diff options
Diffstat (limited to '.github/workflows/build.yml')
-rw-r--r-- | .github/workflows/build.yml | 63 |
1 files changed, 29 insertions, 34 deletions
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 93ad0ebf1..b72bdd611 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml | |||
@@ -8,6 +8,7 @@ on: | |||
8 | - .git-blame-ignore-revs | 8 | - .git-blame-ignore-revs |
9 | - .github/dependabot.yml | 9 | - .github/dependabot.yml |
10 | - .github/pull_request_template.md | 10 | - .github/pull_request_template.md |
11 | - .github/workflows/build-extra.yml | ||
11 | - .github/workflows/codeql-analysis.yml | 12 | - .github/workflows/codeql-analysis.yml |
12 | - .github/workflows/profile-checks.yml | 13 | - .github/workflows/profile-checks.yml |
13 | - .gitignore | 14 | - .gitignore |
@@ -25,6 +26,7 @@ on: | |||
25 | - .git-blame-ignore-revs | 26 | - .git-blame-ignore-revs |
26 | - .github/dependabot.yml | 27 | - .github/dependabot.yml |
27 | - .github/pull_request_template.md | 28 | - .github/pull_request_template.md |
29 | - .github/workflows/build-extra.yml | ||
28 | - .github/workflows/codeql-analysis.yml | 30 | - .github/workflows/codeql-analysis.yml |
29 | - .github/workflows/profile-checks.yml | 31 | - .github/workflows/profile-checks.yml |
30 | - .gitignore | 32 | - .gitignore |
@@ -42,6 +44,8 @@ permissions: # added using https://github.com/step-security/secure-workflows | |||
42 | jobs: | 44 | jobs: |
43 | build_and_test: | 45 | build_and_test: |
44 | runs-on: ubuntu-22.04 | 46 | runs-on: ubuntu-22.04 |
47 | env: | ||
48 | SHELL: /bin/bash | ||
45 | steps: | 49 | steps: |
46 | - name: Harden Runner | 50 | - name: Harden Runner |
47 | uses: step-security/harden-runner@6b3083af2869dc3314a0257a42f4af696cc79ba3 | 51 | uses: step-security/harden-runner@6b3083af2869dc3314a0257a42f4af696cc79ba3 |
@@ -60,44 +64,35 @@ jobs: | |||
60 | - name: update package information | 64 | - name: update package information |
61 | run: sudo apt-get update | 65 | run: sudo apt-get update |
62 | - name: install dependencies | 66 | - name: install dependencies |
63 | run: sudo apt-get install gcc-12 libapparmor-dev libselinux1-dev expect xzdec whois bridge-utils | 67 | run: > |
68 | sudo apt-get install | ||
69 | gcc-12 libapparmor-dev libselinux1-dev expect xzdec whois | ||
70 | bridge-utils | ||
71 | - name: print env | ||
72 | run: ./ci/printenv.sh | ||
64 | - name: configure | 73 | - name: configure |
65 | run: CC=gcc-12 ./configure --prefix=/usr --enable-fatal-warnings --enable-analyzer --enable-apparmor --enable-selinux | 74 | run: > |
75 | CC=gcc-12 ./configure --prefix=/usr --enable-fatal-warnings | ||
76 | --enable-analyzer --enable-apparmor --enable-selinux | ||
66 | - name: make | 77 | - name: make |
67 | run: make | 78 | run: make |
68 | - name: make install | 79 | - name: make install |
69 | run: sudo make install | 80 | run: sudo make install |
70 | - name: print firejail version | 81 | - name: print firejail version |
71 | run: command -V firejail && firejail --version | 82 | run: command -V firejail && firejail --version |
72 | - name: lab setup | 83 | - run: make lab-setup |
73 | run: SHELL=/bin/bash make lab-setup | 84 | - run: make test-seccomp-extra |
74 | - name: run seccomp extra tests | 85 | - run: make test-firecfg |
75 | run: SHELL=/bin/bash make test-seccomp-extra | 86 | - run: make test-capabilities |
76 | - name: run firecfg tests | 87 | - run: make test-apparmor |
77 | run: SHELL=/bin/bash make test-firecfg | 88 | - run: make test-appimage |
78 | - name: run capabilities tests | 89 | - run: make test-chroot |
79 | run: SHELL=/bin/bash make test-capabilities | 90 | - run: make test-sysutils |
80 | - name: run apparmor tests | 91 | - run: make test-private-etc |
81 | run: SHELL=/bin/bash make test-apparmor | 92 | - run: make test-profiles |
82 | - name: run appimage tests | 93 | - run: make test-fcopy |
83 | run: SHELL=/bin/bash make test-appimage | 94 | - run: make test-fnetfilter |
84 | - name: run chroot tests | 95 | - run: make test-fs |
85 | run: SHELL=/bin/bash make test-chroot | 96 | - run: make test-utils |
86 | - name: run sysutils tests | 97 | - run: make test-environment |
87 | run: SHELL=/bin/bash make test-sysutils | 98 | - run: make test-network |
88 | - name: run private-etc tests | ||
89 | run: SHELL=/bin/bash make test-private-etc | ||
90 | - name: run profile tests | ||
91 | run: SHELL=/bin/bash make test-profiles | ||
92 | - name: run fcopy tests | ||
93 | run: SHELL=/bin/bash make test-fcopy | ||
94 | - name: run fnetfilter tests | ||
95 | run: SHELL=/bin/bash make test-fnetfilter | ||
96 | - name: run fs tests | ||
97 | run: SHELL=/bin/bash make test-fs | ||
98 | - name: run utils tests | ||
99 | run: SHELL=/bin/bash make test-utils | ||
100 | - name: run environment tests | ||
101 | run: SHELL=/bin/bash make test-environment | ||
102 | - name: run network tests | ||
103 | run: SHELL=/bin/bash make test-network | ||