Skip to content

Don't run CI unless there are salient code changes #427

Don't run CI unless there are salient code changes

Don't run CI unless there are salient code changes #427

Workflow file for this run

name: MLSPP CI
on:
push:
branches:
- main
paths:
- ".github/**"
- "**.cpp"
- "**.h"
pull_request:
branches:
- main
paths:
- ".github/**"
- "**.cpp"
- "**.h"
env:
CMAKE_BUILD_PARALLEL_LEVEL: 3
CTEST_OUTPUT_ON_FAILURE: 1
VCPKG_BINARY_SOURCES: files,${{ github.workspace }}/vcpkg_cache,readwrite
CMAKE_TOOLCHAIN_FILE: ${{ github.workspace }}/vcpkg/scripts/buildsystems/vcpkg.cmake
jobs:
choose_crypto_matrix:
name: Choose crypto libraries to test with
runs-on: ubuntu-latest
outputs:
matrix: ${{ steps.set-matrix.outputs.matrix }}
steps:
- uses: dorny/paths-filter@v3
id: filter
with:
filters: |
hpke:
- 'lib/hpke/include/**'
- 'lib/hpke/src/**'
- 'lib/hpke/test/**'
- id: set-matrix
run: |
if [ ${{ steps.filter.outputs.hpke }} = "true" ];
then
echo "matrix=[\"openssl_1.1\",\"openssl_3\",\"boringssl\"]" >> $GITHUB_OUTPUT;
else
echo "matrix=[\"openssl_3\"]" >> $GITHUB_OUTPUT
fi
formatting-check:
name: Formatting Check
needs: choose_crypto_matrix
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run clang-format style check for C/C++ programs
uses: jidicula/[email protected]
with:
clang-format-version: 16
include-regex: '^\./(src|include|test|cmd)/.*\.(cpp|h)$'
fallback-style: 'Mozilla'
build-and-unit-test:
needs: [formatting-check, choose_crypto_matrix]
name: Build and test
runs-on: ${{ matrix.os }}
strategy:
matrix:
os: [windows-latest, ubuntu-latest, macos-latest]
crypto: ${{ fromJson(needs.choose_crypto_matrix.outputs.matrix )}}
env:
CRYPTO_DIR: "./alternatives/${{ matrix.crypto }}"
steps:
- uses: ./.github/actions/prepare-build
with:
os: ${{ matrix.os }}
crypto: ${{ matrix.crypto }}
cache-dir: ${{ github.workspace }}/vcpkg_cache
- name: Build
run: |
cmake -B "${{ runner.temp }}/build_${{ matrix.crypto }}" -DVCPKG_MANIFEST_DIR="${{ env.CRYPTO_DIR }}" -DTESTING=ON
cmake --build "${{ runner.temp }}/build_${{ matrix.crypto }}"
- name: Unit Test
run: |
ctest --test-dir "${{ runner.temp }}/build_${{ matrix.crypto }}"
interop-test:
if: github.event.pull_request.draft == false
needs: build-and-unit-test
name: Interop test
runs-on: ubuntu-latest
env:
CRYPTO_DIR: "./alternatives/openssl_1.1"
steps:
- uses: actions/checkout@v4
with:
submodules: recursive
fetch-depth: 0
- uses: ./.github/actions/prepare-build
with:
os: ubuntu-latest
crypto-dir: openssl_1.1
cache-dir: ${{ github.workspace }}/vcpkg_cache
- name: Build
run: |
cmake -B "${{ runner.temp }}/build_openssl_1.1" -DVCPKG_MANIFEST_DIR="${{ env.CRYPTO_DIR }}"
cmake --build "${{ runner.temp }}/build_openssl_1.1"
- name: Build (Interop Harness)
run: |
cd cmd/interop
cmake -B build
cmake --build build
- name: Test self-interop
run: |
make -C cmd/interop self-test
- name: Test interop on test vectors
run: |
make -C cmd/interop interop-test
- name: Test gRPC live interop with self
run: |
cd cmd/interop
./grpc-self-test.sh
clang-tidy:
if: github.event.pull_request.draft == false
needs: [build-and-unit-test, choose_crypto_matrix]
name: Build with clang-tidy
runs-on: ubuntu-latest
strategy:
matrix:
crypto: ${{ fromJson(needs.choose_crypto_matrix.outputs.matrix )}}
env:
CRYPTO_DIR: "./alternatives/${{ matrix.crypto }}"
steps:
- uses: actions/checkout@v4
with:
submodules: recursive
fetch-depth: 0
- uses: ./.github/actions/prepare-build
with:
os: ubuntu-latest
crypto: matrix.crypto
cache-dir: ${{ github.workspace }}/vcpkg_cache
- name: Build with clang-tidy
run: |
cmake -B "${{ runner.temp }}/build_${{ matrix.crypto }}" -DVCPKG_MANIFEST_DIR="${{ env.CRYPTO_DIR }}" \
-DTESTING=ON -DCLANG_TIDY=ON -DSANITIZERS=ON
cmake --build "${{ runner.temp }}/build_${{ matrix.crypto }}"