Draft
Conversation
Add a VERSION file containing the base version tag (4.11.x), following the same pattern as COLLECTOR_VERSION, SCANNER_VERSION, FACT_VERSION. - VERSION: contains "4.11.x" - make/env.mk: make tag falls back to VERSION when git describe fails - start-release.yml: verifies VERSION matches release, creates PR to update VERSION on master for the next minor release Partially generated by AI. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Replace the //XDef: annotation + status.sh + -X ldflags mechanism with a generated pkg/version/internal/zversion.go file. For tests: uses the stable base tag from VERSION (e.g. "4.11.x"), keeping Go link ActionIDs stable across commits. This enables both the Go link cache (2x faster builds) and test result cache. For builds: uses the full git-describe format (e.g. "4.11.x-320-gabcdef") so release binaries have the correct version. Also adds -buildvcs=false to remove unused VCS stamping that Go 1.18+ silently enabled (no code reads debug.ReadBuildInfo). Verified locally: - Same ldflags (link cache hit): 2.4s for 8 binaries - Different ldflags (link cache miss): 5.2s (2.2x slower) Partially generated by AI. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Go test cache has two phases: 1. Test binary ID (includes link ActionID with ldflags) — fixed by commit 2 2. File mtime validation — fixed here git checkout sets all file mtimes to "now", causing Phase 2 to miss. Fix: set all tracked file mtimes to a fixed date after checkout. Also adds key-suffix input to cache-go-dependencies to disambiguate GOTAGS matrix entries. github.job is the same for all matrix entries (e.g. "go" for both GOTAGS="" and GOTAGS=release). Without key-suffix, matrix entries overwrite each other's GOCACHE. Combined measured results (PR #19404): - go unit tests: 45m → 14m (3.3x) - go-postgres: 35m → 4m (8.7x) - sensor-integration: 21m → 5m (4x) - Test cache hit rate: 92% (1942/2108) Partially generated by AI. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
|
Skipping CI for Draft Pull Request. |
Contributor
There was a problem hiding this comment.
Hey - I've found 2 issues, and left some high level feedback:
- The build cache statistics added to
go_buildrely ongo build -vline counts and a fixed/tmp/go-build-compiled-countfile, which can be both inaccurate (non-1:1 with compiled units) and racy if multiple builds run in parallel; consider using a unique temp file per invocation and/or gating this logging behind a flag or env var. - The
git ls-files | xargs touchstep in the composite action mutates mtimes for every tracked file, which could interfere with incremental build tooling or other languages in the same job; consider narrowing this to Go source/test files or to the directories actually used by Go.
Prompt for AI Agents
Please address the comments from this code review:
## Overall Comments
- The build cache statistics added to `go_build` rely on `go build -v` line counts and a fixed `/tmp/go-build-compiled-count` file, which can be both inaccurate (non-1:1 with compiled units) and racy if multiple builds run in parallel; consider using a unique temp file per invocation and/or gating this logging behind a flag or env var.
- The `git ls-files | xargs touch` step in the composite action mutates mtimes for every tracked file, which could interfere with incremental build tooling or other languages in the same job; consider narrowing this to Go source/test files or to the directories actually used by Go.
## Individual Comments
### Comment 1
<location path="scripts/go-tool.sh" line_range="108" />
<code_context>
- invoke_go_build -o "$output" "${dirs[@]}"
+ local total
+ total=$(go list -deps "${dirs[@]}" 2>/dev/null | wc -l | tr -d ' ')
+ local compiled_count=/tmp/go-build-compiled-count
+ invoke_go_build -o "$output" "${dirs[@]}" 2> >(tee >(wc -l | tr -d ' ' > "$compiled_count") >&2)
+ wait
</code_context>
<issue_to_address>
**issue (bug_risk):** Use a per-process or per-invocation temp file instead of a fixed path for compiled_count
A fixed `/tmp` path means concurrent runs of this script (or multiple `go_build` calls in one job) will race on the same `compiled_count` file, causing corrupted or incorrect counts. Please use a unique temp file per invocation (e.g., via `mktemp` or including `$$`/`$BASHPID` and job name in the filename) and clean it up afterward.
</issue_to_address>
### Comment 2
<location path="scripts/go-tool.sh" line_range="112-115" />
<code_context>
+ invoke_go_build -o "$output" "${dirs[@]}" 2> >(tee >(wc -l | tr -d ' ' > "$compiled_count") >&2)
+ wait
+ local compiled
+ compiled=$(cat "$compiled_count" 2>/dev/null | tr -d ' ')
+ local cached=$((total - compiled))
+ echo >&2 "Build cache: ${cached}/${total} deps cached ($compiled compiled)"
+ if [[ "$total" -gt 0 ]] && [[ $((cached * 100 / total)) -lt 50 ]]; then
+ echo >&2 "WARNING: Build cache hit rate below 50% (${cached}/${total}). Significant code changes invalidate the cached build — expect slower compilation."
+ fi
</code_context>
<issue_to_address>
**issue (bug_risk):** Harden arithmetic against empty or non-numeric totals/compiled counts
If `go list` or the build step fails (or their output format changes), `total`/`compiled` can be empty or non-numeric. Then `cached=$((total - compiled))` and the percentage calculation will throw a bash arithmetic error and abort. Please default missing values to 0 and ensure both vars are integers (e.g. `${total:-0}`, `${compiled:-0}` with a simple regex check), or skip the cache-reporting logic when the counts aren’t valid.
</issue_to_address>Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.
Contributor
|
Images are ready for the commit at def6343. To use with deploy scripts, first |
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## master #19424 +/- ##
=======================================
Coverage 49.71% 49.71%
=======================================
Files 2701 2701
Lines 203453 203453
=======================================
+ Hits 101143 101145 +2
+ Misses 94784 94782 -2
Partials 7526 7526
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
actionlint flags matrix.gotags as undefined in jobs without a matrix strategy (go-bench, local-roxctl-tests, sensor-integration-tests). The key-suffix is only needed for the go and go-postgres jobs which have the gotags matrix to prevent GOCACHE key collisions. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
GOCACHE accumulates stale entries across commits as packages change: each commit creates new cache entries for recompiled packages, but old entries from previous commits are never cleaned up. Go's built-in trim only runs once per 24h with 5-day retention — too slow for CI. Fix: backdate all GOCACHE entries to year 2000 after restore. During the build, Go's markUsed() updates mtimes of accessed entries to "now". After the build, a trim step deletes entries still at year 2000 (stale). The cache auto-save post-step then saves only the trimmed directory. Key detail: trim.txt must be set to "now" after backdating, otherwise Go's built-in Trim() sees "last trim in year 2000" and deletes ALL backdated entries before the build even starts. Also bumps cache key from v1 to v2 for a clean slate. Locally verified: with ~50 commits of real source changes, trim removes 679MB (32%) of stale entries from a 2.1GB cache. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This reverts commit 4ab28ee.
This reverts commit 4f5c340.
Go's compile cache uses SHA256 of file content, not mtime. Go's test cache Phase 2 checks runtime-accessed files, not compiled sources. The mtime of zversion.go is irrelevant for both caches. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Remove the VERSION file and use `git describe --tags --abbrev=0` directly in go-tool.sh. This eliminates the second source of truth — git tags are the single source. Reverts changes to make/env.mk, start-release.yml, and helpers.bash that were only needed for the VERSION file fallback. The VERSION file can be added in a follow-up if shallow clone support is needed. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
If go list or the compiled count pipe fails, total/compiled could be empty, causing bash arithmetic errors with set -e. Default to 0 and validate both are numeric before computing cache hit rate. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Replace
-Xldflags with a generatedzversion.go, and set files to a fixed mtime to allow test cache use.Why:
On every commit in CI:
-X MainVersion=...g<sha>ldflags and buildvcs change (Go 1.18+ enabled stamps ofvcs.revisioninto binaries by default), giving link and test binaries new GOCACHE ActionIDs.git checkoutsets file mtimes to "now", but Go's test cache validates by (path, size, mtime), not content.Fix:
a. Move version info into a source file (
zversion.go), removing-Xldflags.b. Disable buildvcs metadata,
-buildvcs=false.CI results
Test jobs
Warm runs: 23071454130, 23073119966. Master: 23063508964, 23054165953.
78% test cache hit rate (1946/2509 packages).
Build jobs (compilation step only)
Build: 23073119981. Master: 23063508995.
4401/4403 deps cached, 2 compiled per commit.
See also: #19425 (GOCACHE stale entry trimming).
Partially generated by AI.