.github/workflows/main.yml - third_party/github.com/tpm2-software/tpm2-tss - Git at Google

 name: CI
 on:
   [push, pull_request]
 jobs:
   build-test:
     runs-on: ubuntu-latest
     if: "!contains(github.ref, 'coverity_scan')"
     strategy:
       matrix:
         docker_image: [ubuntu-20.04, fedora-32, opensuse-leap, ubuntu-22.04, alpine-3.15]
         compiler: [gcc, clang]
     steps:
       - name: Check out repository
         uses: actions/checkout@v2
         with:
             fetch-depth: 0
       - name: fix-sanitizer
         run: sudo sysctl vm.mmap_rnd_bits=28
       - name: Launch Action
         uses:
           tpm2-software/ci/runCI@main
         with:
           DOCKER_IMAGE: ${{ matrix.docker_image }}
           CC: ${{ matrix.compiler }}
           BASE_REF: ${{ github.base_ref }}
           PROJECT_NAME: ${{ github.event.repository.name }}
       - name: failure
         if: ${{ failure() }}
         run: cat $(find ../ -name test-suite.log) || true
   scanbuild:
     runs-on: ubuntu-latest
     if: "!contains(github.ref, 'coverity_scan')"
     steps:
       - name: Check out repository
         uses: actions/checkout@v2
         with:
             fetch-depth: 0
       - name: fix-sanitizer
         run: sudo sysctl vm.mmap_rnd_bits=28
       - name: Launch Action
         uses:
           tpm2-software/ci/runCI@main
         with:
           CC: clang
           DOCKER_IMAGE: fedora-32
           SCANBUILD: yes
           PROJECT_NAME: ${{ github.event.repository.name }}
       - name: failure
         if: ${{ failure() }}
         run: cat $(find ../ -name test-suite.log) || true
   test-tcti-config:
     runs-on: ubuntu-latest
     if: "!contains(github.ref, 'coverity_scan')"
     steps:
       - name: Check out repository
         uses: actions/checkout@v2
         with:
             fetch-depth: 0
       - name: fix-sanitizer
         run: sudo sysctl vm.mmap_rnd_bits=28
       - name: Launch Action
         uses:
           tpm2-software/ci/runCI@main
         with:
           CC: gcc
           DOCKER_IMAGE: fedora-32
           TEST_TCTI_CONFIG: true
           PROJECT_NAME: ${{ github.event.repository.name }}
       - name: failure
         if: ${{ failure() }}
         run: cat $(find ../ -name test-suite.log) || true
   test-mbedtls:
     runs-on: ubuntu-latest
     if: "!contains(github.ref, 'coverity_scan')"
     strategy:
       matrix:
         docker_image: [ubuntu-20.04, ubuntu-22.04-mbedtls-3.1]
     steps:
       - name: Check out repository
         uses: actions/checkout@v2
         with:
             fetch-depth: 0
       - name: fix-sanitizer
         run: sudo sysctl vm.mmap_rnd_bits=28
       - name: Launch Action
         uses:
           tpm2-software/ci/runCI@main
         with:
           CC: gcc
           DOCKER_IMAGE: ${{ matrix.docker_image }}
           WITH_CRYPTO: mbed
           PROJECT_NAME: ${{ github.event.repository.name }}
       - name: failure
         if: ${{ failure() }}
         run: cat $(find ../ -name test-suite.log) || true
   test-no-crypto-build:
     runs-on: ubuntu-latest
     if: "!contains(github.ref, 'coverity_scan')"
     steps:
       - name: Check out repository
         uses: actions/checkout@v2
         with:
             fetch-depth: 0
       - name: fix-sanitizer
         run: sudo sysctl vm.mmap_rnd_bits=28
       - name: Launch Action
         uses:
           tpm2-software/ci/runCI@main
         with:
           CC: gcc
           DOCKER_IMAGE: ubuntu-20.04
           WITH_CRYPTO: none
           PROJECT_NAME: ${{ github.event.repository.name }}
       - name: failure
         if: ${{ failure() }}
         run: cat $(find ../ -name test-suite.log) || true
   test-coverage:
     runs-on: ubuntu-latest
     if: "!contains(github.ref, 'coverity_scan')"
     steps:
       - name: Check out repository
         uses: actions/checkout@v2
         with:
             fetch-depth: 0
       - name: fix-sanitizer
         run: sudo sysctl vm.mmap_rnd_bits=28
       - name: Launch Action
         uses:
           tpm2-software/ci/runCI@main
         with:
           CC: gcc
           DOCKER_IMAGE: ubuntu-20.04
           ENABLE_COVERAGE: true
           PROJECT_NAME: ${{ github.event.repository.name }}
       - name: failure
         if: ${{ failure() }}
         run: cat $(find ../ -name test-suite.log) || true
   test-fuzz:
     runs-on: ubuntu-latest
     if: "!contains(github.ref, 'coverity_scan')"
     steps:
       - name: Check out repository
         uses: actions/checkout@v2
         with:
             fetch-depth: 0
       - name: Launch Action
         uses:
           tpm2-software/ci/runCI@main
         with:
           DOCKER_IMAGE: fedora-32
           GEN_FUZZ: 1
           CXX: clang++
           CC: clang
           PROJECT_NAME: ${{ github.event.repository.name }}
       - name: failure
         if: ${{ failure() }}
         run: cat $(find ../ -name test-suite.log) || true
   coverity-test:
     runs-on: ubuntu-latest
     if: contains(github.ref, 'coverity_scan')
     steps:
       - name: Check out repository
         uses: actions/checkout@v2
         with:
             fetch-depth: 0
       - name: fix-sanitizer
         run: sudo sysctl vm.mmap_rnd_bits=28
       - name: Launch Coverity Action
         uses:
           tpm2-software/ci/coverityScan@main
         with:
           PROJECT_NAME: ${{ github.event.repository.name }}
           REPO_BRANCH: ${{ github.ref }}
           REPO_NAME: ${{ github.repository }}
           ENABLE_COVERITY: true
           DOCKER_IMAGE: ubuntu-20.04
           CC: gcc
           COVERITY_SCAN_TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }}
           COVERITY_SUBMISSION_EMAIL: tadeusz.struk@intel.com
       - name: failure
         if: ${{ failure() }}
         run: cat $(find ../ -name test-suite.log) || true
	name: CI
	on:
	[push, pull_request]
	jobs:
	build-test:
	runs-on: ubuntu-latest
	if: "!contains(github.ref, 'coverity_scan')"
	strategy:
	matrix:
	docker_image: [ubuntu-20.04, fedora-32, opensuse-leap, ubuntu-22.04, alpine-3.15]
	compiler: [gcc, clang]
	steps:
	- name: Check out repository
	uses: actions/checkout@v2
	with:
	fetch-depth: 0
	- name: fix-sanitizer
	run: sudo sysctl vm.mmap_rnd_bits=28
	- name: Launch Action
	uses:
	tpm2-software/ci/runCI@main
	with:
	DOCKER_IMAGE: ${{ matrix.docker_image }}
	CC: ${{ matrix.compiler }}
	BASE_REF: ${{ github.base_ref }}
	PROJECT_NAME: ${{ github.event.repository.name }}
	- name: failure
	if: ${{ failure() }}
	run: cat $(find ../ -name test-suite.log) \|\| true
	scanbuild:
	runs-on: ubuntu-latest
	if: "!contains(github.ref, 'coverity_scan')"
	steps:
	- name: Check out repository
	uses: actions/checkout@v2
	with:
	fetch-depth: 0
	- name: fix-sanitizer
	run: sudo sysctl vm.mmap_rnd_bits=28
	- name: Launch Action
	uses:
	tpm2-software/ci/runCI@main
	with:
	CC: clang
	DOCKER_IMAGE: fedora-32
	SCANBUILD: yes
	PROJECT_NAME: ${{ github.event.repository.name }}
	- name: failure
	if: ${{ failure() }}
	run: cat $(find ../ -name test-suite.log) \|\| true
	test-tcti-config:
	runs-on: ubuntu-latest
	if: "!contains(github.ref, 'coverity_scan')"
	steps:
	- name: Check out repository
	uses: actions/checkout@v2
	with:
	fetch-depth: 0
	- name: fix-sanitizer
	run: sudo sysctl vm.mmap_rnd_bits=28
	- name: Launch Action
	uses:
	tpm2-software/ci/runCI@main
	with:
	CC: gcc
	DOCKER_IMAGE: fedora-32
	TEST_TCTI_CONFIG: true
	PROJECT_NAME: ${{ github.event.repository.name }}
	- name: failure
	if: ${{ failure() }}
	run: cat $(find ../ -name test-suite.log) \|\| true
	test-mbedtls:
	runs-on: ubuntu-latest
	if: "!contains(github.ref, 'coverity_scan')"
	strategy:
	matrix:
	docker_image: [ubuntu-20.04, ubuntu-22.04-mbedtls-3.1]
	steps:
	- name: Check out repository
	uses: actions/checkout@v2
	with:
	fetch-depth: 0
	- name: fix-sanitizer
	run: sudo sysctl vm.mmap_rnd_bits=28
	- name: Launch Action
	uses:
	tpm2-software/ci/runCI@main
	with:
	CC: gcc
	DOCKER_IMAGE: ${{ matrix.docker_image }}
	WITH_CRYPTO: mbed
	PROJECT_NAME: ${{ github.event.repository.name }}
	- name: failure
	if: ${{ failure() }}
	run: cat $(find ../ -name test-suite.log) \|\| true
	test-no-crypto-build:
	runs-on: ubuntu-latest
	if: "!contains(github.ref, 'coverity_scan')"
	steps:
	- name: Check out repository
	uses: actions/checkout@v2
	with:
	fetch-depth: 0
	- name: fix-sanitizer
	run: sudo sysctl vm.mmap_rnd_bits=28
	- name: Launch Action
	uses:
	tpm2-software/ci/runCI@main
	with:
	CC: gcc
	DOCKER_IMAGE: ubuntu-20.04
	WITH_CRYPTO: none
	PROJECT_NAME: ${{ github.event.repository.name }}
	- name: failure
	if: ${{ failure() }}
	run: cat $(find ../ -name test-suite.log) \|\| true
	test-coverage:
	runs-on: ubuntu-latest
	if: "!contains(github.ref, 'coverity_scan')"
	steps:
	- name: Check out repository
	uses: actions/checkout@v2
	with:
	fetch-depth: 0
	- name: fix-sanitizer
	run: sudo sysctl vm.mmap_rnd_bits=28
	- name: Launch Action
	uses:
	tpm2-software/ci/runCI@main
	with:
	CC: gcc
	DOCKER_IMAGE: ubuntu-20.04
	ENABLE_COVERAGE: true
	PROJECT_NAME: ${{ github.event.repository.name }}
	- name: failure
	if: ${{ failure() }}
	run: cat $(find ../ -name test-suite.log) \|\| true
	test-fuzz:
	runs-on: ubuntu-latest
	if: "!contains(github.ref, 'coverity_scan')"
	steps:
	- name: Check out repository
	uses: actions/checkout@v2
	with:
	fetch-depth: 0
	- name: Launch Action
	uses:
	tpm2-software/ci/runCI@main
	with:
	DOCKER_IMAGE: fedora-32
	GEN_FUZZ: 1
	CXX: clang++
	CC: clang
	PROJECT_NAME: ${{ github.event.repository.name }}
	- name: failure
	if: ${{ failure() }}
	run: cat $(find ../ -name test-suite.log) \|\| true
	coverity-test:
	runs-on: ubuntu-latest
	if: contains(github.ref, 'coverity_scan')
	steps:
	- name: Check out repository
	uses: actions/checkout@v2
	with:
	fetch-depth: 0
	- name: fix-sanitizer
	run: sudo sysctl vm.mmap_rnd_bits=28
	- name: Launch Coverity Action
	uses:
	tpm2-software/ci/coverityScan@main
	with:
	PROJECT_NAME: ${{ github.event.repository.name }}
	REPO_BRANCH: ${{ github.ref }}
	REPO_NAME: ${{ github.repository }}
	ENABLE_COVERITY: true
	DOCKER_IMAGE: ubuntu-20.04
	CC: gcc
	COVERITY_SCAN_TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }}
	COVERITY_SUBMISSION_EMAIL: tadeusz.struk@intel.com
	- name: failure
	if: ${{ failure() }}
	run: cat $(find ../ -name test-suite.log) \|\| true