generated from IRNAS/irnas-zephyr-template
-
Notifications
You must be signed in to change notification settings - Fork 1
167 lines (142 loc) · 5.42 KB
/
codechecker.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
name: CodeChecker
on:
workflow_dispatch:
inputs:
checkout_ref:
description: "Commit to checkout"
required: true
type: string
default: main
pull_request:
types: [opened, reopened, synchronize]
push:
branches:
- "main"
env:
EAST_CODECHECKER_CI_MODE: 1
CODECHECKER_CREDENTIALS: ${{ secrets.CODECHECKER_CREDENTIALS }}
EAST_CODECHECKER_SERVER_URL: ${{ secrets.CODECHECKER_SERVER_URL }}
GIT_CREDENTIALS: ${{ secrets.GIT_CREDENTIALS }}
jobs:
codechecker:
runs-on: ubuntu-20.04
defaults:
run:
shell: bash
# Set work dir to "project" for all 'run' calls. Beware, everything else
# (actions, 'with' params, etc.) still needs to reference full path.
working-directory: project
steps:
- name: Checkout last PR commit
if: github.event_name == 'pull_request'
uses: actions/checkout@v4
with:
ref: ${{ github.event.pull_request.head.sha }}
path: project
- name: Checkout last tag
if: github.event_name == 'workflow_dispatch'
uses: actions/checkout@v4
with:
ref: ${{ inputs.checkout_ref }}
path: project
- name: Checkout main
if: github.event_name == 'push'
uses: actions/checkout@v4
with:
ref: main
path: project
# This is needed due to the later east update (west update) command that
# could be cloning from the private repos. The provided token in
# GIT_CREDENTIALS needs to be a fine-grained token, with access to all
# repositories, with "Read-only" access level to the Content repository
# permissions.
- name: Set Git credentials
run: |
git config --global credential.helper '!f() { printf "%s\n" "username=runner" "password=$GIT_CREDENTIALS"; };f'
- name: Add LLVM repositories
if: contains(runner.name, 'Github Action')
run: |
# If updating llvm version do not forget to update distro name
wget -qO- https://apt.llvm.org/llvm-snapshot.gpg.key | sudo tee /etc/apt/trusted.gpg.d/apt.llvm.org.asc
sudo add-apt-repository "deb http://apt.llvm.org/focal/ llvm-toolchain-focal-16 main"
sudo apt-get update
- name: Install and cache apt packages
if: contains(runner.name, 'Github Action')
uses: awalsh128/[email protected]
with:
packages: clang-16 clang-tidy-16 cppcheck gcc-multilib
# Update this manually when changing the packages above, increment
# only minor version to keep APT caches separate.
version: 3.0
- name: Replace default clang binaries
if: contains(runner.name, 'Github Action')
run: |
# Codechecker by default uses clang and clang-tidy system binaries,
# but this are quite old (v11.0.0). We thus replace them with the
# newer ones. This is already done by the docker container, so this
# step only needs to be done on GitHub provided runners.
sudo rm /usr/bin/clang
sudo rm /usr/bin/clang-tidy
sudo ln -s /usr/bin/clang-16 /usr/bin/clang
sudo ln -s /usr/bin/clang-tidy-16 /usr/bin/clang-tidy
- name: Retrieve cache
if: contains(runner.name, 'Github Action')
uses: actions/cache@v4
env:
cache-name: cache-modules
with:
path: |
bootloader
modules
nrf
nrfxlib
test
tools
zephyr
~/.local/share/east/downloads/
~/.local/share/east/tooling/nrfutil
# Note above two lines, if we are caching entire ~/.local/share/east
# folder then cache action fails during download/extract step
key: ${{ runner.os }}-build-${{ env.cache-name }}-${{
hashFiles('project/west.yml') }}
restore-keys: ${{ runner.os }}-build-${{ env.cache-name }}-
- name: Set up Python
uses: actions/setup-python@v5
with:
python-version: "3.8"
cache: "pip"
cache-dependency-path: project/scripts/requirements.txt
- name: Install Python dependencies
run: pip install -r scripts/requirements.txt
- name: Install dependencies
run: make install-dep
- name: Setup project
run: make project-setup
- name: Login to the server
run: |
echo $CODECHECKER_CREDENTIALS > ~/.codechecker.passwords.json
CodeChecker cmd login --url "${EAST_CODECHECKER_SERVER_URL}"
- name: Pre-build
run: make pre-build
- name: Build
run: make codechecker-build
- name: Check
run: make codechecker-check
- name: Store
if: github.event_name == 'workflow_dispatch' || github.event_name ==
'push'
run: make codechecker-store
- name: Diff
if: github.event_name == 'pull_request'
run: make codechecker-diff
- name: Package diffs
if: ${{ always() && github.event_name == 'pull_request' }}
uses: actions/upload-artifact@v3
with:
name: codechecker-diffs
path: project/codechecker-diffs/*
- name: Post-build clean
# Only for self hosted runners
# Makes sure east init does not fail in the project setup
if: ${{ always() && !contains(runner.name, 'Github Action') }}
run: rm -rf ${{ github.workspace }}/.west