The kdevops kernel-ci supports testing both simple and extremely complex Linux kernel subsystems, allowing developers to proactively test patches posted on the mailing list, test custom branches, or to continuously test Linux so to avoid regressions and discover new bugs.
To avoid regressions baselines can be developed and used and are an optional part of the kdevops kernel-ci process. In order to support testing patches from mailing lists kernel-patches-daemon (kpd) can optionally be used and is supported.
The CI part of github and gitlab are called Github actions and GitLab Pipelines
respectively. To keep things simple we refer to both as git CI solutions.
Both git CI solutions are optionally supported to leverage
triggering tests on custom repositories with custom branches. Either
kpd
can push custom branches to test or developers can manually push custom
branches to test. Once confidence on a CI pipeline is high, tests against
new Linux releases can also be automated.
Both self-hosted runners and cloud solutions can be used. Manually running kdevops tests is also possible. Below we provide an ASCII art image representation of what this looks like.
flowchart TD
ML[Mailing List Patches] -->|Submit| PW[Patchwork]
DP[Direct dev branch pushes] -->|Push| KT[Topic KPD Tree]
subgraph Patch Processing
PW -->|Send series| GA[GitHub KPD Topic App]
GA -->|Push branch| KT
end
subgraph Topic Tree Management
KT -->|Trigger| CI[GitHub CI / GitLab CI]
end
subgraph Testing and Results
CI -->|Execute workflows| KD[kdevops]
KD -->|Archive results| KRA[kdevops-results-archive]
end
%% Node descriptions
ML -->|"- Patches submitted to mailing lists\n- Example: linux-modules vger list"|ML
PW -->|"- Tracks patch submissions\n- Sends series to GitHub"|PW
GA -->|"- Adds 'kdevops-ci' as first commit\n- Applies patch series\n- Pushes branch to KPD topic tree"|GA
KT -->|"- Receives branches from dev-tree\n- Adds 'kdevops-ci' as first commit\n- Developers merge 'kdevops-ci'"|KT
CI -->|"- Executes CI workflows\n- Uses kdevops for testing\n- Uploads zip artifacts"|CI
KD -->|"- Orchestrates testing configs\n- Manages ansible tasks\n- Pushes results"|KD
KRA -->|"- Archives results using git LFS"|KRA
classDef default fill:#f9f9f9,stroke:#333,stroke-width:2px;
classDef process fill:#e1f3e1,stroke:#333,stroke-width:2px;
classDef storage fill:#e1e1f3,stroke:#333,stroke-width:2px;
class ML,DP default;
class PW,GA,KT,CI,KD process;
class KRA storage;
The below are active kdevops CIs used to help developers proactively test patches either from the mailing list for different Linux kernel subsystems, or to help increase confidence in a branch to be used as a pull request sent to Linus. We also have kdevops's own CI. Each CI has its own use case and documented as such. The kdevops tree has its CI built-in to the main branch of the development tree. However, to enable to Linux kernel development trees to use kdevops to run tests, the kdevops-ci tree is can merged into development tree before pushing onto kdevops CI enabled trees. Read first the kdevops-ci tree documentation. The list of active CI trees leveraging all this and their respective documentation are:
- kdevops CI
- Linux kernel filesystem kdevops CI
- Linux kernel simple subsystems:
- Linux kernel mm kdevops CI
Manual tests are just one way to run tests on kdevops. You can also proactively test from patches posted on the development mailing list.
The use of kernel-patches-daemon (kpd) is only important if you want to proactively test all patches posted to a subsystem mailing list. Using kpd requires a patchwork project created for you under kernel.org, these are typically configured to aggregate all patches from a mailing list. However, smaller subsystems can leverage new patchwork support from kernel.org which leverages lei support, allowing custom filters for which patches should be queued up. For more details on kpd support see kdevops kpd integration
GitHub CI/CD and GitLab Pipelines provide support for Continuous Integration (CI) and (Continuous Integration). They both provide automation features that let you run workflows, tests, builds, and deployments based on triggers like commits, pull requests, or specific schedules.
From a Linux kernel development perspective we're more interested in the CI (Continuous Integration) part: running tests, building code, running tests whenever code is posted or committed or pushed.
In Linux the CD (Continuous Delivery/Deployment) part, which deals with automating deployment, pushing changes to staging production is already dealt with through the Linux development workflow. The linux-next tree is used for continuous delivery of the latest subsystem trees. There are also specialized trees such as fs-next which aggregate only the filesystem specific parts of this so to avoid having to deal testing for example graphics. By the time we get to the merge window, most code should have been tested and vetted for.
The CI part of github and gitlab are called Github actions and GitLab Pipelines
respectively. To keep things simple we refer to both as git CI solutions.
Today's CI git solutions allow for free runners which leverage containers or with self-hosted runners. Although you can technically pull off using virtualization inside a container a review of CI runners concluded a containerized solution doesn't help much.
If you're going to leverage a git CI solution with kdevops you want to use self-hosted runners.
Since self-hosted runners are the only sensible solution for a kdevops CI, you want to make the default base permissions to not allow anyone other than trusted developers to be able to create pull requests, in case any git CI workflows leverage self-hosted runners.
The alternative is to disallow pull requests on your git CI as triggers for you self-hosted runners since most organizations by default disable pushes for unprivileged users to the organization.
Github CI is implemented by leveraging yaml files in .github/workflows/
directory of your project. There are two separate ways we leverage github CI,
one for testing kdevops itself and making sure kdevops keeps working, and
another is for Linux kernel development. The github CI for kdevops is part of
kdevops itself, in the .github/workflows/ directory. The github CI targeted
for Linux kernel developers is managed through a separate tree, the
kdevops-ci which is intended to
be used as a merge into your Linux kernel development tree once you want testing
for it.
Since CI provides the automation test vehicle we want a way to collect results. Today's git CI solutions only provide ephemeral results archiving. For Linux kernel development we want test results which will we can always procure. To address this the kdevops-results-archive automatically allows us to capture results leveraging git LFS on the backend. Using git LFS we can allow folks to only gather specific results they are interested and allow git host providers to leverage their preferred storage solutions for archiving cold data. This also increases the max tarball we can support, and allows us to use epochs for achiving, enabling easy transitions to new epochs on the same tree.
The kdevops project leverages a github CI, for details refer to kdevops CI for details on how and what kdevops needs to test, and for test results look at the kdevops actions results page.
You can just merge your subsystem kdevops-ci topic branch on your subsystem development branch to enable testing of your code for that subsystem through your self hosted runners. For details refer to the kdevops-ci documentation.
This just requires an eager beaver to cat the existing github CI files into an AI agent and as it to port it to gitlab, then test it with a self-hosted gitlab runner.
If you're going to use kdevops for a CI solution, you will need enough system resources either locally for VMs or on the cloud to run your tests.
Instead of inventing its own wheel to deal with management of guests, Ansible has been embraced for detailing how to codify required commands for each target workflow. Adding Salt support in the future as an alternative for management can surely be done, it would just be a matter of extending new Kconfig symbols. Using Ansible was done first as that is what the author had most experience with.
Each target test is considered a "workflow" under kdevops. Using Ansible also allows for distribution specific items to be split out and dealt with separately. As it stands, support for OpenSUSE, SUSE, Debian, and Fedora are provided for all supported workflows. If a new workflow is added, you don't need to add support for all distributions, a Kconfig "depends on" logic can easily be used to ensure only support for the few distributions is expressed. As it stands though, all currently supported workflows support all supported distributions, and developers are highly encouraged to try to add support for all of them as well, as the differences in support typically mostly deals with package names, GRUB and the kernel, and that is already dealt with in existing workflows.
Below is kdevops' kernel-ci recommended documentation reading before trying to enable kdevops kernel-ci and using it.
- Reviewing existing kernel-ci efforts
- Using kdevops as a git subtree in light of kernel-ci
- Recommended methodology to a define kernel-ci host and guest architecture
- A case for truncated files with loopback block devices
- Seeing more issues with loopback / truncated files setup
- kernel-ci guest requirements
- kernel-ci host requirements
- kernel-ci host hypervisor tuning
- kernel-ci steady state goals
- Targetting tests based on commit IDs or branches
- Appreciating kernel-ci division of labor
- Evaluating use of a digital ledger