Adikteev
diff --git a/‎.gitignore
Lines changed: 0 additions & 1 deletion b/‎.gitignore
Lines changed: 0 additions & 1 deletion
diff --git a/‎Makefile
Lines changed: 4 additions & 1 deletion b/‎Makefile
Lines changed: 4 additions & 1 deletion
diff --git a/‎bin/dcos-commons-tools/airgap_linter.py
Lines changed: 132 additions & 0 deletions b/‎bin/dcos-commons-tools/airgap_linter.py
Lines changed: 132 additions & 0 deletions
diff --git a/‎bin/dcos-commons-tools/branch_changes.py
Lines changed: 56 additions & 0 deletions b/‎bin/dcos-commons-tools/branch_changes.py
Lines changed: 56 additions & 0 deletions
diff --git a/‎bin/dcos-commons-tools/build_cli.sh
Lines changed: 22 additions & 0 deletions b/‎bin/dcos-commons-tools/build_cli.sh
Lines changed: 22 additions & 0 deletions
diff --git a/‎bin/dcos-commons-tools/build_framework.sh
Lines changed: 147 additions & 0 deletions b/‎bin/dcos-commons-tools/build_framework.sh
Lines changed: 147 additions & 0 deletions
@@ -1,7 +1,6 @@
 .idea/
 .cache/
 build/
-dcos-commons-tools/
 tests/env
 tests/venv
 tests/.cache
 
@@ -4,7 +4,10 @@ dist:
 docker: dist
 	bin/docker.sh
 
+universe:
+	bin/universe.sh
+
 test:
 	bin/test.sh
 
-.PHONY: dist docker test
+.PHONY: dist docker test universe
@@ -0,0 +1,132 @@
+#!/usr/bin/env python3
+#
+# Validates that the supplied framework (identified by the directory passed in) will function, to the best
+# of our knowledge, in an airgapped cluster.
+#
+# The checks are:
+#   - No external URIs defined in anything but resource.json
+#   - No images defined in anything but resource.json (and templated into the svc.yml)
+#
+
+import re
+import sys
+import os
+
+
+def extract_uris(file_name):
+    with open(file_name, "r") as file:
+        lines = file.readlines()
+
+    matcher = re.compile(".*https?:\/\/([^\/\?]*)", re.IGNORECASE)
+    matches = []
+    for line in lines:
+        # Do not grab comments
+        if line.startswith("*") or line.startswith("#") or line.startswith("//"):
+            continue
+        # Do not grab "id" lines
+        if "\"id\":" in line:
+            continue
+
+        match = matcher.match(line)
+        if match:
+            matches.append(match.group(1))
+
+    return matches
+
+
+def validate_uris_in(file_name):
+    uris = extract_uris(file_name)
+
+    bad_uri = False
+    for uri in uris:
+        # A FQDN is a valid internal FQDN if it contains .dcos or ends with .mesos.
+        if not (".dcos" in uri or uri.endswith(".mesos")):
+            print("Found a bad URI:", uri, "in:", file_name)
+            bad_uri = True
+
+    return not bad_uri
+
+
+def get_files_to_check_for_uris(framework_directory):
+    # There's a set of files that will always be present.
+    files = [os.path.join(framework_directory, "universe", "config.json"),
+             os.path.join(framework_directory, "universe", "marathon.json.mustache")]
+
+    # Always check every file in the `dist` directory of the scheduler.
+    dist_dir = os.path.join(framework_directory, "src", "main", "dist")
+
+    for dp, dn, filenames in os.walk(dist_dir):
+        for file in filenames:
+            files.append(os.path.join(dp, file))
+
+    return files
+
+
+def validate_all_uris(framework_directory):
+    bad_file = False
+    files = get_files_to_check_for_uris(framework_directory)
+    for file in files:
+        if not validate_uris_in(file):
+            bad_file = True
+
+    return not bad_file
+
+
+def validate_images(framework_directory):
+    svc_yml = os.path.join(framework_directory, "src", "main", "dist", "svc.yml")
+
+    with open(svc_yml, "r") as file:
+        lines = file.readlines()
+
+    bad_image = False
+    for line in lines:
+        line = line.strip()
+        if "image:" in line:
+            image_matcher = re.compile("image:\s?(.*)$", re.IGNORECASE)
+            match = image_matcher.match(line)
+            image_path = match.group(1)
+            env_var_matcher = re.compile("\{\{[A-Z0-9_]*\}\}")
+            if not env_var_matcher.match(image_path):
+                print("Bad image found in svc.yml. It is a direct reference instead of a templated reference:", image_path)
+                bad_image = True
+
+    return not bad_image
+
+
+def print_help():
+    print("""Scans a framework for any airgap issues. Checks all files for external URIs,
+and docker images for direct references
+
+usage: python airgap_linter.py <framework-directory>""")
+
+
+def main(argv):
+    if len(argv) < 2:
+        print_help()
+        sys.exit(0)
+
+    framework_directory = argv[1]
+
+    if not os.path.isdir(framework_directory):
+        print("Supplied framework directory", framework_directory, "does not exist or is not a directory.")
+
+    uris_valid = validate_all_uris(framework_directory)
+    images_valid = validate_images(framework_directory)
+
+    invalid = False
+    if not uris_valid:
+        invalid = True
+
+    if not images_valid:
+        invalid = True
+
+    if invalid:
+        print("Airgap check FAILED. This framework will NOT work in an airgap. Fix the detected issues.")
+        sys.exit(1)
+
+    print("Airgap check complete. This framework will _probably_ work in an airgap, but for the love of everything test that.")
+    sys.exit(0)
+
+
+if __name__ == '__main__':
+    sys.exit(main(sys.argv))
@@ -0,0 +1,56 @@
+#!/usr/bin/python3
+
+import subprocess
+import sys
+
+def fetch_origin_master():
+    subprocess.check_call([b'git', b'fetch', b'origin', b'master', b'--quiet'])
+
+def get_changed_files():
+    fetch_origin_master()
+
+    output = subprocess.check_output([b'git', b'diff', b'origin/master',
+                                      b'--name-only'])
+    files = output.splitlines()
+    return files
+
+def categorize_file(filename):
+    if filename.endswith(b".md"):
+        return "DOC"
+    if filename.startswith(b"docs/"):
+        return "DOC"
+    if filename.startswith(b"frameworks/"):
+        literal, specific_framework, rest = filename.split(b'/', 2)
+        return specific_framework.decode('utf-8')
+    return "SDK"
+
+def categorize_branch_changes():
+    file_types = set()
+    for filename in get_changed_files():
+        file_type = categorize_file(filename)
+        file_types.add(file_type)
+
+    # any SDK changes means build/test everything
+    if "SDK" in file_types:
+        return {"SDK"}
+    # only DOC changes means build/test nothing
+    if file_types == {"DOC"}:
+        return {"DOC"}
+    # Otherwise return the frameworks changed
+    file_types.discard("DOC")
+    return file_types
+
+saved_branch_changes = None
+def memoized_branch_changes():
+    global saved_branch_changes
+    if not saved_branch_changes:
+        saved_branch_changes = categorize_branch_changes()
+    return saved_branch_changes
+
+get_branch_changetypes=memoized_branch_changes
+
+__all__ = ('get_branch_changetypes',)
+
+if __name__ == "__main__":
+    for item in get_branch_changetypes():
+        sys.stdout.write(item + "\n")
@@ -0,0 +1,22 @@
+#!/bin/bash
+
+# exit immediately on failure
+set -e
+
+if [ $# -lt 2 ]; then
+    echo "Syntax: $0 <cli-exe-name> </path/to/framework/cli> <repo-relative/path/to/framework/cli>"
+    exit 1
+fi
+
+CLI_EXE_NAME=$1
+CLI_DIR=$2
+REPO_CLI_RELATIVE_PATH=$3 # eg 'frameworks/helloworld/cli/'
+
+source $TOOLS_DIR/init_paths.sh
+
+# ---
+
+# go
+$TOOLS_DIR/build_go_exe.sh $REPO_CLI_RELATIVE_PATH/$CLI_EXE_NAME windows
+$TOOLS_DIR/build_go_exe.sh $REPO_CLI_RELATIVE_PATH/$CLI_EXE_NAME darwin
+$TOOLS_DIR/build_go_exe.sh $REPO_CLI_RELATIVE_PATH/$CLI_EXE_NAME linux
@@ -0,0 +1,147 @@
+#!/bin/bash
+
+# Prevent jenkins from immediately killing the script when a step fails, allowing us to notify github:
+set +e
+
+usage() {
+    echo "Syntax: $0 [--cli-only] <framework-name> </path/to/framework> [local|aws]"
+}
+
+cli_only=
+
+while :; do
+    case $1 in
+        --help|-h|-\?)
+            usage
+            exit
+            ;;
+        --cli-only)
+            cli_only="true"
+            ;;
+        --)
+            shift
+            break
+            ;;
+        -*)
+            echo "unknown option $1" >&2
+            exit 1
+            ;;
+        *)
+            break
+            ;;
+    esac
+
+    shift
+done
+
+
+if [ $# -lt 2 ]; then
+    exit 1
+fi
+
+PUBLISH_STEP=$1
+shift
+FRAMEWORK_NAME=$1
+shift
+FRAMEWORK_DIR=$1
+shift
+ARTIFACT_FILES=$@
+
+
+echo PUBLISH_STEP=$PUBLISH_STEP
+echo FRAMEWORK_NAME=$FRAMEWORK_NAME
+echo FRAMEWORK_DIR=$FRAMEWORK_DIR
+echo ARTIFACT_FILES=$ARTIFACT_FILES
+
+# default paths/names within a framework directory:
+CLI_DIR=${CLI_DIR:=${FRAMEWORK_DIR}/cli}
+UNIVERSE_DIR=${UNIVERSE_DIR:=${FRAMEWORK_DIR}/universe}
+CLI_EXE_NAME=${CLI_EXE_NAME:=dcos-${FRAMEWORK_NAME}}
+BUILD_BOOTSTRAP=${BUILD_BOOTSTRAP:=yes}
+
+source $TOOLS_DIR/init_paths.sh
+
+# GitHub notifier config
+_notify_github() {
+    GIT_REPOSITORY_ROOT=$REPO_ROOT_DIR ${TOOLS_DIR}/github_update.py $1 build:${FRAMEWORK_NAME} $2
+}
+
+# Used below in-order, but here for cli-only
+build_cli() {
+    # CLI (Go):
+    # /home/user/dcos-commons/frameworks/helloworld/cli => frameworks/helloworld/cli
+    REPO_CLI_RELATIVE_PATH="$(echo $CLI_DIR | cut -c $((2 + ${#REPO_ROOT_DIR}))-)"
+    ${TOOLS_DIR}/build_cli.sh ${CLI_EXE_NAME} ${CLI_DIR} ${REPO_CLI_RELATIVE_PATH}
+    if [ $? -ne 0 ]; then
+        _notify_github failure "CLI build failed"
+        exit 1
+    fi
+}
+
+if [ x"$cli_only" = xtrue ]; then
+    build_cli
+    exit
+fi
+
+_notify_github pending "Build running"
+
+# Verify airgap (except for hello world)
+if [ $FRAMEWORK_NAME != "hello-world" ];
+then
+    ${TOOLS_DIR}/airgap_linter.py ${FRAMEWORK_DIR}
+fi
+
+# Ensure executor build up to date
+${REPO_ROOT_DIR}/gradlew distZip -p ${REPO_ROOT_DIR}/sdk/executor
+
+# Service (Java):
+${REPO_ROOT_DIR}/gradlew -p ${FRAMEWORK_DIR} check distZip
+if [ $? -ne 0 ]; then
+  _notify_github failure "Gradle build failed"
+  exit 1
+fi
+
+INCLUDE_BOOTSTRAP=""
+if [ "$BUILD_BOOTSTRAP" == "yes" ]; then
+    # Executor Bootstrap (Go):
+    BOOTSTRAP_DIR=${TOOLS_DIR}/../sdk/bootstrap
+    ${BOOTSTRAP_DIR}/build.sh
+    if [ $? -ne 0 ]; then
+        _notify_github failure "Bootstrap build failed"
+        exit 1
+    fi
+    INCLUDE_BOOTSTRAP="${BOOTSTRAP_DIR}/bootstrap.zip"
+fi
+
+build_cli
+
+_notify_github success "Build succeeded"
+
+case "$PUBLISH_STEP" in
+    local)
+        echo "Launching HTTP artifact server"
+        PUBLISH_SCRIPT=${TOOLS_DIR}/publish_http.py
+        ;;
+    aws)
+        echo "Uploading to S3"
+        PUBLISH_SCRIPT=${TOOLS_DIR}/publish_aws.py
+        ;;
+    *)
+        echo "---"
+        echo "Build complete, skipping publish step."
+        echo "Use one of the following additional arguments to get something that runs on a cluster:"
+        echo "- 'local': Host the build in a local HTTP server for use by a DC/OS Vagrant cluster."
+        echo "- 'aws': Upload the build to S3."
+        ;;
+esac
+
+if [ -n "$PUBLISH_SCRIPT" ]; then
+    $PUBLISH_SCRIPT \
+        ${FRAMEWORK_NAME} \
+        ${UNIVERSE_DIR} \
+        ${INCLUDE_BOOTSTRAP} \
+        ${CLI_DIR}/dcos-*/dcos-*-linux \
+        ${CLI_DIR}/dcos-*/dcos-*-darwin \
+        ${CLI_DIR}/dcos-*/dcos-*.exe \
+        ${ARTIFACT_FILES}
+fi