VMR Validation Proposal #15354
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change | ||||
|---|---|---|---|---|---|---|
| @@ -0,0 +1,75 @@ | ||||||
| # The Unified Build Almanac (TUBA) - Repository and VMR PR/CI validation Strategy | ||||||
|
|
||||||
| ## Purpose | ||||||
|
|
||||||
| The purpose of this document is to lay out a strategy for: | ||||||
| - Validating code flow into the VMR from consituent repositories. | ||||||
| - Validating changes made directly in the VMR. | ||||||
| - Validating constituent repository changes so that they are less likely to break in the VMR. | ||||||
|
|
||||||
| ## Principles | ||||||
|
|
||||||
| - Repositories have invested heavily in repo-specific testing over the life of .NET. This validation must not be compromised. | ||||||
| - Validation failures that block PR merge should be actionable. This may mean that action needs to be taken in another repository. For example, a flow from runtime->aspnetcore with a bug can be dealt with in runtime. | ||||||
|
|
||||||
| ## Current State | ||||||
|
|
||||||
| Broadly, the following validation currently takes place: | ||||||
| - Repositories that participate source build (i.e. this would exclude windowsdesktop, winforms, etc.) have a repo source-build job that runs on PRs and CI. This job performs an *approximation* of the source-only build that would take place in the VMR when the code reaches the SDK. This job **is** valuable at times. It is helpful in catching new prebuilts introduced by repository changes as well as some set of build differences that appear when `DotNetBuildSourceOnly == true`. This is especially important because the time betweeen a repo check-in and VMR/source-build insertion has historically been quite long. It is important to detect issues early. However, this job is also fragile. The same prebuilt detection will catch package restores that would be provided by VMR built package flow (e.g. runtime->roslyn) or previously source built artifacts, requiring costly analysis and baseline updates. Furthermore, the toolset used to may be different between the VMR and the isolated repository, leading to confusion, especially around target frameworks. | ||||||
|
There was a problem hiding this comment. I would also mention TFMs here. Most of the time what is targeted in the repo source-build leg is different from the TFM that is being built in the product source-build. This is especially true for repos that dual-insert. |
||||||
| - Repositories maintain CI and PR workflows that run repo-level testing (unit tests, scenario tests, etc.) that has been built up over years. | ||||||
| - The sdk repo (currently the source of VMR codeflow) runs a variety of VMR builds on every check-in against main, in source-only and MSFT configurations. | ||||||
| - A set of scenario tests run against the VMR output in the VMR builds in the SDK. These scenario tests are designed to cover a broad swath of functionality against a finished product, rather than a repository build layout. | ||||||
| - Teams run manual validation on staged artifacts. | ||||||
|
|
||||||
| ## Proposed Validation | ||||||
|
|
||||||
| ### Source-build legs are replaced by optional full-VMR validation | ||||||
|
|
||||||
| - We will introduce the ability to run optional test VMR insertions on each PR for repos that participate in a VMR. This means that the code changes in the PR will be built in context of a full product build. Note: Because the validation may reveal issues that require downstream reaction and are not actionable before merge, these legs must be optional. They are informational and can't be used as a gate | ||||||
| - The existing repo source-build legs will be removed. The short hop between repository and VMR insertion means that detecting source-only build issues as early as possible is not as critical as before. This has the following knock-on effects: | ||||||
| - Existing offical build source-build legs will be removed. | ||||||
| - The source build intermediate architecuture can be removed. | ||||||
|
|
||||||
| **Scheduling: Can be implemented now.** | ||||||
|
|
||||||
| ### Optional full-VMR validation is added for MSFT configurations | ||||||
|
|
||||||
| We will introduce the ability to trigger optional full VMR insertion validation on PRs. These will run a desired subset of the MSFT/source-only VMR builds and validation. We believe this is a net-net win overall for the product. | ||||||
|
There was a problem hiding this comment. How will the results be used? |
||||||
|
|
||||||
| **Scheduling: Can be implemented now.** | ||||||
|
There was a problem hiding this comment. Does this mean there will be a similar darc-powered VMR sync happening like it happens now in SDK PRs? What happens now in SDK PRs is sort of a "paste" where we take the current SHA1 of the repo in the VMR, the SHA2 of the PR branch and we create patch SHA1_SHA2 in the repo and apply it onto the VMR (plus some patch operations, cloaking..). The result is that the current way basically inserts/overwrites the repo contents in the VMR, the latter pushes new changes to the VMR but might be based off of an older commit of the target branch when conflicts with the tip prevent to apply the changes on top of it. Which behaviour do we want for this insertion? I'd say the both can have cases where the VMR has some updates you won't be able to possibly include in your PR build. I'd say the latter is better because it will mimic more what will happen on a subsequent forward flow. |
||||||
|
|
||||||
| ### Repositories retain their existing repo-specific validation but may tweak if necessary | ||||||
|
|
||||||
| Aside from source-build jobs, existing repository PR/CI validation will not be removed or altered. Existing testing setups can remain as-is. Most repositories build extremely similarly between current official builds and VMR component builds. However, we may identify areas where the PR testing setup is not representative of the VMR build setup and these differences allow product breaks to flow through. This is very similar to PR/Official Build differences today. When such gaps are identified for a repository, we will remedy like any other testing gap. This is the responsibility of the product teams. | ||||||
|
There was a problem hiding this comment.
Maybe this is the answer to my earlier question. Is it? |
||||||
|
|
||||||
| **Scheduling: NA, NOP** | ||||||
|
|
||||||
| ### VMR PR/CI builds a selected subset of verticals and scenarios | ||||||
|
|
||||||
| On insertion into a VMR, we will run a selected representative subset of scenarios. This representative subset may change over time as the product changes, however, a rough sketch may look like: | ||||||
|
There was a problem hiding this comment.
How will these be defined? Or are these simply hand-picked legs from existing list? There was a problem hiding this comment. I should have said "How are these defined?" given the |
||||||
| - Some set of source-only legs w/ scenario testing | ||||||
| - A full-stack matrix that sparsely covers at all OSs and architectures w/ scenario testing. | ||||||
|
There was a problem hiding this comment.
Suggested change
|
||||||
| - Some representative set of short stacks (e.g at least one of each OS and at least one of each arch) w/ scenario testing. | ||||||
| - Some set of builds that build repo test projects, some set of builds which exclude repo test projects. | ||||||
|
|
||||||
| **Scheduling: NA, Completed** | ||||||
|
|
||||||
| ### VMR PR/CI does not run repo-specific validation | ||||||
|
|
||||||
| It will be challenging to mimic the repo-specific testing setups in VMR PR/CI builds. In addition, the quantity of testing is unlikely to be practical for full VMR validation. Running repo unit tests in VMR PRs is not a goal of Unified Build. | ||||||
|
There was a problem hiding this comment. Would the following be valuable?
Maybe it's a cheap way to get a lot of value? |
||||||
|
|
||||||
| **Scheduling: NA, NOP** | ||||||
|
|
||||||
| ### VMR changes lean heavily on scenario testing for correctness validation | ||||||
|
|
||||||
| VMR PR/CI will lean heavily on scenario testing for correctness validation. These scenario tests are designed to cover large swaths of product functionality, rather than focusing on a specific component. Where necessary, scenario test quality will be increased. | ||||||
|
|
||||||
| **Scheduling: NA, ** | ||||||
|
|
||||||
| ### Backflow + Existing repo CI/PR validation is used for correctness validation | ||||||
|
|
||||||
| In-depth product validation and signoff will be done via code backflow (packages and code from the VMR to component repositories) + existing PR/CI validation at the repo level. In reality, this is no change from practices today. This is similar to the way official builds (which do not generally run tests) + rolling CI validation support signoff today for repositories that cannot run all of their testing in PRs. | ||||||
|
|
||||||
| Repo owners will also use VMR artifacts for manual validation and signoff where appropriate. This is no different from validating a staged build. | ||||||
|
|
||||||
| **Scheduling: NA, NOP** | ||||||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
What does a flow from runtime to aspnetcore mean? Does it mean a backflow of runtime packages from VMR to aspnetcore?