123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133 |
- pipeline {
- agent {
- dockerfile { filename 'Jenkinsfiles/ubuntu-16.04.dockerfile'
- label 'sgx_slave'
- args "-v /lib/modules:/lib/modules:ro -v /usr/src:/usr/src:ro -v /var/run/aesmd/aesm.socket:/var/run/aesmd/aesm.socket --device=/dev/gsgx:/dev/gsgx --device=/dev/isgx:/dev/isgx"
- }
- }
- stages {
- stage('Lint') {
- steps {
- sh '''
- ./.ci/run-shellcheck || :
- ./.ci/run-shellcheck -f json | ./.ci/prfilter
- '''
- }
- }
- stage('Build') {
- steps {
- sh '''
- ./Scripts/clean-check-prepare
- '''
- sh '''
- cd Pal/src/host/Linux-SGX/signer/ && openssl genrsa -3 -out enclave-key.pem 3072
- '''
- sh '''
- cd /opt/intel
- git clone https://github.com/01org/linux-sgx-driver.git
- cd linux-sgx-driver
- git checkout sgx_driver_1.9
- make
- '''
- sh '''
- cd Pal/src/host/Linux-SGX/sgx-driver
- ISGX_DRIVER_PATH=/opt/intel/linux-sgx-driver ISGX_DRIVER_VERSION=1.9 make
- '''
- sh '''
- make -j 8 SGX=1 WERROR=1
- make -j 8 SGX=1 WERROR=1 test
- '''
- sh '''
- make SGX=1 sgx-tokens
- '''
- }
- }
- stage('Test') {
- steps {
- timeout(time: 15, unit: 'MINUTES') {
- sh '''
- cd Pal/regression
- if [ "${ra_client_spid}" != "" ]; then \
- make clean SGX=1; \
- make SGX=1 RA_CLIENT_SPID=${ra_client_spid} \
- RA_CLIENT_KEY=${ra_client_key}; \
- else \
- make SGX=1; \
- fi
- make SGX=1 all sgx-tokens
- make SGX=1 KEEP_LOG=1 regression
- '''
- }
- timeout(time: 15, unit: 'MINUTES') {
- sh '''
- cd LibOS/shim/test/regression
- make SGX=1 all sgx-tokens
- make SGX=1 regression
- '''
- }
- timeout(time: 5, unit: 'MINUTES') {
- sh '''
- cd LibOS/shim/test/fs
- make SGX=1 all sgx-tokens
- make SGX=1 test
- '''
- }
- // LTP is ignored under SGX because of random segfaults
- sh '''
- cd LibOS/shim/test/apps/ltp
- make SGX=1 all sgx-tokens
- make SGX=1 ltp-sgx.xml || :
- '''
- sh '''
- # Workaround LTP bug (see https://github.com/linux-test-project/ltp/issues/560 for upstream fix):
- git -C LibOS/shim/test/apps/ltp/src checkout -- utils/ffsb-6.0-rc2/config.h.in utils/ffsb-6.0-rc2/configure
- ./Scripts/gitignore-test
- '''
- sh '''
- cd "$(./Scripts/clean-check-test-copy)"
- rm Pal/src/host/Linux-SGX/signer/enclave-key.pem
- make SGX=1 distclean
- make -C LibOS/shim/test/regression SGX=1 clean
- make -C LibOS/shim/test/apps/ltp clean
- # LTP's make clean is broken, see https://github.com/linux-test-project/ltp/issues/559
- rm -rf /tmp/graphene-sgx.clean-check.clean/LibOS/shim/test/apps/ltp/src
- rm -rf LibOS/shim/test/apps/ltp/src
- ./Scripts/clean-check
- '''
- }
- post {
- always {
- archiveArtifacts 'LibOS/shim/test/apps/ltp/ltp-sgx.xml'
- junit 'Pal/regression/pal-regression.xml'
- junit 'LibOS/shim/test/regression/libos-regression.xml'
- // LTP is ignored under SGX because of random segfaults
- //junit 'LibOS/shim/test/apps/ltp/ltp-sgx.xml'
- }
- }
- }
- stage('Deploy') {
- steps {
- sh 'echo Deploying code'
- }
- }
- }
- post {
- success {
- echo 'Deployment successful'
- }
- failure {
- echo 'Failure while on the pipeline'
- }
- unstable {
- echo 'Pipeline marked as "unstable"'
- }
- }
- }
|