Home Explore Help
Sign In
miti
/
graphene
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: efbf2706dd
Branches Tags
graphene
/
Jenkinsfiles
/
Linux-SGX

Linux-SGX 9.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201 
  1. pipeline {
    2. 

  2.         agent {
    3. 

  3.             dockerfile { filename 'Jenkinsfiles/ubuntu-16.04.dockerfile'
    4. 

  4.                          label 'sgx_slave'
    5. 

  5.                          args "-v /lib/modules:/lib/modules:ro -v /usr/src:/usr/src:ro -v /var/run/aesmd/aesm.socket:/var/run/aesmd/aesm.socket --device=/dev/gsgx:/dev/gsgx --device=/dev/isgx:/dev/isgx"
    6. 

  6.                        }
    7. 

  7.         }
    8. 

  8.         stages {
    9. 

  9.                 stage('Lint') {
    10. 

  10.                     steps {
    11. 

  11.                         sh '''
    12. 

  12.                             ./.ci/run-shellcheck || :
    13. 

  13.                             ./.ci/run-shellcheck -f json | ./.ci/prfilter
    14. 

  14.                         '''
    15. 

  15.                     }
    16. 

  16.                 }
    17. 

  17.                 stage('Build') {
    18. 

  18.                     steps {
    19. 

  19.                         sh '''
    20. 

  20.                            ./Scripts/clean-check-prepare
    21. 

  21.                         '''
    22. 

  22.                         sh '''
    23. 

  23.                             cd Pal/src/host/Linux-SGX/signer/ && openssl genrsa -3 -out enclave-key.pem 3072
    24. 

  24.                         '''
    25. 

  25.                         sh '''
    26. 

  26.                            cd /opt/intel
    27. 

  27.                            git clone https://github.com/01org/linux-sgx-driver.git
    28. 

  28.                            cd linux-sgx-driver
    29. 

  29.                            git checkout sgx_driver_1.9
    30. 

  30.                            make
    31. 

  31.                         '''
    32. 

  32.                         sh '''
    33. 

  33.                             cd Pal/src/host/Linux-SGX/sgx-driver
    34. 

  34.                             ISGX_DRIVER_PATH=/opt/intel/linux-sgx-driver ISGX_DRIVER_VERSION=1.9 make
    35. 

  35.                         '''
    36. 

  36.                         sh '''
    37. 

  37.                             make -j 8 SGX=1 WERROR=1
    38. 

  38.                             make -j 8 SGX=1 WERROR=1 test
    39. 

  39.                         '''
    40. 

  40.                         sh '''
    41. 

  41.                             make SGX=1 sgx-tokens
    42. 

  42.                         '''
    43. 

  43.                     }
    44. 

  44.                 }
    45. 

  45.                 stage('Test') {
    46. 

  46.                     steps {
    47. 

  47.                         timeout(time: 15, unit: 'MINUTES') {
    48. 

  48.                             sh '''
    49. 

  49.                                 cd Pal/regression
    50. 

  50.                                 if [ "${ra_client_spid}" != "" ]; then \
    51. 

  51.                                     make clean SGX=1; \
    52. 

  52.                                     make SGX=1 RA_CLIENT_SPID=${ra_client_spid} \
    53. 

  53.                                         RA_CLIENT_KEY=${ra_client_key}; \
    54. 

  54.                                 else \
    55. 

  55.                                     make SGX=1; \
    56. 

  56.                                 fi
    57. 

  57.                                 make SGX=1 all sgx-tokens
    58. 

  58.                                 make SGX=1 KEEP_LOG=1 regression
    59. 

  59.                                 '''
    60. 

  60.                         }
    61. 

  61.                         timeout(time: 15, unit: 'MINUTES') {
    62. 

  62.                             sh '''
    63. 

  63.                                 cd LibOS/shim/test/regression
    64. 

  64.                                 make SGX=1 all sgx-tokens
    65. 

  65.                                 make SGX=1 regression
    66. 

  66.                             '''
    67. 

  67.                         }
    68. 

  68.                         timeout(time: 5, unit: 'MINUTES') {
    69. 

  69.                             sh '''
    70. 

  70.                                 cd LibOS/shim/test/fs
    71. 

  71.                                 make SGX=1 all sgx-tokens
    72. 

  72.                                 make SGX=1 test
    73. 

  73.                             '''
    74. 

  74.                         }
    75. 

  75. 

  76.                         // LTP is ignored under SGX because of random segfaults
    77. 

  77.                         sh '''
    78. 

  78.                             cd LibOS/shim/test/apps/ltp
    79. 

  79.                             make SGX=1 all sgx-tokens
    80. 

  80.                             make SGX=1 ltp-sgx.xml || :
    81. 

  81.                             '''
    82. 

  82. 

  83.                         timeout(time: 5, unit: 'MINUTES') {
    84. 

  84.                             sh '''
    85. 

  85.                                 cd LibOS/shim/test/apps/python-simple
    86. 

  86.                                 make SGX=1
    87. 

  87.                                 make SGX=1 check
    88. 

  88.                             '''
    89. 

  89.                         }
    90. 

  90.                         timeout(time: 5, unit: 'MINUTES') {
    91. 

  91.                             sh '''
    92. 

  92.                                 cd LibOS/shim/test/apps/python-scipy-insecure
    93. 

  93.                                 make SGX=1
    94. 

  94.                                 make SGX=1 check
    95. 

  95.                             '''
    96. 

  96.                         }
    97. 

  97.                         timeout(time: 5, unit: 'MINUTES') {
    98. 

  98.                             sh '''
    99. 

  99.                                 cd LibOS/shim/test/apps/bash
    100. 

  100.                                 make SGX=1 all
    101. 

  101.                                 make SGX=1 regression
    102. 

  102.                            '''
    103. 

  103.                         }
    104. 

  104.                         timeout(time: 5, unit: 'MINUTES') {
    105. 

  105.                             sh '''
    106. 

  106.                                 cd LibOS/shim/test/apps/curl
    107. 

  107.                                 make SGX=1 all
    108. 

  108.                                 make SGX=1 check
    109. 

  109.                            '''
    110. 

  110.                         }
    111. 

  111.                         timeout(time: 10, unit: 'MINUTES') {
    112. 

  112.                             sh '''
    113. 

  113.                                 cd LibOS/shim/test/apps/gcc
    114. 

  114.                                 make SGX=1 all
    115. 

  115.                                 make SGX=1 check
    116. 

  116.                            '''
    117. 

  117.                         }
    118. 

  118.                         timeout(time: 15, unit: 'MINUTES') {
    119. 

  119.                             sh '''
    120. 

  120.                                 cd LibOS/shim/test/apps/lmbench
    121. 

  121.                                 make SGX=1 all
    122. 

  122.                                 make SGX=1 test N_RUNS=1 ENOUGH=100
    123. 

  123.                             '''
    124. 

  124.                         }
    125. 

  125.                         sh '''
    126. 

  126.                             cd LibOS/shim/test/apps/lighttpd
    127. 

  127.                             make SGX=1
    128. 

  128.                             make SGX=1 start-graphene-server &
    129. 

  129.                             sleep 10
    130. 

  130.                             LOOP=1 CONCURRENCY_LIST="1 32" ./benchmark-http.sh 127.0.0.1:8003
    131. 

  131.                             '''
    132. 

  132.                         sh '''
    133. 

  133.                             cd LibOS/shim/test/apps/nginx
    134. 

  134.                             make SGX=1
    135. 

  135.                             make SGX=1 start-graphene-server &
    136. 

  136.                             sleep 30
    137. 

  137.                             LOOP=1 CONCURRENCY_LIST="1 32" ./benchmark-http.sh 127.0.0.1:8002
    138. 

  138.                             '''
    139. 

  139.                         sh '''
    140. 

  140.                             cd LibOS/shim/test/apps/apache
    141. 

  141.                             make SGX=1
    142. 

  142.                             make SGX=1 start-graphene-server &
    143. 

  143.                             sleep 30
    144. 

  144.                             LOOP=1 CONCURRENCY_LIST="1 32" ./benchmark-http.sh 127.0.0.1:8001
    145. 

  145.                             '''
    146. 

  146.                         sh '''
    147. 

  147.                            cd "$(./Scripts/clean-check-test-copy)"
    148. 

  148. 

  149.                            rm Pal/src/host/Linux-SGX/signer/enclave-key.pem
    150. 

  150.                            make -C Pal/src/host/Linux-SGX/sgx-driver distclean
    151. 

  151.                            make SGX=1 clean
    152. 

  152.                            rm LibOS/glibc-*.tar.gz
    153. 

  153.                            make -C LibOS/shim/test/regression SGX=1 clean
    154. 

  154.                            make -C LibOS/shim/test/apps/ltp clean
    155. 

  155.                            # LTP's make clean is broken, see https://github.com/linux-test-project/ltp/issues/559
    156. 

  156.                            rm -rf /tmp/graphene-sgx.clean-check.clean/LibOS/shim/test/apps/ltp/src
    157. 

  157.                            rm -rf LibOS/shim/test/apps/ltp/src
    158. 

  158. 

  159.                            make -C LibOS/shim/test/apps/python-simple SGX=1 clean
    160. 

  160.                            make -C LibOS/shim/test/apps/python-scipy-insecure SGX=1 clean
    161. 

  161.                            make -C LibOS/shim/test/apps/bash SGX=1 clean
    162. 

  162.                            make -C LibOS/shim/test/apps/curl SGX=1 clean
    163. 

  163.                            make -C LibOS/shim/test/apps/gcc SGX=1 clean
    164. 

  164.                            make -C LibOS/shim/test/apps/lmbench SGX=1 distclean
    165. 

  165.                            make -C LibOS/shim/test/apps/lighttpd SGX=1 distclean
    166. 

  166.                            make -C LibOS/shim/test/apps/nginx SGX=1 distclean
    167. 

  167.                            make -C LibOS/shim/test/apps/apache SGX=1 distclean
    168. 

  168. 

  169.                            ./Scripts/clean-check
    170. 

  170.                         '''
    171. 

  171.                     }
    172. 

  172.                     post {
    173. 

  173.                         always {
    174. 

  174.                             archiveArtifacts 'LibOS/shim/test/apps/ltp/ltp-sgx.xml'
    175. 

  175. 

  176.                             junit 'Pal/regression/pal-regression.xml'
    177. 

  177.                             junit 'LibOS/shim/test/regression/libos-regression.xml'
    178. 

  178. 

  179.                             // LTP is ignored under SGX because of random segfaults
    180. 

  180.                             //junit 'LibOS/shim/test/apps/ltp/ltp-sgx.xml'
    181. 

  181.                         }
    182. 

  182.                     }
    183. 

  183.                 }
    184. 

  184.                 stage('Deploy') {
    185. 

  185.                     steps {
    186. 

  186.                         sh 'echo Deploying code'
    187. 

  187.                     }
    188. 

  188.                 }
    189. 

  189.         }
    190. 

  190.         post {
    191. 

  191.                 success {
    192. 

  192.                         echo 'Deployment successful'
    193. 

  193.                 }
    194. 

  194.                 failure {
    195. 

  195.                         echo 'Failure while on the pipeline'
    196. 

  196.                 }
    197. 

  197.                 unstable {
    198. 

  198.                         echo 'Pipeline marked as "unstable"'
    199. 

  199.                 }
    200. 

  200.         }
    201. 

  201. }
    202.