Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

visual presentation of builds #7

Closed
vcunat opened this issue Nov 25, 2017 · 10 comments
Closed

visual presentation of builds #7

vcunat opened this issue Nov 25, 2017 · 10 comments

Comments

@vcunat
Copy link
Member

vcunat commented Nov 25, 2017

It would probably be nicer to have build status of explicit runs in the CI box as well (like the eval checks), especially as more platforms are planned.

@Mic92
Copy link
Member

Mic92 commented Dec 1, 2017

Also the full log would be interesting in case of a failure.

@grahamc
Copy link
Member

grahamc commented Dec 5, 2017

I'm a bit anxious about this, given that they're running on random computers. I'm somewhat worried about giving up too much information, as it could be used maliciously. Thoughts?

@vcunat
Copy link
Member Author

vcunat commented Dec 9, 2017

People shouldn't run these without nix sandboxing. Otherwise I can't see any risks directly, but I haven't given it too much thought so far.

@grahamc
Copy link
Member

grahamc commented Dec 9, 2017 via email

@Mic92
Copy link
Member

Mic92 commented Dec 9, 2017

From a security perspective, how does a shorter log help from preventing confidential information?

@LnL7
Copy link
Member

LnL7 commented Dec 9, 2017

Actually sandboxing works fine with 1.12 locally now.

@grahamc
Copy link
Member

grahamc commented Dec 26, 2017

Going back to the original key point of this issue:

It would probably be nicer to have build status of explicit runs in the CI box as well (like the eval checks), especially as more platforms are planned.

I don't want to do this, because the green check should be sacred and a "sure thing" for any valid PR. Any potential for unnecessarily causing it to go to a red X should be avoided. This is to make the green check be a strong promise that the code is good, and a red X a guarantee that something is wrong.

Right now, we can't make that promise / guarantee due to periodic issues with aarch64 support or darwin sandboxing. Failed build results still require examination to determine if they're valid issues or not.

@grahamc
Copy link
Member

grahamc commented Jan 6, 2018

BTW I have Mac sandboxing instructions at https://github.com/grahamc/ofborg/wiki/Operating-a-Builder#macs-and-sandboxing now

@grahamc
Copy link
Member

grahamc commented Jan 27, 2018

Many of the builders are now streaming full logs back to the server. This is configurable per builder, so some builds will still not provide full logs (https://github.com/NixOS/ofborg/blob/released/ofborg/src/config.rs#L27, https://github.com/NixOS/ofborg/blob/released/ofborg/src/tasks/build.rs#L275)

  1. It is possible to see a build's logs while they happen by viewing: https://nix.samueldr.com/temp/?key=nixos/nixpkgs.12345 where 12345 is the PR number.
  2. This live-viewer will load scroll-back from the log server, for example: https://logs.nix.gsc.io/logs/nixos/nixpkgs.34107/7db796d3-4da3-4ac5-bc31-55655a2a6ecb but only if you load the log viewer while the build runs.
  3. The log server exposes an "API" for enumerating attempt logs: https://logs.nix.gsc.io/logs/nixos/nixpkgs.34107 and soon the log viewer will also be using this API (Ask the log server for a list of attempts per routing key ofborg-viewer#2) so you can reload the log viewer page long after the build has finished and see the logs.

Once part 3 is done, I'll automatically provide links to the build output on a PR when the bot is called.

I have to say, a huge thank you to @samueldr for implementing this log viewer for me -- you have been a tremendous help.

@grahamc
Copy link
Member

grahamc commented Jan 27, 2018

Full logs are now available.

@grahamc grahamc closed this as completed Jan 27, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

4 participants