Add self-hosted github actions checks, linting and docs

[gastmaier]

PR Description

Experimental use of self-hosted runners to speed-up CI checking by the use of caching git history between runs and versioned containerfiles with well defined tool versions.
This version focuses on providing code checking and linting, and not building artifacts.

The first commit adds a base documentation at docs for documentation non-upstream content, that is, continuous integrations and non upstream drivers.
Overall, non-upstream content is stored at .github, ci and docs, with the exception of devicetrees and defconfigs.
This is used by the workflows themself to skip jobs or checking non-relevant files.

Code checking

For checking, the following features are implemented:

• per commit:
  • checkpatch: per commit
• touched files:
  • dt-binding-check
  • coccicheck
  • cppcheck
  • kconfig: infer enabled driver by touched (*requirements must be enabled)
  • compile devicetree
  • compile kernel sparse
  • compile kernel smatch
  • compile gcc_fanalyzer
  • assert touched *.c were compiled
• multiarch and llvm+gcc

Minimal defconfigs are added to enable only the driver of interest.

Workflow

• cron: updates mirror branches with ci
  • on forks, when setting the default branch as cron with the provided template, it self-updates alongside the mirrors.
• kernel: build the linux kernel, run the checks.

Containerfile

• gcc14 instead of gcc15 due to defaulting to -std=gnu23 and not respecting gnu11 flag
• Can be used locally for development
  • previously I investigated using act to run all workflows locally, but I found not necessay/getting in the way, instead, when logging in the image, the steps are listed:

$ pdr adi/linux:latest
Set git commit range as ($base_sha..$head_sha)
530ac1a63a7d96dd2f41..d5c4ec65295941ec1acd
Adjust variables range as needed.

Sourced methods from ci/build.sh:
check_checkpatch check_dt_binding_check check_coccicheck check_cppcheck compile_devicetree compile_kernel compile_kernel_sparse compile_kernel_smatch compile_gcc_fanalyzer assert_compiled apply_prerun touch_files auto_set_kconfig set_step_warn set_step_fail
# 

Sample run

sample cached run: https://github.com/gastmaier/adi-linux/actions/runs/14976764241/job/42072683004
sample cold start run: https://github.com/gastmaier/adi-linux/actions/runs/14976764241/attempts/1

Next steps

The intention is to run these along-side the existing azure ci, then migrate all missing functionality if better results.
When merged to main, pushes to main and PRs will run the kernel.yml worklow, and once a day the mirror branches will be updated.

PR Type

• Bug fix (a change that fixes an issue)
• New feature (a change that adds new functionality)
• Breaking change (a change that affects other repos or cause CIs to fail)

PR Checklist

• I have conducted a self-review of my own code changes
• I have tested the changes on the relevant hardware
• I have updated the documentation outside this repo accordingly (if there is the case)

[nunojsa]

Just some minimal comments from me... I plan not being to picky and just let you experiment with all of this :)

Looks very promising!

[nunojsa]

How are our drivers being enabled? Are we relying on defaults? Just wondering how will this grow? We also have some fair amount of HWMON drivers (and media now with all the gsml stuff)

[gastmaier]

The idea is to have the DEPENDS and if Kconfig blocks enabled on this defconfig, and auto_set_kconfig tries to set it.

I will add more defaults to the defconfigs, since HWMOM and others are missing.
on special cases the defconfig can be manipulated by a commit, which may either be relevant only for the pr or be merged.

It is hard to discover which configs to enable based on the touched drivers, since when it is hidden by a DEPENDS or if block, there is no tool to enable/resolve it.
but:

• scripts/config -e $conf appends $conf to .config
• make yes2modconfig, resolves the .config, removing from .config if hidden by DEPENDS or if
  so an assert step after yes2modconfig could be inserted, and on failure, then just all ADI drivers as before.

[nunojsa]

The idea is to have the DEPENDS and if Kconfig blocks enabled on this defconfig, and auto_set_kconfig tries to set it.

I see, but that might be hard to track long term

[gastmaier]

I took a look at yocto's symbol_why.py and gave a second try, resulting in ci/symbols_depend.py

it is aware of if blocks, and source and depends methods.
the complex boolean logic comes from architecture related symbols (ARCH_, CPU_, X86) and these are set by the base defconfig adi_ci_defconfig, and therefore filtered out.

if any touched .c file is not compiled the CI fails, so if the script is not good enough the assertion will catch.

this build is intended for checking/linting, and forgetting to properly set the depends on a driver is also a common mistake

[nunojsa]

did not went to deep but this bindings are running against which kernel tree? This is very sensible so I would be careful about that.

Right now we use the dt/next tree IIRC but I have been thinking about switching to Linus master branch as that is what Rob (DT maintainer) is using AFAIU and the current tree already gave us some issues.

[gastmaier]

all checks are run at the checked out tree.
your suggestion is to checkout Linux master and checkout only the files related to the dt bindings?
in the scenario of using jic23/iio/testing, would this still be necessary?
I can Linux master to the list of fetched remotes so this can be done, (checkout linus/master -> checkout individual files -> dt_binding_check -> checkout trunk back)
I would make this a feature of a subsequent pr.

[nunojsa]

all checks are run at the checked out tree.

That might be hard to match dt tools against the checked tree... For instance, validating a binding file in our tree triggers a bunch of unrelated errors in other files.

your suggestion is to checkout Linux master and checkout only the files related to the dt bindings?

That's what we do today

in the scenario of using jic23/iio/testing, would this still be necessary?

We can try that one... But linus/master should be more reliable

[gastmaier]

Yes it does raise a lot of unrelated errors.

I will give it a try then, but overall opening a pr against the mirrors are also an option.