Run some tests less frequently

[MarkEWaite]

Run some tests less frequently

The Launchable report shows that these tests have never failed in the 12 months that they have been monitored by Launchable. Since they have never failed, it seems safe to run them less frequently. This implementation of "less frequently" will run the tests 1 of 8 times on the master branch with the assumption that we average 2 builds per day throughout the week, with 3 configurations in every build. 14 jobs per week and 3 configurations per job should run the tests on the ci.jenkins.io master branch at least 3 times each week.

Tests are only skipped if the CI environment variable is "true". Developer execution of the tests is not changed.

Considering how reliable the tests are, we might consider running them even less, but this is a start.

Testing done

Confirmed that the test frequency approximates 1 in 3 when working on a development branch with the JENKINS_URL environment variable set to https://ci.jenkins.io

Confirmed that the tests are always run in the developer environment (no JENKINS_URL environment variable).

Proposed changelog entries

N/A

Proposed upgrade guidelines

N/A

Submitter checklist

Beta Give feedback

1. The Jira issue, if it exists, is well-described.
2. The changelog entries and upgrade guidelines are appropriate for the audience affected by the change (users or developers, depending on the change) and are in the imperative mood (see examples). Fill in the Proposed upgrade guidelines section only if there are breaking changes or changes that may require extra steps from users during upgrade.
3. There is automated testing or an explanation as to why this change has no tests.
4. New public classes, fields, and methods are annotated with @Restricted or have @since TODO Javadocs, as appropriate.
5. New deprecations are annotated with @Deprecated(since = "TODO") or @Deprecated(forRemoval = true, since = "TODO"), if applicable.
6. New or substantially changed JavaScript is not defined inline and does not call eval to ease future introduction of Content Security Policy (CSP) directives (see documentation).
7. For dependency updates, there are links to external changelogs and, if possible, full differentials.
8. For new APIs and extension points, there is a link to at least one consumer.

Desired reviewers

N/A

Before the changes are marked as ready-for-merge:

Maintainer checklist

Beta Give feedback

1. There are at least two (2) approvals for the pull request and no outstanding requests for change.
2. Conversations in the pull request are over, or it is explicit that a reviewer is not blocking the change.
3. Changelog entries in the pull request title and/or Proposed changelog entries are accurate, human-readable, and in the imperative mood.
4. Proper changelog labels are set so that the changelog can be generated automatically.
5. If the change needs additional upgrade steps from users, the upgrade-guide-needed label is set and there is a Proposed upgrade guidelines section in the pull request title (see example).
6. If it would make sense to backport the change to LTS, a Jira issue must exist, be a Bug or Improvement, and be labeled as lts-candidate to be considered (see query).

[daniel-beck]

Remember when a Surefire(?) bug caused an XSS test to show success instead of failure due to improper handling of parameterized tests? I'd rather not want a repeat.

[daniel-beck]

Please no.

[MarkEWaite]

Thanks for the comment and thanks for the pointer to a specific case where a technique like this caused serious problems. It is good for me to know that this is not a workable technique.

Is there any technique you can envision that would be acceptable to reduce the frequency of running the tests? I'm fine if there is not, but am curious if you can see any path that would allow us to run these tests less frequently while still running them sometimes.

[daniel-beck]

Is there any technique you can envision that would be acceptable to reduce the frequency of running the tests?

Skip on master specifically when running on ci.j.io? PRs still run them (even if unrelated), and cert.ci still runs.

[MarkEWaite]

Skip on master specifically when running on ci.j.io? PRs still run them (even if unrelated), and cert.ci still runs.

Thanks for the clarification. I'll implement that. That has the benefit that release.ci.jenkins.io will also still run those tests and provide one more safeguard that a regression has not been introduced.

[daniel-beck]

Please no.

[MarkEWaite]

I mistakenly thought that the "Please no" applied to all the changes in the pull request, but now that I read more carefully, I see that it applies to 4 tests that are specifically validating security fixes. I'll remove the changes to tests related to security. An undetected security regression is much, much more expensive than running the tests each time.

Thanks again for the review.

[daniel-beck]

Right, I specifically request security-related tests be exempted. Regular functional regressions being caught with 90+% likelihood seems mostly fine if the savings goal here is significant enough.

[daniel-beck]

Please no.

[daniel-beck]

Please no.

[daniel-beck]

Please no.

[github-actions]

Please take a moment and address the merge conflicts of your pull request. Thanks!

[timja]

how does this assure 1 in 8 times?

Wouldn't it be better to do off of the build number rather than wall clock time which could be completely random and never be mod 8?

[MarkEWaite]

how does this assure 1 in 8 times?

It doesn't assure 1 in 8 times, but it does approximate it.

When a change follows another change before the build has completed for the first change, the build for the first change is aborted. By relying on the semi-random nature of the system clock, we're less likely to skip a build because it was aborted by a later merge.

By using the system clock and its expected relatively even distribution of values, when a test is about to be run, roughly 1 time out of 8 times it will be selected to run. I think that is better than relying on the build number because it does not risk skipping a build because the build was aborted due to a later build.

[StefanSpieker]

I'm not sure, but it might be a good idea to use JUnit5 and the @DisabledIf() annotation for this, because it would really disable the test and not just let it pass. Here is an example how to use it: junit5 user guide

Another way would be to implement an interface for that:

@Target(ElementType.METHOD)
@Retention(RetentionPolicy.RUNTIME)
@DisabledIf("Math.random() >= 0.2")
@interface OnlySomeTimes {
}

and then in your method:

@OnlySomeTimes
public void gamble() {
    // this method will run roughly 20% of the time
}

Baeldung has a nice tutorial for that: https://www.baeldung.com/junit-5-conditional-test-execution#custom-annotations

[MarkEWaite]

I'm not sure, but it might be a good idea to use JUnit5

I'm not ready to convert those test files from JUnit 4 to JUnit 5. That seems like more work than I'm ready to do and a much larger impact on the test files than adding an assume condition to stop execution.

[MarkEWaite]

Rather than this relatively small cost savings, I'll likely spend my effort on larger cost savings, like switching off the JDK 17 testing on Linux. Closing this pull request. We can always reopen it in the future if the idea is interesting.