-
Notifications
You must be signed in to change notification settings - Fork 13
116 lines (91 loc) · 3.35 KB
/
integration-tdx.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
on:
push:
paths-ignore:
- "**.md"
pull_request:
paths-ignore:
- "**.md"
workflow_dispatch:
name: Integration Test on TDX Server
env:
AS: nasm
RUST_TOOLCHAIN: nightly-2023-12-31
TOOLCHAIN_PROFILE: minimal
permissions:
contents: read
jobs:
virtio_vsock:
name: Run TDX Integration Test (virtio-vsock)
runs-on: [self-hosted, tdx]
# timeout-minutes: 30
steps:
# Install first since it's needed to build NASM
# - name: Install LLVM and Clang
# uses: KyleMayes/install-llvm-action@v1
# with:
# version: "10.0"
# directory: ${{ runner.temp }}/llvm
# - name: Install NASM
# uses: ilammy/setup-nasm@v1
# - name: Install tools for sgx lib
# run: sudo dnf group install 'Development Tools' | sudo dnf --enablerepo=powertools install ocaml ocaml-ocamlbuild wget rpm-build pkgcon
- name: Clean test repository
run: |
sudo rm -rf sh_script/test/
- name: Checkout sources
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
with:
submodules: recursive
- name: Preparation Work
run: bash sh_script/preparation.sh
- name: Build Migration TD binary
run: cargo image --policy config/policy_pre_production_fmspc.json --root-ca config/Intel_SGX_Provisioning_Certification_RootCA_preproduction.cer
- name: Run Tests - Test Migration TD 20 Cycles
run: |
pushd sh_script/test
sudo pytest -k "cycle"
popd
- name: Run Tests - Test pre-binding
run: |
pushd sh_script/test
sudo pytest -k "pre_binding" --servtd_hash $(cargo hash --image $GITHUB_WORKSPACE/target/release/migtd.bin)
popd
- name: Build all test binaries
run: bash sh_script/build_final.sh -t test -c -a on
- name: Run Tests
run: |
pushd sh_script/test
sudo pytest -k "function"
popd
virtio_serial:
name: Run TDX Integration Test (virtio-serial)
runs-on: [self-hosted, tdx]
steps:
- name: Clean test repository
run: |
sudo rm -rf sh_script/test/
- name: Checkout sources
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
with:
submodules: recursive
- name: Preparation Work
run: bash sh_script/preparation.sh
- name: Build Migration TD binary
run: cargo image --no-default-features --features stack-guard,virtio-serial --policy config/policy_pre_production_fmspc.json --root-ca config/Intel_SGX_Provisioning_Certification_RootCA_preproduction.cer
- name: Run Tests - Test Migration TD 20 Cycles
run: |
pushd sh_script/test
sudo pytest -k "cycle" --device_type serial
popd
- name: Run Tests - Test pre-binding
run: |
pushd sh_script/test
sudo pytest -k "pre_binding" --device_type serial --servtd_hash $(cargo hash --image $GITHUB_WORKSPACE/target/release/migtd.bin)
popd
- name: Build all test binaries
run: bash sh_script/build_final.sh -t test -c -a on -d serial
- name: Run Tests
run: |
pushd sh_script/test
sudo pytest -k "function" --device_type serial
popd