[lttng-ci.git] / scripts / common / coverity.sh

#!/bin/bash -exu
#
# Copyright (C) 2015 - Michael Jeanson <mjeanson@efficios.com>
#                      Jonathan Rajotte-Julien <jonathan.rajotte-julien@efficios.com>
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program.  If not, see <http://www.gnu.org/licenses/>.

# Coverity settings
# The project name and token have to be provided trough env variables
#COVERITY_SCAN_PROJECT_NAME=""
#COVERITY_SCAN_TOKEN=""
COVERITY_SCAN_DESCRIPTION="Automated CI build"
COVERITY_SCAN_NOTIFICATION_EMAIL="ci-notification@lists.lttng.org"
COVERITY_SCAN_BUILD_OPTIONS=""
#COVERITY_SCAN_BUILD_OPTIONS="--return-emit-failures 8 --parse-error-threshold 85"

SRCDIR="$WORKSPACE/src/${COVERITY_SCAN_PROJECT_NAME}"
TMPDIR="$WORKSPACE/tmp"

NPROC=$(nproc)
PLATFORM=$(uname)
export CFLAGS="-O0 -g -DDEBUG"

TOOL_ARCHIVE="$TMPDIR/cov-analysis-${PLATFORM}.tgz"
TOOL_URL=https://scan.coverity.com/download/${PLATFORM}
TOOL_BASE="$TMPDIR/coverity-scan-analysis"

UPLOAD_URL="https://scan.coverity.com/builds"
SCAN_URL="https://scan.coverity.com"

RESULTS_DIR_NAME="cov-int"
RESULTS_DIR="$WORKSPACE/$RESULTS_DIR_NAME"
RESULTS_ARCHIVE=analysis-results.tgz

# Create tmp directory
rm -rf "$TMPDIR"
mkdir -p "$TMPDIR"

export TMPDIR

case "$COVERITY_SCAN_PROJECT_NAME" in
babeltrace)
    CONF_OPTS="--enable-python-bindings --enable-python-bindings-doc"
    ;;
liburcu)
    CONF_OPTS=""
    ;;
lttng-modules)
    CONF_OPTS=""
    ;;
lttng-tools)
    CONF_OPTS=""
    ;;
lttng-ust)
    CONF_OPTS="--enable-java-agent-all --enable-python-agent"
    export CLASSPATH="/usr/share/java/log4j-1.2.jar"
    ;;
lttng-scope)
    CONF_OPTS=""
    MVN_BIN="$HOME/tools/hudson.tasks.Maven_MavenInstallation/default/bin/mvn"
    ;;
*)
    echo "Generic project, no configure options."
    CONF_OPTS=""
    ;;
esac

# liburcu dependency
if [ -d "$WORKSPACE/deps/liburcu" ]; then
  URCU_INCS="$WORKSPACE/deps/liburcu/build/include/"
  URCU_LIBS="$WORKSPACE/deps/liburcu/build/lib/"

  export CPPFLAGS="-I$URCU_INCS ${CPPFLAGS:-}"
  export LDFLAGS="-L$URCU_LIBS ${LDFLAGS:-}"
  export LD_LIBRARY_PATH="$URCU_LIBS:${LD_LIBRARY_PATH:-}"
fi


# lttng-ust dependency
if [ -d "$WORKSPACE/deps/lttng-ust" ]; then
  UST_INCS="$WORKSPACE/deps/lttng-ust/build/include/"
  UST_LIBS="$WORKSPACE/deps/lttng-ust/build/lib/"

  export CPPFLAGS="-I$UST_INCS ${CPPFLAGS:-}"
  export LDFLAGS="-L$UST_LIBS ${LDFLAGS:-}"
  export LD_LIBRARY_PATH="$UST_LIBS:${LD_LIBRARY_PATH:-}"
fi

if [ -d "$WORKSPACE/src/linux" ]; then
	export KERNELDIR="$WORKSPACE/src/linux"
fi


# Verify upload is permitted
set +x
AUTH_RES=$(curl -s --form project="$COVERITY_SCAN_PROJECT_NAME" --form token="$COVERITY_SCAN_TOKEN" $SCAN_URL/api/upload_permitted)
set -x
if [ "$AUTH_RES" = "Access denied" ]; then
  echo -e "\033[33;1mCoverity Scan API access denied. Check COVERITY_SCAN_PROJECT_NAME and COVERITY_SCAN_TOKEN.\033[0m"
  exit 1
else
  AUTH=$(echo "$AUTH_RES" | jq .upload_permitted)
  if [ "$AUTH" = "true" ]; then
    echo -e "\033[33;1mCoverity Scan analysis authorized per quota.\033[0m"
  else
    WHEN=$(echo "$AUTH_RES" | jq .next_upload_permitted_at)
    echo -e "\033[33;1mCoverity Scan analysis NOT authorized until $WHEN.\033[0m"
    exit 1
  fi
fi


# Download Coverity Scan Analysis Tool
if [ ! -d "$TOOL_BASE" ]; then
  if [ ! -e "$TOOL_ARCHIVE" ]; then
    echo -e "\033[33;1mDownloading Coverity Scan Analysis Tool...\033[0m"
    set +x
    wget -nv -O "$TOOL_ARCHIVE" "$TOOL_URL" --post-data "project=$COVERITY_SCAN_PROJECT_NAME&token=$COVERITY_SCAN_TOKEN"
    set -x
  fi

  # Extract Coverity Scan Analysis Tool
  echo -e "\033[33;1mExtracting Coverity Scan Analysis Tool...\033[0m"
  mkdir -p "$TOOL_BASE"
  cd "$TOOL_BASE" || exit 1
  tar xzf "$TOOL_ARCHIVE"
  cd -
fi

TOOL_DIR=$(find "$TOOL_BASE" -type d -name 'cov-analysis*')
export PATH=$TOOL_DIR/bin:$PATH

cd "$SRCDIR"

COVERITY_SCAN_VERSION=$(git describe --always | sed 's|-|.|g')

# Prepare build dir for autotools based projects
if [ -f "./bootstrap" ]; then
  ./bootstrap
  ./configure $CONF_OPTS
fi

# Build
echo -e "\033[33;1mRunning Coverity Scan Analysis Tool...\033[0m"
case "$COVERITY_SCAN_PROJECT_NAME" in
lttng-scope)
    export
    cov-configure --java
    cov-build --dir "$RESULTS_DIR" $COVERITY_SCAN_BUILD_OPTIONS "$MVN_BIN" \
      -s "$MVN_SETTINGS" \
      -Dmaven.repo.local="$WORKSPACE/.repository" \
      -Dmaven.compiler.fork=true \
      -Dmaven.compiler.forceJavaCompilerUse=true \
      -Dmaven.test.skip=true \
      -DskipTests \
      clean verify
    ;;
*)
    cov-build --dir "$RESULTS_DIR" $COVERITY_SCAN_BUILD_OPTIONS make -j"$NPROC" V=1
    ;;
esac


cov-import-scm --dir "$RESULTS_DIR" --scm git --log "$RESULTS_DIR/scm_log.txt"

cd "${WORKSPACE}"

# Tar results
echo -e "\033[33;1mTarring Coverity Scan Analysis results...\033[0m"
tar czf $RESULTS_ARCHIVE $RESULTS_DIR_NAME

# Upload results
echo -e "\033[33;1mUploading Coverity Scan Analysis results...\033[0m"
set +x
response=$(curl \
  --silent --write-out "\n%{http_code}\n" \
  --form project="$COVERITY_SCAN_PROJECT_NAME" \
  --form token="$COVERITY_SCAN_TOKEN" \
  --form email="$COVERITY_SCAN_NOTIFICATION_EMAIL" \
  --form file=@"$RESULTS_ARCHIVE" \
  --form version="$COVERITY_SCAN_VERSION" \
  --form description="$COVERITY_SCAN_DESCRIPTION" \
  "$UPLOAD_URL")
set -x
status_code=$(echo "$response" | sed -n '$p')
if [ "$status_code" == "201" ]; then
  echo -e "\033[33;1mCoverity Scan upload successful.\033[0m"
else
  TEXT=$(echo "$response" | sed '$d')
  echo -e "\033[33;1mCoverity Scan upload failed: $TEXT.\033[0m"
  exit 1
fi

# EOF
Commit	Line	Data
a57a60d9	1	#!/bin/bash -exu
87b23e49 MJ	2	#
	3	# Copyright (C) 2015 - Michael Jeanson <mjeanson@efficios.com>
	4	# Jonathan Rajotte-Julien <jonathan.rajotte-julien@efficios.com>
	5	#
	6	# This program is free software: you can redistribute it and/or modify
	7	# it under the terms of the GNU General Public License as published by
	8	# the Free Software Foundation, either version 3 of the License, or
	9	# (at your option) any later version.
	10	#
	11	# This program is distributed in the hope that it will be useful,
	12	# but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	# GNU General Public License for more details.
	15	#
	16	# You should have received a copy of the GNU General Public License
	17	# along with this program. If not, see <http://www.gnu.org/licenses/>.
	18
	19	# Coverity settings
e8078c79	20	# The project name and token have to be provided trough env variables
87b23e49 MJ	21	#COVERITY_SCAN_PROJECT_NAME=""
87b23e49 MJ	22	#COVERITY_SCAN_TOKEN=""
87b23e49 MJ	23	COVERITY_SCAN_DESCRIPTION="Automated CI build"
	24	COVERITY_SCAN_NOTIFICATION_EMAIL="ci-notification@lists.lttng.org"
	25	COVERITY_SCAN_BUILD_OPTIONS=""
	26	#COVERITY_SCAN_BUILD_OPTIONS="--return-emit-failures 8 --parse-error-threshold 85"
	27
1f4fba8c MJ	28	SRCDIR="$WORKSPACE/src/${COVERITY_SCAN_PROJECT_NAME}"
	29	TMPDIR="$WORKSPACE/tmp"
	30
87b23e49 MJ	31	NPROC=$(nproc)
	32	PLATFORM=$(uname)
	33	export CFLAGS="-O0 -g -DDEBUG"
	34
1f4fba8c	35	TOOL_ARCHIVE="$TMPDIR/cov-analysis-${PLATFORM}.tgz"
87b23e49	36	TOOL_URL=https://scan.coverity.com/download/${PLATFORM}
1f4fba8c	37	TOOL_BASE="$TMPDIR/coverity-scan-analysis"
87b23e49 MJ	38
	39	UPLOAD_URL="https://scan.coverity.com/builds"
	40	SCAN_URL="https://scan.coverity.com"
	41
1f4fba8c MJ	42	RESULTS_DIR_NAME="cov-int"
	43	RESULTS_DIR="$WORKSPACE/$RESULTS_DIR_NAME"
	44	RESULTS_ARCHIVE=analysis-results.tgz
87b23e49	45
1f4fba8c MJ	46	# Create tmp directory
	47	rm -rf "$TMPDIR"
	48	mkdir -p "$TMPDIR"
	49
	50	export TMPDIR
	51
	52	case "$COVERITY_SCAN_PROJECT_NAME" in
	53	babeltrace)
	54	CONF_OPTS="--enable-python-bindings --enable-python-bindings-doc"
	55	;;
	56	liburcu)
	57	CONF_OPTS=""
	58	;;
	59	lttng-modules)
	60	CONF_OPTS=""
	61	;;
	62	lttng-tools)
	63	CONF_OPTS=""
	64	;;
	65	lttng-ust)
	66	CONF_OPTS="--enable-java-agent-all --enable-python-agent"
	67	export CLASSPATH="/usr/share/java/log4j-1.2.jar"
	68	;;
7525e08d MJ	69	lttng-scope)
	70	CONF_OPTS=""
	71	MVN_BIN="$HOME/tools/hudson.tasks.Maven_MavenInstallation/default/bin/mvn"
	72	;;
1f4fba8c MJ	73	*)
	74	echo "Generic project, no configure options."
	75	CONF_OPTS=""
	76	;;
	77	esac
87b23e49 MJ	78
	79	# liburcu dependency
	80	if [ -d "$WORKSPACE/deps/liburcu" ]; then
	81	URCU_INCS="$WORKSPACE/deps/liburcu/build/include/"
	82	URCU_LIBS="$WORKSPACE/deps/liburcu/build/lib/"
1f4fba8c	83
87b23e49 MJ	84	export CPPFLAGS="-I$URCU_INCS ${CPPFLAGS:-}"
	85	export LDFLAGS="-L$URCU_LIBS ${LDFLAGS:-}"
	86	export LD_LIBRARY_PATH="$URCU_LIBS:${LD_LIBRARY_PATH:-}"
	87	fi
	88
	89
	90	# lttng-ust dependency
	91	if [ -d "$WORKSPACE/deps/lttng-ust" ]; then
	92	UST_INCS="$WORKSPACE/deps/lttng-ust/build/include/"
	93	UST_LIBS="$WORKSPACE/deps/lttng-ust/build/lib/"
1f4fba8c	94
87b23e49 MJ	95	export CPPFLAGS="-I$UST_INCS ${CPPFLAGS:-}"
	96	export LDFLAGS="-L$UST_LIBS ${LDFLAGS:-}"
	97	export LD_LIBRARY_PATH="$UST_LIBS:${LD_LIBRARY_PATH:-}"
	98	fi
	99
7e942863 MJ	100	if [ -d "$WORKSPACE/src/linux" ]; then
7e942863 MJ	101	export KERNELDIR="$WORKSPACE/src/linux"
5122da3c JR	102	fi
5122da3c JR	103
87b23e49 MJ	104
87b23e49 MJ	105	# Verify upload is permitted
e8078c79	106	set +x
a57a60d9	107	AUTH_RES=$(curl -s --form project="$COVERITY_SCAN_PROJECT_NAME" --form token="$COVERITY_SCAN_TOKEN" $SCAN_URL/api/upload_permitted)
e8078c79	108	set -x
87b23e49 MJ	109	if [ "$AUTH_RES" = "Access denied" ]; then
	110	echo -e "\033[33;1mCoverity Scan API access denied. Check COVERITY_SCAN_PROJECT_NAME and COVERITY_SCAN_TOKEN.\033[0m"
	111	exit 1
	112	else
a57a60d9	113	AUTH=$(echo "$AUTH_RES" \| jq .upload_permitted)
87b23e49 MJ	114	if [ "$AUTH" = "true" ]; then
	115	echo -e "\033[33;1mCoverity Scan analysis authorized per quota.\033[0m"
	116	else
a57a60d9	117	WHEN=$(echo "$AUTH_RES" \| jq .next_upload_permitted_at)
87b23e49 MJ	118	echo -e "\033[33;1mCoverity Scan analysis NOT authorized until $WHEN.\033[0m"
	119	exit 1
	120	fi
	121	fi
	122
	123
	124	# Download Coverity Scan Analysis Tool
a57a60d9 MJ	125	if [ ! -d "$TOOL_BASE" ]; then
a57a60d9 MJ	126	if [ ! -e "$TOOL_ARCHIVE" ]; then
87b23e49	127	echo -e "\033[33;1mDownloading Coverity Scan Analysis Tool...\033[0m"
e8078c79	128	set +x
a57a60d9	129	wget -nv -O "$TOOL_ARCHIVE" "$TOOL_URL" --post-data "project=$COVERITY_SCAN_PROJECT_NAME&token=$COVERITY_SCAN_TOKEN"
e8078c79	130	set -x
87b23e49 MJ	131	fi
	132
	133	# Extract Coverity Scan Analysis Tool
	134	echo -e "\033[33;1mExtracting Coverity Scan Analysis Tool...\033[0m"
a57a60d9 MJ	135	mkdir -p "$TOOL_BASE"
	136	cd "$TOOL_BASE" \|\| exit 1
	137	tar xzf "$TOOL_ARCHIVE"
87b23e49 MJ	138	cd -
	139	fi
	140
a57a60d9	141	TOOL_DIR=$(find "$TOOL_BASE" -type d -name 'cov-analysis*')
87b23e49 MJ	142	export PATH=$TOOL_DIR/bin:$PATH
87b23e49 MJ	143
1f4fba8c MJ	144	cd "$SRCDIR"
1f4fba8c MJ	145
a57a60d9	146	COVERITY_SCAN_VERSION=$(git describe --always \| sed 's\|-\|.\|g')
87b23e49	147
7525e08d	148	# Prepare build dir for autotools based projects
87b23e49 MJ	149	if [ -f "./bootstrap" ]; then
87b23e49 MJ	150	./bootstrap
1f4fba8c	151	./configure $CONF_OPTS
87b23e49 MJ	152	fi
	153
	154	# Build
	155	echo -e "\033[33;1mRunning Coverity Scan Analysis Tool...\033[0m"
7525e08d MJ	156	case "$COVERITY_SCAN_PROJECT_NAME" in
	157	lttng-scope)
	158	export
	159	cov-configure --java
	160	cov-build --dir "$RESULTS_DIR" $COVERITY_SCAN_BUILD_OPTIONS "$MVN_BIN" \
	161	-s "$MVN_SETTINGS" \
	162	-Dmaven.repo.local="$WORKSPACE/.repository" \
	163	-Dmaven.compiler.fork=true \
	164	-Dmaven.compiler.forceJavaCompilerUse=true \
	165	-Dmaven.test.skip=true \
	166	-DskipTests \
	167	clean verify
	168	;;
	169	*)
	170	cov-build --dir "$RESULTS_DIR" $COVERITY_SCAN_BUILD_OPTIONS make -j"$NPROC" V=1
	171	;;
	172	esac
	173
	174
	175
a57a60d9	176	cov-import-scm --dir "$RESULTS_DIR" --scm git --log "$RESULTS_DIR/scm_log.txt"
87b23e49	177
1f4fba8c MJ	178	cd "${WORKSPACE}"
1f4fba8c MJ	179
87b23e49 MJ	180	# Tar results
87b23e49 MJ	181	echo -e "\033[33;1mTarring Coverity Scan Analysis results...\033[0m"
1f4fba8c	182	tar czf $RESULTS_ARCHIVE $RESULTS_DIR_NAME
87b23e49 MJ	183
	184	# Upload results
	185	echo -e "\033[33;1mUploading Coverity Scan Analysis results...\033[0m"
e8078c79	186	set +x
87b23e49 MJ	187	response=$(curl \
87b23e49 MJ	188	--silent --write-out "\n%{http_code}\n" \
a57a60d9 MJ	189	--form project="$COVERITY_SCAN_PROJECT_NAME" \
	190	--form token="$COVERITY_SCAN_TOKEN" \
	191	--form email="$COVERITY_SCAN_NOTIFICATION_EMAIL" \
	192	--form file=@"$RESULTS_ARCHIVE" \
	193	--form version="$COVERITY_SCAN_VERSION" \
	194	--form description="$COVERITY_SCAN_DESCRIPTION" \
	195	"$UPLOAD_URL")
e8078c79	196	set -x
87b23e49	197	status_code=$(echo "$response" \| sed -n '$p')
7525e08d MJ	198	if [ "$status_code" == "201" ]; then
	199	echo -e "\033[33;1mCoverity Scan upload successful.\033[0m"
	200	else
87b23e49 MJ	201	TEXT=$(echo "$response" \| sed '$d')
	202	echo -e "\033[33;1mCoverity Scan upload failed: $TEXT.\033[0m"
	203	exit 1
	204	fi
a57a60d9 MJ	205
a57a60d9 MJ	206	# EOF