TEMP(testing): trigger nightly-osp on push to ci-draft-pause #2138

Workflow file for this run

	name: Nginx Tests
Check failure on line 1 in .github/workflows/nginx.yml View workflow run for this annotation GitHub Actions / .github/workflows/nginx.yml Invalid workflow file (Line: 29, Col: 22): Unexpected symbol: '""'. Located at position 29 within expression: inputs.wolfssl_refs_json != "" && fromJson(inputs.wolfssl_refs_json) \|\| fromJson(needs.discover_versions.outputs.wolfssl_ref_array), (Line: 29, Col: 22): Unexpected value '${{ inputs.wolfssl_refs_json != "" && fromJson(inputs.wolfssl_refs_json) \|\| fromJson(needs.discover_versions.outputs.wolfssl_ref_array) }}', (Line: 46, Col: 22): Unexpected symbol: '""'. Located at position 29 within expression: inputs.wolfssl_refs_json != "" && fromJson(inputs.wolfssl_refs_json) \|\| fromJson(needs.discover_versions.outputs.wolfssl_ref_array), (Line: 46, Col: 22): Unexpected value '${{ inputs.wolfssl_refs_json != "" && fromJson(inputs.wolfssl_refs_json) \|\| fromJson(needs.discover_versions.outputs.wolfssl_ref_array) }}'


	on:
	workflow_call:
	inputs:
	wolfssl_refs_json:
	description: "JSON array of wolfssl refs to test; empty = use discover_versions output"
	required: false
	type: string
	default: ""
	workflow_dispatch: {}

	jobs:
	discover_versions:
	uses: ./.github/workflows/_discover-versions.yml

	build_wolfprovider:
	needs: discover_versions
	uses: ./.github/workflows/build-wolfprovider.yml
	with:
	wolfssl_ref: ${{ matrix.wolfssl_ref }}
	openssl_ref: ${{ matrix.openssl_ref }}
	fips_ref: ${{ matrix.fips_ref }}
	replace_default: ${{ matrix.replace_default }}
	strategy:
	fail-fast: false
	matrix:
	wolfssl_ref: ${{ inputs.wolfssl_refs_json != "" && fromJson(inputs.wolfssl_refs_json) \|\| fromJson(needs.discover_versions.outputs.wolfssl_ref_array) }}
	openssl_ref: ${{ fromJson(needs.discover_versions.outputs.openssl_ref_array) }}
	fips_ref: [ 'FIPS', 'non-FIPS' ]
	replace_default: [ true ]

	test_nginx:
	runs-on: ubuntu-22.04
	needs: [build_wolfprovider, discover_versions]
	container:
	image: ghcr.io/wolfssl/wolfprovider-test-deps:bookworm
	env:
	DEBIAN_FRONTEND: noninteractive
	timeout-minutes: 60
	strategy:
	fail-fast: false
	matrix:
	nginx_ref: [ 'release-1.27.4' ]
	wolfssl_ref: ${{ inputs.wolfssl_refs_json != "" && fromJson(inputs.wolfssl_refs_json) \|\| fromJson(needs.discover_versions.outputs.wolfssl_ref_array) }}
	openssl_ref: ${{ fromJson(needs.discover_versions.outputs.openssl_ref_array) }}
	fips_ref: [ 'FIPS', 'non-FIPS' ]
	force_fail: ['WOLFPROV_FORCE_FAIL=1', '']
	replace_default: [ true ]
	env:
	WOLFSSL_PACKAGES_PATH: /tmp/wolfssl-packages
	OPENSSL_PACKAGES_PATH: /tmp/openssl-packages
	WOLFPROV_PACKAGES_PATH: /tmp/wolfprov-packages
	steps:
	- name: Checkout wolfProvider
	uses: actions/checkout@v4
	with:
	fetch-depth: 1

	- name: Download packages from build job
	uses: actions/download-artifact@v4
	with:
	name: debian-packages-${{ matrix.fips_ref }}${{ matrix.replace_default && '-replace-default' \|\| '' }}-${{ matrix.wolfssl_ref }}-${{ matrix.openssl_ref }}
	path: /tmp

	- name: Install wolfSSL/OpenSSL/wolfprov packages
	run: \|
	apt install --reinstall -y --allow-downgrades --allow-change-held-packages \
	${{ env.WOLFSSL_PACKAGES_PATH }}/libwolfssl_*.deb

	apt install --reinstall -y --allow-downgrades --allow-change-held-packages \
	${{ env.OPENSSL_PACKAGES_PATH }}/openssl_*.deb \
	${{ env.OPENSSL_PACKAGES_PATH }}/libssl3_*.deb \
	${{ env.OPENSSL_PACKAGES_PATH }}/libssl-dev_*.deb

	apt install --reinstall -y --allow-downgrades --allow-change-held-packages \
	${{ env.WOLFPROV_PACKAGES_PATH }}/libwolfprov_*.deb

	# Prevent later 'apt-get install' of test dependencies from
	# replacing the wolfprov-patched libssl3, which breaks
	# replace-default mode.
	apt-mark hold libssl3 libssl-dev openssl libwolfssl libwolfprov

	- name: Verify wolfProvider is properly installed
	run: \|
	$GITHUB_WORKSPACE/scripts/verify-install.sh \
	${{ matrix.replace_default && '--replace-default' \|\| '' }} \
	${{ matrix.fips_ref == 'FIPS' && '--fips' \|\| '' }}

	- name: Checkout nginx
	uses: actions/checkout@v4
	with:
	repository: nginx/nginx
	path: nginx
	ref: ${{ matrix.nginx_ref }}

	- name: Build nginx
	working-directory: nginx
	run: \|
	./auto/configure --with-http_ssl_module --with-stream \
	--with-stream_ssl_module --with-stream_ssl_preread_module \
	--with-http_v2_module --with-mail --with-mail_ssl_module
	make -j

	- name: Checkout nginx-tests
	uses: actions/checkout@v4
	with:
	repository: nginx/nginx-tests
	path: nginx-tests
	ref: master

	- name: Run nginx-tests with wolfProvider
	working-directory: nginx-tests
	run: \|
	export ${{ matrix.force_fail }}

	# Run tests and save result
	TEST_NGINX_VERBOSE=y TEST_NGINX_CATLOG=y TEST_NGINX_BINARY=../nginx/objs/nginx prove -v . 2>&1 \| tee nginx-test.log
	TEST_RESULT=$?
	$GITHUB_WORKSPACE/.github/scripts/check-workflow-result.sh $TEST_RESULT ${{ matrix.force_fail }} nginx

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

TEMP(testing): trigger nightly-osp on push to ci-draft-pause #2138

Workflow file

TEMP(testing): trigger nightly-osp on push to ci-draft-pause #2138

Uh oh!

Workflow file for this run

GitHub Actions / .github/workflows/nginx.yml