diff options
author | Jakub Jelen <jjelen@redhat.com> | 2019-05-23 11:42:46 +0200 |
---|---|---|
committer | Andreas Schneider <asn@cryptomilk.org> | 2019-06-13 16:29:32 +0200 |
commit | ddece69a07a978897cd12de2035dad8388fe25e8 (patch) | |
tree | 5a9cd65954a34bd2fd08c17b53842c4fee25d150 | |
parent | 5568e5e520ddff6846d626f8a23b35e90c5c72a6 (diff) | |
download | libssh-ddece69a07a978897cd12de2035dad8388fe25e8.tar.gz libssh-ddece69a07a978897cd12de2035dad8388fe25e8.tar.xz libssh-ddece69a07a978897cd12de2035dad8388fe25e8.zip |
.gitlab-ci.yml: Add FIPS tests
Added a build running in a Fedora image with crypto-policies set as FIPS
and forcing OpenSSL FIPS mode through environment variable.
Signed-off-by: Jakub Jelen <jjelen@redhat.com>
Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
-rw-r--r-- | .gitlab-ci.yml | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index 3b5b6465..389d1e05 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -47,6 +47,29 @@ fedora/openssl_1.1.x/x86_64: paths: - obj/ +fedora/openssl_1.1.x/x86_64/fips: + image: $CI_REGISTRY/$BUILD_IMAGES_PROJECT:$FEDORA_BUILD + script: + - echo 1 > /etc/system-fips + - update-crypto-policies --set FIPS + - mkdir -p obj && cd obj && cmake + -DCMAKE_BUILD_TYPE=RelWithDebInfo + -DPICKY_DEVELOPER=ON + -DWITH_BLOWFISH_CIPHER=ON + -DWITH_SFTP=ON -DWITH_SERVER=ON -DWITH_ZLIB=ON -DWITH_PCAP=ON + -DWITH_DEBUG_CRYPTO=ON -DWITH_DEBUG_PACKET=ON -DWITH_DEBUG_CALLTRACE=ON + -DUNIT_TESTING=ON -DCLIENT_TESTING=ON -DSERVER_TESTING=ON .. && + make -j$(nproc) && OPENSSL_FORCE_FIPS_MODE=1 ctest --output-on-failure + tags: + - shared + except: + - tags + artifacts: + expire_in: 1 week + when: on_failure + paths: + - obj/ + fedora/openssl_1.1.x/x86_64/minimal: image: $CI_REGISTRY/$BUILD_IMAGES_PROJECT:$FEDORA_BUILD script: |