Reformat code

Author: nhatnghiho

tests/ci/cdk/app.py

@@ -6,23 +6,34 @@
 from aws_cdk import Environment, App
 
 # from cdk.bm_framework_stack import BmFrameworkStack
-from cdk.aws_lc_analytics_stack import  AwsLcGitHubAnalyticsStack
+from cdk.aws_lc_analytics_stack import AwsLcGitHubAnalyticsStack
 from cdk.aws_lc_android_ci_stack import AwsLcAndroidCIStack
 from cdk.aws_lc_github_ci_stack import AwsLcGitHubCIStack
-from cdk.aws_lc_github_fuzz_ci_stack import  AwsLcGitHubFuzzCIStack
+from cdk.aws_lc_github_fuzz_ci_stack import AwsLcGitHubFuzzCIStack
 from cdk.aws_lc_ec2_test_framework_ci_stack import AwsLcEC2TestingCIStack
 from cdk.linux_docker_image_batch_build_stack import LinuxDockerImageBatchBuildStack
 from pipeline.pipeline_stack import AwsLcCiPipeline
 from cdk.windows_docker_image_build_stack import WindowsDockerImageBuildStack
 from cdk.aws_lc_github_ci_x509_stack import AwsLcGitHubX509CIStack
 from cdk.ecr_stack import EcrStack
-from util.metadata import LINUX_X86_ECR_REPO, LINUX_AARCH_ECR_REPO, WINDOWS_X86_ECR_REPO, \
-    PIPELINE_ACCOUNT, PIPELINE_REGION, DEPLOY_ACCOUNT, DEPLOY_REGION
+from util.metadata import (
+    LINUX_X86_ECR_REPO,
+    LINUX_AARCH_ECR_REPO,
+    WINDOWS_X86_ECR_REPO,
+    PIPELINE_ACCOUNT,
+    PIPELINE_REGION,
+    DEPLOY_ACCOUNT,
+    DEPLOY_REGION,
+)
 
 # Initialize app.
 app = App()
 
-AwsLcCiPipeline(app, "AwsLcCiPipeline", env=Environment(account=PIPELINE_ACCOUNT, region=PIPELINE_REGION))
+AwsLcCiPipeline(
+    app,
+    "AwsLcCiPipeline",
+    env=Environment(account=PIPELINE_ACCOUNT, region=PIPELINE_REGION),
+)
 
 if DEPLOY_ACCOUNT is not None and DEPLOY_REGION is not None:
     # Initialize env.
@@ -47,19 +58,27 @@
     arm_build_spec_file = "cdk/codebuild/github_ci_linux_arm_omnibus.yaml"
     AwsLcGitHubCIStack(app, "aws-lc-ci-linux-arm", arm_build_spec_file, env=env)
     integration_build_spec_file = "cdk/codebuild/github_ci_integration_omnibus.yaml"
-    AwsLcGitHubCIStack(app, "aws-lc-ci-integration", integration_build_spec_file, env=env)
+    AwsLcGitHubCIStack(
+        app, "aws-lc-ci-integration", integration_build_spec_file, env=env
+    )
     win_x86_build_spec_file = "cdk/codebuild/github_ci_windows_x86_omnibus.yaml"
     AwsLcGitHubCIStack(app, "aws-lc-ci-windows-x86", win_x86_build_spec_file, env=env)
     fuzz_build_spec_file = "cdk/codebuild/github_ci_fuzzing_omnibus.yaml"
     AwsLcGitHubFuzzCIStack(app, "aws-lc-ci-fuzzing", fuzz_build_spec_file, env=env)
     analytics_build_spec_file = "cdk/codebuild/github_ci_analytics_omnibus.yaml"
-    AwsLcGitHubAnalyticsStack(app, "aws-lc-ci-analytics", analytics_build_spec_file, env=env)
+    AwsLcGitHubAnalyticsStack(
+        app, "aws-lc-ci-analytics", analytics_build_spec_file, env=env
+    )
     # bm_framework_build_spec_file = "cdk/codebuild/bm_framework_omnibus.yaml"
     # BmFrameworkStack(app, "aws-lc-ci-bm-framework", bm_framework_build_spec_file, env=env)
     ec2_test_framework_build_spec_file = "cdk/codebuild/ec2_test_framework_omnibus.yaml"
-    AwsLcEC2TestingCIStack(app, "aws-lc-ci-ec2-test-framework", ec2_test_framework_build_spec_file, env=env)
+    AwsLcEC2TestingCIStack(
+        app, "aws-lc-ci-ec2-test-framework", ec2_test_framework_build_spec_file, env=env
+    )
     android_build_spec_file = "cdk/codebuild/github_ci_android_omnibus.yaml"
-    AwsLcAndroidCIStack(app, "aws-lc-ci-devicefarm-android", android_build_spec_file, env=env)
+    AwsLcAndroidCIStack(
+        app, "aws-lc-ci-devicefarm-android", android_build_spec_file, env=env
+    )
     AwsLcGitHubX509CIStack(app, "aws-lc-ci-x509", env=env)
 
 app.synth()

tests/ci/cdk/cdk/aws_lc_analytics_stack.py

@@ -2,26 +2,40 @@
 # SPDX-License-Identifier: Apache-2.0 OR ISC
 import typing
 
-from aws_cdk import Duration, Stack, aws_codebuild as codebuild, aws_iam as iam, aws_ec2 as ec2, aws_efs as efs, \
-    Environment
+from aws_cdk import (
+    Duration,
+    Stack,
+    aws_codebuild as codebuild,
+    aws_iam as iam,
+    aws_ec2 as ec2,
+    aws_efs as efs,
+    Environment,
+)
 from constructs import Construct
 
 from cdk.components import PruneStaleGitHubBuilds
 from util.iam_policies import code_build_publish_metrics_in_json
-from util.metadata import GITHUB_REPO_OWNER, GITHUB_REPO_NAME, PRE_PROD_ACCOUNT, STAGING_GITHUB_REPO_OWNER, \
-    STAGING_GITHUB_REPO_NAME
+from util.metadata import (
+    GITHUB_REPO_OWNER,
+    GITHUB_REPO_NAME,
+    PRE_PROD_ACCOUNT,
+    STAGING_GITHUB_REPO_OWNER,
+    STAGING_GITHUB_REPO_NAME,
+)
 from util.build_spec_loader import BuildSpecLoader
 
 
 class AwsLcGitHubAnalyticsStack(Stack):
     """Define a stack used to batch execute AWS-LC tests in GitHub."""
 
-    def __init__(self,
-                 scope: Construct,
-                 id: str,
-                 spec_file_path: str,
-                 env: typing.Union[Environment, typing.Dict[str, typing.Any]],
-                 **kwargs) -> None:
+    def __init__(
+        self,
+        scope: Construct,
+        id: str,
+        spec_file_path: str,
+        env: typing.Union[Environment, typing.Dict[str, typing.Any]],
+        **kwargs
+    ) -> None:
         super().__init__(scope, id, env=env, **kwargs)
 
         # Define CodeBuild resource.
@@ -43,15 +57,20 @@ def __init__(self,
                 # the branch or create a new FIPS branch it should be updated to '(main)|(fips.*)'
                 .and_branch_is("main")
             ],
-            webhook_triggers_batch_build=True)
+            webhook_triggers_batch_build=True,
+        )
 
         # Define a IAM role for this stack.
-        metrics_policy = iam.PolicyDocument.from_json(code_build_publish_metrics_in_json(env))
+        metrics_policy = iam.PolicyDocument.from_json(
+            code_build_publish_metrics_in_json(env)
+        )
         inline_policies = {"metric_policy": metrics_policy}
-        role = iam.Role(scope=self,
-                        id="{}-role".format(id),
-                        assumed_by=iam.ServicePrincipal("codebuild.amazonaws.com"),
-                        inline_policies=inline_policies)
+        role = iam.Role(
+            scope=self,
+            id="{}-role".format(id),
+            assumed_by=iam.ServicePrincipal("codebuild.amazonaws.com"),
+            inline_policies=inline_policies,
+        )
 
         # Define CodeBuild.
         analytics = codebuild.Project(
@@ -61,10 +80,19 @@ def __init__(self,
             source=git_hub_source,
             role=role,
             timeout=Duration.minutes(120),
-            environment=codebuild.BuildEnvironment(compute_type=codebuild.ComputeType.LARGE,
-                                                   privileged=True,
-                                                   build_image=codebuild.LinuxBuildImage.STANDARD_4_0),
-            build_spec=BuildSpecLoader.load(spec_file_path, env))
+            environment=codebuild.BuildEnvironment(
+                compute_type=codebuild.ComputeType.LARGE,
+                privileged=True,
+                build_image=codebuild.LinuxBuildImage.STANDARD_4_0,
+            ),
+            build_spec=BuildSpecLoader.load(spec_file_path, env),
+        )
         analytics.enable_batch_builds()
 
-        PruneStaleGitHubBuilds(scope=self, id="PruneStaleGitHubBuilds", project=analytics, ec2_permissions=False, env=env)
+        PruneStaleGitHubBuilds(
+            scope=self,
+            id="PruneStaleGitHubBuilds",
+            project=analytics,
+            ec2_permissions=False,
+            env=env,
+        )

tests/ci/cdk/cdk/aws_lc_android_ci_stack.py

@@ -2,13 +2,28 @@
 # SPDX-License-Identifier: Apache-2.0 OR ISC
 import typing
 
-from aws_cdk import Duration, Stack, aws_codebuild as codebuild, aws_iam as iam, Environment
+from aws_cdk import (
+    Duration,
+    Environment,
+    Stack,
+    aws_codebuild as codebuild,
+    aws_iam as iam,
+)
 from constructs import Construct
 
 from cdk.components import PruneStaleGitHubBuilds
-from util.iam_policies import code_build_batch_policy_in_json, device_farm_access_policy_in_json
-from util.metadata import GITHUB_REPO_OWNER, GITHUB_REPO_NAME, GITHUB_PUSH_CI_BRANCH_TARGETS, PRE_PROD_ACCOUNT, \
-    STAGING_GITHUB_REPO_OWNER, STAGING_GITHUB_REPO_NAME
+from util.iam_policies import (
+    code_build_batch_policy_in_json,
+    device_farm_access_policy_in_json,
+)
+from util.metadata import (
+    GITHUB_REPO_OWNER,
+    GITHUB_REPO_NAME,
+    GITHUB_PUSH_CI_BRANCH_TARGETS,
+    PRE_PROD_ACCOUNT,
+    STAGING_GITHUB_REPO_OWNER,
+    STAGING_GITHUB_REPO_NAME,
+)
 from util.build_spec_loader import BuildSpecLoader
 
 
@@ -18,12 +33,14 @@ class AwsLcAndroidCIStack(Stack):
     # The Device Farm resource used to in this CI spec, must be manually created.
     # TODO: Automate Device Farm creation with cdk script.
 
-    def __init__(self,
-                 scope: Construct,
-                 id: str,
-                 spec_file_path: str,
-                 env: typing.Union[Environment, typing.Dict[str, typing.Any]],
-                 **kwargs) -> None:
+    def __init__(
+        self,
+        scope: Construct,
+        id: str,
+        spec_file_path: str,
+        env: typing.Union[Environment, typing.Dict[str, typing.Any]],
+        **kwargs
+    ) -> None:
         super().__init__(scope, id, env=env, **kwargs)
 
         github_repo_owner = GITHUB_REPO_OWNER
@@ -42,11 +59,14 @@ def __init__(self,
                 codebuild.FilterGroup.in_event_of(
                     codebuild.EventAction.PULL_REQUEST_CREATED,
                     codebuild.EventAction.PULL_REQUEST_UPDATED,
-                    codebuild.EventAction.PULL_REQUEST_REOPENED),
-                codebuild.FilterGroup.in_event_of(codebuild.EventAction.PUSH).and_branch_is(
-                    GITHUB_PUSH_CI_BRANCH_TARGETS),
+                    codebuild.EventAction.PULL_REQUEST_REOPENED,
+                ),
+                codebuild.FilterGroup.in_event_of(
+                    codebuild.EventAction.PUSH
+                ).and_branch_is(GITHUB_PUSH_CI_BRANCH_TARGETS),
             ],
-            webhook_triggers_batch_build=True)
+            webhook_triggers_batch_build=True,
+        )
 
         # Define a IAM role for this stack.
         code_build_batch_policy = iam.PolicyDocument.from_json(
@@ -55,11 +75,16 @@ def __init__(self,
         device_farm_policy = iam.PolicyDocument.from_json(
             device_farm_access_policy_in_json(env)
         )
-        inline_policies = {"code_build_batch_policy": code_build_batch_policy, "device_farm_policy": device_farm_policy}
-        role = iam.Role(scope=self,
-                        id="{}-role".format(id),
-                        assumed_by=iam.ServicePrincipal("codebuild.amazonaws.com"),
-                        inline_policies=inline_policies)
+        inline_policies = {
+            "code_build_batch_policy": code_build_batch_policy,
+            "device_farm_policy": device_farm_policy,
+        }
+        role = iam.Role(
+            scope=self,
+            id="{}-role".format(id),
+            assumed_by=iam.ServicePrincipal("codebuild.amazonaws.com"),
+            inline_policies=inline_policies,
+        )
 
         # Define CodeBuild.
         project = codebuild.Project(
@@ -69,10 +94,19 @@ def __init__(self,
             source=git_hub_source,
             role=role,
             timeout=Duration.minutes(180),
-            environment=codebuild.BuildEnvironment(compute_type=codebuild.ComputeType.SMALL,
-                                                   privileged=False,
-                                                   build_image=codebuild.LinuxBuildImage.STANDARD_4_0),
-            build_spec=BuildSpecLoader.load(spec_file_path, env))
+            environment=codebuild.BuildEnvironment(
+                compute_type=codebuild.ComputeType.SMALL,
+                privileged=False,
+                build_image=codebuild.LinuxBuildImage.STANDARD_4_0,
+            ),
+            build_spec=BuildSpecLoader.load(spec_file_path, env),
+        )
         project.enable_batch_builds()
 
-        PruneStaleGitHubBuilds(scope=self, id="PruneStaleGitHubBuilds", project=project, ec2_permissions=False, env=env)
+        PruneStaleGitHubBuilds(
+            scope=self,
+            id="PruneStaleGitHubBuilds",
+            project=project,
+            ec2_permissions=False,
+            env=env,
+        )