Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
zeek/ci/benchmark.sh
Arne Welzel 876d16b4be ci/benchmark: Send more Cirrus, GitHub and Zeek version information 
I wonder if we hit a query string limitation and should instead switch
to post body here. It's the `curl -G -X POST` part making this a POST
with a long query string.

(cherry picked from commit 7b28152a92)
2023-09-19 19:57:51 +02:00

66 lines
2.6 KiB
Bash
Executable file
Raw Blame History

#! /usr/bin/env bash
ZEEK_BENCHMARK_ENDPOINT="/zeek"
# Setting this causes any command failures to immediately cause the script to fail.
set -e
# Don't do this unless the user has access to the encrypted variables. This will
# basically exclude any PR that doesn't come from the main zeek repo.
if [ "${CIRRUS_USER_PERMISSION}" != "admin" -a "${CIRRUS_USER_PERMISSION}" != "write" ]; then
echo "Benchmarks are skipped for repositories outside of the main Zeek project"
exit 0
fi
if [ "${CIRRUS_REPO_FULL_NAME}" != "zeek/zeek" ]; then
echo "Benchmarks skipped for non-zeek repo"
exit 0
fi
BUILD_URL="https://api.cirrus-ci.com/v1/artifact/build/${CIRRUS_BUILD_ID}/${CIRRUS_TASK_NAME}/upload_binary/build.tgz"
# Generate an md5 hash of the build file. We can do this here because the path to the
# file still exists from the prior scripts.
BUILD_HASH=$(sha256sum build.tgz | awk '{print $1}')
# Generate an HMAC digest for the path plus a timestamp to send as an authentication
# header. Openssl outputs a hex string here so there's no need to base64 encode it.
TIMESTAMP=$(date -u +'%s')
HMAC_DIGEST=$(echo "${ZEEK_BENCHMARK_ENDPOINT}-${TIMESTAMP}-${BUILD_HASH}" | openssl dgst -sha256 -hmac ${ZEEK_BENCHMARK_HMAC_KEY} | awk '{print $2}')
TARGET="https://${ZEEK_BENCHMARK_HOST}:${ZEEK_BENCHMARK_PORT}${ZEEK_BENCHMARK_ENDPOINT}"
# Turn this back off because we want to be able to capture the output from curl if
# it fails.
set +e
# Make a request to the benchmark host.
curl -sS -G --stderr - --fail --insecure -X POST \
-o "/zeek/benchmark-${TIMESTAMP}.log" \
-H "Zeek-HMAC: ${HMAC_DIGEST}" \
-H "Zeek-HMAC-Timestamp: ${TIMESTAMP}" \
--data-urlencode "branch=${CIRRUS_BRANCH}" \
--data-urlencode "build=${BUILD_URL}" \
--data-urlencode "build_hash=${BUILD_HASH}" \
--data-urlencode "commit=${CIRRUS_CHANGE_IN_REPO}" \
--data-urlencode "cirrus_repo_owner=${CIRRUS_REPO_OWNER}" \
--data-urlencode "cirrus_repo_name=${CIRRUS_REPO_NAME}" \
--data-urlencode "cirrus_task_id=${CIRRUS_TASK_ID}" \
--data-urlencode "cirrus_build_id=${CIRRUS_BUILD_ID}" \
--data-urlencode "cirrus_pr=${CIRRUS_PR}" \
--data-urlencode "cirrus_pr_labels=${CIRRUS_PR_LABELS}" \
--data-urlencode "github_check_suite_id=${GITHUB_CHECK_SUITE_ID}" \
--data-urlencode "repo_version=$(cat ./VERSION)" \
"${TARGET}"
STATUS=$?
# If we got a bad status back from the host, we want to make sure to mask the host
# and port from the output.
if [ $STATUS -ne 0 ]; then
cat /zeek/benchmark-${TIMESTAMP}.log | sed "s/${ZEEK_BENCHMARK_HOST}/<secret>/g" | sed "s/:${ZEEK_BENCHMARK_PORT}/:<secret>/g"
else
cat /zeek/benchmark-${TIMESTAMP}.log
fi
exit $STATUS
Reference in a new issue View git blame Copy permalink