From: Denis Ovsienko Date: Mon, 5 Jul 2021 10:32:03 +0000 (+0100) Subject: CI: Simplify some Coverity Scan props. X-Git-Tag: tcpdump-4.99.2~254 X-Git-Url: https://git.tcpdump.org/tcpdump/commitdiff_plain/672938c81a8b674ab01c404670afac479bb89743 CI: Simplify some Coverity Scan props. Same as in libpcap. (cherry picked from commit 59ddbc3fd41600c293c05cd75b3bdc80ff8eb18f) --- diff --git a/.travis-coverity-scan-build.sh b/.ci-coverity-scan-build.sh similarity index 79% rename from .travis-coverity-scan-build.sh rename to .ci-coverity-scan-build.sh index 7ea1dac9..686806a3 100755 --- a/.travis-coverity-scan-build.sh +++ b/.ci-coverity-scan-build.sh @@ -6,7 +6,6 @@ set -e printf "\033[33;1mNote: COVERITY_SCAN_PROJECT_NAME and COVERITY_SCAN_TOKEN are available on Project Settings page on scan.coverity.com\033[0m\n" [ -z "$COVERITY_SCAN_PROJECT_NAME" ] && echo "ERROR: COVERITY_SCAN_PROJECT_NAME must be set" && exit 1 #[ -z "$COVERITY_SCAN_NOTIFICATION_EMAIL" ] && echo "ERROR: COVERITY_SCAN_NOTIFICATION_EMAIL must be set" && exit 1 -[ -z "$COVERITY_SCAN_BRANCH_PATTERN" ] && echo "ERROR: COVERITY_SCAN_BRANCH_PATTERN must be set" && exit 1 [ -z "$COVERITY_SCAN_BUILD_COMMAND" ] && echo "ERROR: COVERITY_SCAN_BUILD_COMMAND must be set" && exit 1 [ -z "$COVERITY_SCAN_TOKEN" ] && echo "ERROR: COVERITY_SCAN_TOKEN must be set" && exit 1 @@ -17,31 +16,6 @@ TOOL_BASE=/tmp/coverity-scan-analysis UPLOAD_URL="https://scan.coverity.com/builds" SCAN_URL="https://scan.coverity.com" -# Verify Coverity Scan run condition -COVERITY_SCAN_RUN_CONDITION=${coverity_scan_run_condition:-true} -printf "\033[33;1mTesting '%s' condition... " "$COVERITY_SCAN_RUN_CONDITION" -if eval [ "$COVERITY_SCAN_RUN_CONDITION" ]; then - printf "True.\033[0m\n" -else - printf "False. Exit.\033[0m\n" - exit 0 -fi - -# Do not run on pull requests -if [ "${TRAVIS_PULL_REQUEST}" = "true" ]; then - printf "\033[33;1mINFO: Skipping Coverity Analysis: branch is a pull request.\033[0m\n" - exit 0 -fi - -# Verify this branch should run -IS_COVERITY_SCAN_BRANCH=$(ruby -e "puts '${TRAVIS_BRANCH}' =~ /\\A$COVERITY_SCAN_BRANCH_PATTERN\\z/ ? 1 : 0") -if [ "$IS_COVERITY_SCAN_BRANCH" = "1" ]; then - printf "\033[33;1mCoverity Scan configured to run on branch %s\033[0m\n" "$TRAVIS_BRANCH" -else - printf "\033[33;1mCoverity Scan NOT configured to run on branch %s\033[0m\n" "$TRAVIS_BRANCH" - exit 1 -fi - # Verify upload is permitted AUTH_RES=$(curl -s --form project="$COVERITY_SCAN_PROJECT_NAME" --form token="$COVERITY_SCAN_TOKEN" $SCAN_URL/api/upload_permitted) if [ "$AUTH_RES" = "Access denied" ]; then @@ -82,6 +56,7 @@ RESULTS_DIR="cov-int" eval "${COVERITY_SCAN_BUILD_COMMAND_PREPEND}" # Do not quote COV_BUILD_OPTIONS so it collapses when it is empty and expands # when it is not. +# shellcheck disable=SC2086 COVERITY_UNSUPPORTED=1 cov-build --dir "$RESULTS_DIR" $COV_BUILD_OPTIONS "$COVERITY_SCAN_BUILD_COMMAND" cov-import-scm --dir $RESULTS_DIR --scm git --log $RESULTS_DIR/scm_log.txt 2>&1 diff --git a/.cirrus.yml b/.cirrus.yml index 657f947e..c5072fb5 100644 --- a/.cirrus.yml +++ b/.cirrus.yml @@ -83,13 +83,10 @@ coverity_task: COVERITY_SCAN_TOKEN: ENCRYPTED[1b6f994cabfe74267ce2dce81fd9e49f694e9cfe69fb99f7d1580907bec1266efd7b38df3a47ccab53d5af98636f8e9c] COVERITY_SCAN_BUILD_COMMAND_PREPEND: ./configure COVERITY_SCAN_BUILD_COMMAND: make - COVERITY_SCAN_BRANCH_PATTERN: $CIRRUS_BRANCH - TRAVIS_BRANCH: $CIRRUS_BRANCH - TRAVIS_PULL_REQUEST: ${CIRRUS_BASE_BRANCH:+true} script: - apt-get -qy update - apt-get -qy install autoconf make gcc - apt-get -qy install libssl-dev libsmi2-dev libcap-ng-dev libpcap-dev - apt-get -qy install git curl wget ruby rubygems ruby-json # for the coverity script - apt list --installed 'lib*-dev' - - ./.travis-coverity-scan-build.sh + - ./.ci-coverity-scan-build.sh