-
Notifications
You must be signed in to change notification settings - Fork 2.8k
567 lines (551 loc) · 20 KB
/
ci-actions.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
name: Quarkus CI
on:
push:
branches-ignore:
- 'dependabot/**'
paths-ignore:
- 'docs/src/main/asciidoc/**'
- 'README.md'
- 'CONTRIBUTING.md'
- 'ADOPTERS.md'
- 'LICENSE.txt'
- 'dco.txt'
- '.github/ISSUE_TEMPLATE/**'
- '.github/autoissuelabeler.yml'
- '.github/boring-cyborg.yml'
- '.github/NativeBuildReport.java'
- '.dependabot/**'
pull_request:
types: [opened, synchronize, reopened, ready_for_review]
paths-ignore:
- 'docs/src/main/asciidoc/**'
- 'README.md'
- 'CONTRIBUTING.md'
- 'ADOPTERS.md'
- 'LICENSE.txt'
- 'dco.txt'
- '.github/ISSUE_TEMPLATE/**'
- '.github/autoissuelabeler.yml'
- '.github/boring-cyborg.yml'
- '.github/NativeBuildReport.java'
- '.dependabot/**'
env:
# Workaround testsuite locale issue
LANG: en_US.UTF-8
NATIVE_TEST_MAVEN_OPTS: "-B --settings .github/mvn-settings.xml --fail-at-end -Dquarkus.native.container-build=true -Dquarkus.native.builder-image=quay.io/quarkus/ubi-quarkus-native-image:19.3.1-java11 -Dtest-postgresql -Dtest-elasticsearch -Dtest-keycloak -Dtest-amazon-services -Dtest-db2 -Dtest-mysql -Dtest-mariadb -Dmariadb.base_url='jdbc:mariadb://localhost:3308' -Dmariadb.url='jdbc:mariadb://localhost:3308/hibernate_orm_test' -Dtest-mssql -Dtest-vault -Dtest-neo4j -Dtest-kafka -Dnative-image.xmx=5g -Dnative -Dformat.skip install"
JVM_TEST_MAVEN_OPTS: "-e -B --settings .github/mvn-settings.xml -Dtest-postgresql -Dtest-elasticsearch -Dtest-db2 -Dtest-mysql -Dtest-mariadb -Dmariadb.base_url='jdbc:mariadb://localhost:3308' -Dmariadb.url='jdbc:mariadb://localhost:3308/hibernate_orm_test' -Dtest-mssql -Dtest-amazon-services -Dtest-vault -Dtest-neo4j -Dtest-kafka -Dtest-keycloak -Dformat.skip"
DB_USER: hibernate_orm_test
DB_PASSWORD: hibernate_orm_test
DB_NAME: hibernate_orm_test
jobs:
build-jdk11:
name: "JDK 11 Build"
runs-on: ubuntu-latest
# Skip draft PRs and those with WIP in the subject, rerun as soon as its removed
if: "github.event_name != 'pull_request' || ( \
github.event.pull_request.draft == false && \
github.event.pull_request.state != 'closed' && \
contains(github.event.pull_request.title, 'wip ') == false && \
contains(github.event.pull_request.title, '[wip]') == false && \
(
github.event.action != 'edited' || \
contains(github.event.changes.title.from, 'wip ') || \
contains(github.event.changes.title.from, '[wip]') \
) \
)"
steps:
- uses: actions/checkout@v2
- uses: n1hility/cancel-previous-runs@v2
with:
token: ${{ secrets.GITHUB_TOKEN }}
- name: Reclaim Disk Space
run: .github/ci-prerequisites.sh
- name: Set up JDK 11
# Uses sha for added security since tags can be updated
uses: joschi/setup-jdk@b9cc6eabf7e7e3889766b5cee486f874c9e1bd2d
with:
java-version: 11
- name: Compute cache restore key
# Always recompute on a push so that the maven repo doesnt grow indefinitely with old versions
run: |
if ${{ github.event_name == 'pull_request' }}; then echo "::set-env name=COMPUTED_RESTORE_KEY::q2maven-"; fi
- name: Cache Maven Repository
id: cache-maven
uses: n1hility/cache@v2
with:
path: ~/.m2/repository
# Improves the reusability of the cache to limit key changes
key: q2maven-${{ hashFiles('bom/runtime/pom.xml') }}
restore-keys: ${{ env.COMPUTED_RESTORE_KEY }}
restore-only: ${{ github.event_name == 'pull_request' }}
- name: Build
run: |
mvn -e -B -DskipTests -DskipITs -Dno-format -Ddocumentation-pdf clean install
- name: Tar Maven Repo
shell: bash
run: tar -czvf maven-repo.tgz -C ~ .m2/repository
- name: Persist Maven Repo
uses: actions/upload-artifact@v1
with:
name: maven-repo
path: maven-repo.tgz
linux-jvm-tests:
name: JDK ${{matrix.java.name}} JVM Tests
needs: build-jdk11
timeout-minutes: 120
strategy:
fail-fast: false
matrix:
java :
- { name: Java8,
java-version: 8,
maven_args: "-pl !integration-tests/vault-app,!integration-tests/vault-agroal,!integration-tests/vault"
}
- {
name: "Java 8 - 242",
java-version: 8,
release: "jdk8u242-b08"
}
- {
name: Java 11,
java-version: 11
}
- {
name: Java 14,
java-version: 14
}
runs-on: ubuntu-latest
services:
keycloak:
image: quay.io/keycloak/keycloak:10.0.1
env:
KEYCLOAK_USER: admin
KEYCLOAK_PASSWORD: admin
JAVA_OPTS: "-server -Xms64m -Xmx512m -XX:MetaspaceSize=96M -XX:MaxMetaspaceSize=256m -Djava.net.preferIPv4Stack=true -Djava.awt.headless=true -Dkeycloak.profile.feature.upload_scripts=enabled"
ports:
- 127.0.0.1:8180:8080
- 127.0.0.1:8543:8443
postgres:
image: postgres:10.5
env:
POSTGRES_USER: hibernate_orm_test
POSTGRES_PASSWORD: hibernate_orm_test
POSTGRES_DB: hibernate_orm_test
ports:
- 127.0.0.1:5432:5432
mariadb:
image: mariadb:10.4
env:
MYSQL_USER: hibernate_orm_test
MYSQL_PASSWORD: hibernate_orm_test
MYSQL_DATABASE: hibernate_orm_test
MYSQL_ROOT_PASSWORD: secret
ports:
- 127.0.0.1:3308:3306
mssql:
image: microsoft/mssql-server-linux:2017-CU12
env:
ACCEPT_EULA: Y
SA_PASSWORD: ActuallyRequired11Complexity
ports:
- 127.0.0.1:1433:1433
neo4j:
image: neo4j/neo4j-experimental:4.0.0-rc01
env:
NEO4J_AUTH: neo4j/secret
NEO4J_dbms_memory_pagecache_size: 10M
NEO4J_dbms_memory_heap_initial__size: 10M
ports:
- 127.0.0.1:7687:7687
amazonServices:
image: localstack/localstack:0.11.1
env:
SERVICES: s3,dynamodb,sns,sqs,kms,ses
START_WEB: 0
ports:
- 127.0.0.1:8000:4569
- 127.0.0.1:8008:4572
- 127.0.0.1:8009:4575
- 127.0.0.1:8010:4576
- 127.0.0.1:8011:4599
- 127.0.0.1:8012:4566
steps:
- name: Start mysql
shell: bash
run: |
netstat -ln
sudo service mysql stop || true
docker run --rm --publish 127.0.0.1:3306:3306 --name build-mysql -e MYSQL_USER=$DB_USER -e MYSQL_PASSWORD=$DB_PASSWORD -e MYSQL_DATABASE=$DB_NAME -e MYSQL_RANDOM_ROOT_PASSWORD=true -e MYSQL_DATABASE=hibernate_orm_test -d mysql:5 --skip-ssl
- name: Start DB2
# Cannot run as service becuase the service schema does not support --privileged mode
shell: bash
run: |
docker run --rm --publish 50000:50000 --name build-db2 --privileged=true \
-e DB2INSTANCE=hreact -e DB2INST1_PASSWORD=hreact -e DBNAME=hreact -e LICENSE=accept -e AUTOCONFIG=false -e ARCHIVE_LOGS=false \
-d ibmcom/db2:11.5.0.0a
- uses: actions/checkout@v2
- name: apt clean
shell: bash
run: sudo apt-get clean
- name: Reclaim Disk Space
run: .github/ci-prerequisites.sh
- name: Set up JDK ${{ matrix.java.name }}
# Uses sha for added security since tags can be updated
uses: joschi/setup-jdk@b9cc6eabf7e7e3889766b5cee486f874c9e1bd2d
with:
java-version: ${{ matrix.java.java-version }}
release: ${{ matrix.java.release }}
- name: Download Maven Repo
uses: actions/download-artifact@v1
with:
name: maven-repo
path: .
- name: Extract Maven Repo
shell: bash
run: tar -xzvf maven-repo.tgz -C ~
- name: Build with Maven
run: eval mvn $JVM_TEST_MAVEN_OPTS install ${{ matrix.java.maven_args}}
- name: Prepare failure archive (if maven failed)
if: failure()
shell: bash
run: find . -name '*-reports' -type d | tar -czvf test-reports.tgz -T -
- name: Upload failure Archive (if maven failed)
uses: actions/upload-artifact@v1
if: failure()
with:
name: test-reports-linux-jvm${{matrix.java.name}}
path: 'test-reports.tgz'
windows-jdk11-jvm-tests:
name: Windows JDK 11 JVM Tests
needs: build-jdk11
runs-on: windows-latest
timeout-minutes: 130
env:
MAVEN_OPTS: -Xmx1408m
steps:
- uses: actions/checkout@v2
- name: Set up JDK 11
# Uses sha for added security since tags can be updated
uses: joschi/setup-jdk@b9cc6eabf7e7e3889766b5cee486f874c9e1bd2d
with:
java-version: 11
- name: Download Maven Repo
uses: actions/download-artifact@v1
with:
name: maven-repo
path: .
- name: Extract Maven Repo
shell: bash
run: tar -xzvf maven-repo.tgz -C ~
- name: Build with Maven
shell: bash
run: mvn -B --settings .github/mvn-settings.xml -Dno-native -Dformat.skip install
- name: Prepare failure archive (if maven failed)
if: failure()
shell: bash
run: |
# Disambiguate windows find from cygwin find
/usr/bin/find . -name '*-reports' -type d | tar -czvf test-reports.tgz -T -
- name: Upload failure Archive (if maven failed)
uses: actions/upload-artifact@v1
if: failure()
with:
name: test-reports-windows-jdk11-jvm
path: 'test-reports.tgz'
tcks-test:
name: TCKS Test
needs: build-jdk11
runs-on: ubuntu-latest
timeout-minutes: 120
steps:
- uses: actions/checkout@v2
- name: Reclaim Disk Space
run: .github/ci-prerequisites.sh
- name: Set up JDK 11
# Uses sha for added security since tags can be updated
uses: joschi/setup-jdk@b9cc6eabf7e7e3889766b5cee486f874c9e1bd2d
with:
java-version: 11
- name: Download Maven Repo
uses: actions/download-artifact@v1
with:
name: maven-repo
path: .
- name: Extract Maven Repo
shell: bash
run: tar -xzvf maven-repo.tgz -C ~
- name: Build with Maven
run: mvn -B --settings .github/mvn-settings.xml -Dno-native -Dno-format -DskipTests -Dtcks install
- name: Verify with Maven
run: mvn -B --settings .github/mvn-settings.xml -f tcks/pom.xml verify
- name: Prepare failure archive (if maven failed)
if: failure()
shell: bash
run: find . -name '*-reports' -type d | tar -czvf test-reports.tgz -T -
- name: Upload failure Archive (if maven failed)
uses: actions/upload-artifact@v1
if: failure()
with:
name: test-reports-tcks
path: 'test-reports.tgz'
native-tests:
name: Native Tests - ${{matrix.category}}
needs: build-jdk11
runs-on: ubuntu-latest
# Ignore the following YAML Schema error
timeout-minutes: ${{matrix.timeout}}
strategy:
max-parallel: 8
fail-fast: false
matrix:
category: [Main, Data1, Data2, Data3, Data4, Data5, Security1, Security2, Security3, Amazon, Messaging, Cache, HTTP, Misc1, Misc2, Misc3, Misc4, Spring, gRPC]
include:
- category: Main
postgres: "true"
timeout: 30
test-modules: main
- category: Data1
mariadb: "true"
mssql: "true"
timeout: 55
test-modules: >
jpa-h2
jpa-mariadb
jpa-mssql
jpa-derby
jpa-without-entity
hibernate-tenancy
- category: Data2
db2: "true"
mysql: "true"
postgres: "true"
timeout: 45
test-modules: >
jpa
jpa-postgresql
jpa-mysql
reactive-mysql-client
reactive-db2-client
- category: Data3
postgres: "true"
timeout: 60
test-modules: >
flyway
hibernate-orm-panache
hibernate-orm-panache-kotlin
liquibase
- category: Data4
neo4j: "true"
timeout: 40
test-modules: >
mongodb-client
mongodb-panache
neo4j
hibernate-orm-rest-data-panache
- category: Data5
postgres: "true"
timeout: 40
test-modules: >
hibernate-search-elasticsearch
narayana-stm
narayana-jta
reactive-pg-client
- category: Amazon
amazonServices: "true"
timeout: 35
test-modules: >
amazon-services
amazon-lambda
amazon-lambda-http
- category: Messaging
timeout: 65
test-modules: >
artemis-core
artemis-jms
kafka
kafka-streams
reactive-messaging-amqp
- category: Security1
timeout: 40
keycloak: "true"
test-modules: >
elytron-security-oauth2
elytron-security
elytron-security-jdbc
elytron-undertow
elytron-security-ldap
- category: Security2
timeout: 60
keycloak: "true"
test-modules: >
elytron-resteasy
oidc
oidc-code-flow
oidc-tenancy
keycloak-authorization
- category: Security3
timeout: 40
test-modules: >
vault
vault-app
vault-agroal
- category: Cache
timeout: 45
test-modules: >
infinispan-cache-jpa
infinispan-client
infinispan-embedded
cache
- category: HTTP
timeout: 45
test-modules: >
resteasy-jackson
resteasy-mutiny
vertx
vertx-http
vertx-graphql
virtual-http
rest-client
- category: Misc1
timeout: 50
test-modules: >
maven
jackson
jsonb
jsch
jgit
quartz
qute
consul-config
- category: Misc2
timeout: 45
test-modules: >
tika
hibernate-validator
test-extension
logging-gelf
bootstrap-config
optaplanner-jackson
optaplanner-jsonb
# kubernetes-client alone takes 30mn+
- category: Misc3
timeout: 50
test-modules: >
kubernetes-client
- category: Misc4
timeout: 20
test-modules: >
smallrye-graphql
picocli-native
- category: Spring
timeout: 40
test-modules: >
spring-di
spring-web
spring-data-jpa
spring-boot-properties
spring-cloud-config-client
- category: gRPC
timeout: 55
test-modules: >
grpc-health
grpc-interceptors
grpc-mutual-auth
grpc-plain-text
grpc-proto-v2
grpc-streaming
grpc-tls
steps:
# These should be services, but services do not (yet) allow conditional execution
- name: Postgres Service
run: |
docker run --rm --publish 5432:5432 --name build-postgres \
-e POSTGRES_USER=$DB_USER -e POSTGRES_PASSWORD=$DB_PASSWORD -e POSTGRES_DB=$DB_NAME \
-d postgres:10.5
if: matrix.postgres
- name: MySQL Service
run: |
sudo service mysql stop || true
docker run --rm --publish 3306:3306 --name build-mysql \
-e MYSQL_USER=$DB_USER -e MYSQL_PASSWORD=$DB_PASSWORD -e MYSQL_DATABASE=$DB_NAME -e MYSQL_RANDOM_ROOT_PASSWORD=true \
-d mysql:5 --skip-ssl
if: matrix.mysql
- name: DB2 Service
run: |
docker run --rm --publish 50000:50000 --name build-db2 --privileged=true \
-e DB2INSTANCE=hreact -e DB2INST1_PASSWORD=hreact -e DBNAME=hreact -e LICENSE=accept -e AUTOCONFIG=false -e ARCHIVE_LOGS=false \
-d ibmcom/db2:11.5.0.0a
if: matrix.db2
- name: Maria DB Service
run: |
docker run --rm --publish 3308:3306 --name build-mariadb \
-e MYSQL_USER=$DB_USER -e MYSQL_PASSWORD=$DB_PASSWORD -e MYSQL_DATABASE=$DB_NAME -e MYSQL_ROOT_PASSWORD=secret \
-d mariadb:10.4
if: matrix.mariadb
- name: MS-SQL Service
run: |
docker run --rm --publish 1433:1433 --name build-mssql \
-e ACCEPT_EULA=Y -e SA_PASSWORD=ActuallyRequired11Complexity \
-d microsoft/mssql-server-linux:2017-CU12
if: matrix.mssql
- name: Amazon Services
run: |
docker run --rm --publish 8000:4569 --publish 8008:4572 --publish 8009:4575 --publish 8010:4576 --publish 8011:4599 --publish 8012:4566 --name build-amazon-service-clients -e SERVICES=s3,dynamodb,sns,sqs,kms,ses -e START_WEB=0 \
-d localstack/localstack:0.11.1
if: matrix.amazonServices
- name: Neo4j Service
run: |
docker run --rm --publish 7687:7687 --name build-neo4j \
-e NEO4J_AUTH=neo4j/secret -e NEO4J_dbms_memory_pagecache_size=10M -e NEO4J_dbms_memory_heap_initial__size=10M \
-d neo4j/neo4j-experimental:4.0.0-rc01
if: matrix.neo4j
- name: Keycloak Service
run: |
docker run --rm --publish 8180:8080 --publish 8543:8443 --name build-keycloak \
-e KEYCLOAK_USER=admin -e KEYCLOAK_PASSWORD=admin -e JAVA_OPTS=" \
-server -Xms64m -Xmx512m -XX:MetaspaceSize=96M \
-XX:MaxMetaspaceSize=256m -Djava.net.preferIPv4Stack=true -Djava.awt.headless=true \
-Dkeycloak.profile.feature.upload_scripts=enabled" \
-d quay.io/keycloak/keycloak:10.0.1
if: matrix.keycloak
- uses: actions/checkout@v2
- name: Set up JDK 11
# Uses sha for added security since tags can be updated
uses: joschi/setup-jdk@b9cc6eabf7e7e3889766b5cee486f874c9e1bd2d
with:
java-version: 11
- name: Reclaim Disk Space
run: .github/ci-prerequisites.sh
- name: Download Maven Repo
uses: actions/download-artifact@v1
with:
name: maven-repo
path: .
- name: Extract Maven Repo
shell: bash
run: tar -xzvf maven-repo.tgz -C ~
- name: Build with Maven
env:
TEST_MODULES: ${{matrix.test-modules}}
CATEGORY: ${{matrix.category}}
run: |
for i in $TEST_MODULES
do modules+=("integration-tests/$i"); done
IFS=,
eval mvn -pl "${modules[*]}" $NATIVE_TEST_MAVEN_OPTS
# add the 'simple with spaces' project to the run of 'Misc1' by executing it explicitly
# done because there is no good way to pass strings with empty values to the previous command
# so this hack is as good as any
if [ "$CATEGORY" == "Misc1" ]; then
mvn -Dnative -Dquarkus.native.container-build=true -B --settings .github/mvn-settings.xml -f 'integration-tests/simple with space/' verify
fi
- name: Prepare failure archive (if maven failed)
if: failure()
shell: bash
run: find . -name '*-reports' -type d | tar -czvf test-reports.tgz -T -
- name: Upload failure Archive (if maven failed)
uses: actions/upload-artifact@v1
if: failure()
with:
name: test-reports-native-${{matrix.category}}
path: 'test-reports.tgz'