diff options
Diffstat (limited to '.github')
-rw-r--r-- | .github/workflows/build-extra.yml | 9 | ||||
-rw-r--r-- | .github/workflows/build.yml | 12 | ||||
-rw-r--r-- | .github/workflows/check-c.yml | 11 | ||||
-rw-r--r-- | .github/workflows/test.yml | 45 |
4 files changed, 41 insertions, 36 deletions
diff --git a/.github/workflows/build-extra.yml b/.github/workflows/build-extra.yml index 918c879ad..e18ab9f0c 100644 --- a/.github/workflows/build-extra.yml +++ b/.github/workflows/build-extra.yml | |||
@@ -48,12 +48,10 @@ jobs: | |||
48 | with: | 48 | with: |
49 | egress-policy: block | 49 | egress-policy: block |
50 | allowed-endpoints: > | 50 | allowed-endpoints: > |
51 | archive.ubuntu.com:80 | ||
52 | azure.archive.ubuntu.com:80 | 51 | azure.archive.ubuntu.com:80 |
53 | github.com:443 | 52 | github.com:443 |
54 | packages.microsoft.com:443 | 53 | packages.microsoft.com:443 |
55 | ppa.launchpadcontent.net:443 | 54 | ppa.launchpadcontent.net:443 |
56 | security.ubuntu.com:80 | ||
57 | - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 | 55 | - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 |
58 | - name: update package information | 56 | - name: update package information |
59 | run: sudo apt-get update -qy | 57 | run: sudo apt-get update -qy |
@@ -65,12 +63,13 @@ jobs: | |||
65 | run: ./ci/printenv.sh | 63 | run: ./ci/printenv.sh |
66 | - name: configure | 64 | - name: configure |
67 | run: > | 65 | run: > |
68 | CC=clang-14 ./configure --enable-fatal-warnings --enable-apparmor | 66 | ./configure CC=clang-14 |
69 | --enable-selinux | 67 | --prefix=/usr --enable-fatal-warnings |
68 | --enable-apparmor --enable-selinux | ||
70 | || (cat config.log; exit 1) | 69 | || (cat config.log; exit 1) |
71 | - name: make | 70 | - name: make |
72 | run: make | 71 | run: make |
73 | - name: make install | 72 | - name: make install |
74 | run: sudo make install | 73 | run: sudo make install |
75 | - name: print version | 74 | - name: print version |
76 | run: command -V firejail && firejail --version | 75 | run: make print-version |
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index df706c898..a005fefd7 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml | |||
@@ -74,18 +74,18 @@ jobs: | |||
74 | - name: install dependencies | 74 | - name: install dependencies |
75 | run: > | 75 | run: > |
76 | sudo apt-get install -qy | 76 | sudo apt-get install -qy |
77 | gcc-12 libapparmor-dev libselinux1-dev expect xzdec whois | 77 | gcc-12 libapparmor-dev libselinux1-dev |
78 | bridge-utils | ||
79 | - name: print env | 78 | - name: print env |
80 | run: ./ci/printenv.sh | 79 | run: ./ci/printenv.sh |
81 | - name: configure | 80 | - name: configure |
82 | run: > | 81 | run: > |
83 | CC=gcc-12 ./configure --prefix=/usr --enable-fatal-warnings | 82 | ./configure CC=gcc-12 |
84 | --enable-analyzer --enable-apparmor --enable-selinux | 83 | --prefix=/usr --enable-fatal-warnings --enable-analyzer |
84 | --enable-apparmor --enable-selinux | ||
85 | || (cat config.log; exit 1) | 85 | || (cat config.log; exit 1) |
86 | - name: make | 86 | - name: make |
87 | run: make | 87 | run: make |
88 | - name: make install | 88 | - name: make install |
89 | run: sudo make install | 89 | run: sudo make install |
90 | - name: print firejail version | 90 | - name: print version |
91 | run: command -V firejail && firejail --version | 91 | run: make print-version |
diff --git a/.github/workflows/check-c.yml b/.github/workflows/check-c.yml index 5c20f9892..49c9b38a7 100644 --- a/.github/workflows/check-c.yml +++ b/.github/workflows/check-c.yml | |||
@@ -8,9 +8,9 @@ on: | |||
8 | branches-ignore: | 8 | branches-ignore: |
9 | - 'dependabot/**' | 9 | - 'dependabot/**' |
10 | paths: | 10 | paths: |
11 | - '**.c' | ||
12 | - '**.h' | ||
11 | - 'm4/**' | 13 | - 'm4/**' |
12 | - 'src/**.c' | ||
13 | - 'src/**.h' | ||
14 | - 'src/**.mk' | 14 | - 'src/**.mk' |
15 | - 'src/**Makefile' | 15 | - 'src/**Makefile' |
16 | - .github/workflows/check-c.yml | 16 | - .github/workflows/check-c.yml |
@@ -22,9 +22,9 @@ on: | |||
22 | - configure.ac | 22 | - configure.ac |
23 | pull_request: | 23 | pull_request: |
24 | paths: | 24 | paths: |
25 | - '**.c' | ||
26 | - '**.h' | ||
25 | - 'm4/**' | 27 | - 'm4/**' |
26 | - 'src/**.c' | ||
27 | - 'src/**.h' | ||
28 | - 'src/**.mk' | 28 | - 'src/**.mk' |
29 | - 'src/**Makefile' | 29 | - 'src/**Makefile' |
30 | - .github/workflows/check-c.yml | 30 | - .github/workflows/check-c.yml |
@@ -68,7 +68,8 @@ jobs: | |||
68 | - name: configure | 68 | - name: configure |
69 | run: > | 69 | run: > |
70 | ./configure CC=clang-14 SCAN_BUILD=scan-build-14 | 70 | ./configure CC=clang-14 SCAN_BUILD=scan-build-14 |
71 | --enable-fatal-warnings --enable-apparmor --enable-selinux | 71 | --prefix=/usr --enable-fatal-warnings |
72 | --enable-apparmor --enable-selinux | ||
72 | || (cat config.log; exit 1) | 73 | || (cat config.log; exit 1) |
73 | - name: scan-build | 74 | - name: scan-build |
74 | run: make scan-build | 75 | run: make scan-build |
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index c76401022..f0aeafc9a 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml | |||
@@ -73,15 +73,16 @@ jobs: | |||
73 | run: ./ci/printenv.sh | 73 | run: ./ci/printenv.sh |
74 | - name: configure | 74 | - name: configure |
75 | run: > | 75 | run: > |
76 | CC=gcc-12 ./configure --prefix=/usr --enable-fatal-warnings | 76 | ./configure CC=gcc-12 |
77 | --enable-analyzer --enable-apparmor --enable-selinux | 77 | --prefix=/usr --enable-fatal-warnings --enable-analyzer |
78 | --enable-apparmor --enable-selinux | ||
78 | || (cat config.log; exit 1) | 79 | || (cat config.log; exit 1) |
79 | - name: make | 80 | - name: make |
80 | run: make -j "$(nproc)" | 81 | run: make -j "$(nproc)" |
81 | - name: make install | 82 | - name: make install |
82 | run: sudo make install | 83 | run: sudo make install |
83 | - name: print firejail version | 84 | - name: print version |
84 | run: command -V firejail && firejail --version | 85 | run: make print-version |
85 | - run: make lab-setup | 86 | - run: make lab-setup |
86 | - run: make test-seccomp-extra | 87 | - run: make test-seccomp-extra |
87 | - run: make test-firecfg | 88 | - run: make test-firecfg |
@@ -121,15 +122,16 @@ jobs: | |||
121 | run: ./ci/printenv.sh | 122 | run: ./ci/printenv.sh |
122 | - name: configure | 123 | - name: configure |
123 | run: > | 124 | run: > |
124 | CC=gcc-12 ./configure --prefix=/usr --enable-fatal-warnings | 125 | ./configure CC=gcc-12 |
125 | --enable-analyzer --enable-apparmor --enable-selinux | 126 | --prefix=/usr --enable-fatal-warnings --enable-analyzer |
127 | --enable-apparmor --enable-selinux | ||
126 | || (cat config.log; exit 1) | 128 | || (cat config.log; exit 1) |
127 | - name: make | 129 | - name: make |
128 | run: make -j "$(nproc)" | 130 | run: make -j "$(nproc)" |
129 | - name: make install | 131 | - name: make install |
130 | run: sudo make install | 132 | run: sudo make install |
131 | - name: print firejail version | 133 | - name: print version |
132 | run: command -V firejail && firejail --version | 134 | run: make print-version |
133 | - run: make lab-setup | 135 | - run: make lab-setup |
134 | - run: make test-private-etc | 136 | - run: make test-private-etc |
135 | - run: make test-fs | 137 | - run: make test-fs |
@@ -160,15 +162,16 @@ jobs: | |||
160 | run: ./ci/printenv.sh | 162 | run: ./ci/printenv.sh |
161 | - name: configure | 163 | - name: configure |
162 | run: > | 164 | run: > |
163 | CC=gcc-12 ./configure --prefix=/usr --enable-fatal-warnings | 165 | ./configure CC=gcc-12 |
164 | --enable-analyzer --enable-apparmor --enable-selinux | 166 | --prefix=/usr --enable-fatal-warnings --enable-analyzer |
167 | --enable-apparmor --enable-selinux | ||
165 | || (cat config.log; exit 1) | 168 | || (cat config.log; exit 1) |
166 | - name: make | 169 | - name: make |
167 | run: make -j "$(nproc)" | 170 | run: make -j "$(nproc)" |
168 | - name: make install | 171 | - name: make install |
169 | run: sudo make install | 172 | run: sudo make install |
170 | - name: print firejail version | 173 | - name: print version |
171 | run: command -V firejail && firejail --version | 174 | run: make print-version |
172 | - run: make lab-setup | 175 | - run: make lab-setup |
173 | - run: make test-environment | 176 | - run: make test-environment |
174 | - run: make test-profiles | 177 | - run: make test-profiles |
@@ -202,15 +205,16 @@ jobs: | |||
202 | run: ./ci/printenv.sh | 205 | run: ./ci/printenv.sh |
203 | - name: configure | 206 | - name: configure |
204 | run: > | 207 | run: > |
205 | CC=gcc-12 ./configure --prefix=/usr --enable-fatal-warnings | 208 | ./configure CC=gcc-12 |
206 | --enable-analyzer --enable-apparmor --enable-selinux | 209 | --prefix=/usr --enable-fatal-warnings --enable-analyzer |
210 | --enable-apparmor --enable-selinux | ||
207 | || (cat config.log; exit 1) | 211 | || (cat config.log; exit 1) |
208 | - name: make | 212 | - name: make |
209 | run: make -j "$(nproc)" | 213 | run: make -j "$(nproc)" |
210 | - name: make install | 214 | - name: make install |
211 | run: sudo make install | 215 | run: sudo make install |
212 | - name: print firejail version | 216 | - name: print version |
213 | run: command -V firejail && firejail --version | 217 | run: make print-version |
214 | - run: make lab-setup | 218 | - run: make lab-setup |
215 | - run: make test-utils | 219 | - run: make test-utils |
216 | 220 | ||
@@ -248,15 +252,16 @@ jobs: | |||
248 | run: ./ci/printenv.sh | 252 | run: ./ci/printenv.sh |
249 | - name: configure | 253 | - name: configure |
250 | run: > | 254 | run: > |
251 | CC=gcc-12 ./configure --prefix=/usr --enable-fatal-warnings | 255 | ./configure CC=gcc-12 |
252 | --enable-analyzer --enable-apparmor --enable-selinux | 256 | --prefix=/usr --enable-fatal-warnings --enable-analyzer |
257 | --enable-apparmor --enable-selinux | ||
253 | || (cat config.log; exit 1) | 258 | || (cat config.log; exit 1) |
254 | - name: make | 259 | - name: make |
255 | run: make -j "$(nproc)" | 260 | run: make -j "$(nproc)" |
256 | - name: make install | 261 | - name: make install |
257 | run: sudo make install | 262 | run: sudo make install |
258 | - name: print firejail version | 263 | - name: print version |
259 | run: command -V firejail && firejail --version | 264 | run: make print-version |
260 | - run: make lab-setup | 265 | - run: make lab-setup |
261 | - run: make test-fnetfilter | 266 | - run: make test-fnetfilter |
262 | - run: make test-sysutils | 267 | - run: make test-sysutils |