test

Author: imabhichow

codebuild/py311/examples.yml

@@ -2,7 +2,8 @@ version: 0.2
 
 env:
   variables:
-    TOXENV: "py311-examples"
+    VERSION: 4.0.2
+    REGION: "us-west-2"
     AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_KEY_ID: >-
       arn:aws:kms:us-west-2:658956600833:key/b3537ef1-d8dc-4780-9f5a-55776cbb2f7f
     AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_KEY_ID_2: >-
@@ -16,7 +17,100 @@ phases:
   install:
     runtime-versions:
       python: 3.11
-  build:
     commands:
+      # Check VERSION is available from either environment or env.variables
+      - |
+        if [ -z "$VERSION" ]; then
+          echo "Using default VERSION=$VERSION"
+        else
+          echo "Using provided VERSION=$VERSION"
+        fi
+      # Install the released package instead of the source
+      - echo "Installing aws-encryption-sdk version $VERSION"
+      - pip install "aws-encryption-sdk==$VERSION"
       - pip install "tox < 4.0"
-      - tox
+  build:
+    commands:
+      # Create a simple tox.ini file for running examples with the installed package
+      - |
+        cat > release_validation_tox.ini << 'EOF'
+        [tox]
+        envlist = py311
+        skipsdist = True
+
+        [testenv]
+        passenv =
+            AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_KEY_ID
+            AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_KEY_ID_2
+            AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_MRK_KEY_ID_1
+            AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_MRK_KEY_ID_2
+            AWS_ACCESS_KEY_ID
+            AWS_SECRET_ACCESS_KEY
+            AWS_SESSION_TOKEN
+            AWS_CONTAINER_CREDENTIALS_RELATIVE_URI
+            AWS_PROFILE
+        deps =
+            pytest
+            pytest-mock
+            mock
+            coverage
+            pyyaml
+            moto
+            boto3
+            cryptography
+        commands =
+            # Run non-MPL examples
+            pytest examples/test/legacy/ -m examples
+            # Run all other examples
+            pytest examples/test/ -m examples --ignore examples/test/legacy/
+        EOF
+
+      # Run the examples with NUM_RETRIES to handle transient failures
+      - NUM_RETRIES=3
+      - |
+        while [ $NUM_RETRIES -gt 0 ]
+        do
+          tox -c release_validation_tox.ini -e py311
+          if [ $? -eq 0 ]; then
+            break
+          fi
+          NUM_RETRIES=$((NUM_RETRIES-1))
+          if [ $NUM_RETRIES -eq 0 ]; then
+            echo "All validation attempts failed, stopping"
+            exit 1;
+          else
+            echo "Validation failed, retrying in 60 seconds; will retry $NUM_RETRIES more times" && sleep 60
+          fi
+        done
+
+      # Assume special role for MPL-specific tests
+      - echo "Running tests with special role for MPL features"
+      - TMP_ROLE=$(aws sts assume-role --role-arn "arn:aws:iam::370957321024:role/GitHub-CI-Public-ESDK-Python-Role-us-west-2" --role-session-name "CB-ValidateReleased")
+      - export TMP_ROLE
+      - export AWS_ACCESS_KEY_ID=$(echo "${TMP_ROLE}" | jq -r '.Credentials.AccessKeyId')
+      - export AWS_SECRET_ACCESS_KEY=$(echo "${TMP_ROLE}" | jq -r '.Credentials.SecretAccessKey')
+      - export AWS_SESSION_TOKEN=$(echo "${TMP_ROLE}" | jq -r '.Credentials.SessionToken')
+      - aws sts get-caller-identity
+      
+      # Also install MPL requirements
+      - pip install -r requirements_mpl.txt
+      
+      # Run MPL-specific examples
+      - NUM_RETRIES=3
+      - |
+        while [ $NUM_RETRIES -gt 0 ]
+        do
+          # Only run the MPL-specific tests that require special permissions
+          # These would normally be run with py311-mplexamples-mpl
+          python -m pytest examples/test/ -m examples --ignore examples/test/legacy/
+          if [ $? -eq 0 ]; then
+            break
+          fi
+          NUM_RETRIES=$((NUM_RETRIES-1))
+          if [ $NUM_RETRIES -eq 0 ]; then
+            echo "All MPL validation attempts failed, stopping"
+            exit 1;
+          else
+            echo "MPL validation failed, retrying in 60 seconds; will retry $NUM_RETRIES more times" && sleep 60
+          fi
+        done

codebuild/py312/examples.yml

@@ -1,8 +1,8 @@
-version: 0.2
 
 env:
   variables:
-    TOXENV: "py312-examples"
+    VERSION: 4.0.2
+    REGION: "us-west-2"
     AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_KEY_ID: >-
       arn:aws:kms:us-west-2:658956600833:key/b3537ef1-d8dc-4780-9f5a-55776cbb2f7f
     AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_KEY_ID_2: >-
@@ -14,9 +14,57 @@ env:
 
 phases:
   install:
+    commands:
+      - pip install "tox < 4.0" poetry
+      - pip install --upgrade pip
     runtime-versions:
-      python: 3.12
+      python: latest
+      dotnet: 6.0
+  pre_build:
+    commands:
+      # Setup environment
+      - aws configure set region us-west-2
+      - git clone https://github.com/aws/aws-encryption-sdk.git esdk-dafny
+      - cd esdk-dafny && git submodule update --init --recursive && cd ..
+      # Install packages and setup environments
+      - echo "Installing aws-encryption-sdk version $VERSION"
+      - pip install "aws-encryption-sdk==$VERSION"
+      - pyenv install --skip-existing 3.11.0 && pyenv local 3.11.0
+      - make -C esdk-dafny/mpl/StandardLibrary setup_net
+      - pip install pytest boto3 attrs cryptography
+      # Update the aws-encryption-sdk version in TestVectors
+      - sed -i "s/aws-encryption-sdk = \">=4.0.1\"/aws-encryption-sdk = \"==$VERSION\"/" \
+        esdk-dafny/TestVectors/runtimes/python/pyproject.toml
   build:
     commands:
-      - pip install "tox < 4.0"
-      - tox
+      - NUM_RETRIES=3
+      - |
+        run_command() {
+          eval "$1"
+          return $?
+        }
+        
+        # Navigate to TestVectors directory
+        cd esdk-dafny/TestVectors || exit 1
+        
+        while [ $NUM_RETRIES -gt 0 ]
+        do
+          
+          # Build TestVectors implementation in Python
+          CORES=$(nproc || echo 4)
+          if ! run_command "make transpile_python CORES=$CORES"; then
+            NUM_RETRIES=$((NUM_RETRIES-1))
+            [ $NUM_RETRIES -gt 0 ] && sleep 60 && continue
+            exit 1
+          fi
+          
+          # Run all the test vector commands together
+          if ! run_command "make test_generate_vectors_python && make test_encrypt_vectors_python && make test_decrypt_encrypt_vectors_python"; then
+            NUM_RETRIES=$((NUM_RETRIES-1))
+            [ $NUM_RETRIES -gt 0 ] && sleep 60 && continue
+            exit 1
+          fi
+          
+          # Success
+          break
+        done

codebuild/py312/examples_mpl.yml

@@ -15,102 +15,57 @@ env:
 
 phases:
   install:
+    commands:
+      - pip install "tox < 4.0" poetry
+      - pip install --upgrade pip
     runtime-versions:
-      python: 3.11
+      python: latest
+      dotnet: 6.0
+  pre_build:
     commands:
-      # Check VERSION is available from either environment or env.variables
-      - |
-        if [ -z "$VERSION" ]; then
-          echo "Using default VERSION=$VERSION"
-        else
-          echo "Using provided VERSION=$VERSION"
-        fi
-      # Install the released package instead of the source
+      # Setup environment
+      - aws configure set region us-west-2
+      - git clone https://github.com/aws/aws-encryption-sdk.git esdk-dafny
+      - cd esdk-dafny && git submodule update --init --recursive && cd ..
+      # Install packages and setup environments
       - echo "Installing aws-encryption-sdk version $VERSION"
       - pip install "aws-encryption-sdk==$VERSION"
-      - pip install "tox < 4.0"
+      - pyenv install --skip-existing 3.11.0 && pyenv local 3.11.0
+      - make -C esdk-dafny/mpl/StandardLibrary setup_net
+      - pip install pytest boto3 attrs cryptography
+      # Update the aws-encryption-sdk version in TestVectors
+      - sed -i "s/aws-encryption-sdk = \">=4.0.1\"/aws-encryption-sdk = \"==$VERSION\"/" \
+        esdk-dafny/TestVectors/runtimes/python/pyproject.toml
   build:
     commands:
-      # Create a simple tox.ini file for running examples with the installed package
-      - |
-        cat > release_validation_tox.ini << 'EOF'
-        [tox]
-        envlist = py311
-        skipsdist = True
-
-        [testenv]
-        passenv =
-            AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_KEY_ID
-            AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_KEY_ID_2
-            AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_MRK_KEY_ID_1
-            AWS_ENCRYPTION_SDK_PYTHON_INTEGRATION_TEST_AWS_KMS_MRK_KEY_ID_2
-            AWS_ACCESS_KEY_ID
-            AWS_SECRET_ACCESS_KEY
-            AWS_SESSION_TOKEN
-            AWS_CONTAINER_CREDENTIALS_RELATIVE_URI
-            AWS_PROFILE
-        deps =
-            pytest
-            pytest-mock
-            mock
-            coverage
-            pyyaml
-            moto
-            boto3
-            cryptography
-        commands =
-            # Run non-MPL examples
-            pytest examples/test/legacy/ -m examples
-            # Run all other examples
-            pytest examples/test/ -m examples --ignore examples/test/legacy/
-        EOF
-
-      # Run the examples with NUM_RETRIES to handle transient failures
-      - NUM_RETRIES=3
-      - |
-        while [ $NUM_RETRIES -gt 0 ]
-        do
-          tox -c release_validation_tox.ini -e py311
-          if [ $? -eq 0 ]; then
-            break
-          fi
-          NUM_RETRIES=$((NUM_RETRIES-1))
-          if [ $NUM_RETRIES -eq 0 ]; then
-            echo "All validation attempts failed, stopping"
-            exit 1;
-          else
-            echo "Validation failed, retrying in 60 seconds; will retry $NUM_RETRIES more times" && sleep 60
-          fi
-        done
-
-      # Assume special role for MPL-specific tests
-      - echo "Running tests with special role for MPL features"
-      - TMP_ROLE=$(aws sts assume-role --role-arn "arn:aws:iam::370957321024:role/GitHub-CI-Public-ESDK-Python-Role-us-west-2" --role-session-name "CB-ValidateReleased")
-      - export TMP_ROLE
-      - export AWS_ACCESS_KEY_ID=$(echo "${TMP_ROLE}" | jq -r '.Credentials.AccessKeyId')
-      - export AWS_SECRET_ACCESS_KEY=$(echo "${TMP_ROLE}" | jq -r '.Credentials.SecretAccessKey')
-      - export AWS_SESSION_TOKEN=$(echo "${TMP_ROLE}" | jq -r '.Credentials.SessionToken')
-      - aws sts get-caller-identity
-      
-      # Also install MPL requirements
-      - pip install -r requirements_mpl.txt
-      
-      # Run MPL-specific examples
       - NUM_RETRIES=3
       - |
+        run_command() {
+          eval "$1"
+          return $?
+        }
+        
+        # Navigate to TestVectors directory
+        cd esdk-dafny/TestVectors || exit 1
+        
         while [ $NUM_RETRIES -gt 0 ]
         do
-          # Only run the MPL-specific tests that require special permissions
-          # These would normally be run with py311-mplexamples-mpl
-          python -m pytest examples/test/ -m examples --ignore examples/test/legacy/
-          if [ $? -eq 0 ]; then
-            break
+          
+          # Build TestVectors implementation in Python
+          CORES=$(nproc || echo 4)
+          if ! run_command "make transpile_python CORES=$CORES"; then
+            NUM_RETRIES=$((NUM_RETRIES-1))
+            [ $NUM_RETRIES -gt 0 ] && sleep 60 && continue
+            exit 1
           fi
-          NUM_RETRIES=$((NUM_RETRIES-1))
-          if [ $NUM_RETRIES -eq 0 ]; then
-            echo "All MPL validation attempts failed, stopping"
-            exit 1;
-          else
-            echo "MPL validation failed, retrying in 60 seconds; will retry $NUM_RETRIES more times" && sleep 60
+          
+          # Run all the test vector commands together
+          if ! run_command "make test_generate_vectors_python && make test_encrypt_vectors_python && make test_decrypt_encrypt_vectors_python"; then
+            NUM_RETRIES=$((NUM_RETRIES-1))
+            [ $NUM_RETRIES -gt 0 ] && sleep 60 && continue
+            exit 1
           fi
+          
+          # Success
+          break
         done