scripts/merge-simplecov
891
  coverage: '/LOC \((\d+\.\d+%)\) covered.$/'
892 893 894 895 896 897 898
  artifacts:
    name: coverage
    expire_in: 31d
    paths:
    - coverage/index.html
    - coverage/assets/

899
lint:javascript:report:
900
  <<: *dedicated-no-docs-and-no-qa-pull-cache-job
901
  stage: post-test
902
  dependencies: []
903
  before_script: []
904
  script:
905
    - date
906
    - yarn run eslint-report || true # ignore exit code
907 908 909 910
  artifacts:
    name: eslint-report
    expire_in: 31d
    paths:
911
      - eslint-report.html
912

913 914 915 916 917 918 919 920 921 922 923 924 925 926 927
jsdoc:
  <<: *dedicated-no-docs-pull-cache-job
  stage: post-test
  dependencies:
    - compile-assets
  before_script: []
  script:
    - date
    - yarn run jsdoc || true # ignore exit code
  artifacts:
    name: jsdoc
    expire_in: 31d
    paths:
      - jsdoc/

928
pages:
929
  <<: *dedicated-no-docs-no-db-pull-cache-job
930 931 932 933
  before_script: []
  stage: pages
  dependencies:
    - coverage
934 935
    - karma
    - gitlab:assets:compile
936
    - lint:javascript:report
937
    - jsdoc
938 939 940
  script:
    - mv public/ .public/
    - mkdir public/
941
    - mv coverage/ public/coverage-ruby/ || true
942
    - mv coverage-javascript/ public/coverage-javascript/ || true
943
    - mv eslint-report.html public/ || true
944
    - mv webpack-report/ public/webpack-report/ || true
945 946
    - cp .public/assets/application-*.css public/application.css || true
    - cp .public/assets/application-*.css.gz public/application.css.gz || true
947
    - mv jsdoc/ public/jsdoc/ || true
948 949 950 951
  artifacts:
    paths:
      - public
  only:
952
    - master@gitlab-org/gitlab-ce
953
    - master@gitlab-org/gitlab-ee
954 955 956 957

# Insurance in case a gem needed by one of our releases gets yanked from
# rubygems.org in the future.
cache gems:
958
  <<: *dedicated-no-docs-no-db-pull-cache-job
959 960 961 962 963
  script:
    - bundle package --all --all-platforms
  artifacts:
    paths:
      - vendor/cache
964 965
  only:
    - master@gitlab-org/gitlab-ce
966
    - master@gitlab-org/gitlab-ee
967
    - tags
968 969

gitlab_git_test:
970
  <<: *dedicated-runner
971
  <<: *except-docs-and-qa
972 973
  variables:
    SETUP_DB: "false"
974
  before_script: []
975
  dependencies: []
976
  cache: {}
977 978
  script:
    - spec/support/prepare-gitlab-git-test-for-commit --check-for-changes
979 980 981 982 983 984 985

no_ee_check:
  <<: *dedicated-runner
  <<: *except-docs-and-qa
  variables:
    SETUP_DB: "false"
  before_script: []
986
  dependencies: []
987 988 989 990
  cache: {}
  script:
    - scripts/no-ee-check
  only:
991
    - /.+/@gitlab-org/gitlab-ce
992

Ian Baum's avatar
Ian Baum committed
993
# GitLab Review apps
994
.review-build-cng-base: &review-build-cng-base
995 996 997 998 999
  image: ruby:2.5-alpine
  stage: test
  before_script: []
  dependencies: []
  cache: {}
1000
  variables:
1001
    API_TOKEN: "${GITLAB_BOT_MULTI_PROJECT_PIPELINE_POLLING_TOKEN}"
1002 1003
  script:
    - apk add --update openssl curl jq
1004 1005
    - gem install gitlab --no-document
    - source ./scripts/review_apps/review-apps.sh
1006
    - wait_for_job_to_be_done "gitlab:assets:compile"
1007
    - BUILD_TRIGGER_TOKEN=$REVIEW_APPS_BUILD_TRIGGER_TOKEN ./scripts/trigger-build cng
1008

1009 1010 1011 1012 1013 1014 1015 1016 1017
review-build-cng:
  <<: *review-only
  <<: *review-build-cng-base

schedule:review-build-cng:
  <<: *review-schedules-only
  <<: *review-build-cng-base

.review-deploy-base: &review-deploy-base
1018
  <<: *review-base
1019
  allow_failure: true
1020
  variables:
1021 1022
    HOST_SUFFIX: "${CI_ENVIRONMENT_SLUG}"
    DOMAIN: "-${CI_ENVIRONMENT_SLUG}.${REVIEW_APPS_DOMAIN}"
1023
    GITLAB_HELM_CHART_REF: "master"
1024 1025 1026 1027 1028
    API_TOKEN: "${GITLAB_BOT_MULTI_PROJECT_PIPELINE_POLLING_TOKEN}"
  environment:
    <<: *review-environment
    on_stop: review-stop
  before_script:
1029 1030 1031
    - export GITLAB_SHELL_VERSION=$(<GITLAB_SHELL_VERSION)
    - export GITALY_VERSION=$(<GITALY_SERVER_VERSION)
    - export GITLAB_WORKHORSE_VERSION=$(<GITLAB_WORKHORSE_VERSION)
1032 1033
    - apk update && apk add jq
    - gem install gitlab --no-document
1034
    - source ./scripts/review_apps/review-apps.sh
1035 1036
  script:
    - wait_for_job_to_be_done "review-build-cng"
1037
    - perform_review_app_deployment
1038

1039 1040 1041 1042 1043 1044 1045
review-deploy:
  <<: *review-deploy-base

schedule:review-deploy:
  <<: *review-deploy-base
  <<: *review-schedules-only
  script:
1046
    - wait_for_job_to_be_done "schedule:review-build-cng"
1047
    - perform_review_app_deployment
1048

1049 1050
.review-qa-base: &review-qa-base
  <<: *review-docker
1051
  allow_failure: true
1052 1053 1054 1055 1056 1057 1058 1059 1060 1061 1062
  variables:
    <<: *review-docker-variables
    API_TOKEN: "${GITLAB_BOT_MULTI_PROJECT_PIPELINE_POLLING_TOKEN}"
    QA_ARTIFACTS_DIR: "${CI_PROJECT_DIR}/qa"
    QA_CAN_TEST_GIT_PROTOCOL_V2: "false"
    GITLAB_USERNAME: "root"
    GITLAB_PASSWORD: "${REVIEW_APPS_ROOT_PASSWORD}"
    GITLAB_ADMIN_USERNAME: "root"
    GITLAB_ADMIN_PASSWORD: "${REVIEW_APPS_ROOT_PASSWORD}"
    GITHUB_ACCESS_TOKEN: "${REVIEW_APPS_QA_GITHUB_ACCESS_TOKEN}"
    EE_LICENSE: "${REVIEW_APPS_EE_LICENSE}"
1063
    QA_DEBUG: "true"
1064 1065 1066 1067 1068 1069 1070 1071 1072 1073 1074 1075 1076 1077 1078
  artifacts:
    paths:
      - ./qa/gitlab-qa-run-*
    expire_in: 7 days
    when: always
  before_script:
    - echo "${QA_IMAGE}"
    - echo "${CI_ENVIRONMENT_URL}"
    - apk update && apk add curl jq
    - source ./scripts/review_apps/review-apps.sh
    - gem install gitlab-qa --no-document ${GITLAB_QA_VERSION:+ --version ${GITLAB_QA_VERSION}}

review-qa-smoke:
  <<: *review-qa-base
  script:
1079
    - wait_for_job_to_be_done "review-deploy"
1080 1081 1082 1083 1084
    - gitlab-qa Test::Instance::Smoke "${QA_IMAGE}" "${CI_ENVIRONMENT_URL}"

review-qa-all:
  <<: *review-qa-base
  script:
1085
    - wait_for_job_to_be_done "review-deploy"
1086 1087
    - gitlab-qa Test::Instance::Any "${QA_IMAGE}" "${CI_ENVIRONMENT_URL}"
  when: manual
1088

1089 1090

.review-performance-base: &review-performance-base
1091 1092
  <<: *review-qa-base
  script:
1093
    - wait_for_job_to_be_done "review-deploy"
1094
    - mkdir -p gitlab-exporter
1095 1096 1097 1098 1099 1100 1101 1102 1103 1104
    - wget -O ./gitlab-exporter/index.js https://gitlab.com/gitlab-org/gl-performance/raw/master/index.js
    - mkdir sitespeed-results
    - docker run --shm-size=1g --rm -v "$(pwd)":/sitespeed.io sitespeedio/sitespeed.io:6.3.1 --plugins.add ./gitlab-exporter --outputFolder sitespeed-results "$CI_ENVIRONMENT_URL"
    - mv sitespeed-results/data/performance.json performance.json
  artifacts:
    paths:
      - sitespeed-results/
    reports:
      performance: performance.json

1105 1106 1107
review-performance:
  <<: *review-performance-base

1108 1109
review-stop:
  <<: *review-base
1110 1111 1112
  <<: *single-script-job
  image: registry.gitlab.com/gitlab-org/gitlab-build-images:gitlab-charts-build-base
  allow_failure: true
Ian Baum's avatar
Ian Baum committed
1113
  variables:
1114
    <<: *single-script-job-variables
Ian Baum's avatar
Ian Baum committed
1115
    SCRIPT_NAME: "review_apps/review-apps.sh"
1116 1117 1118 1119
  when: manual
  environment:
    <<: *review-environment
    action: stop
1120
  script:
Ian Baum's avatar
Ian Baum committed
1121
    - source $(basename "${SCRIPT_NAME}")
1122 1123 1124
    - delete
    - cleanup

1125 1126
schedule:review-cleanup:
  <<: *review-base
1127
  <<: *review-schedules-only
1128
  stage: build
1129 1130 1131
  allow_failure: true
  variables:
    GIT_DEPTH: "1"
1132 1133
  environment:
    name: review/auto-cleanup
1134 1135 1136 1137
  before_script:
    - gem install gitlab --no-document
  script:
    - ruby -rrubygems scripts/review_apps/automated_cleanup.rb
1138 1139 1140 1141 1142 1143

schedule:review-performance:
  <<: *review-performance-base
  <<: *review-schedules-only
  script:
    - wait_for_job_to_be_done "schedule:review-deploy"
1144