mirror of
https://github.com/irungentoo/toxcore.git
synced 2024-03-22 13:30:51 +08:00
chore: Add sonar-scan analysis on pushes.
We can't run this on pull requests because it needs access to the `SONAR_TOKEN` secret. Perhaps in the future we can make it a `pull_request_target` workflow, but then we can't use cmake to initialise the environment, meaning we need to specify the inputs manually.
This commit is contained in:
parent
d23222c92f
commit
c81038c963
2
.github/scripts/cmake-freebsd-stage2
vendored
2
.github/scripts/cmake-freebsd-stage2
vendored
|
@ -26,8 +26,6 @@ scp -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -P "$SSH_PORT" -
|
||||||
RUN ls -lh
|
RUN ls -lh
|
||||||
|
|
||||||
cd /c-toxcore
|
cd /c-toxcore
|
||||||
CACHEDIR=/opt/cache
|
|
||||||
mkdir "$CACHEDIR"
|
|
||||||
. ".github/scripts/flags-clang.sh"
|
. ".github/scripts/flags-clang.sh"
|
||||||
|
|
||||||
add_ld_flag -Wl,-z,defs
|
add_ld_flag -Wl,-z,defs
|
||||||
|
|
1
.github/scripts/cmake-linux
vendored
1
.github/scripts/cmake-linux
vendored
|
@ -2,7 +2,6 @@
|
||||||
|
|
||||||
set -eu
|
set -eu
|
||||||
|
|
||||||
CACHEDIR="$HOME/cache"
|
|
||||||
NPROC=$(nproc)
|
NPROC=$(nproc)
|
||||||
|
|
||||||
sudo apt-get install -y --no-install-recommends libopus-dev libsodium-dev libvpx-dev ninja-build
|
sudo apt-get install -y --no-install-recommends libopus-dev libsodium-dev libvpx-dev ninja-build
|
||||||
|
|
1
.github/scripts/cmake-osx
vendored
1
.github/scripts/cmake-osx
vendored
|
@ -2,7 +2,6 @@
|
||||||
|
|
||||||
set -eu
|
set -eu
|
||||||
|
|
||||||
CACHEDIR="$HOME/cache"
|
|
||||||
NPROC=$(sysctl -n hw.physicalcpu)
|
NPROC=$(sysctl -n hw.physicalcpu)
|
||||||
|
|
||||||
# Workaround for bug in Homebrew where it only finds an old Ruby version.
|
# Workaround for bug in Homebrew where it only finds an old Ruby version.
|
||||||
|
|
1
.github/scripts/cmake-windows.sh
vendored
1
.github/scripts/cmake-windows.sh
vendored
|
@ -4,7 +4,6 @@ ACTION="$1"
|
||||||
|
|
||||||
set -eu
|
set -eu
|
||||||
|
|
||||||
CACHEDIR="$HOME/cache"
|
|
||||||
NPROC=$(nproc)
|
NPROC=$(nproc)
|
||||||
|
|
||||||
ci_install() {
|
ci_install() {
|
||||||
|
|
3
.github/scripts/flags.sh
vendored
3
.github/scripts/flags.sh
vendored
|
@ -9,9 +9,6 @@ add_flag() {
|
||||||
add_cxx_flag "$@"
|
add_cxx_flag "$@"
|
||||||
}
|
}
|
||||||
|
|
||||||
export LD_LIBRARY_PATH="$CACHEDIR/lib"
|
|
||||||
export PKG_CONFIG_PATH="$CACHEDIR/lib/pkgconfig"
|
|
||||||
|
|
||||||
# Our own flags which we can insert in the correct place. We don't use CFLAGS
|
# Our own flags which we can insert in the correct place. We don't use CFLAGS
|
||||||
# and friends here (we unset them below), because they influence config tests
|
# and friends here (we unset them below), because they influence config tests
|
||||||
# such as ./configure and cmake tests. Our warning flags break those tests, so
|
# such as ./configure and cmake tests. Our warning flags break those tests, so
|
||||||
|
|
7
.github/scripts/sonar-build
vendored
Executable file
7
.github/scripts/sonar-build
vendored
Executable file
|
@ -0,0 +1,7 @@
|
||||||
|
#!/bin/bash
|
||||||
|
|
||||||
|
set -eu
|
||||||
|
|
||||||
|
. ".github/scripts/flags-gcc.sh"
|
||||||
|
|
||||||
|
cmake --build _build --parallel "$(nproc)" --target install -- -k 0
|
27
.github/scripts/sonar-prepare
vendored
Executable file
27
.github/scripts/sonar-prepare
vendored
Executable file
|
@ -0,0 +1,27 @@
|
||||||
|
#!/bin/bash
|
||||||
|
|
||||||
|
set -eu
|
||||||
|
|
||||||
|
sudo apt-get install -y --no-install-recommends libconfig-dev libopus-dev libsodium-dev libvpx-dev ninja-build
|
||||||
|
|
||||||
|
. ".github/scripts/flags-gcc.sh"
|
||||||
|
|
||||||
|
add_ld_flag -Wl,-z,defs
|
||||||
|
|
||||||
|
# Make compilation error on a warning
|
||||||
|
add_flag -Werror
|
||||||
|
|
||||||
|
cmake -B_build -H. -GNinja \
|
||||||
|
-DCMAKE_C_FLAGS="$C_FLAGS" \
|
||||||
|
-DCMAKE_CXX_FLAGS="$CXX_FLAGS" \
|
||||||
|
-DCMAKE_EXE_LINKER_FLAGS="$LD_FLAGS" \
|
||||||
|
-DCMAKE_SHARED_LINKER_FLAGS="$LD_FLAGS" \
|
||||||
|
-DCMAKE_INSTALL_PREFIX:PATH="$PWD/_install" \
|
||||||
|
-DMIN_LOGGER_LEVEL=TRACE \
|
||||||
|
-DMUST_BUILD_TOXAV=ON \
|
||||||
|
-DNON_HERMETIC_TESTS=OFF \
|
||||||
|
-DSTRICT_ABI=ON \
|
||||||
|
-DTEST_TIMEOUT_SECONDS=120 \
|
||||||
|
-DUSE_IPV6=OFF \
|
||||||
|
-DAUTOTEST=ON \
|
||||||
|
-DENABLE_SHARED=OFF
|
6
.github/workflows/docker.yml
vendored
6
.github/workflows/docker.yml
vendored
|
@ -13,7 +13,7 @@ jobs:
|
||||||
- name: Set up Docker Buildx
|
- name: Set up Docker Buildx
|
||||||
uses: docker/setup-buildx-action@v1
|
uses: docker/setup-buildx-action@v1
|
||||||
- name: Login to DockerHub
|
- name: Login to DockerHub
|
||||||
if: ${{ github.event_name == 'push' }}
|
if: github.event_name == 'push'
|
||||||
uses: docker/login-action@v1
|
uses: docker/login-action@v1
|
||||||
with:
|
with:
|
||||||
username: ${{ secrets.DOCKERHUB_USERNAME }}
|
username: ${{ secrets.DOCKERHUB_USERNAME }}
|
||||||
|
@ -22,8 +22,8 @@ jobs:
|
||||||
- name: Docker Build
|
- name: Docker Build
|
||||||
run: .github/scripts/tox-bootstrapd-docker local
|
run: .github/scripts/tox-bootstrapd-docker local
|
||||||
- name: Push latest image to DockerHub
|
- name: Push latest image to DockerHub
|
||||||
if: ${{ github.event_name == 'push' }}
|
if: github.event_name == 'push'
|
||||||
run: docker push toxchat/bootstrap-node:latest
|
run: docker push toxchat/bootstrap-node:latest
|
||||||
- name: Push versioned image to DockerHub
|
- name: Push versioned image to DockerHub
|
||||||
if: ${{ github.event_name == 'push' && contains(github.ref, 'refs/tags/') }}
|
if: github.event_name == 'push' && contains(github.ref, 'refs/tags/')
|
||||||
run: docker push toxchat/bootstrap-node:"$(other/print-version)"
|
run: docker push toxchat/bootstrap-node:"$(other/print-version)"
|
||||||
|
|
52
.github/workflows/sonar-scan.yml
vendored
Normal file
52
.github/workflows/sonar-scan.yml
vendored
Normal file
|
@ -0,0 +1,52 @@
|
||||||
|
name: sonar-scan
|
||||||
|
|
||||||
|
on:
|
||||||
|
push:
|
||||||
|
branches: [master]
|
||||||
|
pull_request:
|
||||||
|
branches: [master]
|
||||||
|
|
||||||
|
jobs:
|
||||||
|
sonar-scan:
|
||||||
|
name: Build
|
||||||
|
runs-on: ubuntu-latest
|
||||||
|
env:
|
||||||
|
SONAR_SCANNER_VERSION: 4.4.0.2170
|
||||||
|
SONAR_SERVER_URL: "https://sonarcloud.io"
|
||||||
|
BUILD_WRAPPER_OUT_DIR: build_wrapper_output_directory # Directory where build-wrapper output will be placed
|
||||||
|
steps:
|
||||||
|
- uses: actions/checkout@v2
|
||||||
|
with:
|
||||||
|
fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis
|
||||||
|
- name: Set up JDK 11
|
||||||
|
uses: actions/setup-java@v1
|
||||||
|
with:
|
||||||
|
java-version: 11
|
||||||
|
- name: Download and set up sonar-scanner
|
||||||
|
env:
|
||||||
|
SONAR_SCANNER_DOWNLOAD_URL: https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-${{ env.SONAR_SCANNER_VERSION }}-linux.zip
|
||||||
|
run: |
|
||||||
|
mkdir -p $HOME/.sonar
|
||||||
|
curl -sSLo $HOME/.sonar/sonar-scanner.zip ${{ env.SONAR_SCANNER_DOWNLOAD_URL }}
|
||||||
|
unzip -o $HOME/.sonar/sonar-scanner.zip -d $HOME/.sonar/
|
||||||
|
echo "$HOME/.sonar/sonar-scanner-${{ env.SONAR_SCANNER_VERSION }}-linux/bin" >> $GITHUB_PATH
|
||||||
|
- name: Download and set up build-wrapper
|
||||||
|
env:
|
||||||
|
BUILD_WRAPPER_DOWNLOAD_URL: ${{ env.SONAR_SERVER_URL }}/static/cpp/build-wrapper-linux-x86.zip
|
||||||
|
run: |
|
||||||
|
curl -sSLo $HOME/.sonar/build-wrapper-linux-x86.zip ${{ env.BUILD_WRAPPER_DOWNLOAD_URL }}
|
||||||
|
unzip -o $HOME/.sonar/build-wrapper-linux-x86.zip -d $HOME/.sonar/
|
||||||
|
echo "$HOME/.sonar/build-wrapper-linux-x86" >> $GITHUB_PATH
|
||||||
|
- name: Install dependencies and prepare build
|
||||||
|
run: |
|
||||||
|
.github/scripts/sonar-prepare
|
||||||
|
- name: Run build-wrapper
|
||||||
|
run: |
|
||||||
|
build-wrapper-linux-x86-64 --out-dir ${{ env.BUILD_WRAPPER_OUT_DIR }} .github/scripts/sonar-build
|
||||||
|
- name: Run sonar-scanner
|
||||||
|
if: github.event_name == 'push'
|
||||||
|
env:
|
||||||
|
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
||||||
|
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
|
||||||
|
run: |
|
||||||
|
sonar-scanner --define sonar.host.url="${{ env.SONAR_SERVER_URL }}" --define sonar.cfamily.build-wrapper-output="${{ env.BUILD_WRAPPER_OUT_DIR }}"
|
12
sonar-project.properties
Normal file
12
sonar-project.properties
Normal file
|
@ -0,0 +1,12 @@
|
||||||
|
sonar.projectKey=toxcore
|
||||||
|
sonar.organization=toktok
|
||||||
|
|
||||||
|
# This is the name and version displayed in the SonarCloud UI.
|
||||||
|
sonar.projectName=c-toxcore
|
||||||
|
sonar.projectVersion=0.2.12
|
||||||
|
|
||||||
|
# Path is relative to the sonar-project.properties file.
|
||||||
|
sonar.sources=.
|
||||||
|
|
||||||
|
# Encoding of the source code.
|
||||||
|
sonar.sourceEncoding=UTF-8
|
Loading…
Reference in New Issue
Block a user