mirror of
https://github.com/wolfSSL/wolfssl.git
synced 2026-07-05 19:30:48 +02:00
6c211be5b9
GitHub Actions caches are branch-scoped: an entry written by a pull_request run lives under refs/pull/<N>/merge and is invisible to other PRs. The haproxy, mbedtls, nss, ntp, threadx and hostap-vm workflows used combined actions/cache with fixed keys, so every PR re-saved its own copy of the same dependency, yielding one duplicate cache entry per PR. Split each into actions/cache/restore (always) plus actions/cache/save gated to refs/heads/master, and add a daily schedule so a master run reseeds the single shared entry that all PRs restore. mbedtls/nss save in their build job only; the test jobs restore-only. Disable the setup-msys2 package cache: the action only toggles caching on/off and cannot save on master while restoring on PRs.
119 lines
4.1 KiB
YAML
119 lines
4.1 KiB
YAML
name: haproxy Test
|
|
|
|
# START OF COMMON SECTION
|
|
on:
|
|
push:
|
|
branches: [ 'release/**' ]
|
|
pull_request:
|
|
types: [opened, synchronize, reopened, ready_for_review]
|
|
branches: [ '*' ]
|
|
# Daily run on master reseeds the shared cache (see save step below).
|
|
schedule:
|
|
- cron: '0 4 * * *'
|
|
|
|
concurrency:
|
|
group: ${{ github.workflow }}-${{ github.ref }}
|
|
cancel-in-progress: true
|
|
# END OF COMMON SECTION
|
|
|
|
jobs:
|
|
build_wolfssl:
|
|
name: Build wolfSSL
|
|
if: ${{ (github.repository_owner == 'wolfssl') && (github.event_name != 'pull_request' || github.event.pull_request.draft == false) }}
|
|
runs-on: ubuntu-24.04
|
|
# This should be a safe limit for the tests to run.
|
|
timeout-minutes: 4
|
|
steps:
|
|
- name: Build wolfSSL
|
|
uses: wolfSSL/actions-build-autotools-project@v1
|
|
with:
|
|
path: wolfssl
|
|
configure: --enable-haproxy
|
|
install: true
|
|
|
|
- name: tar build-dir
|
|
run: tar -zcf build-dir.tgz build-dir
|
|
|
|
- name: Upload built lib
|
|
uses: actions/upload-artifact@v6
|
|
with:
|
|
name: wolf-install-haproxy
|
|
path: build-dir.tgz
|
|
retention-days: 5
|
|
|
|
test_haproxy:
|
|
name: ${{ matrix.haproxy_ref }}
|
|
if: ${{ (github.repository_owner == 'wolfssl') && (github.event_name != 'pull_request' || github.event.pull_request.draft == false) }}
|
|
runs-on: ubuntu-24.04
|
|
# This should be a safe limit for the tests to run.
|
|
timeout-minutes: 15
|
|
needs: build_wolfssl
|
|
strategy:
|
|
fail-fast: false
|
|
matrix:
|
|
haproxy_ref: [ 'v3.1.0', 'v3.2.0']
|
|
steps:
|
|
- name: Checkout wolfSSL CI actions
|
|
uses: actions/checkout@v5
|
|
with:
|
|
sparse-checkout: .github/actions
|
|
fetch-depth: 1
|
|
|
|
- name: Install test dependencies
|
|
uses: ./.github/actions/install-apt-deps
|
|
with:
|
|
packages: libpcre2-dev
|
|
ghcr-debs-tag: ubuntu-24.04-full
|
|
|
|
- name: Download lib
|
|
uses: actions/download-artifact@v7
|
|
with:
|
|
name: wolf-install-haproxy
|
|
|
|
- name: untar build-dir
|
|
run: tar -xf build-dir.tgz
|
|
|
|
# check cache for haproxy if not there then download it
|
|
- name: Restore haproxy cache
|
|
uses: actions/cache/restore@v5
|
|
id: cache-haproxy
|
|
with:
|
|
path: build-dir/haproxy-${{matrix.haproxy_ref}}
|
|
key: haproxy-${{matrix.haproxy_ref}}
|
|
|
|
- name: Download haproxy if needed
|
|
if: steps.cache-haproxy.outputs.cache-hit != 'true'
|
|
uses: actions/checkout@v5
|
|
with:
|
|
repository: haproxy/haproxy
|
|
ref: ${{matrix.haproxy_ref}}
|
|
path: build-dir/haproxy-${{matrix.haproxy_ref}}
|
|
fetch-depth: 1
|
|
|
|
# Only master (the daily schedule) saves, so all PRs share one entry.
|
|
- name: Save haproxy cache
|
|
if: github.ref == 'refs/heads/master' && steps.cache-haproxy.outputs.cache-hit != 'true'
|
|
uses: actions/cache/save@v5
|
|
with:
|
|
path: build-dir/haproxy-${{matrix.haproxy_ref}}
|
|
key: haproxy-${{matrix.haproxy_ref}}
|
|
|
|
- name: Build haproxy
|
|
working-directory: build-dir/haproxy-${{matrix.haproxy_ref}}
|
|
run: make clean && make TARGET=linux-glibc USE_OPENSSL_WOLFSSL=1 SSL_LIB=$GITHUB_WORKSPACE/build-dir/lib SSL_INC=$GITHUB_WORKSPACE/build-dir/include ADDLIB=-Wl,-rpath,$GITHUB_WORKSPACE/build-dir/lib CFLAGS="-fsanitize=address" LDFLAGS="-fsanitize=address"
|
|
|
|
# VTest2 has moved off GitHub; use the last known good tag
|
|
- name: Patch build-vtest.sh for VTest2 migration
|
|
working-directory: build-dir/haproxy-${{ matrix.haproxy_ref }}/scripts
|
|
run: |
|
|
sed -i 's|https://github.com/wlallemand/VTest/archive/refs/heads/haproxy-sd_notify.tar.gz|https://github.com/vtest/VTest2/archive/refs/tags/last.tar.gz|' build-vtest.sh
|
|
sed -i 's|https://github.com/vtest/VTest2/archive/main.tar.gz|https://github.com/vtest/VTest2/archive/refs/tags/last.tar.gz|' build-vtest.sh
|
|
|
|
- name: Build haproxy vtest
|
|
working-directory: build-dir/haproxy-${{matrix.haproxy_ref}}
|
|
run: ./scripts/build-vtest.sh
|
|
|
|
- name: Test haproxy
|
|
working-directory: build-dir/haproxy-${{matrix.haproxy_ref}}
|
|
run: VTEST_PROGRAM=$GITHUB_WORKSPACE/build-dir/vtest/vtest make reg-tests -- --debug reg-tests/ssl/*
|