tailscale

Commit Graph

Author	SHA1	Message	Date
Maisem Ali	3280c81c95	.github,cmd/gitops-pusher: update to checkout@v4 checkout@v3 is broken: actions/checkout#1448 Updates #cleanup Signed-off-by: Maisem Ali <maisem@tailscale.com>	10 months ago
Brad Fitzpatrick	346445acdd	.github/workflows: only run bench all on packages with benchmarks Drops time by several minutes. Also, on top of that: skip building variant CLIs on the race builder (29s), and getting qemu (15s). Updates #9182 Change-Id: I979e02ab8c0daeebf5200459c9e4458a1f62f728 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>	10 months ago
Maisem Ali	1f12b3aedc	.github: do not use testwrapper for benchmarks Updates #9182 Signed-off-by: Maisem Ali <maisem@tailscale.com>	10 months ago
Brad Fitzpatrick	98a5116434	all: adjust some build tags for plan9 I'm not saying it works, but it compiles. Updates #5794 Change-Id: I2f3c99732e67fe57a05edb25b758d083417f083e Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>	10 months ago
shayne	46b0c9168f	.github: update flakehub workflow to support existing tags (#9067 ) This adds a workflow_dispatch input to the update-flakehub workflow that allows the user to specify an existing tag to publish to FlakeHub. This is useful for publishing a version of a package that has already been tagged in the repository. Updates #9008 Signed-off-by: Shayne Sweeney <shayne@tailscale.com>	10 months ago
shayne	7825074444	.github: fix flakehub-publish-tagged.yml glob (#9066 ) The previous regex was too advanced for GitHub Actions. They only support a simpler glob syntax. https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#filter-pattern-cheat-sheet Updates #9008 Signed-off-by: Shayne Sweeney <shayne@tailscale.com>	10 months ago
shayne	a3b0654ed8	.github: add flakehub-publish-tagged.yml (#9009 ) This workflow will publish a flake to flakehub when a tag is pushed to the repository. It will only publish tags that match the pattern `v..*`. Fixes #9008 Signed-off-by: Shayne Sweeney <shayne@tailscale.com>	10 months ago
Denton Gentry	4940a718a1	scripts/installer.sh: set Deepin to a debian version Deepin Linux 20.x reports its version as "apricot" Set it to bullseye, the Debian version it corresponds to. Also fix the installer CI: OpenSUSE Leap appears to have removed curl from the base image recently, we have to install it now. Fixes https://github.com/tailscale/tailscale/issues/8850 Updates https://github.com/tailscale/tailscale/issues/7862 Updates https://github.com/tailscale/corp/issues/8952 Signed-off-by: Denton Gentry <dgentry@tailscale.com>	10 months ago
Maisem Ali	21e32b23f7	.github: use testwrapper on windows Updates #cleanup Signed-off-by: Maisem Ali <maisem@tailscale.com>	10 months ago
Andrew Lytvynov	c19b5bfbc3	.github/workflows: add govulncheck workflow (#8623 )	11 months ago
Maisem Ali	8e840489ed	cmd/testwrapper: only retry flaky failed tests Redo the testwrapper to track and only retry flaky tests instead of retrying the entire pkg. It also fails early if a non-flaky test fails. This also makes it so that the go test caches are used. Fixes #7975 Signed-off-by: Maisem Ali <maisem@tailscale.com>	12 months ago
Maisem Ali	c11af12a49	.github: actually run tests in CI Updates #cleanup Signed-off-by: Maisem Ali <maisem@tailscale.com>	12 months ago
dependabot[bot]	d4de60c3ae	.github: Bump actions/checkout from 1 to 3 Bumps [actions/checkout](https://github.com/actions/checkout) from 1 to 3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v1...v3) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
Claire Wang	80692edcb8	.github/workflows: Add docker build check (#8345 ) Fixes #8344 Signed-off-by: Claire Wang <claire@tailscale.com>	1 year ago
dependabot[bot]	6172f9590b	.github: Bump golangci/golangci-lint-action from 3.4.0 to 3.6.0 Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3.4.0 to 3.6.0. - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](`08e2f20817...639cd343e1`) --- updated-dependencies: - dependency-name: golangci/golangci-lint-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
dependabot[bot]	525b9c806f	.github: bump peter-evans/create-pull-request from 5.0.0 to 5.0.1 Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 5.0.0 to 5.0.1. - [Release notes](https://github.com/peter-evans/create-pull-request/releases) - [Commits](`5b4a9f6a9e...284f54f989`) --- updated-dependencies: - dependency-name: peter-evans/create-pull-request dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
M. J. Fromberger	459744c9ea	.github: mark bots for exemption by issuebot (#8041 ) #cleanup Change-Id: I13757ee20240166af72606d166e840ae3ee797d7 Signed-off-by: M. J. Fromberger <fromberger@tailscale.com>	1 year ago
Anton Tolchanov	1f4a34588b	.github: test installer script in CI in docker Every time we change `installer.sh`, run it in a few docker containers based on different Linux distros, just as a simple test. Also includes a few changes to the installer script itself to make installation work in docker: - install dnf config-manager command before running it - run zypper in non-interactive mode - update pacman indexes before installing packages Updates https://github.com/tailscale/corp/issues/8952 Signed-off-by: Anton Tolchanov <anton@tailscale.com>	1 year ago
dependabot[bot]	633d08bd7b	.github: Bump actions/setup-go from 3 to 4 Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
James Tucker	8032b966a1	.github/workflows: add recency bias to action cache keys The action cache restore process either matches the restore key pattern exactly, or uses a matching prefix with the most recent date. If the restore key is an exact match, then no updates are uploaded, but if we've just computed tests executions for more recent code then we will likely want to use those results in future runs. Appending run_id to the cache key will give us an always new key, and then we will be restore a recently uploaded cache that is more likely has a higher overlap with the code being tested. Updates #7975 Signed-off-by: James Tucker <james@tailscale.com>	1 year ago
James Tucker	43819309e1	.github/workflows: split tests and benchmarks for caching Benchmark flags prevent test caching, so benchmarks are now executed independently of tests. Fixes #7975 Signed-off-by: James Tucker <james@tailscale.com>	1 year ago
dependabot[bot]	5acc7c4b1e	.github: Bump ruby/action-slack from 3.0.0 to 3.2.1 Bumps [ruby/action-slack](https://github.com/ruby/action-slack) from 3.0.0 to 3.2.1. - [Release notes](https://github.com/ruby/action-slack/releases) - [Commits](https://github.com/ruby/action-slack/compare/v3.0.0...v3.2.1) --- updated-dependencies: - dependency-name: ruby/action-slack dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
dependabot[bot]	c328770184	.github: Bump peter-evans/create-pull-request from 4.2.4 to 5.0.0 Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 4.2.4 to 5.0.0. - [Release notes](https://github.com/peter-evans/create-pull-request/releases) - [Commits](`38e0b6e68b...5b4a9f6a9e`) --- updated-dependencies: - dependency-name: peter-evans/create-pull-request dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
Andrew Dunham	280255acae	various: add golangci-lint, fix issues (#7905 ) This adds an initial and intentionally minimal configuration for golang-ci, fixes the issues reported, and adds a GitHub Action to check new pull requests against this linter configuration. Signed-off-by: Andrew Dunham <andrew@du.nham.ca> Change-Id: I8f38fbc315836a19a094d0d3e986758b9313f163	1 year ago
dependabot[bot]	28cb1221ba	.github: Bump actions/setup-go from 3 to 4 Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
James Tucker	b7f51a1468	.github/workflows: add artifact caching and remove double build on race Go artifact caching will help provided that the cache remains small enough - we can reuse the strategy from the Windows build where we only cache and pull the zips, but let go(1) do the many-file unpacking as it does so faster. The race matrix was building once without race, then running all the tests with race, so change the matrix to incldue a `buildflags` parameter and use that both in the build and test steps. Updates #cleanup Signed-off-by: James Tucker <james@tailscale.com>	1 year ago
James Tucker	8dec1a8724	.github/workflows: reenable Windows CI, disable broken tests We accidentally switched to ./tool/go in `4022796484` which resulted in no longer running Windows builds, as this is attempting to run a bash script. I was unable to quickly fix the various tests that have regressed, so instead I've added skips referencing #7876, which we need to back and fix. Updates #7262 Updates #7876 Signed-off-by: James Tucker <james@tailscale.com>	1 year ago
Mihai Parparita	782ccb5655	.github/workflows: run one set of tests with the tailscale_go build tag We use it to gate code that depends on custom Go toolchain, but it's currently only passed in the corp runners. Add a set on OSS so that we can catch regressions earlier. To specifically test sockstats this required adding a build tag to explicitly enable them -- they're normally on for iOS, macOS and Android only, and we don't run tests on those platforms normally. Signed-off-by: Mihai Parparita <mihai@tailscale.com>	1 year ago
Mihai Parparita	38bbb30aaf	.github/workflows: remove tsconnect-pkg-publish.yml Moved to the corp repo with tailscale/corp#7990 Updates tailscale/corp#10165 Signed-off-by: Mihai Parparita <mihai@tailscale.com>	1 year ago
dependabot[bot]	60a028a4f6	.github: Bump peter-evans/create-pull-request from 4.1.4 to 4.2.4 Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 4.1.4 to 4.2.4. - [Release notes](https://github.com/peter-evans/create-pull-request/releases) - [Commits](`ad43dccb4d...38e0b6e68b`) --- updated-dependencies: - dependency-name: peter-evans/create-pull-request dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
dependabot[bot]	927e2e3e7c	.github: Bump actions/setup-go from 3 to 4 Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
Maisem Ali	95494a155e	.github: use unique names for jobs Signed-off-by: Maisem Ali <maisem@tailscale.com>	1 year ago
M. J. Fromberger	c09578d060	.github: update tibdex/github-app-token to release v1.8.0 (#7495 ) The main motivation for this change is to stop using the deprecated set-output function which triggers deprecation warnings in the action. Change-Id: I80496c44ea1166b9c40d5cd9e450129778ad4aaf Signed-off-by: M. J. Fromberger <fromberger@tailscale.com>	1 year ago
David Anderson	b0eba129e6	.github/workflows: add a pass/fail verdict job to the test workflow Github requires explicitly listing every single job within a workflow that is required for status checks, instead of letting you list entire workflows. This is ludicrous, and apparently this nonsense is the workaround. Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	0ab6a7e7f5	.github/workflows: try to make the merge queue actually run CI Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	5a2fa3aa95	.github/workflows: add armv5 and armv7 cross tests armv5 because that's what we ship to most downstreams right now, armv7 becuase that's what we want to ship more of. Fixes https://github.com/tailscale/tailscale/issues/7269 Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	093139fafd	.github/workflows: fix non-collapsing CI status in PRs CI status doesn't collapse into "everything OK" if a job gets skipped. Instead, always run the job, but skip its only step in PRs. Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	306c8a713c	.github/workflows: run CI and CodeQL in the merge queue Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	149de5e6d6	build_dist.sh: use cmd/mkversion to get version data Replaces the former shell goop, which was a shell reimplementation of a subset of version/mkversion. Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
Maisem Ali	4a99481a11	.github/workflows: set TS_FUZZ_CURRENTLY_BROKEN to false Signed-off-by: Maisem Ali <maisem@tailscale.com>	1 year ago
David Anderson	6de3459bc8	.github/workflows: fix typo Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	f145c2b65b	.github/workflows: add workflow to update go.mod Nix SRI hash So that I just get a quick PR to approve and merge instead of periodically discovering that the SRI hash has bitrotted. Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	2eb25686d7	.github/workflows: simplify build-only go test invocation Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	253333b8a3	.github/workflows: support disabling fuzz testing safely OSS-Fuzz doesn't update their version of Go as quickly as we do, so we sometimes end up with OSS-Fuzz being unable to build our code for a few weeks. We don't want CI to be red for that entire time, but we also don't want to forget to reenable fuzzing when OSS-Fuzz does start working again. This change makes two configurations worthy of a CI pass: - Fuzzing works, and we expected it to work. This is a normal happy state. - Fuzzing didn't compile, and we expected it to not compile. This is the "OSS-Fuzz temporarily broken" state. If fuzzing is unexpectedly broken, or unexpectedly not broken, that's a CI failure because we need to either address a fuzz finding, or update TS_FUZZ_CURRENTLY_BROKEN to reflect the state of OSS-Fuzz. Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	5e186f9fbf	.github/workflows: pin version of Windows we run on Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	471053a054	.github/workflows: pin version of Ubuntu we run on Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	2a43fa4421	.github/workflows: use variant=race instead of race=true for race test Github's matrix runner formats the race variant as '(amd64, true)' if we use race=true. So, change the way the variable is defined so that it says '(amd64, race)' even if that makes the if statements a bit more complex. Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	9fc3d00c17	.github/workflows: add back forgotten android CI job Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	4022796484	.github/workflows: unify and matrixify all our CI steps Instead of having a dozen files that contribute CI steps with inconsistent configs, this one file lists out everything that, for us, constitutes "a CI run". It also enables the slack notification webhook to notify us exactly once on a mass breakage, rather than once for every sub-job that fails. Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago
David Anderson	ea8b896c6c	.github/workflows: remove 'ci skip' boilerplate We've never used the "[ci skip]" magic commit header in our history, across all our repos. This seems to be boilerplate we imported years ago and have since been copying around our CI configs. Signed-off-by: David Anderson <danderson@tailscale.com>	1 year ago

1 2 3 4

168 Commits (f6a203fe2383f9de1671b63182b5f7d22b086fab)