Don't run CI unless there are salient code changes #427
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: MLSPP CI | |
on: | |
push: | |
branches: | |
- main | |
paths: | |
- ".github/**" | |
- "**.cpp" | |
- "**.h" | |
pull_request: | |
branches: | |
- main | |
paths: | |
- ".github/**" | |
- "**.cpp" | |
- "**.h" | |
env: | |
CMAKE_BUILD_PARALLEL_LEVEL: 3 | |
CTEST_OUTPUT_ON_FAILURE: 1 | |
VCPKG_BINARY_SOURCES: files,${{ github.workspace }}/vcpkg_cache,readwrite | |
CMAKE_TOOLCHAIN_FILE: ${{ github.workspace }}/vcpkg/scripts/buildsystems/vcpkg.cmake | |
jobs: | |
choose_crypto_matrix: | |
name: Choose crypto libraries to test with | |
runs-on: ubuntu-latest | |
outputs: | |
matrix: ${{ steps.set-matrix.outputs.matrix }} | |
steps: | |
- uses: dorny/paths-filter@v3 | |
id: filter | |
with: | |
filters: | | |
hpke: | |
- 'lib/hpke/include/**' | |
- 'lib/hpke/src/**' | |
- 'lib/hpke/test/**' | |
- id: set-matrix | |
run: | | |
if [ ${{ steps.filter.outputs.hpke }} = "true" ]; | |
then | |
echo "matrix=[\"openssl_1.1\",\"openssl_3\",\"boringssl\"]" >> $GITHUB_OUTPUT; | |
else | |
echo "matrix=[\"openssl_3\"]" >> $GITHUB_OUTPUT | |
fi | |
formatting-check: | |
name: Formatting Check | |
needs: choose_crypto_matrix | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Run clang-format style check for C/C++ programs | |
uses: jidicula/[email protected] | |
with: | |
clang-format-version: 16 | |
include-regex: '^\./(src|include|test|cmd)/.*\.(cpp|h)$' | |
fallback-style: 'Mozilla' | |
build-and-unit-test: | |
needs: [formatting-check, choose_crypto_matrix] | |
name: Build and test | |
runs-on: ${{ matrix.os }} | |
strategy: | |
matrix: | |
os: [windows-latest, ubuntu-latest, macos-latest] | |
crypto: ${{ fromJson(needs.choose_crypto_matrix.outputs.matrix )}} | |
env: | |
CRYPTO_DIR: "./alternatives/${{ matrix.crypto }}" | |
steps: | |
- uses: ./.github/actions/prepare-build | |
with: | |
os: ${{ matrix.os }} | |
crypto: ${{ matrix.crypto }} | |
cache-dir: ${{ github.workspace }}/vcpkg_cache | |
- name: Build | |
run: | | |
cmake -B "${{ runner.temp }}/build_${{ matrix.crypto }}" -DVCPKG_MANIFEST_DIR="${{ env.CRYPTO_DIR }}" -DTESTING=ON | |
cmake --build "${{ runner.temp }}/build_${{ matrix.crypto }}" | |
- name: Unit Test | |
run: | | |
ctest --test-dir "${{ runner.temp }}/build_${{ matrix.crypto }}" | |
interop-test: | |
if: github.event.pull_request.draft == false | |
needs: build-and-unit-test | |
name: Interop test | |
runs-on: ubuntu-latest | |
env: | |
CRYPTO_DIR: "./alternatives/openssl_1.1" | |
steps: | |
- uses: actions/checkout@v4 | |
with: | |
submodules: recursive | |
fetch-depth: 0 | |
- uses: ./.github/actions/prepare-build | |
with: | |
os: ubuntu-latest | |
crypto-dir: openssl_1.1 | |
cache-dir: ${{ github.workspace }}/vcpkg_cache | |
- name: Build | |
run: | | |
cmake -B "${{ runner.temp }}/build_openssl_1.1" -DVCPKG_MANIFEST_DIR="${{ env.CRYPTO_DIR }}" | |
cmake --build "${{ runner.temp }}/build_openssl_1.1" | |
- name: Build (Interop Harness) | |
run: | | |
cd cmd/interop | |
cmake -B build | |
cmake --build build | |
- name: Test self-interop | |
run: | | |
make -C cmd/interop self-test | |
- name: Test interop on test vectors | |
run: | | |
make -C cmd/interop interop-test | |
- name: Test gRPC live interop with self | |
run: | | |
cd cmd/interop | |
./grpc-self-test.sh | |
clang-tidy: | |
if: github.event.pull_request.draft == false | |
needs: [build-and-unit-test, choose_crypto_matrix] | |
name: Build with clang-tidy | |
runs-on: ubuntu-latest | |
strategy: | |
matrix: | |
crypto: ${{ fromJson(needs.choose_crypto_matrix.outputs.matrix )}} | |
env: | |
CRYPTO_DIR: "./alternatives/${{ matrix.crypto }}" | |
steps: | |
- uses: actions/checkout@v4 | |
with: | |
submodules: recursive | |
fetch-depth: 0 | |
- uses: ./.github/actions/prepare-build | |
with: | |
os: ubuntu-latest | |
crypto: matrix.crypto | |
cache-dir: ${{ github.workspace }}/vcpkg_cache | |
- name: Build with clang-tidy | |
run: | | |
cmake -B "${{ runner.temp }}/build_${{ matrix.crypto }}" -DVCPKG_MANIFEST_DIR="${{ env.CRYPTO_DIR }}" \ | |
-DTESTING=ON -DCLANG_TIDY=ON -DSANITIZERS=ON | |
cmake --build "${{ runner.temp }}/build_${{ matrix.crypto }}" |