Run Crypto abi-check in TF-PSA-Crypto PRs

vars/analysis.groovy

@@ -268,7 +268,7 @@ fi
             }
         }
 
-        String script_in_docker = info.repo == 'tls' ? "tests/scripts/analyze_outcomes.py '$outcomes_csv'" : ''
+        String script_in_docker = info.repo == 'mbedtls' ? "tests/scripts/analyze_outcomes.py '$outcomes_csv'" : ''
 
         Closure post_execution = {
             sh "[ -f '$outcomes_csv' ] && xz -0 -T0 '$outcomes_csv'"

vars/checkout_repo.groovy

@@ -87,7 +87,7 @@ String get_submodule_commit(String working_dir = '.', String submodule) {
 }
 
 private void checkout_framework_repo(BranchInfo info) {
-    if (env.TARGET_REPO == 'framework' && env.CHECKOUT_METHOD == 'scm') {
+    if (env.TARGET_REPO == 'mbedtls-framework' && env.CHECKOUT_METHOD == 'scm') {
         checkout_report_errors(scm)
     } else {
         def branch = env.FRAMEWORK_BRANCH ?: info.framework_override
@@ -105,7 +105,7 @@ private void checkout_framework_repo(BranchInfo info) {
 }
 
 private void checkout_tf_psa_crypto_repo(BranchInfo info) {
-    if (env.TARGET_REPO == 'tf-psa-crypto' && env.CHECKOUT_METHOD == 'scm') {
+    if (env.TARGET_REPO == 'TF-PSA-Crypto' && env.CHECKOUT_METHOD == 'scm') {
         checkout_report_errors(scm)
         if (!info.framework_override) {
             if (!isUnix()) {
@@ -116,13 +116,13 @@ private void checkout_tf_psa_crypto_repo(BranchInfo info) {
         }
     } else {
         String branch
-        if (info.repo == 'tf-psa-crypto') {
+        if (info.repo == 'TF-PSA-Crypto') {
             branch = info.branch
         } else {
             branch = env.TF_PSA_CRYPTO_BRANCH
         }
         if (env.TF_PSA_CRYPTO_REPO && branch) {
-            if (info.repo != 'tf-psa-crypto') {
+            if (info.repo != 'TF-PSA-Crypto') {
                 echo "Applying tf-psa-crypto override ($branch)"
             }
             try_checkout_from_repos([env.TF_PSA_CRYPTO_REPO, env.TF_PSA_CRYPTO_FALLBACK_REPO], branch)
@@ -141,12 +141,12 @@ private void checkout_tf_psa_crypto_repo(BranchInfo info) {
 }
 
 private Map<String, String> checkout_tls_repo(BranchInfo info) {
-    if (info.repo != 'tls') {
+    if (info.repo != 'mbedtls') {
         throw new IllegalArgumentException("checkout_tls_repo() called with BranchInfo for repo '$info.repo'")
     }
 
     def scm_config
-    if (env.TARGET_REPO == 'tls' && env.CHECKOUT_METHOD == 'scm') {
+    if (env.TARGET_REPO == 'mbedtls' && env.CHECKOUT_METHOD == 'scm') {
         scm_config = scm
     } else {
         scm_config = parametrized_repo(env.MBED_TLS_REPO, info.branch)
@@ -178,10 +178,10 @@ void checkout_repo(BranchInfo info) {
             lock(resource: "stash-lock/${env.BUILD_TAG}-${stashName}") {
                 if (!info.stash) {
                     switch (info.repo) {
-                        case 'tls':
+                        case 'mbedtls':
                             checkout_tls_repo(info)
                             break
-                        case 'tf-psa-crypto':
+                        case 'TF-PSA-Crypto':
                             checkout_tf_psa_crypto_repo(info)
                             break
                         default:

vars/common.groovy

@@ -256,7 +256,7 @@ List<BranchInfo> get_branch_information(Collection<String> tls_branches, Collect
     List<BranchInfo> infos = []
     Map<String, Object> list_components_jobs = [:]
 
-    Map<String, Collection<String>> repos = ['tls': tls_branches, 'tf-psa-crypto': tf_psa_crypto_branches]
+    Map<String, Collection<String>> repos = ['mbedtls': tls_branches, 'TF-PSA-Crypto': tf_psa_crypto_branches]
     // Filter out repos with no branches
     repos = repos.findAll({repo, branches -> branches})
 

vars/environ.groovy

@@ -92,10 +92,10 @@ def set_common_pr_production_environment() {
     parse_scm_repo()
 }
 
-def set_tls_release_environment() {
+def set_tls_release_environment(String target_repo) {
     set_common_environment()
     env.JOB_TYPE = 'release'
-    env.TARGET_REPO = 'tls'
+    env.TARGET_REPO = target_repo
     env.CHECKOUT_METHOD = 'parametrized'
 }
 

vars/gen_jobs.groovy

@@ -488,7 +488,7 @@ git submodule foreach --recursive '
     }
 
     String script_in_docker = """
-tests/scripts/list-identifiers.sh --internal
+tests/scripts/list_internal_identifiers.py
 # Workaround for abi_check.py failing to properly escape slashes in ref names
 scripts/abi_check.py -o \$(git rev-parse 'origin/${env.CHANGE_TARGET}^{commit}') -n HEAD -s identifiers --brief
 """
@@ -686,7 +686,7 @@ def gen_release_jobs(BranchInfo info, boolean run_examples=true) {
         })
     }
 
-    if (info.repo == 'tls') {
+    if (info.repo == 'mbedtls') {
         if (env.RUN_BASIC_BUILD_TEST == "true") {
             jobs << gen_code_coverage_job(info, 'ubuntu-16.04-amd64');
         }

vars/mbedtls-pr-test-Jenkinsfile

@@ -23,7 +23,18 @@
  * This script takes the following parameters:
  *
  * Repos and branches
+ *  - TARGET_REPO
+ *      Tells the parametrized job to behave like a PR targeting the specified repo.
+ *      At the moment, it affects two things in PR jobs:
+ *        - TF-PSA-Crypto all.sh components are skipped if set to 'mbedtls'
+ *        - API-ABI-Check selects which repo to use based on the TARGET_REPO setting.
+ *          (selecting 'mbedtls-framework' disables the test)
+ *      Possible values:
+ *        - mbedtls
+ *        - TF-PSA-Crypto
+ *        - mbedtls-framework
  *  - CHANGE_TARGET
+ *      a commit-ish (commit/branch/tag/etc.) in TARGET_REPO that API-ABI-Check compares against
  *  - MBED_TLS_REPO
  *  - MBED_TLS_BRANCH
  *  - FRAMEWORK_REPO
@@ -37,7 +48,6 @@
  *  - RUN_BASIC_BUILD_TEST
  *  - RUN_FREEBSD
  *  - RUN_WINDOWS_TEST
- *  - RUN_TF_PSA_CRYPTO_ALL_SH
  *
  * Other parameters
  *  - TEST_BRANCH
@@ -49,4 +59,5 @@
 
 /* main job */
 library identifier: 'mbedtls-test@master', retriever: legacySCM(scm)
-mbedtls.run_pr_job('tls', false, env.MBED_TLS_BRANCH, env.RUN_TF_PSA_CRYPTO_ALL_SH == 'true' ? env.TF_PSA_CRYPTO_BRANCH : '')
+String target_repo = env.TARGET_REPO ?: 'mbedtls'
+mbedtls.run_pr_job(target_repo, false, env.MBED_TLS_BRANCH, target_repo == 'mbedtls' ? '' : env.TF_PSA_CRYPTO_BRANCH)

vars/mbedtls-release-Jenkinsfile

@@ -23,6 +23,14 @@
  * This script takes the following parameters:
  *
  * Repos and branches
+ *  - TARGET_REPO
+ *      Tells the parametrized job to behave like a PR targeting the specified repo.
+ *      At the moment, it affects one thing in release jobs:
+ *        - TF-PSA-Crypto all.sh components are skipped if set to 'mbedtls'
+ *      Possible values:
+ *        - mbedtls
+ *        - TF-PSA-Crypto
+ *        - mbedtls-framework
  *  - MBED_TLS_REPO
  *  - MBED_TLS_BRANCH
  *  - FRAMEWORK_REPO
@@ -35,7 +43,6 @@
  *  - RUN_BASIC_BUILD_TEST
  *  - RUN_FREEBSD
  *  - RUN_WINDOWS_TEST
- *  - RUN_TF_PSA_CRYPTO_ALL_SH
  *
  * Other parameters
  *  - PUSH_COVERITY
@@ -49,4 +56,5 @@
 
 /* main job */
 library identifier: 'mbedtls-test@master', retriever: legacySCM(scm)
-mbedtls.run_release_job(env.MBED_TLS_BRANCH, env.RUN_TF_PSA_CRYPTO_ALL_SH == 'true' ? env.TF_PSA_CRYPTO_BRANCH : '')
+String target_repo = env.TARGET_REPO ?: 'mbedtls'
+mbedtls.run_release_job(target_repo, env.MBED_TLS_BRANCH, target_repo == 'mbedtls' ? '' : env.TF_PSA_CRYPTO_BRANCH)

vars/mbedtls.groovy

@@ -33,7 +33,7 @@ void run_tls_tests(Collection<BranchInfo> infos) {
         infos.each { info ->
             jobs << gen_jobs.gen_release_jobs(info, false)
 
-            if (env.RUN_ABI_CHECK == "true" && info.repo == 'tls') {
+            if (env.RUN_ABI_CHECK == 'true' && info.repo == env.TARGET_REPO) {
                 jobs << gen_jobs.gen_abi_api_checking_job(info, 'ubuntu-18.04-amd64')
             }
         }
@@ -153,29 +153,29 @@ void run_pr_job(String target_repo, boolean is_production, Collection<String> tl
 /* main job */
 void run_job() {
     // CHANGE_BRANCH is not set in "branch" jobs, eg. in the merge queue
-    run_pr_job('tls', true, env.CHANGE_BRANCH ?: env.BRANCH_NAME, '')
+    run_pr_job('mbedtls', true, env.CHANGE_BRANCH ?: env.BRANCH_NAME, '')
 }
 
 void run_framework_pr_job() {
     environ.parse_scm_repo()
     run_pr_job(
-        'framework', true,
+        'mbedtls-framework', true,
         env.IS_RESTRICTED ? ['development-restricted', 'mbedtls-3.6-restricted'] : ['development', 'mbedtls-3.6'],
         env.IS_RESTRICTED ? ['development-restricted']                           : ['development']
     )
 }
 
-void run_release_job(String tls_branches, String tf_psa_crypto_branches) {
+void run_release_job(String target_repo, String tls_branches, String tf_psa_crypto_branches) {
     def (tls_split,    tf_psa_crypto_split) =
         [tls_branches, tf_psa_crypto_branches].collect({branches -> branches.split(',').findAll()})
-    run_release_job(tls_split, tf_psa_crypto_split)
+    run_release_job(target_repo, tls_split, tf_psa_crypto_split)
 }
 
-void run_release_job(Collection<String> tls_branches, Collection<String> tf_psa_crypto_branches) {
+void run_release_job(String target_repo, Collection<String> tls_branches, Collection<String> tf_psa_crypto_branches) {
     analysis.main_record_timestamps('run_release_job') {
         List<BranchInfo> infos = []
         try {
-            environ.set_tls_release_environment()
+            environ.set_tls_release_environment(target_repo)
             common.init_docker_images()
 
             stage('branch-info') {

vars/tf_psa_crypto.groovy

@@ -1,4 +1,4 @@
 void run_pr_job() {
     environ.parse_scm_repo()
-    mbedtls.run_pr_job('tf-psa-crypto', true, env.IS_RESTRICTED ? 'development-restricted' : 'development', env.CHANGE_BRANCH ?: env.BRANCH_NAME)
+    mbedtls.run_pr_job('TF-PSA-Crypto', true, env.IS_RESTRICTED ? 'development-restricted' : 'development', env.CHANGE_BRANCH ?: env.BRANCH_NAME)
 }