-dist: trusty
+dist: xenial
sudo: required
+osx_image: xcode9.3
+
language: c
cache: ccache
git:
submodules: false
+ quiet: true
before_install:
- if [ -n "$COVERALLS" ]; then
- if expr "$CONFIG_OPTS" ":" ".*enable-external-tests" > /dev/null; then
git submodule update --init --recursive;
fi;
+ - eval "${MATRIX_EVAL}"
-addons:
- apt:
- packages:
- - ccache
- - golang-1.6
+arch:
+ - amd64
+ - arm64
os:
- linux
+ - osx
compiler:
- clang
- gcc
env:
- - CONFIG_OPTS="" DESTDIR="_install" TESTS="-test_fuzz"
- - CONFIG_OPTS="no-asm -Werror --debug no-afalgeng no-shared enable-crypto-mdebug enable-rc5 enable-md2" TESTS="-test_fuzz"
- - CONFIG_OPTS="no-asm --strict-warnings" BUILDONLY="yes" CHECKDOCS="yes"
+ - CONFIG_OPTS="" DESTDIR="_install"
+ # Note: This CONFIG_OPTS entry must match the value in the exclude: table below that contains env: CONFIG_OPTS , otherwise it will not find a match.
+ - CONFIG_OPTS="no-asm -Werror --debug no-afalgeng no-shared enable-rc5 enable-md2 -fsanitize=address" LSAN_OPTIONS="report_objects=1"
+ - CONFIG_OPTS="no-asm no-makedepend enable-buildtest-c++ --strict-warnings -D_DEFAULT_SOURCE" BUILDONLY="yes" CHECKDOCS="yes" GENERATE="yes" CPPFLAGS="-ansi"
matrix:
include:
- os: linux
+ arch: arm64
+ dist: bionic
+ compiler: clang
+ env: CONFIG_OPTS="--strict-warnings -D__NO_STRING_INLINES no-deprecated" BUILDONLY="yes"
+ - os: linux
+ arch: arm64
+ compiler: clang
addons:
apt:
packages:
- - gcc-5
- - g++-5
- sources:
- - ubuntu-toolchain-r-test
- compiler: gcc-5
- env: CONFIG_OPTS="--strict-warnings" TESTS="-test_fuzz" COMMENT="Move to the BORINGTEST build when interoperable"
+ - clang-6.0
+ env: EXTENDED_TEST="yes" CONFIG_OPTS="enable-msan disable-afalgeng -D__NO_STRING_INLINES -Wno-unused-command-line-argument" MATRIX_EVAL="CC=clang-6.0 && CXX=clang++-6.0"
- os: linux
- compiler: clang-3.9
- env: CONFIG_OPTS="--strict-warnings no-deprecated" BUILDONLY="yes"
+ arch: arm64
+ compiler: clang
+ addons:
+ apt:
+ packages:
+ - clang-6.0
+ env: EXTENDED_TEST="yes" CONFIG_OPTS="no-asm enable-ubsan enable-rc5 enable-md2 enable-ssl3 enable-ssl3-method enable-nextprotoneg no-shared enable-buildtest-c++ -fno-sanitize=alignment -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION -D__NO_STRING_INLINES -Wno-unused-command-line-argument" MATRIX_EVAL="CC=clang-6.0 && CXX=clang++-6.0"
+ - os: linux
+ arch: s390x
+ compiler: gcc
+ env: CONFIG_OPTS="--strict-warnings"
+ - os: linux-ppc64le
+ sudo: false
+ compiler: clang
+ env: CONFIG_OPTS="--strict-warnings -D__NO_STRING_INLINES"
+ - os: linux
+ compiler: gcc
+ env: CONFIG_OPTS="--strict-warnings" COMMENT="Move to the BORINGTEST build when interoperable"
+ - os: linux
+ dist: trusty
+ compiler: clang
+ env: CONFIG_OPTS="--strict-warnings -D__NO_STRING_INLINES no-deprecated"
+ - os: linux
+ dist: bionic
+ compiler: clang
+ env: CONFIG_OPTS="--strict-warnings -D__NO_STRING_INLINES no-deprecated" BUILDONLY="yes"
- os: linux
addons:
apt:
- gcc-mingw-w64
compiler: i686-w64-mingw32-gcc
env: CONFIG_OPTS="no-stdio" BUILDONLY="yes"
+ # Uncomment if there is reason to believe that PPC-specific problem
+ # can be diagnosed with this possibly >30 mins sanitizer build...
+ #- os: linux-ppc64le
+ # sudo: false
+ # compiler: gcc
+ # env: EXTENDED_TEST="yes" CONFIG_OPTS="no-asm enable-asan enable-ubsan no-shared -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION -D__NO_STRING_INLINES"
- os: linux
addons:
apt:
packages:
- - gcc-5
- - g++-5
- sources:
- - ubuntu-toolchain-r-test
- compiler: gcc-5
- env: EXTENDED_TEST="yes" CONFIG_OPTS="--debug --coverage no-asm enable-rc5 enable-md2 enable-ec_nistp_64_gcc_128 enable-ssl3 enable-ssl3-method enable-nextprotoneg enable-weak-ssl-ciphers no-shared -DPEDANTIC -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION" COVERALLS="yes" BORINGSSL_TESTS="yes" CXX="g++-5"
+ - golang-1.10
+ compiler: gcc
+ env: EXTENDED_TEST="yes" CONFIG_OPTS="--debug --coverage no-asm enable-rc5 enable-md2 enable-ec_nistp_64_gcc_128 enable-ssl3 enable-ssl3-method enable-nextprotoneg enable-weak-ssl-ciphers no-shared enable-buildtest-c++ -DPEDANTIC -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION" COVERALLS="yes" BORINGSSL_TESTS="yes" CXX="g++"
- os: linux
addons:
apt:
packages:
- - gcc-5
- - g++-5
- sources:
- - ubuntu-toolchain-r-test
- compiler: gcc-5
- env: EXTENDED_TEST="yes" CONFIG_OPTS="--debug enable-ssl3 enable-ssl3-method enable-weak-ssl-ciphers enable-external-tests" BORINGSSL_TESTS="yes" CXX="g++-5" TESTS=95
+ - golang-1.10
+ compiler: gcc
+ # External test pyca-cryptography temporarily disabled due to long term travis failures
+ env: EXTENDED_TEST="yes" CONFIG_OPTS="--debug enable-ssl3 enable-ssl3-method enable-weak-ssl-ciphers enable-external-tests enable-buildtest-c++" BORINGSSL_TESTS="yes" CXX="g++" TESTS="test_external_boringssl test_external_krb5"
- os: linux
- compiler: clang-3.9
- env: EXTENDED_TEST="yes" CONFIG_OPTS="enable-msan"
+ compiler: clang
+ env: EXTENDED_TEST="yes" CONFIG_OPTS="enable-msan disable-afalgeng -D__NO_STRING_INLINES -Wno-unused-command-line-argument"
- os: linux
- compiler: clang-3.9
- env: EXTENDED_TEST="yes" CONFIG_OPTS="no-asm enable-ubsan enable-rc5 enable-md2 enable-ssl3 enable-ssl3-method enable-nextprotoneg -fno-sanitize=alignment no-shared -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION"
+ compiler: clang
+ env: EXTENDED_TEST="yes" CONFIG_OPTS="no-asm enable-ubsan enable-rc5 enable-md2 enable-ssl3 enable-ssl3-method enable-nextprotoneg no-shared enable-buildtest-c++ -fno-sanitize=alignment -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION -D__NO_STRING_INLINES -Wno-unused-command-line-argument" CXX="clang++"
- os: linux
- compiler: clang-3.9
- env: EXTENDED_TEST="yes" CONFIG_OPTS="no-asm enable-asan enable-rc5 enable-md2 no-shared -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION"
+ compiler: clang
+ env: EXTENDED_TEST="yes" CONFIG_OPTS="no-asm enable-asan enable-rc5 enable-md2 no-shared -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION -D__NO_STRING_INLINES -Wno-unused-command-line-argument"
- os: linux
- addons:
- apt:
- packages:
- - gcc-5
- - g++-5
- sources:
- - ubuntu-toolchain-r-test
- compiler: gcc-5
- env: EXTENDED_TEST="yes" CONFIG_OPTS="--debug no-asm enable-ubsan enable-rc5 enable-md2 -DPEDANTIC" OPENSSL_TEST_RAND_ORDER=0
+ compiler: gcc
+ env: EXTENDED_TEST="yes" CONFIG_OPTS="--debug no-asm enable-ubsan enable-rc5 enable-md2 enable-buildtest-c++ -DPEDANTIC" OPENSSL_TEST_RAND_ORDER=0
- os: linux
addons:
apt:
- binutils-mingw-w64
- gcc-mingw-w64
compiler: i686-w64-mingw32-gcc
- env: EXTENDED_TEST="yes" CONFIG_OPTS="no-pic" TESTS="-test_fuzz"
+ env: EXTENDED_TEST="yes" CONFIG_OPTS="no-pic"
- os: linux
addons:
apt:
- binutils-mingw-w64
- gcc-mingw-w64
compiler: x86_64-w64-mingw32-gcc
- env: EXTENDED_TEST="yes" CONFIG_OPTS="no-pic" TESTS="-test_fuzz"
+ env: EXTENDED_TEST="yes" CONFIG_OPTS="no-pic"
+ - os: linux
+ language: python
+ python: 3.7
+ install: pip install flake8
+ before_script:
+ # stop the build if there are Python syntax errors or undefined names
+ - flake8 . --count --select=E901,E999,F821,F822,F823 --show-source --statistics
+ # exit-zero treats all errors as warnings. The GitHub editor is 127 chars wide
+ - flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
+ script: true
exclude:
- os: linux
compiler: clang
- os: osx
compiler: gcc
+ - arch: arm64
+ os: osx
+ # arm64 times out when using -fsanitize=address
+ # The amd64 build should be sufficient to test this.
+ # Note: the env line must exactly match the env line from the build
+ # matrix above which contains the `-fsanitize=address` option.
+ # TODO: come up with a better way of doing this that is less error prone.
+ - arch: arm64
+ env: CONFIG_OPTS="no-asm -Werror --debug no-afalgeng no-shared enable-rc5 enable-md2 -fsanitize=address" LSAN_OPTIONS="report_objects=1"
+
before_script:
- env
- if [ "$TRAVIS_PULL_REQUEST" != "false" -a -n "$EXTENDED_TEST" ]; then
- (git log -1 $TRAVIS_COMMIT_RANGE | grep '\[extended tests\]' > /dev/null) || exit 0;
+ (git log -1 $TRAVIS_COMMIT_RANGE | grep '\[extended tests\]' > /dev/null) || travis_terminate 0;
fi
- if [ -n "$DESTDIR" ]; then
sh .travis-create-release.sh $TRAVIS_OS_NAME;
- tar -xvzf _srcdist.tar.gz;
+ tar -xzf _srcdist.tar.gz;
mkdir _build;
cd _build;
srcdir=../_srcdist;
srcdir=.;
top=.;
fi
- - if [ "$CC" == i686-w64-mingw32-gcc ]; then
+ - if [ "$CC" = i686-w64-mingw32-gcc ]; then
export CROSS_COMPILE=${CC%%gcc}; unset CC;
$srcdir/Configure mingw $CONFIG_OPTS -Wno-pedantic-ms-format;
- elif [ "$CC" == x86_64-w64-mingw32-gcc ]; then
+ elif [ "$CC" = x86_64-w64-mingw32-gcc ]; then
export CROSS_COMPILE=${CC%%gcc}; unset CC;
$srcdir/Configure mingw64 $CONFIG_OPTS -Wno-pedantic-ms-format;
else
- if [ "$CC" == clang-3.9 ]; then
- sudo cp .travis-apt-pin.preferences /etc/apt/preferences.d/no-ubuntu-clang;
- curl -sSL "http://apt.llvm.org/llvm-snapshot.gpg.key" | sudo -E apt-key add -;
- echo "deb http://apt.llvm.org/trusty/ llvm-toolchain-trusty-3.9 main" | sudo tee -a /etc/apt/sources.list > /dev/null;
- sudo -E apt-add-repository -y "ppa:ubuntu-toolchain-r/test";
- sudo -E apt-get -yq update;
- sudo -E apt-get -yq --no-install-suggests --no-install-recommends --force-yes install clang-3.9;
- elif which ccache >/dev/null; then
+ if which ccache >/dev/null && test "$BORINGSSL_TESTS" != yes; then
CC="ccache $CC";
fi;
$srcdir/config -v $CONFIG_OPTS;
else
make="make";
fi
+ - if [ -n "$GENERATE" ]; then
+ make2="$make PERL=no-perl";
+ else
+ make2="$make";
+ fi
- top=${PWD}
- if [ -n "$DESTDIR" ]; then
cd _build;
fi
- - if $make update; then
- echo -e '+\057 MAKE UPDATE OK';
- else
- echo -e '+\057 MAKE UPDATE FAILED'; false;
- fi;
- git diff --exit-code
- - if [ -n "$CHECKDOCS" ]; then
- if $make doc-nits; then
- echo -e '+\057\057 MAKE DOC-NITS OK';
- else
- echo -e '+\057\057 MAKE DOC-NITS FAILED'; false;
- fi;
+ - if ! $make update; then
+ echo -e '\052\052 FAILED -- MAKE UPDATE';
+ travis_terminate 1;
fi
- - if $make; then
- echo -e '+\057\057\057 MAKE OK';
- else
- echo -e '+\057\057\057 MAKE FAILED'; false;
+ - if ! git diff --exit-code; then
+ echo -e '\052\052 FAILED -- UPDATED FILES NOT COMMITTED';
+ travis_terminate 1;
+ fi
+ - if test -n "$GENERATE" && ! $make build_all_generated; then
+ echo -e '\052\052 FAILED -- MAKE BUILD_ALL_GENERATED';
+ travis_terminate 1;
+ fi
+ - if test -n "$CHECKDOCS" && ! $make doc-nits; then
+ echo -e '\052\052 FAILED -- MAKE DOC-NITS';
+ travis_terminate 1;
+ fi
+ - if ! $make2; then
+ echo -e '\052\052 FAILED -- MAKE';
+ travis_terminate 1;
fi;
- if [ -z "$BUILDONLY" ]; then
if [ -n "$CROSS_COMPILE" ]; then
if [ -e krb5/src ]; then
sudo apt-get -yq install bison dejagnu gettext keyutils ldap-utils libldap2-dev libkeyutils-dev python-cjson python-paste python-pyrad slapd tcl-dev tcsh;
fi;
- if HARNESS_VERBOSE=yes BORING_RUNNER_DIR=$top/boringssl/ssl/test/runner make test; then
- echo -e '+\057\057\057\057 MAKE TEST OK';
- else
- echo -e '+\057\057\057\057 MAKE TEST FAILED'; false;
+ if ! HARNESS_VERBOSE_FAILURE=yes BORING_RUNNER_DIR=$top/boringssl/ssl/test/runner make test; then
+ echo -e '\052\052 FAILED -- MAKE TEST';
+ travis_terminate 1;
fi;
else
- if $make build_tests; then
- echo -e '+\057\057\057\057\057 MAKE BUILD_TESTS OK';
- else
- echo -e '+\057\057\057\057\057 MAKE BUILD_TESTS FAILED'; false;
+ if ! $make build_tests >~/build.log 2>&1; then
+ echo -e '\052\052 FAILED -- MAKE BUILD_TESTS';
+ cat ~/build.log
+ travis_terminate 1;
fi;
fi
- if [ -n "$DESTDIR" ]; then
mkdir "$top/$DESTDIR";
- if $make install install_docs DESTDIR="$top/$DESTDIR"; then
- echo -e '+\057\057\057\057\057\057 MAKE INSTALL OK';
- else
- echo -e '+\057\057\057\057\057\057 MAKE INSTALL FAILED'; false;
+ if ! $make install DESTDIR="$top/$DESTDIR" >~/install.log 2>&1 ; then
+ echo -e '\052\052 FAILED -- MAKE INSTALL';
+ cat ~/install.log;
+ travis_terminate 1;
fi;
fi
- cd $top
+ - echo -e '\052\052 DONE'
after_success:
- if [ -n "$COVERALLS" ]; then
- coveralls -b . --gcov gcov-5 --gcov-options '\-lpbc';
+ coveralls -b . --gcov gcov --gcov-options '\-lpbc';
fi;
notifications:
projects / openssl.git / blobdiff