lib: Add lcfs_fd_measure_fsverity #894
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Test | |
on: [push, pull_request] | |
permissions: | |
actions: read | |
jobs: | |
clang-format: | |
# To pick up a newer clang | |
runs-on: ubuntu-24.04 | |
name: "clang-format" | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v4 | |
- name: Install dependencies | |
run: sudo ./hacking/installdeps.sh | |
- name: Configure | |
run: meson setup build --prefix=/usr | |
- name: clang-format | |
run: ninja -C build clang-format-check | |
# This build doesn't enable ASAN, which e.g. makes it easier to use with Rust | |
build: | |
runs-on: ubuntu-latest | |
name: "Build with ASAN" | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v3 | |
- name: Install dependencies | |
run: sudo ./hacking/installdeps.sh | |
- name: Install fsck.erofs | |
run: sudo apt install erofs-utils | |
- name: Install go-md2man | |
run: sudo apt install go-md2man | |
- name: Configure | |
run: meson setup build --prefix=/usr --werror -Db_sanitize=address,undefined | |
- name: Build | |
run: meson compile -C build | |
- name: Unit tests | |
run: meson test -C build | |
- name: Capture build | |
run: DESTDIR=$(pwd)/instroot meson install -C build && tar -C instroot -czf composefs.tar . | |
- name: Upload binary | |
uses: actions/upload-artifact@v4 | |
with: | |
name: composefs.tar | |
path: composefs.tar | |
- name: Upload log | |
uses: actions/upload-artifact@v4 | |
if: always() | |
with: | |
name: testlog-asan.txt | |
path: build/meson-logs/testlog.txt | |
# This build doesn't enable ASAN, which e.g. makes it easier to use with Rust | |
build-noasan: | |
runs-on: ubuntu-latest | |
name: "Build without ASAN" | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v3 | |
- name: Install dependencies | |
run: sudo ./hacking/installdeps.sh | |
- name: Configure | |
run: meson setup build --prefix=/usr --werror | |
- name: Build | |
run: meson compile -C build | |
- name: Capture build | |
run: DESTDIR=$(pwd)/instroot meson install -C build && tar -C instroot -czf composefs.tar . | |
- name: Upload binary | |
uses: actions/upload-artifact@v4 | |
with: | |
name: composefs-noasan.tar | |
path: composefs.tar | |
- name: Upload log | |
uses: actions/upload-artifact@v4 | |
if: always() | |
with: | |
name: testlog-noasan.txt | |
path: build/meson-logs/testlog.txt | |
build-baseline: | |
runs-on: ubuntu-latest | |
name: "Build on Ubuntu Focal" | |
container: ubuntu:focal | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v4 | |
- name: Install dependencies | |
run: | | |
apt-get update -y | |
ALLOW_MISSING="libfsverity-dev" ./hacking/installdeps.sh | |
- name: Configure | |
run: meson setup build --werror | |
- name: Build | |
# focal's meson is too old for 'meson compile' | |
run: ninja -C build | |
build-latest-clang: | |
runs-on: ubuntu-24.04 | |
name: "Build (24.04, clang)" | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v4 | |
- name: Install dependencies | |
run: sudo ./hacking/installdeps.sh | |
- name: Configure | |
run: env CC=clang meson setup build --werror | |
- name: Build | |
# focal's meson is too old for 'meson compile' | |
run: meson compile -C build | |
build-unit-cross: | |
runs-on: ubuntu-latest | |
name: Build on ${{ matrix.arch }} | |
strategy: | |
matrix: | |
include: | |
- arch: armv7 | |
distro: bullseye | |
- arch: aarch64 | |
distro: bullseye | |
- arch: s390x | |
distro: bullseye | |
- arch: ppc64le | |
distro: bullseye | |
steps: | |
- uses: actions/[email protected] | |
with: | |
submodules: true | |
set-safe-directory: true | |
- uses: uraimo/[email protected] | |
name: Build | |
id: build | |
with: | |
arch: ${{ matrix.arch }} | |
distro: ${{ matrix.distro }} | |
githubToken: ${{ github.token }} | |
run: | | |
apt-get update -y | |
./hacking/installdeps.sh | |
meson setup build --werror | |
meson compile -C build | |
env CFS_TEST_ARCH_EMULATION=${{ matrix.arch }} meson test -C build --timeout-multiplier 10 | |
- name: Upload log | |
uses: actions/upload-artifact@v4 | |
if: always() | |
with: | |
name: testlog-${{ matrix.arch }} | |
path: build/meson-logs/testlog.txt | |
integration: | |
needs: build | |
runs-on: ubuntu-latest | |
steps: | |
- run: sudo apt-get update -y | |
- name: Install erofs kmod | |
run: sudo apt install linux-modules-extra-$(uname -r) | |
- name: Install dependencies | |
run: sudo apt install libasan6 libubsan1 fsverity | |
- name: Checkout repository | |
uses: actions/checkout@v3 | |
- name: Download | |
uses: actions/download-artifact@v4 | |
with: | |
name: composefs.tar | |
- run: sudo tar -C / -xvf composefs.tar | |
- name: Integration tests | |
run: sudo ./tests/integration.sh | |
- name: Integration tests (fsverity required) | |
run: sudo env WITH_TEMP_VERITY=1 unshare -m ./tests/integration.sh | |
rust: | |
needs: build-noasan | |
runs-on: ubuntu-latest | |
steps: | |
- run: sudo apt-get update -y | |
- name: Checkout repository | |
uses: actions/checkout@v3 | |
- name: Download | |
uses: actions/download-artifact@v4 | |
with: | |
name: composefs-noasan.tar | |
- run: sudo tar -C / -xvf composefs.tar | |
- name: Cache Dependencies | |
uses: Swatinem/rust-cache@v2 | |
with: | |
key: "rust-main" | |
- name: Rust (default features) | |
run: cargo test | |
- name: Rust (no features) | |
run: cargo test --no-default-features | |
distcheck: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v3 | |
- name: Install dependencies | |
run: sudo ./hacking/installdeps.sh | |
- name: Configure | |
run: meson setup build --werror | |
- name: Run make distcheck | |
run: meson dist -C build |