[tracker-miners/wip/carlosg/ci-coverity] ci: Integrate coverity builds

From: Carlos Garnacho <carlosg src gnome org>
To: commits-list gnome org
Cc:
Subject: [tracker-miners/wip/carlosg/ci-coverity] ci: Integrate coverity builds
Date: Sat, 29 Feb 2020 10:48:58 +0000 (UTC)

commit e093f7740034c69a2ca6dfa782d1345136efb422
Author: Carlos Garnacho <carlosg gnome org>
Date:   Sat Feb 29 11:43:50 2020 +0100

    ci: Integrate coverity builds
    
    This goes to (atm) its own "analysis" stage, and builds the package
    with the coverity tool, so the results are uploaded to the coverity
    site for analysis. This only happens for the master branch as there
    is a limit on weekly builds, so can't be free for every change.
    
    The script relies on the COVERITY_TOKEN envvar being set, which should
    be done through project settings so it stays private.

 .gitlab-ci.yml | 20 +++++++++++++++++++-
 1 file changed, 19 insertions(+), 1 deletion(-)
---
diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index f6db4055e..bdab0088f 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -12,7 +12,7 @@ variables:
 
 stages:
   - test
-
+  - analysis
 
 .test_template: &test
   stage: test
@@ -65,3 +65,21 @@ test-fedora-latest:
 test-ubuntu-rolling:
   image: registry.gitlab.gnome.org/gnome/tracker-oci-images/amd64/ubuntu:rolling
   <<: *test
+
+coverity:
+  stage: analysis
+  image: registry.gitlab.gnome.org/gnome/tracker-oci-images/amd64/fedora:latest
+  allow_failure: true
+  script:
+    - dnf install -y clang
+    - su tracker -c 'curl https://scan.coverity.com/download/linux64 --data 
"token=$COVERITY_TOKEN&project=tracker-miners" --output /tmp/coverity_tool.tgz'
+    - su tracker -c 'tar zxf /tmp/coverity_tool.tgz'
+    - su tracker -c 'mkdir coverity-build'
+    - su tracker -c 'export CC=clang; cd coverity-build; meson ..'
+    - su tracker -c 'cd coverity-build; ../cov-analysis-linux64-*/bin/cov-build --dir cov-int ninja'
+    - su tracker -c 'cd coverity-build; tar czf cov-int.tar.gz cov-int'
+    - su tracker -c 'curl https://scan.coverity.com/builds?project=tracker-miners
+      --form token=$COVERITY_TOKEN --form email=carlosg gnome org
+      --form file=@coverity-build/cov-int.tar.gz --form version="`git describe --tags`"
+      --form description="gitlab CI build"'
+

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]