Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Set up integration with Packit #54

Closed
siteshwar opened this issue Apr 13, 2024 · 10 comments
Closed

Set up integration with Packit #54

siteshwar opened this issue Apr 13, 2024 · 10 comments

Comments

@siteshwar
Copy link
Member

siteshwar commented Apr 13, 2024
edited
Loading

This issue tracks integration with the PackIt service. Possible blocker has been discussed earlier.

@lachmanfrantisek @lbarcziova Please leave your comments, if I missed anything.

EDIT: Related issue in PackIt upstream.
@kdudka
Copy link

kdudka commented Apr 15, 2024
edited
Loading

@siteshwar If I remember correctly, there was a request by PackIt team on the last two quarterly meetings to make osh-cli accept SRPMs specified by URLs. I think the initial implementation should be pretty simple but I am not sure if we track this anywhere.

@siteshwar
Copy link
Member Author

@kdudka It is tracked through openscanhub/openscanhub#248.

@siteshwar
Copy link
Member Author

I discussed this issue with @lachmanfrantisek and we agreed to do a prototype with PackIt command line client:

@siteshwar
Copy link
Member Author

I discussed this issue with @lachmanfrantisek today and we agreed to introduce a packit build in-osh subcommand. Its implementation should look like:

  • packit build in-osh: Perform a full scan (osh-cli mock-build) on the project.
  • packit build in-osh --srpm-version-diff second.srpm: Perform a differential build (osh-cli version-diff-build) with the second srpm.

We managed to hack together a basic prototype of the CLI command. But it needs to be polished before a pull request can be opened against upstream.

@kdudka
Copy link

kdudka commented Apr 25, 2024

Thank you for working on this! My proposal is to give the subcommand a more self-explaining name, such as scan-in-osh. Otherwise this may arouse an impression that OSH is a build service.

@siteshwar
Copy link
Member Author

Thank you for working on this! My proposal is to give the subcommand a more self-explaining name, such as scan-in-osh. Otherwise this may arouse an impression that OSH is a build service.

@kdudka packit has build subcommand, but not scan. So, for copr the command looks like packit build in-copr.

@lachmanfrantisek Do you think we can introduce a scan subcommand? This may be useful if you plan to integrate with other scanners in the future.

@lachmanfrantisek
Copy link

Hmm, we don't have any other scanning integration planned now. Since it actually performs a build during the OSH scan, I would probably leave it as is for now... We can definitely change this or make an alias if we realise this was a bad idea. But with Packit, the CLI is not too important compared to the service.

@kdudka
Copy link

kdudka commented Apr 25, 2024

My proposal was not to replace build but to replace in-osh with scan-in-osh (or perhaps scan-with-osh?), which I thought would be trivial. But keeping the current name is also fine.

@lbarcziova
Copy link

I agree build in-osh may be misleading and would rather go with a simple command scan-in-osh.

@siteshwar siteshwar mentioned this issue May 2, 2024
Merged
3 tasks
softwarefactory-project-zuul bot added a commit to packit/packit that referenced this issue May 7, 2024
@softwarefactory-project-zuul
Add a scan-in-osh subcommand (#2301)
e1666ca 
Add a `scan-in-osh` subcommand

... to perform a scan through OpenScanHub.

TODO:

 Write new tests or update the old ones to cover new functionality.
 Update doc-strings where appropriate.
 Update or write new documentation in packit/packit.dev.


Kerberos login would require dns_canonicalize_hostname = false in /etc/krb5.conf. Related link: https://fedoraproject.org/wiki/Infrastructure/Kerberos#Extra_info_for_Infrastructure_people
Instructions to install osh-cli are given in https://fedoraproject.org/wiki/OpenScanHub.
Command to perform a full build: packit scan-in-osh
Command to perform a differential build: packit scan-in-osh --base-srpm=<path_to_old_srpm

Fixes
Related to
openscanhub/fedora-infra#54
There is a review request to add osh-cli to the official Fedora repositories.
Merge before/after

RELEASE NOTES BEGIN
Add a scan-in-osh subcommand in the CLI to perform a scan through OpenScanHub. By default, it performs a full scan of the packages and a differential scan can be performed through --base-srpm option.
RELEASE NOTES END
EDIT: Add a reference to change in /etc/krb5.conf.

Reviewed-by: Laura Barcziová
Reviewed-by: František Lachman <[email protected]>
Reviewed-by: Siteshwar Vashisht
@siteshwar siteshwar changed the title Set up integration with PackIt Set up integration with Packit Jul 8, 2024
@siteshwar
Copy link
Member Author

This issue should be followed up by the Packit team through packit/packit-service#2107 and packit/packit-service#2454.

I am closing it, as there is nothing to be done from OSH side.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@kdudka @siteshwar @lachmanfrantisek @lbarcziova