From fb33657f9d8fe6921d66d1ec24852c1c5f5e5e17 Mon Sep 17 00:00:00 2001 From: Jakub Dyszkiewicz Date: Fri, 25 Oct 2024 13:12:47 +0200 Subject: [PATCH] test(e2e): disable amd64 self-hosted runners (#11862) IPV6 tests seems to be broken with our self-hosted runners. It's not clear what's the problem, it can take some time to resolve it. We'd rather have a slower CI with queues than CI which is broken. We can still keep arm64 tests on self-hosted runners because those do not run IPV6. Signed-off-by: Jakub Dyszkiewicz --- .github/workflows/build-test-distribute.yaml | 60 ++++++++++++++++++++ 1 file changed, 60 insertions(+) diff --git a/.github/workflows/build-test-distribute.yaml b/.github/workflows/build-test-distribute.yaml index 5b0b10b2b3cd..85a972a5b70b 100644 --- a/.github/workflows/build-test-distribute.yaml +++ b/.github/workflows/build-test-distribute.yaml @@ -74,7 +74,67 @@ jobs: - run: | make dev/tools - run: | +<<<<<<< HEAD make test +======= + make clean + - run: | + make check + - id: sca-project + uses: Kong/public-shared-actions/security-actions/sca@28d20a1f492927f35b00b317acd78f669c45f88b # v2.7.3 + with: + dir: . + config: .syft.yaml + upload-sbom-release-assets: true + - id: metadata + run: | + echo "images=$(make images/info/release/json)" >> $GITHUB_OUTPUT + echo "registry=$(make docker/info/registry)" >> $GITHUB_OUTPUT + echo "version=$(make build/info/version)" >> $GITHUB_OUTPUT + echo "distribution_repository=$(make build/info/cloudsmith_repository)" >> $GITHUB_OUTPUT + test: + permissions: + contents: read + needs: ["check"] + uses: ./.github/workflows/_test.yaml + with: + FULL_MATRIX: ${{ needs.check.outputs.FULL_MATRIX }} + RUNNERS_BY_ARCH: ${{ (github.event_name == 'push' || github.event_name == 'pull_request' && github.event.pull_request.head.repo.full_name == github.repository) && '{"amd64":"ubuntu-latest","arm64":"ubuntu-latest-arm64-kong"}' || '{"amd64":"ubuntu-latest","arm64":""}' }} + secrets: inherit + build_publish: + permissions: + contents: read + id-token: write + needs: ["check", "test"] + uses: ./.github/workflows/_build_publish.yaml + if: ${{ fromJSON(needs.check.outputs.BUILD) }} + with: + FULL_MATRIX: ${{ needs.check.outputs.FULL_MATRIX }} + ALLOW_PUSH: ${{ needs.check.outputs.ALLOW_PUSH }} + IMAGE_ARTIFACT_NAME: "image_artifacts" + BINARY_ARTIFACT_NAME: "binary_artifacts" + IMAGES: ${{ needs.check.outputs.IMAGES }} + REGISTRY: ${{ needs.check.outputs.REGISTRY }} + NOTARY_REPOSITORY: ${{ needs.check.outputs.NOTARY_REPOSITORY }} + VERSION_NAME: ${{ needs.check.outputs.VERSION_NAME }} + secrets: inherit + provenance: + needs: ["check", "build_publish"] + if: ${{ github.ref_type == 'tag' }} + uses: ./.github/workflows/_provenance.yaml + secrets: inherit + permissions: + contents: write + id-token: write # For using token to sign images + actions: read # For getting workflow run info to build provenance + packages: write # Required for publishing provenance. Issue: https://github.com/slsa-framework/slsa-github-generator/tree/main/internal/builders/container#known-issues + with: + BINARY_ARTIFACTS_HASH_AS_FILE: ${{ needs.build_publish.outputs.BINARY_ARTIFACT_DIGEST_BASE64 }} + IMAGES: ${{ needs.check.outputs.IMAGES }} + REGISTRY: ${{ needs.check.outputs.REGISTRY }} + NOTARY_REPOSITORY: ${{ needs.check.outputs.NOTARY_REPOSITORY }} + IMAGE_DIGESTS: ${{ needs.build_publish.outputs.IMAGE_DIGESTS }} +>>>>>>> 31abdd66a (test(e2e): disable amd64 self-hosted runners (#11862)) distributions: needs: ["check", "test", "test_e2e", "test_e2e_env"] if: ${{ always() }}