Skip to content
validate

CI: add AlmaLinux 8, CentOS Stream 9, and Fedora #187

Sign in to view logs

CI: add AlmaLinux 8, CentOS Stream 9, and Fedora

CI: add AlmaLinux 8, CentOS Stream 9, and Fedora #187

Workflow file for this run

.github/workflows/validate.yml at 62e5b61
name: validate
on:
push:
tags:
- v*
branches:
- master
pull_request:
jobs:
commit:
runs-on: ubuntu-20.04
# Only check commits on pull requests.
if: github.event_name == 'pull_request'
steps:
- name: get pr commits
id: 'get-pr-commits'
uses: tim-actions/[email protected]
with:
token: ${{ secrets.GITHUB_TOKEN }}
- name: check subject line length
uses: tim-actions/[email protected]
with:
commits: ${{ steps.get-pr-commits.outputs.commits }}
pattern: '^.{0,72}(\n.*)*$'
error: 'Subject too long (max 72)'
lint:
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version: 1.22.x
cache: false # golangci-lint-action does its own caching
- uses: golangci/golangci-lint-action@v6
with:
version: v1.56
codespell:
runs-on: ubuntu-22.04
steps:
- uses: actions/checkout@v4
- name: install deps
# Version of codespell bundled with Ubuntu is way old, so use pip.
run: pip install codespell
- name: run codespell
run: codespell
cross:
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- name: cross
run: make build-cross
test-stubs:
runs-on: macos-latest
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version: 1.22.x
cache: false # golangci-lint-action does its own caching
- uses: golangci/golangci-lint-action@v6
with:
version: v1.56
- name: test-stubs
run: make test
test:
strategy:
fail-fast: false
matrix:
go-version: [1.21.x, 1.22.x]
race: ["-race", ""]
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- name: install go ${{ matrix.go-version }}
uses: actions/setup-go@v5
with:
go-version: ${{ matrix.go-version }}
- name: build
run: make BUILDFLAGS="${{ matrix.race }}" build
- name: test
run: make TESTFLAGS="${{ matrix.race }}" test
vm:
name: "VM"
strategy:
fail-fast: false
matrix:
template:
- template://almalinux-8
- template://centos-stream-9
- template://fedora
runs-on: ubuntu-24.04
steps:
- uses: actions/checkout@v4
- name: "Install QEMU"
run: |
set -eux
sudo apt-get update
sudo apt-get install -y --no-install-recommends ovmf qemu-system-x86 qemu-utils
sudo modprobe kvm
# `sudo usermod -aG kvm $(whoami)` does not take an effect on GHA
sudo chown $(whoami) /dev/kvm
- name: "Install Lima"
env:
GITHUB_TOKEN: ${{ github.token }} # required by `gh attestation verify`
run: |
set -eux
LIMA_VERSION=$(curl -fsSL https://api.github.com/repos/lima-vm/lima/releases/latest | jq -r .tag_name)
FILE="lima-${LIMA_VERSION:1}-Linux-x86_64.tar.gz"
curl -fOSL https://github.com/lima-vm/lima/releases/download/${LIMA_VERSION}/${FILE}
gh attestation verify --owner=lima-vm "${FILE}"
sudo tar Cxzvf /usr/local "${FILE}"
rm -f "${FILE}"
# Export LIMA_VERSION For the GHA cache key
echo "LIMA_VERSION=${LIMA_VERSION}" >>$GITHUB_ENV
- name: "Cache ~/.cache/lima"
uses: actions/cache@v4
with:
path: ~/.cache/lima
key: lima-${{ env.LIMA_VERSION }}-${{ matrix.template }}
- name: "Start VM"
# --plain is set to disable file sharing, port forwarding, built-in containerd, etc.
run: limactl start --plain --name=default --cpus=1 --memory=1 ${{ matrix.template }}
- name: "Initialize VM"
# plain old rsync and ssh are used for the initialization of the guest,
# so that people who are not familiar with Lima can understand the initialization steps.
run: |
set -eux -o pipefail
# Initialize SSH
mkdir -p -m 0700 ~/.ssh
cat ~/.lima/default/ssh.config >> ~/.ssh/config
# Sync the current directory to /tmp/selinux in the guest
rsync -a -e ssh . lima-default:/tmp/selinux
# Install packages
ssh lima-default sudo dnf install -y git make golang
- name: "make test"
run: ssh lima-default make -C /tmp/selinux test