name: haproxy Test # START OF COMMON SECTION on: push: branches: [ 'release/**' ] pull_request: types: [opened, synchronize, reopened, ready_for_review] branches: [ '*' ] # Daily run on master reseeds the shared cache (see save step below). schedule: - cron: '0 4 * * *' concurrency: group: ${{ github.workflow }}-${{ github.ref }} cancel-in-progress: true # END OF COMMON SECTION jobs: build_wolfssl: name: Build wolfSSL if: ${{ (github.repository_owner == 'wolfssl') && (github.event_name != 'pull_request' || github.event.pull_request.draft == false) }} runs-on: ubuntu-24.04 # This should be a safe limit for the tests to run. timeout-minutes: 4 steps: - name: Build wolfSSL uses: wolfSSL/actions-build-autotools-project@v1 with: path: wolfssl configure: --enable-haproxy install: true - name: tar build-dir run: tar -zcf build-dir.tgz build-dir - name: Upload built lib uses: actions/upload-artifact@v6 with: name: wolf-install-haproxy path: build-dir.tgz retention-days: 5 test_haproxy: name: ${{ matrix.haproxy_ref }} if: ${{ (github.repository_owner == 'wolfssl') && (github.event_name != 'pull_request' || github.event.pull_request.draft == false) }} runs-on: ubuntu-24.04 # This should be a safe limit for the tests to run. timeout-minutes: 15 needs: build_wolfssl strategy: fail-fast: false matrix: haproxy_ref: [ 'v3.1.0', 'v3.2.0'] steps: - name: Checkout wolfSSL CI actions uses: actions/checkout@v5 with: sparse-checkout: .github/actions fetch-depth: 1 - name: Install test dependencies uses: ./.github/actions/install-apt-deps with: packages: libpcre2-dev ghcr-debs-tag: ubuntu-24.04-full - name: Download lib uses: actions/download-artifact@v7 with: name: wolf-install-haproxy - name: untar build-dir run: tar -xf build-dir.tgz # check cache for haproxy if not there then download it - name: Restore haproxy cache uses: actions/cache/restore@v5 id: cache-haproxy with: path: build-dir/haproxy-${{matrix.haproxy_ref}} key: haproxy-${{matrix.haproxy_ref}} - name: Download haproxy if needed if: steps.cache-haproxy.outputs.cache-hit != 'true' uses: actions/checkout@v5 with: repository: haproxy/haproxy ref: ${{matrix.haproxy_ref}} path: build-dir/haproxy-${{matrix.haproxy_ref}} fetch-depth: 1 # Only master (the daily schedule) saves, so all PRs share one entry. - name: Save haproxy cache if: github.ref == 'refs/heads/master' && steps.cache-haproxy.outputs.cache-hit != 'true' uses: actions/cache/save@v5 with: path: build-dir/haproxy-${{matrix.haproxy_ref}} key: haproxy-${{matrix.haproxy_ref}} - name: Build haproxy working-directory: build-dir/haproxy-${{matrix.haproxy_ref}} run: make clean && make TARGET=linux-glibc USE_OPENSSL_WOLFSSL=1 SSL_LIB=$GITHUB_WORKSPACE/build-dir/lib SSL_INC=$GITHUB_WORKSPACE/build-dir/include ADDLIB=-Wl,-rpath,$GITHUB_WORKSPACE/build-dir/lib CFLAGS="-fsanitize=address" LDFLAGS="-fsanitize=address" # VTest2 has moved off GitHub; use the last known good tag - name: Patch build-vtest.sh for VTest2 migration working-directory: build-dir/haproxy-${{ matrix.haproxy_ref }}/scripts run: | sed -i 's|https://github.com/wlallemand/VTest/archive/refs/heads/haproxy-sd_notify.tar.gz|https://github.com/vtest/VTest2/archive/refs/tags/last.tar.gz|' build-vtest.sh sed -i 's|https://github.com/vtest/VTest2/archive/main.tar.gz|https://github.com/vtest/VTest2/archive/refs/tags/last.tar.gz|' build-vtest.sh - name: Build haproxy vtest working-directory: build-dir/haproxy-${{matrix.haproxy_ref}} run: ./scripts/build-vtest.sh - name: Test haproxy working-directory: build-dir/haproxy-${{matrix.haproxy_ref}} run: VTEST_PROGRAM=$GITHUB_WORKSPACE/build-dir/vtest/vtest make reg-tests -- --debug reg-tests/ssl/*