Skip to content

FAPI: fix problems detected by scanner. #2233

FAPI: fix problems detected by scanner.

FAPI: fix problems detected by scanner. #2233

Workflow file for this run

name: CI
on:
[push, pull_request]
jobs:
build-test:
runs-on: ubuntu-latest
if: "!contains(github.ref, 'coverity_scan')"
strategy:
matrix:
docker_image: [ubuntu-20.04, fedora-32, opensuse-leap, ubuntu-22.04, alpine-3.15]
compiler: [gcc, clang]
steps:
- name: Check out repository
uses: actions/checkout@v2
with:
fetch-depth: 0
- name: fix-sanitizer
run: sudo sysctl vm.mmap_rnd_bits=28
- name: Launch Action
uses:
tpm2-software/ci/runCI@main
with:
DOCKER_IMAGE: ${{ matrix.docker_image }}
CC: ${{ matrix.compiler }}
BASE_REF: ${{ github.base_ref }}
PROJECT_NAME: ${{ github.event.repository.name }}
- name: failure
if: ${{ failure() }}
run: cat $(find ../ -name test-suite.log) || true
scanbuild:
runs-on: ubuntu-latest
if: "!contains(github.ref, 'coverity_scan')"
steps:
- name: Check out repository
uses: actions/checkout@v2
with:
fetch-depth: 0
- name: fix-sanitizer
run: sudo sysctl vm.mmap_rnd_bits=28
- name: Launch Action
uses:
tpm2-software/ci/runCI@main
with:
CC: clang
DOCKER_IMAGE: fedora-32
SCANBUILD: yes
PROJECT_NAME: ${{ github.event.repository.name }}
- name: failure
if: ${{ failure() }}
run: cat $(find ../ -name test-suite.log) || true
test-tcti-config:
runs-on: ubuntu-latest
if: "!contains(github.ref, 'coverity_scan')"
steps:
- name: Check out repository
uses: actions/checkout@v2
with:
fetch-depth: 0
- name: fix-sanitizer
run: sudo sysctl vm.mmap_rnd_bits=28
- name: Launch Action
uses:
tpm2-software/ci/runCI@main
with:
CC: gcc
DOCKER_IMAGE: fedora-32
TEST_TCTI_CONFIG: true
PROJECT_NAME: ${{ github.event.repository.name }}
- name: failure
if: ${{ failure() }}
run: cat $(find ../ -name test-suite.log) || true
test-mbedtls:
runs-on: ubuntu-latest
if: "!contains(github.ref, 'coverity_scan')"
strategy:
matrix:
docker_image: [ubuntu-20.04, ubuntu-22.04-mbedtls-3.1]
steps:
- name: Check out repository
uses: actions/checkout@v2
with:
fetch-depth: 0
- name: fix-sanitizer
run: sudo sysctl vm.mmap_rnd_bits=28
- name: Launch Action
uses:
tpm2-software/ci/runCI@main
with:
CC: gcc
DOCKER_IMAGE: ${{ matrix.docker_image }}
WITH_CRYPTO: mbed
PROJECT_NAME: ${{ github.event.repository.name }}
- name: failure
if: ${{ failure() }}
run: cat $(find ../ -name test-suite.log) || true
test-no-crypto-build:
runs-on: ubuntu-latest
if: "!contains(github.ref, 'coverity_scan')"
steps:
- name: Check out repository
uses: actions/checkout@v2
with:
fetch-depth: 0
- name: fix-sanitizer
run: sudo sysctl vm.mmap_rnd_bits=28
- name: Launch Action
uses:
tpm2-software/ci/runCI@main
with:
CC: gcc
DOCKER_IMAGE: ubuntu-20.04
WITH_CRYPTO: none
PROJECT_NAME: ${{ github.event.repository.name }}
- name: failure
if: ${{ failure() }}
run: cat $(find ../ -name test-suite.log) || true
test-coverage:
runs-on: ubuntu-latest
if: "!contains(github.ref, 'coverity_scan')"
steps:
- name: Check out repository
uses: actions/checkout@v2
with:
fetch-depth: 0
- name: fix-sanitizer
run: sudo sysctl vm.mmap_rnd_bits=28
- name: Launch Action
uses:
tpm2-software/ci/runCI@main
with:
CC: gcc
DOCKER_IMAGE: ubuntu-20.04
ENABLE_COVERAGE: true
PROJECT_NAME: ${{ github.event.repository.name }}
- name: failure
if: ${{ failure() }}
run: cat $(find ../ -name test-suite.log) || true
test-fuzz:
runs-on: ubuntu-latest
if: "!contains(github.ref, 'coverity_scan')"
steps:
- name: Check out repository
uses: actions/checkout@v2
with:
fetch-depth: 0
- name: Launch Action
uses:
tpm2-software/ci/runCI@main
with:
DOCKER_IMAGE: fedora-32
GEN_FUZZ: 1
CXX: clang++
CC: clang
PROJECT_NAME: ${{ github.event.repository.name }}
- name: failure
if: ${{ failure() }}
run: cat $(find ../ -name test-suite.log) || true
coverity-test:
runs-on: ubuntu-latest
if: contains(github.ref, 'coverity_scan')
steps:
- name: Check out repository
uses: actions/checkout@v2
with:
fetch-depth: 0
- name: fix-sanitizer
run: sudo sysctl vm.mmap_rnd_bits=28
- name: Launch Coverity Action
uses:
tpm2-software/ci/coverityScan@main
with:
PROJECT_NAME: ${{ github.event.repository.name }}
REPO_BRANCH: ${{ github.ref }}
REPO_NAME: ${{ github.repository }}
ENABLE_COVERITY: true
DOCKER_IMAGE: ubuntu-20.04
CC: gcc
COVERITY_SCAN_TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }}
COVERITY_SUBMISSION_EMAIL: tadeusz.struk@intel.com
- name: failure
if: ${{ failure() }}
run: cat $(find ../ -name test-suite.log) || true