Skip to content

chore(CI): add backwards compatability tests for nightly #790

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
josecorella merged 6 commits into from
Jul 21, 2025
Merged

chore(CI): add backwards compatability tests for nightly #790

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
5d59af1
chore(CI): add backwards compatability tests for nightly
josecorella Jul 16, 2025
3f35e48
format
josecorella Jul 16, 2025
37cb15d
Update .github/workflows/dafny_interop_library_go_tests.yml
josecorella Jul 16, 2025
ce2dda4
Merge branch 'mainline' into jocorell/change-nightly-tasks
robin-aws Jul 21, 2025
d114b4e
fix
josecorella Jul 21, 2025
6ae4cd6
f
josecorella Jul 21, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
21 changes: 21 additions & 0 deletions .github/workflows/dafny_interop.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,21 @@
name: Dafny Interoperability Test

on:
workflow_call:
Copy link
Contributor

@robin-aws robin-aws Jul 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Would it make more sense to add this target to the Manual CI workflow instead? Or perhaps at least as well?

Copy link
Contributor Author

@josecorella josecorella Jul 21, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I wouldn't; at least for now. I don't see how adding it to manual gives you more insights than to just run this action individually

inputs:
mpl-dafny:
description: "The Dafny version to compile the MPL with (4.2.0, nightly-latest, etc..)"
required: true
type: string
mpl-commit:
description: "The MPL branch/commit to use"
required: false
default: "main"
type: string
esdk-dafny:
description: "The Dafny version to compile the DBESDK with (4.2.0, nightly-latest, etc..)"
required: true
type: string
workflow_dispatch:
inputs:
mpl-dafny:
Expand Down Expand Up @@ -33,3 +48,9 @@ jobs:
mpl-dafny: ${{inputs.mpl-dafny}}
mpl-commit: ${{inputs.mpl-commit}}
esdk-dafny: ${{inputs.esdk-dafny}}
dafny-nightly-go:
uses: ./.github/workflows/dafny_interop_library_go_tests.yml
with:
mpl-dafny: ${{inputs.mpl-dafny}}
mpl-commit: ${{inputs.mpl-commit}}
esdk-dafny: ${{inputs.esdk-dafny}}
108 changes: 108 additions & 0 deletions .github/workflows/dafny_interop_library_go_tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,108 @@
# This workflow performs tests in Go with nightly latest versions for mpl or esdk.
name: Library Go Backwards Interop Tests

on:
workflow_call:
inputs:
mpl-dafny:
description: "The Dafny version to compile the MPL with (4.2.0, dafny-nightly, etc..)"
required: true
type: string
mpl-commit:
description: "The MPL commit to use"
required: false
default: "main"
type: string
esdk-dafny:
description: "The Dafny version to compile the DBESDK with (4.2.0, dafny-nightly, etc..)"
required: true
type: string

jobs:
testGo:
strategy:
fail-fast: false
matrix:
library: [TestVectors]
go-version: ["1.23"]
os: [
# Sed script doesn't work properly on windows
# windows-latest,
ubuntu-22.04,
# TODO: Re-enable macOS after https://t.corp.amazon.com/P205755286
# macos-13,
]
runs-on: ${{ matrix.os }}
permissions:
id-token: write
contents: read
steps:
- name: Support longpaths on Git checkout
run: |
git config --global core.longpaths true
- uses: actions/checkout@v3
- name: Init Submodules
shell: bash
run: |
git submodule update --init libraries
git submodule update --init --recursive mpl

- name: Configure AWS Credentials
uses: aws-actions/configure-aws-credentials@v2
with:
aws-region: us-west-2
role-to-assume: arn:aws:iam::370957321024:role/GitHub-CI-Public-ESDK-Dafny-Role-us-west-2
role-session-name: GoTests

- name: Setup MPL Dafny
uses: ./mpl/.github/actions/setup_dafny
with:
dafny-version: ${{ inputs.mpl-dafny }}

- name: Update MPL submodule
working-directory: mpl
run: |
git fetch
git checkout ${{inputs.mpl-commit}}
git pull
git submodule update --init --recursive
git rev-parse HEAD

- name: Install Smithy-Dafny codegen dependencies
uses: ./.github/actions/install_smithy_dafny_codegen_dependencies

- name: Install Go
uses: actions/setup-go@v5
with:
go-version: ${{ matrix.go-version }}

- name: Install Go imports
run: |
go install golang.org/x/tools/cmd/goimports@latest

- name: Compile MPL with Dafny ${{inputs.mpl-dafny}}
shell: bash
working-directory: mpl/TestVectorsAwsCryptographicMaterialProviders
run: |
# This works because `node` is installed by default on GHA runners
CORES=$(node -e 'console.log(os.cpus().length)')
make transpile_go CORES=$CORES

- name: Setup ESDK Dafny
uses: ./mpl/.github/actions/setup_dafny
with:
dafny-version: ${{ inputs.esdk-dafny}}

- name: Build ESDK implementation
shell: bash
working-directory: ./${{ matrix.library }}
run: |
# This works because `node` is installed by default on GHA runners
CORES=$(node -e 'console.log(os.cpus().length)')
make transpile_go CORES=$CORES

- name: Test Go
working-directory: ${{ matrix.library }}
shell: bash
run: |
make test_go
4 changes: 2 additions & 2 deletions .github/workflows/dafny_interop_test_vector_net.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -235,7 +235,7 @@ jobs:
uses: actions/upload-artifact@v4
if: matrix.os != 'windows-latest'
with:
name: ${{matrix.os}}_vector_artifact
name: ${{matrix.os}}_mpl-${{inputs.mpl-dafny}}_esdk-${{inputs.esdk-dafny}}_vectors
path: AwsEncryptionSDK/net41/vectors/*.zip

decrypt_net_vectors_with_js:
Expand Down Expand Up @@ -274,7 +274,7 @@ jobs:
- name: Download Encrypt Manifest Artifact
uses: actions/download-artifact@v4
with:
name: ${{matrix.os}}_vector_artifact
name: ${{matrix.os}}_mpl-${{inputs.mpl-dafny}}_esdk-${{inputs.esdk-dafny}}_vectors
path: AwsEncryptionSDK/net41/vectors

- uses: actions/setup-node@v4
Expand Down
27 changes: 26 additions & 1 deletion .github/workflows/nighly_dafny.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -43,13 +43,38 @@ jobs:
with:
dafny: "nightly-latest"
regenerate-code: true
getVersion:
uses: ./.github/workflows/dafny_version.yaml
dafny_nightly_backwards_interop_esdk:
if: github.event_name != 'schedule' || github.repository_owner == 'aws'
needs: getVersion
uses: ./.github/workflows/dafny_interop.yml
with:
mpl-dafny: ${{needs.getVersion.outputs.version}}
mpl-commit: "main"
esdk-dafny: "nightly-latest"
dafny_nightly_backwards_interop_mpl:
if: github.event_name != 'schedule' || github.repository_owner == 'aws'
needs: getVersion
uses: ./.github/workflows/dafny_interop.yml
with:
mpl-dafny: "nightly-latest"
mpl-commit: "main"
esdk-dafny: ${{needs.getVersion.outputs.version}}

cut-issue-on-failure:
runs-on: ubuntu-22.04
permissions:
id-token: write
contents: read
needs: [dafny-nightly-verification, dafny-nightly-net]
needs:
[
dafny-nightly-verification,
dafny-nightly-net,
dafny-nightly-go,
dafny_nightly_backwards_interop_esdk,
dafny_nightly_backwards_interop_mpl,
]
if: ${{ always() && contains(needs.*.result, 'failure') }}
steps:
# We need access to the role that is able to get CI Bot Creds
Expand Down
Loading