3 on: [pull_request, push]
5 # for some reason, this does not work:
8 # HARNESS_JOBS: "${HARNESS_JOBS:-4}"
10 # for some reason, this does not work:
16 runs-on: ubuntu-latest
18 - name: install unifdef
21 sudo apt-get -yq --no-install-suggests --no-install-recommends --force-yes install unifdef
22 - uses: actions/checkout@v2
24 run: ./config --banner=Configured --strict-warnings enable-fips && perl configdata.pm --dump
25 - name: make build_generated
26 run: make -s build_generated
30 run: git diff --exit-code
33 runs-on: ubuntu-latest
35 - uses: actions/checkout@v2
37 run: ./config --banner=Configured --strict-warnings enable-fips && perl configdata.pm --dump
38 - name: make build_generated
39 run: make -s build_generated
47 # This checks that we use ANSI C language syntax and semantics.
48 # We are not as strict with libraries, but rather adapt to what's
49 # expected to be available in a certain version of each platform.
51 runs-on: ubuntu-latest
53 - uses: actions/checkout@v2
55 run: CPPFLAGS=-ansi ./config --banner=Configured no-asm no-makedepend enable-buildtest-c++ enable-fips --strict-warnings -D_DEFAULT_SOURCE && perl configdata.pm --dump
60 runs-on: ubuntu-latest
62 - uses: actions/checkout@v2
64 run: ./config --banner=Configured enable-fips --strict-warnings && perl configdata.pm --dump
68 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4}
71 runs-on: ubuntu-latest
73 - uses: actions/checkout@v2
75 run: CC=clang ./config --banner=Configured no-fips --strict-warnings && perl configdata.pm --dump
79 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4}
82 runs-on: ubuntu-latest
84 - uses: actions/checkout@v2
86 run: ./config --banner=Configured --strict-warnings no-bulk no-pic no-asm -DOPENSSL_NO_SECURE_MEMORY -DOPENSSL_SMALL_FOOTPRINT && perl configdata.pm --dump
88 run: make -j4 # verbose, so no -s here
90 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4}
93 runs-on: ubuntu-latest
95 - uses: actions/checkout@v2
97 run: ./config --banner=Configured --strict-warnings no-deprecated enable-fips && perl configdata.pm --dump
101 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4}
106 os: [ ubuntu-latest, macos-latest ]
107 runs-on: ${{matrix.os}}
109 - uses: actions/checkout@v2
111 run: ./config --banner=Configured --strict-warnings no-shared no-fips && perl configdata.pm --dump
115 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4}
118 runs-on: ubuntu-latest
120 - uses: actions/checkout@v2
122 run: ./config --banner=Configured --debug enable-asan enable-ubsan no-cached-fetch no-fips no-dtls no-tls1 no-tls1-method no-tls1_1 no-tls1_1-method no-async && perl configdata.pm --dump
126 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4} OPENSSL_TEST_RAND_ORDER=0 TESTS="-test_fuzz* -test_ssl_* -test_sslapi -test_evp -test_cmp_http -test_verify -test_cms -test_store -test_enc -[01][0-9]"
128 address_ub_sanitizer:
129 runs-on: ubuntu-latest
131 - uses: actions/checkout@v2
133 run: ./config --banner=Configured --debug enable-asan enable-ubsan enable-rc5 enable-md2 enable-ec_nistp_64_gcc_128 enable-fips && perl configdata.pm --dump
137 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4} OPENSSL_TEST_RAND_ORDER=0
140 runs-on: ubuntu-latest
142 - uses: actions/checkout@v2
144 # --debug -O1 is to produce a debug build that runs in a reasonable amount of time
145 run: CC=clang ./config --banner=Configured --debug -O1 -fsanitize=memory -DOSSL_SANITIZE_MEMORY -fno-optimize-sibling-calls enable-rc5 enable-md2 enable-ec_nistp_64_gcc_128 enable-fips && perl configdata.pm --dump
149 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4} OPENSSL_TEST_RAND_ORDER=0
152 runs-on: ubuntu-latest
154 - uses: actions/checkout@v2
156 run: CC=clang ./config --banner=Configured no-fips --strict-warnings -fsanitize=thread && perl configdata.pm --dump
160 run: make TESTS=test_threads test HARNESS_JOBS=${HARNESS_JOBS:-4}
162 enable_non-default_options:
163 runs-on: ubuntu-latest
165 - uses: actions/checkout@v2
167 run: sudo modprobe tls
169 run: ./config --banner=Configured --strict-warnings no-ec enable-ssl-trace enable-zlib enable-zlib-dynamic enable-crypto-mdebug enable-crypto-mdebug-backtrace enable-egd enable-ktls enable-fips && perl configdata.pm --dump
173 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4}
176 runs-on: ubuntu-latest
178 - uses: actions/checkout@v2
180 run: ./config --banner=Configured --strict-warnings no-legacy enable-fips && perl configdata.pm --dump
184 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4}
187 runs-on: ubuntu-latest
189 - uses: actions/checkout@v2
191 run: ./config --banner=Configured -Werror --debug no-afalgeng no-shared enable-crypto-mdebug enable-rc5 enable-md2 enable-ssl3 enable-ssl3-method enable-weak-ssl-ciphers enable-zlib enable-ec_nistp_64_gcc_128 no-fips && perl configdata.pm --dump
195 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4}
198 runs-on: ubuntu-latest
200 - uses: actions/checkout@v2
202 run: ./config --banner=Configured no-asm no-makedepend enable-buildtest-c++ enable-fips --strict-warnings -D_DEFAULT_SOURCE && perl configdata.pm --dump
206 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4}
208 out-of-source-and-install:
211 os: [ubuntu-latest, macos-latest ]
212 runs-on: ${{matrix.os}}
214 - uses: actions/checkout@v2
215 - name: extra preparations
220 run: ../config --banner=Configured enable-fips enable-acvp-tests --strict-warnings --prefix=$(cd ../install; pwd) && perl configdata.pm --dump
221 working-directory: ./build
224 working-directory: ./build
226 run: make test HARNESS_JOBS=${HARNESS_JOBS:-4}
227 working-directory: ./build
230 working-directory: ./build
233 runs-on: ubuntu-latest
235 - uses: actions/checkout@v2
237 submodules: recursive
238 - name: package installs
241 sudo apt-get -yq install bison gettext keyutils ldap-utils libldap2-dev libkeyutils-dev python3 python3-paste python3-pyrad slapd tcsh python3-virtualenv virtualenv python3-kdcproxy
242 - name: install cpanm and Test2::V0 for gost_engine testing
243 uses: perl-actions/install-with-cpanm@v1
246 - name: setup hostname workaround
247 run: sudo hostname localhost
249 run: ./config --banner=Configured --strict-warnings --debug no-afalgeng enable-rc5 enable-md2 enable-ssl3 enable-ssl3-method enable-weak-ssl-ciphers enable-zlib enable-ec_nistp_64_gcc_128 enable-external-tests no-fips && perl configdata.pm --dump
252 - name: test external gost-engine
253 run: make test TESTS="test_external_gost_engine"
254 - name: test external krb5
255 run: make test TESTS="test_external_krb5"
258 runs-on: ubuntu-latest
266 - uses: actions/checkout@v2
268 submodules: recursive
269 - name: Configure OpenSSL
270 run: ./config --banner=Configured --strict-warnings --debug enable-external-tests && perl configdata.pm --dump
274 uses: actions/setup-python@v2.2.2
276 python-version: ${{ matrix.PYTHON }}
277 - uses: actions-rs/toolchain@v1
280 toolchain: ${{ matrix.RUST }}
283 - name: test external pyca
284 run: make test TESTS="test_external_pyca" VERBOSE=1