This project includes a containarized solution for polling builds from KernelCI. After getting the builds the software calls a series of tests runners, which can later submit results to KCIDB using submit_results.py. Please note that if you want to submit results to KCIDB you'll need a token, which must be requested to the KernelCI team.
We make available a docker-compose.yml file to make running the project simpler. This file depends on two environment variables:
SECRETS_LOC: Defines the location of a json file containing all secrets used by the runners.GITHUB_APP_CERT: Location of the private key of the GitHub App used to run runners on this repo.
You could run the project using the following command:
SECRETS_LOC=secrets.json GITHUB_APP_CERT=github.pem docker compose upThe project is currently deployed in an Ubuntu VM as a service we named poll-builds.
An example configuration is as follows:
[Unit]
Description=Poll builds from KernelCI container
After=docker.service
Requires=docker.service
[Service]
Restart=always
Environment="SECRETS_LOC=/opt/riscv-lab/secrets.json"
Environment="GITHUB_APP_CERT=/opt/riscv-lab/github.private-key.pem"
ExecStart=/usr/bin/docker compose -f /opt/riscv-lab/docker-compose.yml up
ExecStop=/usr/bin/docker compose -f /opt/riscv-lab/docker-compose.yml stop
[Install]
WantedBy=default.targetThe service can be enabled using:
systemctl enable poll-builds.serviceThe service can be started using:
service poll-builds startRestarted with:
service poll-builds restartAnd stopped with:
service poll-builds stopSince this project could be considered a third-party app we recommend you place all required files under /opt/riscv-lab/.
The different test runners called after getting the builds can be found in the runners.yml file.
There are currently 3 kinds of runners:
- GitHub Actions:
- type: github
owner: <Org/user who owns the repo>
repo: <name of the repo>
workflow-id: <workflow id or filename>
secrets-key: <key inside secrets json>
client-id-key: <key inside secrets json>
secrets-key is the key inside the secrets json indicating the location of the GitHub App private key. If you're using the docker-compose.yml provided in the repo the value in the json will be /github_cert.pem.
client-id-key is the key inside the secrets json corresponding to the GitHub App client id.
With all of the above, the secrets json file could look like this:
{
"private_key_pem": "/github_cert.pem",
"client_id": "Ibg6rgvjjgsayt8"
}- RISC-V API:
This runner calls the tests API from the RISC-V KernelCI bridge app.
Depending on the tests you wish to run you'll need to modify the test-collection and tests fields.
- type: riscv-api
url: http://localhost/api/v1/tests/run
test-collection: kunit
tests:
- kunit- RISC-V API for boot testing:
This runner calls the boot testing API from the RISC-V KernelCI bridge app.
- type: riscv-boot-test
url: http://localhost/api/v1/boot-test/runThe GitHub runners depend on worfklows that can be called via the GitHub REST API (e.g., kselftest.yml).
To configure the GitHub app you must follow the steps described in the GitHub Docs. In our case we configured the app at the organization level.
Furthermore, after running the tests, the workflow will try to submit results to KCIDB. To do so you'll need a token. The token needs to be stored in the Secrets and variables section in GitHub. To store the token you'll have to follow these steps:
- Go to the repo in GitHub
- Click on settings
- Under security, click on Secrets and variables
- Click on New repository secret
- Name the secret
KCIDB_CREDENTIALS, and paste the token in the Secret field (follow the format described in KCIDB docs)