diff options
Diffstat (limited to '.github/workflows/build-extra.yml')
-rw-r--r-- | .github/workflows/build-extra.yml | 26 |
1 files changed, 19 insertions, 7 deletions
diff --git a/.github/workflows/build-extra.yml b/.github/workflows/build-extra.yml index 6f9a4bc2c..ff812ca32 100644 --- a/.github/workflows/build-extra.yml +++ b/.github/workflows/build-extra.yml | |||
@@ -28,11 +28,13 @@ on: | |||
28 | 28 | ||
29 | jobs: | 29 | jobs: |
30 | build-clang: | 30 | build-clang: |
31 | runs-on: ubuntu-20.04 | 31 | runs-on: ubuntu-22.04 |
32 | steps: | 32 | steps: |
33 | - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b | 33 | - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b |
34 | - name: install dependencies | ||
35 | run: sudo apt-get install libapparmor-dev libselinux1-dev | ||
34 | - name: configure | 36 | - name: configure |
35 | run: CC=clang-11 ./configure --enable-fatal-warnings | 37 | run: CC=clang-14 ./configure --enable-fatal-warnings --enable-apparmor --enable-selinux |
36 | - name: make | 38 | - name: make |
37 | run: make | 39 | run: make |
38 | - name: make install | 40 | - name: make install |
@@ -40,16 +42,26 @@ jobs: | |||
40 | - name: print version | 42 | - name: print version |
41 | run: command -V firejail && firejail --version | 43 | run: command -V firejail && firejail --version |
42 | scan-build: | 44 | scan-build: |
43 | runs-on: ubuntu-20.04 | 45 | runs-on: ubuntu-22.04 |
44 | steps: | 46 | steps: |
45 | - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b | 47 | - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b |
46 | - name: install clang-tools-11 | 48 | - name: install clang-tools-14 and dependencies |
47 | run: sudo apt-get install clang-tools-11 | 49 | run: sudo apt-get install clang-tools-14 libapparmor-dev libselinux1-dev |
48 | - name: configure | 50 | - name: configure |
49 | run: CC=clang-11 ./configure --enable-fatal-warnings | 51 | run: CC=clang-14 ./configure --enable-fatal-warnings --enable-apparmor --enable-selinux |
50 | - name: scan-build | 52 | - name: scan-build |
51 | run: NO_EXTRA_CFLAGS="yes" scan-build-11 --status-bugs make | 53 | run: NO_EXTRA_CFLAGS="yes" scan-build-14 --status-bugs make |
52 | cppcheck: | 54 | cppcheck: |
55 | runs-on: ubuntu-22.04 | ||
56 | steps: | ||
57 | - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b | ||
58 | - name: install cppcheck | ||
59 | run: sudo apt-get install cppcheck | ||
60 | - name: cppcheck | ||
61 | run: cppcheck -q --force --error-exitcode=1 --enable=warning,performance -i src/firejail/checkcfg.c -i src/firejail/main.c . | ||
62 | # new cppcheck version currently chokes on checkcfg.c and main.c, therefore scan all files also | ||
63 | # with older cppcheck version from ubuntu 20.04. | ||
64 | cppcheck_old: | ||
53 | runs-on: ubuntu-20.04 | 65 | runs-on: ubuntu-20.04 |
54 | steps: | 66 | steps: |
55 | - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b | 67 | - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b |