daily-tests #10
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: daily-tests | |
permissions: | |
contents: read | |
on: | |
workflow_dispatch: | |
schedule: | |
# We run these tests on a daily basis (at a time slightly offset from the | |
# top of the hour), as their runtime is either too long for the usual per-PR | |
# CI, or because they rely on external 3rd party services that can be flaky. | |
- cron: '15 18 * * *' | |
jobs: | |
connect-tests: | |
name: Connect Tests | |
runs-on: ${{ matrix.os }} | |
strategy: | |
matrix: | |
# test a bunch of toolchains on ubuntu | |
rust: | |
- stable | |
- beta | |
- nightly | |
os: [ubuntu-latest] | |
# but only stable on macos/windows (slower platforms) | |
include: | |
- os: macos-latest | |
rust: stable | |
- os: windows-latest | |
rust: stable | |
steps: | |
- name: Checkout sources | |
uses: actions/checkout@v4 | |
with: | |
persist-credentials: false | |
- name: Install ${{ matrix.rust }} toolchain | |
uses: dtolnay/rust-toolchain@master | |
with: | |
toolchain: ${{ matrix.rust }} | |
- name: Install NASM for aws-lc-rs on Windows | |
if: runner.os == 'Windows' | |
uses: ilammy/setup-nasm@v1 | |
- name: Install ninja-build tool for aws-lc-fips-sys on Windows | |
if: runner.os == 'Windows' | |
uses: seanmiddleditch/gha-setup-ninja@v5 | |
- name: Build example programs | |
run: cargo build --locked -p rustls-examples | |
- name: Run connect tests | |
run: cargo test --locked -p rustls-connect-tests --manifest-path=connect-tests/Cargo.toml | |
env: | |
RUST_BACKTRACE: 1 | |
example-tests: | |
name: Example Tests | |
runs-on: ${{ matrix.os }} | |
strategy: | |
matrix: | |
# test a bunch of toolchains on ubuntu | |
rust: | |
- stable | |
- beta | |
- nightly | |
os: [ubuntu-latest] | |
# but only stable on macos/windows (slower platforms) | |
include: | |
- os: macos-latest | |
rust: stable | |
- os: windows-latest | |
rust: stable | |
steps: | |
- name: Checkout sources | |
uses: actions/checkout@v4 | |
with: | |
persist-credentials: false | |
- name: Install ${{ matrix.rust }} toolchain | |
uses: dtolnay/rust-toolchain@master | |
with: | |
toolchain: ${{ matrix.rust }} | |
- name: Install NASM for aws-lc-rs on Windows | |
if: runner.os == 'Windows' | |
uses: ilammy/setup-nasm@v1 | |
- name: Install ninja-build tool for aws-lc-fips-sys on Windows | |
if: runner.os == 'Windows' | |
uses: seanmiddleditch/gha-setup-ninja@v5 | |
- name: Check simple client | |
run: cargo run --locked -p rustls-examples --bin simpleclient | |
- name: Check limited client | |
run: cargo run --locked -p rustls-examples --bin limitedclient | |
- name: Check simple 0rtt client | |
run: cargo run --locked -p rustls-examples --bin simple_0rtt_client | |
- name: Check unbuffered client | |
run: cargo run --locked -p rustls-examples --bin unbuffered-client | |
- name: Check unbuffered tokio client | |
run: cargo run --locked -p rustls-examples --bin unbuffered-async-client | |
- name: Check unbuffered async-std client | |
run: cargo run --locked -p rustls-examples --bin unbuffered-async-client --features=async-std | |
# Test the server_acceptor binary builds - we invoke with --help since it | |
# will run a server process that doesn't exit when invoked with no args | |
- name: Check server acceptor | |
run: cargo run --locked -p rustls-examples --bin server_acceptor -- --help | |
- name: Check ech-client | |
run: > | |
cargo run --locked -p rustls-examples --bin ech-client -- --host defo.ie defo.ie www.defo.ie | | |
grep 'SSL_ECH_STATUS: success' | |
- name: Check provider-example client | |
run: cargo run --locked -p rustls-provider-example --example client | |
- name: Check rustls-post-quantum client | |
run: cargo run --locked -p rustls-post-quantum --example client | grep 'kex=X25519Kyber768Draft00' | |
feature-powerset: | |
name: Feature Powerset | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout sources | |
uses: actions/checkout@v4 | |
with: | |
persist-credentials: false | |
- name: Install stable toolchain | |
uses: dtolnay/rust-toolchain@stable | |
- name: Install cargo hack | |
uses: taiki-e/install-action@cargo-hack | |
- name: Check feature powerset | |
run: > | |
cargo hack check | |
--package rustls | |
--feature-powerset | |
--no-dev-deps | |
--group-features aws_lc_rs,aws-lc-rs | |
--group-features fips,aws_lc_rs | |
--mutually-exclusive-features fips,ring | |
--mutually-exclusive-features custom_provider,aws_lc_rs | |
--mutually-exclusive-features custom_provider,ring | |
env: | |
RUSTFLAGS: --deny warnings |