github.com/transparency-dev/armored-witness-os@v0.1.3-0.20240514084412-27eef7325168/.github/workflows/pr_build.yml (about)

     1  name: PR CI
     2  
     3  on: [push, pull_request]
     4  
     5  permissions:
     6    contents: read
     7  
     8  jobs:
     9    build:
    10      env:
    11        TAMAGO_VERSION: 1.22.0
    12        TAMAGO: /usr/local/tamago-go/bin/go
    13        APPLET_PRIVATE_KEY: /tmp/applet.sec
    14        APPLET_PUBLIC_KEY: /tmp/applet.pub
    15        LOG_ORIGIN: throwaway.transparency.dev/armored-witness-os/pr-build/0
    16        LOG_PRIVATE_KEY: /tmp/log.sec
    17        LOG_PUBLIC_KEY: /tmp/log.pub
    18        OS_PRIVATE_KEY1: /tmp/os1.sec
    19        OS_PUBLIC_KEY1: /tmp/os1.pub
    20        OS_PRIVATE_KEY2: /tmp/os2.sec
    21        OS_PUBLIC_KEY2: /tmp/os2.pub
    22        APPLET_PATH: /tmp/assets
    23      runs-on: ubuntu-latest
    24      steps:
    25      - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
    26      - name: Install tools
    27        run: |
    28          wget -q https://github.com/usbarmory/tamago-go/releases/download/tamago-go${TAMAGO_VERSION}/tamago-go${TAMAGO_VERSION}.linux-amd64.tar.gz
    29          sudo tar -xf tamago-go${TAMAGO_VERSION}.linux-amd64.tar.gz -C /
    30          sudo apt update
    31          sudo apt install binutils-arm-none-eabi protobuf-compiler signify-openbsd u-boot-tools
    32          go install google.golang.org/protobuf/cmd/protoc-gen-go@v1.30
    33          echo "${HOME}/go/bin" >> $GITHUB_PATH
    34      - name: Create throwaway keys & fake embed
    35        run: |
    36          go run github.com/transparency-dev/serverless-log/cmd/generate_keys@14ed652b57527bb17e065e921eb0fcce3cbc8a49 --key_name="TEST-APPLET" --out_priv=${APPLET_PRIVATE_KEY} --out_pub=${APPLET_PUBLIC_KEY}
    37          go run github.com/transparency-dev/serverless-log/cmd/generate_keys@14ed652b57527bb17e065e921eb0fcce3cbc8a49 --key_name="TEST-LOG" --out_priv=${LOG_PRIVATE_KEY} --out_pub=${LOG_PUBLIC_KEY}
    38          go run github.com/transparency-dev/serverless-log/cmd/generate_keys@14ed652b57527bb17e065e921eb0fcce3cbc8a49 --key_name="TEST-OS-1" --out_priv=${OS_PRIVATE_KEY1} --out_pub=${OS_PUBLIC_KEY1}
    39          go run github.com/transparency-dev/serverless-log/cmd/generate_keys@14ed652b57527bb17e065e921eb0fcce3cbc8a49 --key_name="TEST-OS-2" --out_priv=${OS_PRIVATE_KEY2} --out_pub=${OS_PUBLIC_KEY2}
    40      - name: Make
    41        run: |
    42          DEBUG=1 make trusted_os