Skip to content

Enforce Change-Id and vanity commit hash #35

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
jserv merged 1 commit into from
Mar 30, 2026
Merged

Enforce Change-Id and vanity commit hash #35

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
30 changes: 30 additions & 0 deletions .github/workflows/build-kbox.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,36 @@ on:
branches: [main]

jobs:
# ---- Commit hygiene: Change-Id + subject format ----
commit-hygiene:
runs-on: ubuntu-24.04
steps:
- name: Checkout (full history for commit validation)
uses: actions/checkout@v6
with:
fetch-depth: 0

- name: Validate commit log
env:
EVENT_NAME: ${{ github.event_name }}
PR_BASE_SHA: ${{ github.event.pull_request.base.sha }}
PR_HEAD_SHA: ${{ github.event.pull_request.head.sha }}
PUSH_BEFORE_SHA: ${{ github.event.before }}
PUSH_HEAD_SHA: ${{ github.sha }}
run: |
range=
if [ "$EVENT_NAME" = "pull_request" ]; then
range="${PR_BASE_SHA}..${PR_HEAD_SHA}"
elif [ -n "$PUSH_BEFORE_SHA" ] && [ "$PUSH_BEFORE_SHA" != "0000000000000000000000000000000000000000" ]; then
range="${PUSH_BEFORE_SHA}..${PUSH_HEAD_SHA}"
fi

if [ -n "$range" ]; then
scripts/check-commitlog.sh --range "$range"
else
scripts/check-commitlog.sh
fi

# ---- Coding style: formatting checks (fast, ~10s) ----
coding-style:
runs-on: ubuntu-24.04
Expand Down
1 change: 1 addition & 0 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,7 @@
*.o
*.d
*.dSYM/
__pycache__
*.ext4
/kbox
tests/unit/test-runner
Expand Down
4 changes: 2 additions & 2 deletions Makefile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,8 +15,8 @@ KCONFIG_CONF := configs/Kconfig

# Targets that don't require .config
CONFIG_TARGETS := config defconfig oldconfig savedefconfig clean distclean indent \
check-unit check-syntax fetch-lkl build-lkl fetch-minislirp \
install-hooks guest-bins stress-bins rootfs
check-unit check-syntax check-commitlog fetch-lkl build-lkl \
fetch-minislirp install-hooks guest-bins stress-bins rootfs
CONFIG_GENERATORS := config defconfig oldconfig

# Require .config for build targets.
Expand Down
7 changes: 6 additions & 1 deletion mk/tests.mk
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -154,4 +154,9 @@ else
endif
endif

.PHONY: check check-unit check-integration check-stress guest-bins stress-bins rootfs check-syntax
# ---- Commit-log validation (Change-Id, subject format) ----
check-commitlog:
@echo " RUN check-commitlog"
$(Q)scripts/check-commitlog.sh

.PHONY: check check-unit check-integration check-stress check-commitlog guest-bins stress-bins rootfs check-syntax
234 changes: 234 additions & 0 deletions scripts/check-commitlog.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,234 @@
#!/usr/bin/env bash

# Validate commit hygiene for all non-merge commits after the hook
# introduction point. Checks:
# 1. Change-Id presence (commit-msg hook must have run)
# 2. Subject line format (capitalized, length, no trailing period)
# 3. WIP commit detection
# 4. GitHub web-interface bypass detection
#
# Usage:
# scripts/check-commitlog.sh [--quiet|-q] [--range REV_RANGE]
#
# Exit 0 on success, 1 on validation failure.

# --- bootstrap common helpers ---
common_script="$(dirname "$0")/common.sh"
[ -r "$common_script" ] || {
echo "[!] '$common_script' not found." >&2
exit 1
}
bash -n "$common_script" > /dev/null 2>&1 || {
echo "[!] '$common_script' has syntax errors." >&2
exit 1
}
source "$common_script"
declare -F set_colors > /dev/null 2>&1 || {
echo "[!] '$common_script' missing set_colors." >&2
exit 1
}
set_colors

QUIET=false
REV_RANGE=""
RANGE_START=""
RANGE_END=""
while [[ $# -gt 0 ]]; do
case "$1" in
--quiet | -q)
QUIET=true
shift
;;
--range)
[[ $# -ge 2 ]] || {
echo "Missing value for --range" >&2
exit 1
}
REV_RANGE="$2"
shift 2
;;
--range=*)
REV_RANGE="${1#*=}"
shift
;;
--help | -h)
echo "Usage: $0 [--quiet|-q] [--range REV_RANGE] [--help|-h]"
exit 0
;;
*)
echo "Unknown option: $1" >&2
exit 1
;;
esac
done

# First commit that carries a Change-Id (hook introduction point).
BASE_COMMIT="4a46a133bcc8d86e6be3dce690a6f81249aca469"

# Vanity hash enforcement: commits after this point must start with "0000".
VANITY_ENFORCE_AFTER="5aa639661676a581b8dfa288dea4f0f22ca9ea3c"
VANITY_PREFIX="0000"

# Ensure the base commit exists locally.
if ! git cat-file -e "${BASE_COMMIT}^{commit}" 2> /dev/null; then
throw "Base commit %s not found. Run 'git fetch'." "$BASE_COMMIT"
fi

if [[ -n "$REV_RANGE" ]]; then
if [[ "$REV_RANGE" == *..* ]]; then
RANGE_START="${REV_RANGE%%..*}"
RANGE_END="${REV_RANGE##*..}"
if ! git rev-parse --verify "${RANGE_START}^{commit}" > /dev/null 2>&1; then
throw "Revision range start %s not found." "$RANGE_START"
fi
else
RANGE_END="$REV_RANGE"
fi
if ! git rev-parse --verify "${RANGE_END}^{commit}" > /dev/null 2>&1; then
throw "Revision range end %s not found." "$RANGE_END"
fi
else
RANGE_START="$BASE_COMMIT"
RANGE_END="HEAD"
REV_RANGE="${RANGE_START}..${RANGE_END}"
fi

rev_list_args=("$RANGE_END" "^$BASE_COMMIT")
if [[ -n "$RANGE_START" ]]; then
rev_list_args+=("^$RANGE_START")
fi

REPAIR_BASE="${RANGE_START:-$BASE_COMMIT}"

# Build set of commits that require vanity hash enforcement.
declare -A vanity_required
if git cat-file -e "${VANITY_ENFORCE_AFTER}^{commit}" 2> /dev/null; then
while IFS= read -r c; do
vanity_required["$c"]=1
done < <(git rev-list --no-merges "${rev_list_args[@]}" "^$VANITY_ENFORCE_AFTER")
fi

commits=$(git rev-list --no-merges "${rev_list_args[@]}")
if [ -z "$commits" ]; then
$QUIET || echo -e "${GREEN}No commits to check.${NC}"
exit 0
fi

# --- validate each commit ---
failed=0
warnings=0
suspicious=()

while IFS= read -r commit; do
[ -z "$commit" ] && continue

sh=$(git show -s --format=%h "$commit")
subj=$(git show -s --format=%s "$commit")
msg=$(git show -s --format=%B "$commit")

issues=""
warns=""
has_issue=0
has_warn=0

# 1. Change-Id
if ! grep -Eq '^Change-Id: I[0-9a-f]{40}[[:blank:]]*$' <<< "$msg"; then
has_issue=1
issues+="Missing Change-Id (commit-msg hook bypassed)|"
((failed++))
fi

# 2. WIP prefix
if [[ "$subj" =~ ^[Ww][Ii][Pp][[:space:]]*: ]]; then
has_warn=1
warns+="Work-in-progress commit|"
((warnings++))
fi

# 3. Subject format
subj_len=${#subj}
first="${subj:0:1}"
last="${subj: -1}"

if [[ $subj_len -le 10 ]]; then
has_warn=1
warns+="Subject very short ($subj_len chars)|"
((warnings++))
elif [[ $subj_len -ge 80 ]]; then
has_issue=1
issues+="Subject too long ($subj_len chars)|"
((failed++))
fi

case "$first" in
[a-z])
has_issue=1
issues+="Subject not capitalized|"
((failed++))
;;
esac

if [[ "$last" == "." ]]; then
has_issue=1
issues+="Subject ends with period|"
((failed++))
fi

# 4. Web-interface bypass (Co-authored-by without Change-Id)
if [[ "$msg" == *"Co-authored-by:"* ]] \
&& ! grep -Eq '^Change-Id: I[0-9a-f]{40}[[:blank:]]*$' <<< "$msg"; then
has_issue=1
issues+="Likely created via GitHub web interface|"
((failed++))
fi

# 5. Vanity hash prefix (only for commits after VANITY_ENFORCE_AFTER)
if [[ -n "${vanity_required[$commit]:-}" ]]; then
if [[ "$commit" != ${VANITY_PREFIX}* ]]; then
has_issue=1
issues+="Hash ${sh} does not start with \"${VANITY_PREFIX}\" (run scripts/vanity-hash.py)|"
((failed++))
fi
fi

# --- report ---
if [[ $has_issue -eq 1 || $has_warn -eq 1 ]]; then
echo -e "${YELLOW}Commit ${sh}:${NC} ${subj}"

if [[ $has_issue -eq 1 ]]; then
IFS='|' read -ra arr <<< "${issues%|}"
for i in "${arr[@]}"; do
[ -n "$i" ] && echo -e " [ ${RED}FAIL${NC} ] $i"
done
suspicious+=("$sh: $subj")
fi

if [[ $has_warn -eq 1 ]]; then
IFS='|' read -ra arr <<< "${warns%|}"
for w in "${arr[@]}"; do
[ -n "$w" ] && echo -e " ${YELLOW}!${NC} $w"
done
fi
fi
done <<< "$commits"

if [[ $failed -gt 0 ]]; then
echo -e "\n${RED}Problematic commits:${NC}"
for c in "${suspicious[@]}"; do
echo -e " ${RED}-${NC} $c"
done
echo -e "\n${RED}Recommended actions:${NC}"
echo -e "1. Verify hooks: ${YELLOW}make install-hooks${NC}"
echo -e "2. Never use ${YELLOW}--no-verify${NC}"
echo -e "3. Avoid GitHub web interface for commits"
echo -e "4. Amend if needed: ${YELLOW}git rebase -i ${REPAIR_BASE}${NC}"
echo
throw "Commit-log validation failed."
fi

if [[ $warnings -gt 0 ]]; then
$QUIET || echo -e "\n${YELLOW}Some commits have quality warnings but passed validation.${NC}"
fi

$QUIET || echo -e "${GREEN}All commits OK.${NC}"
exit 0
35 changes: 35 additions & 0 deletions scripts/post-commit.hook
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,35 @@
#!/usr/bin/env bash

# post-commit hook for kbox: rewrite HEAD to have a vanity hash prefix.
#
# Calls vanity-hash.py to insert minimal invisible whitespace padding
# into the commit message so that the SHA-1 starts with "0000".
#
# Skipped in CI environments.

resolve_script_dir() {
local source="${BASH_SOURCE[0]}"
while [ -L "$source" ]; do
local dir
dir=$(cd -P "$(dirname "$source")" && pwd) || return 1
source=$(readlink "$source") || return 1
[[ $source != /* ]] && source="$dir/$source"
done
cd -P "$(dirname "$source")" && pwd
}

script_dir=$(resolve_script_dir) || exit 0
[ -n "$script_dir" ] || exit 0

# Source common helpers.
common_script="$script_dir/common.sh"
if [ -r "$common_script" ]; then
source "$common_script"
check_ci
fi

# Run the vanity hash rewriter.
vanity_script="$script_dir/vanity-hash.py"
if [ -x "$vanity_script" ] && command -v python3 >/dev/null 2>&1; then
python3 "$vanity_script"
fi
Loading
Loading