ci: Run sanitizer tests in a separate job

This should speed up the CI somewhat by parallelizing the work across the matrix of configurations.
2025-10-14 02:19:32 +08:00 · 2025-07-28 23:07:59 +03:00
parent 9c9473aa9b
commit 413f782176
4 changed files with 24 additions and 21 deletions
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -29,9 +29,18 @@ jobs:
          - scenario: on ubuntu
            runs-on: ubuntu-24.04
            os: linux
+            sanitizers: false
+            primary: true
          - scenario: on macos
            runs-on: macos-14
            os: darwin
+            sanitizers: false
+            primary: true
+          - scenario: on ubuntu (with sanitizers)
+            runs-on: ubuntu-24.04
+            os: linux
+            sanitizers: true
+            primary: false
    name: tests ${{ matrix.scenario }}
    runs-on: ${{ matrix.runs-on }}
    timeout-minutes: 60
@@ -52,13 +61,21 @@ jobs:
    # https://ubuntu.com/blog/ubuntu-23-10-restricted-unprivileged-user-namespaces
    - run: sudo sysctl -w kernel.apparmor_restrict_unprivileged_userns=0
      if: matrix.os == 'linux'
-    - run: scripts/build-checks
-    - run: scripts/prepare-installer-for-github-actions
+    - name: Run component tests
+      run: |
+        nix build --file ci/gha/tests componentTests -L \
+          --arg withSanitizers ${{ matrix.sanitizers }}
+    - name: Run flake checks and prepare the installer tarball
+      run: |
+        ci/gha/tests/build-checks
+        ci/gha/tests/prepare-installer-for-github-actions
+      if: ${{ matrix.primary }}
    - name: Upload installer tarball
      uses: actions/upload-artifact@v4
      with:
        name: installer-${{matrix.os}}
        path: out/*
+      if: ${{ matrix.primary }}

  installer_test:
    needs: [tests]
--- a/ci/gha/tests/build-checks
+++ b/ci/gha/tests/build-checks
--- a/ci/gha/tests/prepare-installer-for-github-actions
+++ b/ci/gha/tests/prepare-installer-for-github-actions
--- a/flake.nix
+++ b/flake.nix
@@ -337,25 +337,11 @@
        # Add "passthru" tests
        //
          flatMapAttrs
-            (
-              {
-                "" = {
-                  pkgs = nixpkgsFor.${system}.native;
-                };
-              }
-              // lib.optionalAttrs (!nixpkgsFor.${system}.native.stdenv.hostPlatform.isDarwin) {
-                # TODO: enable static builds for darwin, blocked on:
-                #       https://github.com/NixOS/nixpkgs/issues/320448
-                # TODO: disabled to speed up GHA CI.
-                # "static-" = {
-                #   pkgs = nixpkgsFor.${system}.native.pkgsStatic;
-                # };
-                "sanitized-" = {
-                  pkgs = nixpkgsFor.${system}.native;
-                  withSanitizers = true;
-                };
-              }
-            )
+            {
+              "" = {
+                pkgs = nixpkgsFor.${system}.native;
+              };
+            }
            (
              nixpkgsPrefix: args:
              (import ./ci/gha/tests (