forked from scrtlabs/SecretNetwork
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathazure-pipelines.yml
97 lines (83 loc) · 3.46 KB
/
azure-pipelines.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
trigger:
branches:
include:
- "*" # must quote since "*" is a YAML reserved character; we want a string
paths:
exclude:
- "*.md"
- "*.png"
- "docs/*"
- ".gitignore"
- "LICENSE"
pool:
name: "sgx scale set"
workspace:
clean: all # what to clean up before the job runs
variables:
baseImageRepository: 'azcr.io/enigmampc/ci-base-image'
nodeImageRepository: 'azcr.io/enigmampc/ci-node-image'
containerRegistry: 'enigmampcdocker'
dockerfilePath: '$(Build.SourcesDirectory)/deployment/dockerfiles/base.Dockerfile'
tag: '$(Build.BuildId)'
DOCKER_BUILDKIT: 1
steps:
- checkout: "self"
submodules: true
displayName: "Checkout Repository and Submodules"
- script: echo $(spid) > spid.txt; echo $(api-key-dev) > api_key.txt
displayName: "Save api keys"
- task: Docker@2
displayName: "Build base image"
inputs:
command: build
repository: '$(baseImageRepository)'
tags: |
$(tag)
latest
buildContext: .
arguments: --build-arg BUILDKIT_INLINE_CACHE=1 --secret id=API_KEY,src=api_key.txt --secret id=SPID,src=spid.txt --cache-from $(baseImageRepository) --build-arg SGX_MODE=HW
dockerfile: '$(dockerfilePath)'
- script: |
cp deployment/ci/bootstrap_init.sh deployment/docker/bootstrap/bootstrap_init.sh
cp deployment/ci/node_init.sh deployment/docker/node/node_init.sh
cp deployment/ci/startup.sh deployment/docker/startup.sh
cp deployment/ci/node_key.json deployment/docker/node_key.json
displayName: Overwrite node scripts
- task: Docker@2
displayName: "Build release image"
inputs:
command: build
repository: '$(nodeImageRepository)'
tags: latest
buildContext: .
arguments: --build-arg BUILDKIT_INLINE_CACHE=1 --build-arg SCRT_BIN_IMAGE=$(baseImageRepository):$(tag) --cache-from $(nodeImageRepository) --build-arg SGX_MODE=HW
Dockerfile: deployment/dockerfiles/release.Dockerfile
- task: Docker@2
displayName: "Build enclave tests"
inputs:
command: build
repository: rust-enclave-test
tags: latest
buildContext: .
arguments: --secret id=API_KEY,src=api_key.txt --secret id=SPID,src=spid.txt --build-arg SGX_MODE=HW
Dockerfile: deployment/dockerfiles/enclave-test.Dockerfile
- task: Docker@2
displayName: "Build tests image"
inputs:
command: build
repository: tests-base-image
tags: latest
buildContext: .
arguments: --build-arg SGX_MODE=HW
Dockerfile: deployment/dockerfiles/go-tests.Dockerfile
- script: export DOCKER_CLIENT_TIMEOUT=120 && export COMPOSE_HTTP_TIMEOUT=120 && docker-compose --compatibility -f deployment/ci/docker-compose.ci.yaml up --exit-code-from base aesm base
displayName: "Run system tests (go tests)"
- script: export DOCKER_CLIENT_TIMEOUT=120 && export COMPOSE_HTTP_TIMEOUT=120 && docker-compose --compatibility -f deployment/ci/docker-compose.ci.yaml up --exit-code-from bench aesm bench
displayName: "Run benchmarks"
- script: docker-compose -f deployment/ci/docker-compose.ci.yaml --compatibility up --exit-code-from node aesm bootstrap node
displayName: "Run integration tests"
- script: docker-compose -f deployment/ci/docker-compose.ci.yaml --compatibility up --exit-code-from enclave-test aesm enclave-test
displayName: "Run enclave tests"
- script: docker-compose -f deployment/ci/docker-compose.ci.yaml --compatibility down
condition: always()
displayName: "Shutdown"