Skip to content

Part2: remove 1 job to free a runner#115

Open
glimchb wants to merge 1 commit intospdk:mainfrom
glimchb:patch-6
Open

Part2: remove 1 job to free a runner#115
glimchb wants to merge 1 commit intospdk:mainfrom
glimchb:patch-6

Conversation

@glimchb
Copy link
Copy Markdown
Contributor

@glimchb glimchb commented Oct 13, 2025
edited
Loading

before
image
after
image

@glimchb glimchb added the enhancement New feature or request label Oct 13, 2025
@glimchb glimchb changed the title summary: combine 2 jobs into 1 to save some runners Part2: combine 2 jobs into 1 to save some runners Oct 14, 2025
@glimchb glimchb changed the title Part2: combine 2 jobs into 1 to save some runners Part2: remove 1 job to free a runner Oct 14, 2025
tomzawadzki
tomzawadzki reviewed Oct 17, 2025
View reviewed changes
Comment thread .github/workflows/summary.yml
default: 'failure'

jobs:
merge_outputs:
Copy link
Copy Markdown
Contributor

@tomzawadzki tomzawadzki Oct 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The job separation was intentional. The merge_outputs uses the contents of SPDK repo (./spdk/autorun_post.py) and can be modified by the patch under review. Meanwhile report uses secrets to post votes on Gerrit in completely new runner. This avoids having secrets accessible in the first job.

Copy link
Copy Markdown
Contributor

@karlatec karlatec Jan 15, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Back to this because of recent issues with waiting X hours for just merge_outputs to finish...

This avoids having secrets accessible in the first job.

It's preferable to keep it as separate job, but then again... is this really an issue? We don't pass secrets context values as ENV, or using with context and they are used in a in-line script only. Doesn't look they would be accessible from any scripts checked out from spdk repository,

Copy link
Copy Markdown
Contributor

@karlatec karlatec Jan 16, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

After re-thinking - OK, there is some risk, even if it's kind of a stretch.

Copy link
Copy Markdown
Contributor

@tomzawadzki tomzawadzki Jan 19, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The jobs that execute things from SPDK Gerrit patches, should not share the job (VM) with ones that interact with SPDK-CI, Gerrit or infrastructure. Otherwise the latter could be modified by patches under review.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tomzawadzki tomzawadzki tomzawadzki left review comments

@mikeBashStuff mikeBashStuff Awaiting requested review from mikeBashStuff

@karlatec karlatec Awaiting requested review from karlatec

Assignees

No one assigned

Labels

enhancement New feature or request

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@glimchb @tomzawadzki @karlatec