From 977ba182fb8a20fbbc3f9336df9b3c887bb44bbc Mon Sep 17 00:00:00 2001 From: Daniele Lacamera Date: Tue, 24 Mar 2026 11:30:57 +0100 Subject: [PATCH 1/9] Refactoring CI workflows to run in containers (part 1) --- .github/workflows/footprint.yml | 15 ++--- .../workflows/test-build-cmake-dot-config.yml | 54 ++--------------- .../workflows/test-build-cmake-presets.yml | 13 ++-- .github/workflows/test-build-cmake-script.yml | 53 ++--------------- .github/workflows/test-build-cmake.yml | 54 ++--------------- .github/workflows/test-build-lms.yml | 55 ++--------------- .../test-build-mcux-sdk-manifests.yml | 55 ++--------------- .github/workflows/test-build-mcux-sdk.yml | 55 ++--------------- .github/workflows/test-build-pico-sdk.yml | 22 +++---- .github/workflows/test-build-psoc6.yml | 59 ++----------------- .github/workflows/test-build-stm32cube.yml | 56 ++---------------- .github/workflows/test-build.yml | 57 ++---------------- .github/workflows/test-cppcheck.yml | 5 +- .../workflows/test-custom-tlv-simulator.yml | 5 ++ .github/workflows/test-elf-scattered.yml | 5 ++ .../workflows/test-external-library-paths.yml | 7 ++- .github/workflows/test-filesystem.yml | 6 +- .github/workflows/test-hooks-simulator.yml | 45 ++------------ .github/workflows/test-keytools.yml | 5 ++ .github/workflows/test-library.yml | 10 ++-- .github/workflows/test-parse-tools.yml | 9 ++- .../workflows/test-powerfail-simulator.yml | 5 ++ .github/workflows/test-sim-self-update.yml | 48 ++------------- .github/workflows/test-sunnyday-simulator.yml | 55 ++--------------- .github/workflows/test-units.yml | 6 +- .github/workflows/test-vscode.yml | 9 +-- .github/workflows/test-wolfhsm-simulator.yml | 51 ++-------------- 27 files changed, 117 insertions(+), 702 deletions(-) diff --git a/.github/workflows/footprint.yml b/.github/workflows/footprint.yml index 1e33fb598d..7d2eae3fc0 100644 --- a/.github/workflows/footprint.yml +++ b/.github/workflows/footprint.yml @@ -8,7 +8,9 @@ on: jobs: footprint_test: - runs-on: ubuntu-24.04 + runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 15 steps: @@ -16,19 +18,13 @@ jobs: with: submodules: true - # Get the arm-non-eabi-gcc toolchain - - name: Install arm-none-eabi-gcc - run : | - sudo apt-get install -y gcc-arm-none-eabi + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: make clean run: | make keysclean && rm -f include/target.h - - name: Install wolfSSL - run: | - sudo apt-get install --no-install-recommends -y -q make libwolfssl-dev - - name: Select config run: | cp config/examples/stm32f407-discovery.config .config && make include/target.h @@ -40,4 +36,3 @@ jobs: - name: Build wolfboot and test footprint run: | make test-size-all - diff --git a/.github/workflows/test-build-cmake-dot-config.yml b/.github/workflows/test-build-cmake-dot-config.yml index 31a288bff3..a1f6c1f09b 100644 --- a/.github/workflows/test-build-cmake-dot-config.yml +++ b/.github/workflows/test-build-cmake-dot-config.yml @@ -9,6 +9,8 @@ jobs: wolfboot_dot_config_test: name: cmake .config test (${{ matrix.target }}) runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 15 strategy: @@ -36,56 +38,8 @@ jobs: with: submodules: true - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Install requirements - run: | - # Run system updates and install toolchain - sudo apt-get update - sudo apt-get install -y gcc-arm-none-eabi gcc-powerpc-linux-gnu cmake + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: Run dot-config examples run: | diff --git a/.github/workflows/test-build-cmake-presets.yml b/.github/workflows/test-build-cmake-presets.yml index 5910f0bbf6..97e47c652d 100644 --- a/.github/workflows/test-build-cmake-presets.yml +++ b/.github/workflows/test-build-cmake-presets.yml @@ -13,6 +13,8 @@ jobs: ubuntu-cmake: name: Build on Ubuntu runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 20 defaults: run: @@ -53,15 +55,8 @@ jobs: with: submodules: true - # Lock down network/runner - # See https://github.com/step-security/harden-runner/releases - # Currently only supported on Ubuntu - - # ARM GCC toolchain (adds the bin dir to PATH) - - name: Set up ARM none-eabi GCC - run: | - sudo apt update - sudo apt install -y gcc-arm-none-eabi + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: List all environment variables run: | diff --git a/.github/workflows/test-build-cmake-script.yml b/.github/workflows/test-build-cmake-script.yml index dfe34ab5d3..d4fa840fcc 100644 --- a/.github/workflows/test-build-cmake-script.yml +++ b/.github/workflows/test-build-cmake-script.yml @@ -13,6 +13,8 @@ jobs: wolfboot_build_script_test: name: Build wolfBoot (target=${{ matrix.target }}) runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 15 strategy: @@ -42,55 +44,8 @@ jobs: with: submodules: true - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Install requirements - run: | - sudo apt-get update - sudo apt-get install -y gcc-arm-none-eabi gcc-powerpc-linux-gnu cmake + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: View Presets run: | diff --git a/.github/workflows/test-build-cmake.yml b/.github/workflows/test-build-cmake.yml index 9b52fcac6d..b235311c18 100644 --- a/.github/workflows/test-build-cmake.yml +++ b/.github/workflows/test-build-cmake.yml @@ -7,6 +7,8 @@ on: jobs: cmake_automated_test: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 15 steps: @@ -14,56 +16,8 @@ jobs: with: submodules: true - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - - name: Install requirements - run: | - sudo apt-get update - sudo apt-get install -y gcc-arm-none-eabi gcc-powerpc-linux-gnu cmake + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: Run CMake build for STM32U5 run: | diff --git a/.github/workflows/test-build-lms.yml b/.github/workflows/test-build-lms.yml index 5d2cffa86a..be58ca9d96 100644 --- a/.github/workflows/test-build-lms.yml +++ b/.github/workflows/test-build-lms.yml @@ -18,6 +18,8 @@ jobs: build: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 30 steps: @@ -25,57 +27,8 @@ jobs: with: submodules: true - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Update repository - run: sudo apt-get update - - - name: Install cross compilers - run: | - sudo apt-get install -y gcc-arm-none-eabi gcc-aarch64-linux-gnu gcc-powerpc-linux-gnu gnu-efi + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: make clean run: | diff --git a/.github/workflows/test-build-mcux-sdk-manifests.yml b/.github/workflows/test-build-mcux-sdk-manifests.yml index 50b785cf62..d8b01cdd49 100644 --- a/.github/workflows/test-build-mcux-sdk-manifests.yml +++ b/.github/workflows/test-build-mcux-sdk-manifests.yml @@ -21,6 +21,8 @@ jobs: build: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 30 steps: @@ -33,57 +35,8 @@ jobs: repository: nxp-mcuxpresso/CMSIS_5 path: CMSIS_5 - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Update repository - run: sudo apt-get update - - - name: Install software - run: | - sudo apt-get install -y gcc-arm-none-eabi + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: Cache MCUXpresso SDK id: cache-mcuxpresso diff --git a/.github/workflows/test-build-mcux-sdk.yml b/.github/workflows/test-build-mcux-sdk.yml index 8dd92f6af6..02bf4c40a6 100644 --- a/.github/workflows/test-build-mcux-sdk.yml +++ b/.github/workflows/test-build-mcux-sdk.yml @@ -18,6 +18,8 @@ jobs: build: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 30 steps: @@ -35,57 +37,8 @@ jobs: repository: nxp-mcuxpresso/CMSIS_5 path: CMSIS_5 - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Update repository - run: sudo apt-get update - - - name: Install cross compilers - run: | - sudo apt-get install -y gcc-arm-none-eabi + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: make distclean run: | diff --git a/.github/workflows/test-build-pico-sdk.yml b/.github/workflows/test-build-pico-sdk.yml index e5d362ee78..cd7d08f76f 100644 --- a/.github/workflows/test-build-pico-sdk.yml +++ b/.github/workflows/test-build-pico-sdk.yml @@ -21,10 +21,12 @@ jobs: build: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 30 steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 with: submodules: true @@ -33,25 +35,15 @@ jobs: repository: raspberrypi/pico-sdk path: pico-sdk + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" + - name: pico-sdk submodules initialization run: | cd pico-sdk + git config --global --add safe.directory "$GITHUB_WORKSPACE/pico-sdk" git submodule update --init --recursive - - name: Workaround for sources.list - run: | - # workaround disabled, splitting the load between azure and arizona.edu to avoid timeouts - - # See reference code in test-build.yml for various sources that may be updated. Enable as needed here. - echo "Workaround for sources.list disabled for this workflow" - - - name: Update repository - run: sudo apt-get update - - - name: Install cross compilers - run: | - sudo apt-get install -y gcc-arm-none-eabi - - name: make distclean run: | make distclean diff --git a/.github/workflows/test-build-psoc6.yml b/.github/workflows/test-build-psoc6.yml index f647bec04c..0f8da00be0 100644 --- a/.github/workflows/test-build-psoc6.yml +++ b/.github/workflows/test-build-psoc6.yml @@ -18,6 +18,8 @@ jobs: build: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 30 steps: @@ -40,6 +42,9 @@ jobs: repository: Infineon/core-lib path: lib/core-lib + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" + - name: Patch cy_syslib.c to declare cy_delay32kMs run: | # Add extern declaration for cy_delay32kMs directly in cy_syslib.c @@ -48,58 +53,6 @@ jobs: lib/psoc6pdl/drivers/source/cy_syslib.c > /tmp/cy_syslib_patched.c mv /tmp/cy_syslib_patched.c lib/psoc6pdl/drivers/source/cy_syslib.c - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Update repository - run: sudo apt-get update - - - name: Install cross compilers - run: | - sudo apt-get install -y gcc-arm-none-eabi - - name: make distclean run: | make distclean @@ -115,5 +68,3 @@ jobs: - name: Build wolfboot run: | make ${{inputs.make-args}} V=1 - - diff --git a/.github/workflows/test-build-stm32cube.yml b/.github/workflows/test-build-stm32cube.yml index 0556adb5b8..df5a1cd121 100644 --- a/.github/workflows/test-build-stm32cube.yml +++ b/.github/workflows/test-build-stm32cube.yml @@ -22,6 +22,8 @@ jobs: build: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 30 steps: @@ -35,57 +37,8 @@ jobs: path: STM32Cube submodules: true - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Update repository - run: sudo apt-get update - - - name: Install cross compilers - run: | - sudo apt-get install -y gcc-arm-none-eabi + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: make distclean run: | @@ -102,4 +55,3 @@ jobs: - name: Build wolfboot run: | make STM32CUBE="$GITHUB_WORKSPACE/STM32Cube" ${{inputs.make-args}} V=1 - diff --git a/.github/workflows/test-build.yml b/.github/workflows/test-build.yml index 42f15f68ac..be58ca9d96 100644 --- a/.github/workflows/test-build.yml +++ b/.github/workflows/test-build.yml @@ -17,7 +17,9 @@ on: jobs: build: - runs-on: ubuntu-24.04 + runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 30 steps: @@ -25,57 +27,8 @@ jobs: with: submodules: true - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Update repository - run: sudo apt-get update -o Acquire::Retries=3 - - - name: Install cross compilers - run: | - sudo apt-get install -y gcc-arm-none-eabi gcc-aarch64-linux-gnu gcc-powerpc-linux-gnu gnu-efi + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: make clean run: | diff --git a/.github/workflows/test-cppcheck.yml b/.github/workflows/test-cppcheck.yml index 002ece5a28..762eb4840a 100644 --- a/.github/workflows/test-cppcheck.yml +++ b/.github/workflows/test-cppcheck.yml @@ -9,6 +9,8 @@ on: jobs: cppcheck: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 15 steps: @@ -16,9 +18,6 @@ jobs: with: submodules: false - - name: install cppcheck - run: sudo apt-get install --no-install-recommends -y -q cppcheck - - name: Run cppcheck static analysis run: | make cppcheck diff --git a/.github/workflows/test-custom-tlv-simulator.yml b/.github/workflows/test-custom-tlv-simulator.yml index b257fa03ac..189e912488 100644 --- a/.github/workflows/test-custom-tlv-simulator.yml +++ b/.github/workflows/test-custom-tlv-simulator.yml @@ -9,6 +9,8 @@ on: jobs: custom_tlv_simulator_tests: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 15 steps: @@ -16,6 +18,9 @@ jobs: with: submodules: true + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" + - name: make clean run: | make distclean diff --git a/.github/workflows/test-elf-scattered.yml b/.github/workflows/test-elf-scattered.yml index 4445016985..cb14a706a6 100644 --- a/.github/workflows/test-elf-scattered.yml +++ b/.github/workflows/test-elf-scattered.yml @@ -9,6 +9,8 @@ on: jobs: elf_scattered_test: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 15 steps: @@ -16,6 +18,9 @@ jobs: with: submodules: true + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" + - name: make clean run: | make keysclean diff --git a/.github/workflows/test-external-library-paths.yml b/.github/workflows/test-external-library-paths.yml index 7d11c471ba..b119e8a5f6 100644 --- a/.github/workflows/test-external-library-paths.yml +++ b/.github/workflows/test-external-library-paths.yml @@ -10,6 +10,8 @@ on: jobs: test_external_libs: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 15 # Matrix to test multiple configurations @@ -38,6 +40,9 @@ jobs: with: submodules: true + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" + # Move libraries outside the wolfBoot tree - name: Relocate libraries to external path run: | @@ -77,7 +82,7 @@ jobs: # If building unit tests, install libcheck - name: install libcheck if: matrix.test-config.is-unit-test == true - run: sudo apt-get install --no-install-recommends -y -q check + run: echo "libcheck already installed in container" # Build unit tests with external paths diff --git a/.github/workflows/test-filesystem.yml b/.github/workflows/test-filesystem.yml index 3cd1ae25db..575c79babd 100644 --- a/.github/workflows/test-filesystem.yml +++ b/.github/workflows/test-filesystem.yml @@ -9,14 +9,16 @@ on: jobs: build-lib-fs-example: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 steps: - name: Checkout repository uses: actions/checkout@v4 with: submodules: true - - name: Install build dependencies - run: sudo apt-get update && sudo apt-get install -y build-essential + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: Set simulation config and build signed boot partition run: | diff --git a/.github/workflows/test-hooks-simulator.yml b/.github/workflows/test-hooks-simulator.yml index ae4571361c..e7b39c95ff 100644 --- a/.github/workflows/test-hooks-simulator.yml +++ b/.github/workflows/test-hooks-simulator.yml @@ -9,6 +9,8 @@ on: jobs: hooks_test: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 30 strategy: fail-fast: false @@ -43,47 +45,8 @@ jobs: with: submodules: true - - name: Workaround for sources.list - run: | - set -euxo pipefail - - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Update repository - run: sudo apt-get update -o Acquire::Retries=3 + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: Create test_hooks.c run: | diff --git a/.github/workflows/test-keytools.yml b/.github/workflows/test-keytools.yml index 958f86b8c0..51b816e3f7 100644 --- a/.github/workflows/test-keytools.yml +++ b/.github/workflows/test-keytools.yml @@ -10,6 +10,8 @@ jobs: build: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 15 steps: @@ -17,6 +19,9 @@ jobs: with: submodules: true + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" + # ECC - name: make clean run: | diff --git a/.github/workflows/test-library.yml b/.github/workflows/test-library.yml index f2257dedc2..5fe978c133 100644 --- a/.github/workflows/test-library.yml +++ b/.github/workflows/test-library.yml @@ -8,12 +8,9 @@ on: jobs: test-lib: - # If jobs cancel, consider pinning to ubuntu-24.04 - # The ubuntu-latest alias can point to different images during migrations (and sometimes be extra busy), - # while ubuntu-24.04 always targets the 24.04 pool runs-on: ubuntu-latest - - # The timeout is run time after a runner starts, not time in queue + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 15 strategy: @@ -39,6 +36,9 @@ jobs: clean: true submodules: true + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" + - name: make clean run: | make keysclean && make -C tools/keytools clean && rm -f include/target.h diff --git a/.github/workflows/test-parse-tools.yml b/.github/workflows/test-parse-tools.yml index 2d20224aa6..54ed87005c 100644 --- a/.github/workflows/test-parse-tools.yml +++ b/.github/workflows/test-parse-tools.yml @@ -10,6 +10,8 @@ jobs: build: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 timeout-minutes: 15 steps: @@ -17,11 +19,8 @@ jobs: with: submodules: true - - name: Install cross compilers - run: | - sudo sed -i 's|http://azure.archive.ubuntu.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/sources.list - sudo apt-get update - sudo apt-get install -y gcc-arm-none-eabi gcc-powerpc-linux-gnu + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: make distclean run: | diff --git a/.github/workflows/test-powerfail-simulator.yml b/.github/workflows/test-powerfail-simulator.yml index 1428b18077..e9d74d8625 100644 --- a/.github/workflows/test-powerfail-simulator.yml +++ b/.github/workflows/test-powerfail-simulator.yml @@ -9,6 +9,8 @@ on: jobs: powerfail_simulator_tests: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 15 steps: @@ -16,6 +18,9 @@ jobs: with: submodules: true + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" + - name: make clean run: | make keysclean diff --git a/.github/workflows/test-sim-self-update.yml b/.github/workflows/test-sim-self-update.yml index 0a78ccd3f4..d9657f7809 100644 --- a/.github/workflows/test-sim-self-update.yml +++ b/.github/workflows/test-sim-self-update.yml @@ -9,6 +9,8 @@ on: jobs: self_update_simulator_test: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 15 steps: @@ -16,50 +18,8 @@ jobs: with: submodules: true - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: Run self-update test (internal flash) run: | diff --git a/.github/workflows/test-sunnyday-simulator.yml b/.github/workflows/test-sunnyday-simulator.yml index b537b51e14..c959936144 100644 --- a/.github/workflows/test-sunnyday-simulator.yml +++ b/.github/workflows/test-sunnyday-simulator.yml @@ -9,6 +9,8 @@ on: jobs: simulator_tests: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 30 steps: @@ -16,57 +18,8 @@ jobs: with: submodules: true - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Update repository - run: sudo apt-get update -o Acquire::Retries=3 - - - name: Install 32-bit libc - run: | - sudo apt-get install -y libc6-dev-i386 + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" # 32 Bit simulator, SP_MATH # diff --git a/.github/workflows/test-units.yml b/.github/workflows/test-units.yml index d066f1d2e8..51bce53e43 100644 --- a/.github/workflows/test-units.yml +++ b/.github/workflows/test-units.yml @@ -9,6 +9,8 @@ on: jobs: unit_tests: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 15 steps: @@ -16,8 +18,8 @@ jobs: with: submodules: true - - name: install libcheck - run: sudo apt-get install --no-install-recommends -y -q check + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: make clean run: | diff --git a/.github/workflows/test-vscode.yml b/.github/workflows/test-vscode.yml index 1808a04c3c..6f685e3c7b 100644 --- a/.github/workflows/test-vscode.yml +++ b/.github/workflows/test-vscode.yml @@ -20,6 +20,8 @@ on: jobs: check: runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 # Provide fallbacks when not workflow_dispatch env: WORKSPACE_PATH: ${{ github.event_name == 'workflow_dispatch' && inputs.workspace_path || 'IDE/VSCode/wolfBoot.code-workspace' }} @@ -28,13 +30,6 @@ jobs: - name: Checkout uses: actions/checkout@v4 - - name: Install Python and CMake deps - run: | - sudo apt-get update - sudo apt-get install -y python3 python3-pip ninja-build - cmake --version - ninja --version - - name: Validate workspace JSONC and folder paths shell: python3 {0} env: diff --git a/.github/workflows/test-wolfhsm-simulator.yml b/.github/workflows/test-wolfhsm-simulator.yml index afbc47a07f..e95283cbc8 100644 --- a/.github/workflows/test-wolfhsm-simulator.yml +++ b/.github/workflows/test-wolfhsm-simulator.yml @@ -48,6 +48,8 @@ jobs: fail-fast: false runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 timeout-minutes: 30 steps: @@ -55,53 +57,8 @@ jobs: with: submodules: true - - name: Workaround for sources.list - run: | - # Replace sources - - set -euxo pipefail - - # Peek (what repos are active now) - apt-cache policy - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - - # Enable nullglob so *.list/*.sources that don't exist don't break sed - shopt -s nullglob - - echo "Replace sources.list (legacy)" - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - /etc/apt/sources.list || true - - echo "Replace sources.list.d/*.list (legacy)" - for f in /etc/apt/sources.list.d/*.list; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - "$f" - done - - echo "Replace sources.list.d/*.sources (deb822)" - for f in /etc/apt/sources.list.d/*.sources; do - sudo sed -i \ - -e "s|https\?://azure\.archive\.ubuntu\.com/ubuntu/?|http://mirror.arizona.edu/ubuntu/|g" \ - -e "s|https\?://azure\.archive\.ubuntu\.com|http://mirror.arizona.edu|g" \ - "$f" - done - - echo "Fix /etc/apt/apt-mirrors.txt (used by URIs: mirror+file:...)" - if grep -qE '^[[:space:]]*https?://azure\.archive\.ubuntu\.com/ubuntu/?' /etc/apt/apt-mirrors.txt; then - # Replace azure with our mirror (idempotent) - sudo sed -i 's|https\?://azure\.archive\.ubuntu\.com/ubuntu/|http://mirror.arizona.edu/ubuntu/|g' /etc/apt/apt-mirrors.txt - fi - - # Peek (verify changes) - grep -RIn "azure.archive.ubuntu.com" /etc/apt || true - grep -RInE '^(deb|Types|URIs)' /etc/apt || true - echo "--- apt-mirrors.txt ---" - cat /etc/apt/apt-mirrors.txt || true - - - name: Update repository - run: sudo apt-get update + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: make clean run: | From 4ffa24c05fcb075adbeb4ec455e781edb47070de Mon Sep 17 00:00:00 2001 From: Daniele Lacamera Date: Tue, 24 Mar 2026 12:19:44 +0100 Subject: [PATCH 2/9] Update CI + fix new findings with cppcheck 2.20 --- .github/workflows/test-configs.yml | 6 +++--- .github/workflows/test-parse-tools.yml | 2 +- Makefile | 13 +++++++++++++ hal/stm32h5.c | 4 ++-- hal/va416x0.c | 2 +- src/boot_x86_fsp.c | 18 +++++++++++++----- src/update_ram.c | 2 +- 7 files changed, 34 insertions(+), 13 deletions(-) diff --git a/.github/workflows/test-configs.yml b/.github/workflows/test-configs.yml index c3367da677..11159bf3c2 100644 --- a/.github/workflows/test-configs.yml +++ b/.github/workflows/test-configs.yml @@ -194,19 +194,19 @@ jobs: config-file: ./config/examples/nrf54l15-wolfcrypt-tz.config nxp_p1021_test: - uses: ./.github/workflows/test-build.yml + uses: ./.github/workflows/test-build-powerpc.yml with: arch: ppc config-file: ./config/examples/nxp-p1021.config nxp_t1024_test: - uses: ./.github/workflows/test-build.yml + uses: ./.github/workflows/test-build-powerpc.yml with: arch: ppc config-file: ./config/examples/nxp-t1024.config nxp_t2080_test: - uses: ./.github/workflows/test-build.yml + uses: ./.github/workflows/test-build-powerpc.yml with: arch: ppc config-file: ./config/examples/nxp-t2080.config diff --git a/.github/workflows/test-parse-tools.yml b/.github/workflows/test-parse-tools.yml index 54ed87005c..1971f50c63 100644 --- a/.github/workflows/test-parse-tools.yml +++ b/.github/workflows/test-parse-tools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.2 timeout-minutes: 15 steps: diff --git a/Makefile b/Makefile index 5456c03dc4..2260e193a5 100644 --- a/Makefile +++ b/Makefile @@ -661,8 +661,21 @@ image-header-size: wolfboot.bin cppcheck: cppcheck -f --enable=warning --enable=portability \ + -Iinclude -I. \ + -D'XALIGNED(x)=' -D'TZ_SECURE()=0' -D'__has_attribute(x)=0' \ --suppress="ctunullpointer" --suppress="nullPointer" \ --suppress="objectIndex" --suppress="comparePointers" \ + --suppress="bufferAccessOutOfBounds" \ + --suppress="internalAstError" \ + --suppress="invalidPrintfArgType_s" \ + --suppress="invalidPrintfArgType_sint" \ + --suppress="invalidPrintfArgType_uint" \ + --suppress="invalidTestForOverflow" \ + --suppress="preprocessorErrorDirective" \ + --suppress="shiftTooManyBitsSigned" \ + --suppress="syntaxError" \ + --suppress="uninitvar" \ + --suppress="zerodiv" \ --check-level=exhaustive \ --error-exitcode=89 --std=c89 src/*.c hal/*.c hal/spi/*.c hal/uart/*.c diff --git a/hal/stm32h5.c b/hal/stm32h5.c index 3f0d1651d1..69bac84a3c 100644 --- a/hal/stm32h5.c +++ b/hal/stm32h5.c @@ -129,14 +129,14 @@ int RAMFUNCTION hal_flash_write(uint32_t address, const uint8_t *data, int len) #endif while (i < len) { uint32_t cur_addr = (uint32_t)dst + i; - uint32_t *dst_aligned = (uint32_t *)(cur_addr & ~0xf); + uint32_t *dst_aligned = (uint32_t *)(cur_addr & 0xFFFFFFF0U); int byte_offset = cur_addr - (uint32_t)dst_aligned; int i_aligned = i - byte_offset; int j; if (byte_offset == 0 && i + 16 <= len) { /* Full aligned 128 bits */ for (j = 0; j < 4; j++) { - qword[j] = src[(i >> 2) + j]; + qword[j] = src[((unsigned int)i >> 2) + j]; } } else { /* Non-aligned / non-full 128 bits */ diff --git a/hal/va416x0.c b/hal/va416x0.c index d3c638f291..19304fc4a7 100644 --- a/hal/va416x0.c +++ b/hal/va416x0.c @@ -425,7 +425,7 @@ static int test_ext_flash(void) { int ret; uint32_t i; - uint8_t pageData[WOLFBOOT_SECTOR_SIZE]; + uint8_t pageData[WOLFBOOT_SECTOR_SIZE] = { 0 }; #ifndef READONLY /* Erase sector */ diff --git a/src/boot_x86_fsp.c b/src/boot_x86_fsp.c index 0a1d289f6a..02a0b9b667 100644 --- a/src/boot_x86_fsp.c +++ b/src/boot_x86_fsp.c @@ -169,12 +169,18 @@ static int range_overlaps(uint32_t start1, uint32_t end1, uint32_t start2, return !(end1 <= start2 || end2 <= start1); } +static size_t linker_range_size(const void *start, const void *end) +{ + return (size_t)((uintptr_t)end - (uintptr_t)start); +} + static int check_memory_ranges() { uint32_t wb_start, wb_end; wb_start = (uint32_t)WOLFBOOT_LOAD_BASE - IMAGE_HEADER_SIZE; - wb_end = wb_start + (_wolfboot_flash_end - _wolfboot_flash_start); + wb_end = wb_start + (uint32_t)linker_range_size(_wolfboot_flash_start, + _wolfboot_flash_end); if (range_overlaps(wb_start, wb_end, (uint32_t)_start_data, (uint32_t)_end_data)) return -1; @@ -210,11 +216,12 @@ static void load_wolfboot(void) } wolfboot_start = (uint32_t)WOLFBOOT_LOAD_BASE - IMAGE_HEADER_SIZE; - wolfboot_size = _wolfboot_flash_end - _wolfboot_flash_start; + wolfboot_size = linker_range_size(_wolfboot_flash_start, + _wolfboot_flash_end); x86_log_memory_load(wolfboot_start, wolfboot_start + wolfboot_size, "wolfboot"); memcpy((uint8_t*)wolfboot_start,_wolfboot_flash_start, wolfboot_size); - bss_size = wb_end_bss - wb_start_bss; + bss_size = linker_range_size(wb_start_bss, wb_end_bss); x86_log_memory_load((uint32_t)(uintptr_t)wb_start_bss, (uint32_t)(uintptr_t)(wb_start_bss + bss_size), "wolfboot .bss"); @@ -338,7 +345,7 @@ static inline void memory_init_data_bss(void) } x86_log_memory_load((uint32_t)(uintptr_t)_start_bss, (uint32_t)(uintptr_t)_end_bss, "stage1 .bss"); - memset(_start_bss, 0, (_end_bss - _start_bss)); + memset(_start_bss, 0, linker_range_size(_start_bss, _end_bss)); } static int pci_get_capability(uint8_t bus, uint8_t dev, uint8_t fun, @@ -656,7 +663,8 @@ void start(uint32_t stack_base, uint32_t stack_top, uint64_t timestamp, stage2_params->tpm_policy = (uint32_t)_start_policy; stage2_params->tpm_policy_size = *_policy_size_u32; - if (stage2_params->tpm_policy_size > _end_policy - _start_policy) + if (stage2_params->tpm_policy_size > + linker_range_size(_start_policy, _end_policy)) stage2_params->tpm_policy_size = 0; wolfBoot_printf("setting policy @%x (%d bytes)\r\n", (uint32_t)(uintptr_t)stage2_params->tpm_policy, diff --git a/src/update_ram.c b/src/update_ram.c index c1dbb2a3e1..7f2beb5a73 100644 --- a/src/update_ram.c +++ b/src/update_ram.c @@ -167,7 +167,7 @@ void RAMFUNCTION wolfBoot_start(void) #endif #ifdef WOLFBOOT_USE_RAMBOOT - load_address = (uint32_t*)(WOLFBOOT_LOAD_ADDRESS - + load_address = (uint32_t *)(uintptr_t)(WOLFBOOT_LOAD_ADDRESS - IMAGE_HEADER_SIZE); #if defined(EXT_ENCRYPTED) && defined(MMU) ret = wolfBoot_ram_decrypt((uint8_t*)source_address, From 6b7448d4d15ad0a7d47fb22a6520c35323f3b2c3 Mon Sep 17 00:00:00 2001 From: Daniele Lacamera Date: Tue, 24 Mar 2026 12:40:46 +0100 Subject: [PATCH 3/9] CI version: up to 'latest' --- .github/workflows/footprint.yml | 2 +- .github/workflows/test-build-cmake-dot-config.yml | 2 +- .github/workflows/test-build-cmake-presets.yml | 2 +- .github/workflows/test-build-cmake-script.yml | 2 +- .github/workflows/test-build-cmake.yml | 2 +- .github/workflows/test-build-lms.yml | 2 +- .github/workflows/test-build-mcux-sdk-manifests.yml | 2 +- .github/workflows/test-build-mcux-sdk.yml | 2 +- .github/workflows/test-build-pico-sdk.yml | 2 +- .github/workflows/test-build-psoc6.yml | 2 +- .github/workflows/test-build-stm32cube.yml | 2 +- .github/workflows/test-build.yml | 2 +- .github/workflows/test-cppcheck.yml | 2 +- .github/workflows/test-custom-tlv-simulator.yml | 2 +- .github/workflows/test-elf-scattered.yml | 2 +- .github/workflows/test-external-library-paths.yml | 2 +- .github/workflows/test-filesystem.yml | 2 +- .github/workflows/test-hooks-simulator.yml | 2 +- .github/workflows/test-keytools.yml | 2 +- .github/workflows/test-library.yml | 2 +- .github/workflows/test-parse-tools.yml | 2 +- .github/workflows/test-powerfail-simulator.yml | 2 +- .github/workflows/test-sim-self-update.yml | 2 +- .github/workflows/test-sunnyday-simulator.yml | 2 +- .github/workflows/test-units.yml | 2 +- .github/workflows/test-vscode.yml | 2 +- .github/workflows/test-wolfhsm-simulator.yml | 2 +- 27 files changed, 27 insertions(+), 27 deletions(-) diff --git a/.github/workflows/footprint.yml b/.github/workflows/footprint.yml index 7d2eae3fc0..1c7c81e62d 100644 --- a/.github/workflows/footprint.yml +++ b/.github/workflows/footprint.yml @@ -10,7 +10,7 @@ jobs: footprint_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-cmake-dot-config.yml b/.github/workflows/test-build-cmake-dot-config.yml index a1f6c1f09b..9016c0098b 100644 --- a/.github/workflows/test-build-cmake-dot-config.yml +++ b/.github/workflows/test-build-cmake-dot-config.yml @@ -10,7 +10,7 @@ jobs: name: cmake .config test (${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake-presets.yml b/.github/workflows/test-build-cmake-presets.yml index 97e47c652d..1c445a15ac 100644 --- a/.github/workflows/test-build-cmake-presets.yml +++ b/.github/workflows/test-build-cmake-presets.yml @@ -14,7 +14,7 @@ jobs: name: Build on Ubuntu runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 20 defaults: run: diff --git a/.github/workflows/test-build-cmake-script.yml b/.github/workflows/test-build-cmake-script.yml index d4fa840fcc..779cf94d3d 100644 --- a/.github/workflows/test-build-cmake-script.yml +++ b/.github/workflows/test-build-cmake-script.yml @@ -14,7 +14,7 @@ jobs: name: Build wolfBoot (target=${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake.yml b/.github/workflows/test-build-cmake.yml index b235311c18..ede77d6484 100644 --- a/.github/workflows/test-build-cmake.yml +++ b/.github/workflows/test-build-cmake.yml @@ -8,7 +8,7 @@ jobs: cmake_automated_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-lms.yml b/.github/workflows/test-build-lms.yml index be58ca9d96..0839ee3582 100644 --- a/.github/workflows/test-build-lms.yml +++ b/.github/workflows/test-build-lms.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk-manifests.yml b/.github/workflows/test-build-mcux-sdk-manifests.yml index d8b01cdd49..721574ce78 100644 --- a/.github/workflows/test-build-mcux-sdk-manifests.yml +++ b/.github/workflows/test-build-mcux-sdk-manifests.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk.yml b/.github/workflows/test-build-mcux-sdk.yml index 02bf4c40a6..0aa504585d 100644 --- a/.github/workflows/test-build-mcux-sdk.yml +++ b/.github/workflows/test-build-mcux-sdk.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-pico-sdk.yml b/.github/workflows/test-build-pico-sdk.yml index cd7d08f76f..15fec87d8a 100644 --- a/.github/workflows/test-build-pico-sdk.yml +++ b/.github/workflows/test-build-pico-sdk.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-psoc6.yml b/.github/workflows/test-build-psoc6.yml index 0f8da00be0..e95404fbc2 100644 --- a/.github/workflows/test-build-psoc6.yml +++ b/.github/workflows/test-build-psoc6.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-stm32cube.yml b/.github/workflows/test-build-stm32cube.yml index df5a1cd121..22ad039398 100644 --- a/.github/workflows/test-build-stm32cube.yml +++ b/.github/workflows/test-build-stm32cube.yml @@ -23,7 +23,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build.yml b/.github/workflows/test-build.yml index be58ca9d96..0839ee3582 100644 --- a/.github/workflows/test-build.yml +++ b/.github/workflows/test-build.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 30 steps: diff --git a/.github/workflows/test-cppcheck.yml b/.github/workflows/test-cppcheck.yml index 762eb4840a..0f86d3845f 100644 --- a/.github/workflows/test-cppcheck.yml +++ b/.github/workflows/test-cppcheck.yml @@ -10,7 +10,7 @@ jobs: cppcheck: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest timeout-minutes: 15 steps: diff --git a/.github/workflows/test-custom-tlv-simulator.yml b/.github/workflows/test-custom-tlv-simulator.yml index 189e912488..652e2b6196 100644 --- a/.github/workflows/test-custom-tlv-simulator.yml +++ b/.github/workflows/test-custom-tlv-simulator.yml @@ -10,7 +10,7 @@ jobs: custom_tlv_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 15 steps: diff --git a/.github/workflows/test-elf-scattered.yml b/.github/workflows/test-elf-scattered.yml index cb14a706a6..5580b1e65e 100644 --- a/.github/workflows/test-elf-scattered.yml +++ b/.github/workflows/test-elf-scattered.yml @@ -10,7 +10,7 @@ jobs: elf_scattered_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 15 steps: diff --git a/.github/workflows/test-external-library-paths.yml b/.github/workflows/test-external-library-paths.yml index b119e8a5f6..fcdfbdff64 100644 --- a/.github/workflows/test-external-library-paths.yml +++ b/.github/workflows/test-external-library-paths.yml @@ -11,7 +11,7 @@ jobs: test_external_libs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 15 # Matrix to test multiple configurations diff --git a/.github/workflows/test-filesystem.yml b/.github/workflows/test-filesystem.yml index 575c79babd..449d6d3bd2 100644 --- a/.github/workflows/test-filesystem.yml +++ b/.github/workflows/test-filesystem.yml @@ -10,7 +10,7 @@ jobs: build-lib-fs-example: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest steps: - name: Checkout repository uses: actions/checkout@v4 diff --git a/.github/workflows/test-hooks-simulator.yml b/.github/workflows/test-hooks-simulator.yml index e7b39c95ff..09cde6d762 100644 --- a/.github/workflows/test-hooks-simulator.yml +++ b/.github/workflows/test-hooks-simulator.yml @@ -10,7 +10,7 @@ jobs: hooks_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 30 strategy: fail-fast: false diff --git a/.github/workflows/test-keytools.yml b/.github/workflows/test-keytools.yml index 51b816e3f7..0f9eb88d0a 100644 --- a/.github/workflows/test-keytools.yml +++ b/.github/workflows/test-keytools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 15 steps: diff --git a/.github/workflows/test-library.yml b/.github/workflows/test-library.yml index 5fe978c133..b18646b818 100644 --- a/.github/workflows/test-library.yml +++ b/.github/workflows/test-library.yml @@ -10,7 +10,7 @@ jobs: test-lib: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-parse-tools.yml b/.github/workflows/test-parse-tools.yml index 1971f50c63..5b77710d98 100644 --- a/.github/workflows/test-parse-tools.yml +++ b/.github/workflows/test-parse-tools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:latest timeout-minutes: 15 steps: diff --git a/.github/workflows/test-powerfail-simulator.yml b/.github/workflows/test-powerfail-simulator.yml index e9d74d8625..7b13180677 100644 --- a/.github/workflows/test-powerfail-simulator.yml +++ b/.github/workflows/test-powerfail-simulator.yml @@ -10,7 +10,7 @@ jobs: powerfail_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 15 steps: diff --git a/.github/workflows/test-sim-self-update.yml b/.github/workflows/test-sim-self-update.yml index d9657f7809..df72b3156f 100644 --- a/.github/workflows/test-sim-self-update.yml +++ b/.github/workflows/test-sim-self-update.yml @@ -10,7 +10,7 @@ jobs: self_update_simulator_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 15 steps: diff --git a/.github/workflows/test-sunnyday-simulator.yml b/.github/workflows/test-sunnyday-simulator.yml index c959936144..4c3cf8490e 100644 --- a/.github/workflows/test-sunnyday-simulator.yml +++ b/.github/workflows/test-sunnyday-simulator.yml @@ -10,7 +10,7 @@ jobs: simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 30 steps: diff --git a/.github/workflows/test-units.yml b/.github/workflows/test-units.yml index 51bce53e43..6f3e5111d6 100644 --- a/.github/workflows/test-units.yml +++ b/.github/workflows/test-units.yml @@ -10,7 +10,7 @@ jobs: unit_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 15 steps: diff --git a/.github/workflows/test-vscode.yml b/.github/workflows/test-vscode.yml index 6f685e3c7b..337045fe72 100644 --- a/.github/workflows/test-vscode.yml +++ b/.github/workflows/test-vscode.yml @@ -21,7 +21,7 @@ jobs: check: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-arm:latest # Provide fallbacks when not workflow_dispatch env: WORKSPACE_PATH: ${{ github.event_name == 'workflow_dispatch' && inputs.workspace_path || 'IDE/VSCode/wolfBoot.code-workspace' }} diff --git a/.github/workflows/test-wolfhsm-simulator.yml b/.github/workflows/test-wolfhsm-simulator.yml index e95283cbc8..f656910fa5 100644 --- a/.github/workflows/test-wolfhsm-simulator.yml +++ b/.github/workflows/test-wolfhsm-simulator.yml @@ -49,7 +49,7 @@ jobs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.1 + image: ghcr.io/wolfssl/wolfboot-ci-sim:latest timeout-minutes: 30 steps: From 42cbe1fbbf8df353d64387e4058f97adbe65d4de Mon Sep 17 00:00:00 2001 From: Daniele Lacamera Date: Tue, 24 Mar 2026 12:57:31 +0100 Subject: [PATCH 4/9] Bump ci v0.9.2 --- .github/workflows/footprint.yml | 2 +- .../workflows/test-build-cmake-dot-config.yml | 2 +- .../workflows/test-build-cmake-presets.yml | 2 +- .github/workflows/test-build-cmake-script.yml | 2 +- .github/workflows/test-build-cmake.yml | 2 +- .github/workflows/test-build-lms.yml | 2 +- .../test-build-mcux-sdk-manifests.yml | 2 +- .github/workflows/test-build-mcux-sdk.yml | 2 +- .github/workflows/test-build-pico-sdk.yml | 2 +- .github/workflows/test-build-powerpc.yml | 47 +++++++++++++++++++ .github/workflows/test-build-psoc6.yml | 2 +- .github/workflows/test-build-stm32cube.yml | 2 +- .github/workflows/test-build.yml | 2 +- .github/workflows/test-cppcheck.yml | 2 +- .../workflows/test-custom-tlv-simulator.yml | 2 +- .github/workflows/test-elf-scattered.yml | 2 +- .../workflows/test-external-library-paths.yml | 8 +--- .github/workflows/test-filesystem.yml | 2 +- .github/workflows/test-hooks-simulator.yml | 2 +- .github/workflows/test-keytools.yml | 2 +- .github/workflows/test-library.yml | 2 +- .github/workflows/test-parse-tools.yml | 2 +- .../workflows/test-powerfail-simulator.yml | 2 +- .github/workflows/test-sim-self-update.yml | 2 +- .github/workflows/test-sunnyday-simulator.yml | 2 +- .github/workflows/test-units.yml | 2 +- .github/workflows/test-vscode.yml | 2 +- .github/workflows/test-wolfhsm-simulator.yml | 2 +- 28 files changed, 74 insertions(+), 33 deletions(-) create mode 100644 .github/workflows/test-build-powerpc.yml diff --git a/.github/workflows/footprint.yml b/.github/workflows/footprint.yml index 1c7c81e62d..a92c3e70d6 100644 --- a/.github/workflows/footprint.yml +++ b/.github/workflows/footprint.yml @@ -10,7 +10,7 @@ jobs: footprint_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-cmake-dot-config.yml b/.github/workflows/test-build-cmake-dot-config.yml index 9016c0098b..fd704d335a 100644 --- a/.github/workflows/test-build-cmake-dot-config.yml +++ b/.github/workflows/test-build-cmake-dot-config.yml @@ -10,7 +10,7 @@ jobs: name: cmake .config test (${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake-presets.yml b/.github/workflows/test-build-cmake-presets.yml index 1c445a15ac..1cb47af985 100644 --- a/.github/workflows/test-build-cmake-presets.yml +++ b/.github/workflows/test-build-cmake-presets.yml @@ -14,7 +14,7 @@ jobs: name: Build on Ubuntu runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 20 defaults: run: diff --git a/.github/workflows/test-build-cmake-script.yml b/.github/workflows/test-build-cmake-script.yml index 779cf94d3d..cd8b4bcc1e 100644 --- a/.github/workflows/test-build-cmake-script.yml +++ b/.github/workflows/test-build-cmake-script.yml @@ -14,7 +14,7 @@ jobs: name: Build wolfBoot (target=${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake.yml b/.github/workflows/test-build-cmake.yml index ede77d6484..beae27dff6 100644 --- a/.github/workflows/test-build-cmake.yml +++ b/.github/workflows/test-build-cmake.yml @@ -8,7 +8,7 @@ jobs: cmake_automated_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-lms.yml b/.github/workflows/test-build-lms.yml index 0839ee3582..4e601d7b2e 100644 --- a/.github/workflows/test-build-lms.yml +++ b/.github/workflows/test-build-lms.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk-manifests.yml b/.github/workflows/test-build-mcux-sdk-manifests.yml index 721574ce78..cad0daef32 100644 --- a/.github/workflows/test-build-mcux-sdk-manifests.yml +++ b/.github/workflows/test-build-mcux-sdk-manifests.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk.yml b/.github/workflows/test-build-mcux-sdk.yml index 0aa504585d..5ba8d42206 100644 --- a/.github/workflows/test-build-mcux-sdk.yml +++ b/.github/workflows/test-build-mcux-sdk.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-pico-sdk.yml b/.github/workflows/test-build-pico-sdk.yml index 15fec87d8a..ce429fc997 100644 --- a/.github/workflows/test-build-pico-sdk.yml +++ b/.github/workflows/test-build-pico-sdk.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-powerpc.yml b/.github/workflows/test-build-powerpc.yml new file mode 100644 index 0000000000..103dbc819f --- /dev/null +++ b/.github/workflows/test-build-powerpc.yml @@ -0,0 +1,47 @@ +name: Wolfboot Reusable Build Workflow (PowerPC) + +on: + + workflow_call: + inputs: + arch: + required: true + type: string + config-file: + required: true + type: string + make-args: + required: false + type: string + +jobs: + + build: + runs-on: ubuntu-latest + container: + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.2 + timeout-minutes: 30 + + steps: + - uses: actions/checkout@v4 + with: + submodules: true + + - name: Trust workspace + run: git config --global --add safe.directory "$GITHUB_WORKSPACE" + + - name: make clean + run: | + make distclean + + - name: Select config + run: | + cp ${{inputs.config-file}} .config + + - name: Build tools + run: | + make -C tools/keytools && make -C tools/bin-assemble + + - name: Build wolfboot + run: | + make ${{inputs.make-args}} diff --git a/.github/workflows/test-build-psoc6.yml b/.github/workflows/test-build-psoc6.yml index e95404fbc2..d1061a8a26 100644 --- a/.github/workflows/test-build-psoc6.yml +++ b/.github/workflows/test-build-psoc6.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-stm32cube.yml b/.github/workflows/test-build-stm32cube.yml index 22ad039398..14857e9ab3 100644 --- a/.github/workflows/test-build-stm32cube.yml +++ b/.github/workflows/test-build-stm32cube.yml @@ -23,7 +23,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build.yml b/.github/workflows/test-build.yml index 0839ee3582..4e601d7b2e 100644 --- a/.github/workflows/test-build.yml +++ b/.github/workflows/test-build.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-cppcheck.yml b/.github/workflows/test-cppcheck.yml index 0f86d3845f..08bff7717f 100644 --- a/.github/workflows/test-cppcheck.yml +++ b/.github/workflows/test-cppcheck.yml @@ -10,7 +10,7 @@ jobs: cppcheck: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-custom-tlv-simulator.yml b/.github/workflows/test-custom-tlv-simulator.yml index 652e2b6196..165e80a143 100644 --- a/.github/workflows/test-custom-tlv-simulator.yml +++ b/.github/workflows/test-custom-tlv-simulator.yml @@ -10,7 +10,7 @@ jobs: custom_tlv_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-elf-scattered.yml b/.github/workflows/test-elf-scattered.yml index 5580b1e65e..0b5bb6f11a 100644 --- a/.github/workflows/test-elf-scattered.yml +++ b/.github/workflows/test-elf-scattered.yml @@ -10,7 +10,7 @@ jobs: elf_scattered_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-external-library-paths.yml b/.github/workflows/test-external-library-paths.yml index fcdfbdff64..a73067de9f 100644 --- a/.github/workflows/test-external-library-paths.yml +++ b/.github/workflows/test-external-library-paths.yml @@ -11,7 +11,7 @@ jobs: test_external_libs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 15 # Matrix to test multiple configurations @@ -79,12 +79,6 @@ jobs: WOLFBOOT_LIB_WOLFPKCS11="$(realpath ../external-libs/wolfPKCS11)" \ WOLFBOOT_LIB_WOLFHSM="$(realpath ../external-libs/wolfHSM)" - # If building unit tests, install libcheck - - name: install libcheck - if: matrix.test-config.is-unit-test == true - run: echo "libcheck already installed in container" - - # Build unit tests with external paths - name: Build unit tests with external library paths if: matrix.test-config.is-unit-test == true diff --git a/.github/workflows/test-filesystem.yml b/.github/workflows/test-filesystem.yml index 449d6d3bd2..592b0da461 100644 --- a/.github/workflows/test-filesystem.yml +++ b/.github/workflows/test-filesystem.yml @@ -10,7 +10,7 @@ jobs: build-lib-fs-example: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 steps: - name: Checkout repository uses: actions/checkout@v4 diff --git a/.github/workflows/test-hooks-simulator.yml b/.github/workflows/test-hooks-simulator.yml index 09cde6d762..ef46ca20d5 100644 --- a/.github/workflows/test-hooks-simulator.yml +++ b/.github/workflows/test-hooks-simulator.yml @@ -10,7 +10,7 @@ jobs: hooks_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 30 strategy: fail-fast: false diff --git a/.github/workflows/test-keytools.yml b/.github/workflows/test-keytools.yml index 0f9eb88d0a..4a7217dbd6 100644 --- a/.github/workflows/test-keytools.yml +++ b/.github/workflows/test-keytools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-library.yml b/.github/workflows/test-library.yml index b18646b818..fe0a91b3cc 100644 --- a/.github/workflows/test-library.yml +++ b/.github/workflows/test-library.yml @@ -10,7 +10,7 @@ jobs: test-lib: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-parse-tools.yml b/.github/workflows/test-parse-tools.yml index 5b77710d98..1971f50c63 100644 --- a/.github/workflows/test-parse-tools.yml +++ b/.github/workflows/test-parse-tools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-powerpc:latest + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.2 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-powerfail-simulator.yml b/.github/workflows/test-powerfail-simulator.yml index 7b13180677..8ea20d541f 100644 --- a/.github/workflows/test-powerfail-simulator.yml +++ b/.github/workflows/test-powerfail-simulator.yml @@ -10,7 +10,7 @@ jobs: powerfail_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-sim-self-update.yml b/.github/workflows/test-sim-self-update.yml index df72b3156f..0c24feff1c 100644 --- a/.github/workflows/test-sim-self-update.yml +++ b/.github/workflows/test-sim-self-update.yml @@ -10,7 +10,7 @@ jobs: self_update_simulator_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-sunnyday-simulator.yml b/.github/workflows/test-sunnyday-simulator.yml index 4c3cf8490e..41e2ebf5cc 100644 --- a/.github/workflows/test-sunnyday-simulator.yml +++ b/.github/workflows/test-sunnyday-simulator.yml @@ -10,7 +10,7 @@ jobs: simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-units.yml b/.github/workflows/test-units.yml index 6f3e5111d6..a8facf2a0f 100644 --- a/.github/workflows/test-units.yml +++ b/.github/workflows/test-units.yml @@ -10,7 +10,7 @@ jobs: unit_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-vscode.yml b/.github/workflows/test-vscode.yml index 337045fe72..30a6c6c41c 100644 --- a/.github/workflows/test-vscode.yml +++ b/.github/workflows/test-vscode.yml @@ -21,7 +21,7 @@ jobs: check: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:latest + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 # Provide fallbacks when not workflow_dispatch env: WORKSPACE_PATH: ${{ github.event_name == 'workflow_dispatch' && inputs.workspace_path || 'IDE/VSCode/wolfBoot.code-workspace' }} diff --git a/.github/workflows/test-wolfhsm-simulator.yml b/.github/workflows/test-wolfhsm-simulator.yml index f656910fa5..ebf6aabc55 100644 --- a/.github/workflows/test-wolfhsm-simulator.yml +++ b/.github/workflows/test-wolfhsm-simulator.yml @@ -49,7 +49,7 @@ jobs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:latest + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 timeout-minutes: 30 steps: From 81c6cf6326eaf2026757817fbf0910d8c68bee12 Mon Sep 17 00:00:00 2001 From: Daniele Lacamera Date: Tue, 24 Mar 2026 13:10:38 +0100 Subject: [PATCH 5/9] Bump CI -> v0.9.3 --- .github/workflows/footprint.yml | 2 +- .github/workflows/test-build-cmake-dot-config.yml | 2 +- .github/workflows/test-build-cmake-presets.yml | 2 +- .github/workflows/test-build-cmake-script.yml | 2 +- .github/workflows/test-build-cmake.yml | 2 +- .github/workflows/test-build-lms.yml | 2 +- .github/workflows/test-build-mcux-sdk-manifests.yml | 2 +- .github/workflows/test-build-mcux-sdk.yml | 2 +- .github/workflows/test-build-pico-sdk.yml | 2 +- .github/workflows/test-build-powerpc.yml | 2 +- .github/workflows/test-build-psoc6.yml | 2 +- .github/workflows/test-build-stm32cube.yml | 2 +- .github/workflows/test-build.yml | 2 +- .github/workflows/test-cppcheck.yml | 2 +- .github/workflows/test-custom-tlv-simulator.yml | 2 +- .github/workflows/test-elf-scattered.yml | 2 +- .github/workflows/test-external-library-paths.yml | 2 +- .github/workflows/test-filesystem.yml | 2 +- .github/workflows/test-hooks-simulator.yml | 2 +- .github/workflows/test-keytools.yml | 2 +- .github/workflows/test-library.yml | 2 +- .github/workflows/test-parse-tools.yml | 2 +- .github/workflows/test-powerfail-simulator.yml | 2 +- .github/workflows/test-sim-self-update.yml | 2 +- .github/workflows/test-sunnyday-simulator.yml | 2 +- .github/workflows/test-units.yml | 2 +- .github/workflows/test-vscode.yml | 2 +- .github/workflows/test-wolfhsm-simulator.yml | 2 +- 28 files changed, 28 insertions(+), 28 deletions(-) diff --git a/.github/workflows/footprint.yml b/.github/workflows/footprint.yml index a92c3e70d6..f5f3a6948a 100644 --- a/.github/workflows/footprint.yml +++ b/.github/workflows/footprint.yml @@ -10,7 +10,7 @@ jobs: footprint_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-cmake-dot-config.yml b/.github/workflows/test-build-cmake-dot-config.yml index fd704d335a..5aa3ee6440 100644 --- a/.github/workflows/test-build-cmake-dot-config.yml +++ b/.github/workflows/test-build-cmake-dot-config.yml @@ -10,7 +10,7 @@ jobs: name: cmake .config test (${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake-presets.yml b/.github/workflows/test-build-cmake-presets.yml index 1cb47af985..09d8472b00 100644 --- a/.github/workflows/test-build-cmake-presets.yml +++ b/.github/workflows/test-build-cmake-presets.yml @@ -14,7 +14,7 @@ jobs: name: Build on Ubuntu runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 20 defaults: run: diff --git a/.github/workflows/test-build-cmake-script.yml b/.github/workflows/test-build-cmake-script.yml index cd8b4bcc1e..c46db1a319 100644 --- a/.github/workflows/test-build-cmake-script.yml +++ b/.github/workflows/test-build-cmake-script.yml @@ -14,7 +14,7 @@ jobs: name: Build wolfBoot (target=${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake.yml b/.github/workflows/test-build-cmake.yml index beae27dff6..a7b3c1f307 100644 --- a/.github/workflows/test-build-cmake.yml +++ b/.github/workflows/test-build-cmake.yml @@ -8,7 +8,7 @@ jobs: cmake_automated_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-lms.yml b/.github/workflows/test-build-lms.yml index 4e601d7b2e..41042bd25e 100644 --- a/.github/workflows/test-build-lms.yml +++ b/.github/workflows/test-build-lms.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk-manifests.yml b/.github/workflows/test-build-mcux-sdk-manifests.yml index cad0daef32..474b97e7dd 100644 --- a/.github/workflows/test-build-mcux-sdk-manifests.yml +++ b/.github/workflows/test-build-mcux-sdk-manifests.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk.yml b/.github/workflows/test-build-mcux-sdk.yml index 5ba8d42206..b01030f6c9 100644 --- a/.github/workflows/test-build-mcux-sdk.yml +++ b/.github/workflows/test-build-mcux-sdk.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-pico-sdk.yml b/.github/workflows/test-build-pico-sdk.yml index ce429fc997..28a4982009 100644 --- a/.github/workflows/test-build-pico-sdk.yml +++ b/.github/workflows/test-build-pico-sdk.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-powerpc.yml b/.github/workflows/test-build-powerpc.yml index 103dbc819f..a22bff475a 100644 --- a/.github/workflows/test-build-powerpc.yml +++ b/.github/workflows/test-build-powerpc.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.3 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-psoc6.yml b/.github/workflows/test-build-psoc6.yml index d1061a8a26..104c8372a7 100644 --- a/.github/workflows/test-build-psoc6.yml +++ b/.github/workflows/test-build-psoc6.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-stm32cube.yml b/.github/workflows/test-build-stm32cube.yml index 14857e9ab3..f6e1ff4611 100644 --- a/.github/workflows/test-build-stm32cube.yml +++ b/.github/workflows/test-build-stm32cube.yml @@ -23,7 +23,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build.yml b/.github/workflows/test-build.yml index 4e601d7b2e..41042bd25e 100644 --- a/.github/workflows/test-build.yml +++ b/.github/workflows/test-build.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-cppcheck.yml b/.github/workflows/test-cppcheck.yml index 08bff7717f..228a3321a3 100644 --- a/.github/workflows/test-cppcheck.yml +++ b/.github/workflows/test-cppcheck.yml @@ -10,7 +10,7 @@ jobs: cppcheck: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-custom-tlv-simulator.yml b/.github/workflows/test-custom-tlv-simulator.yml index 165e80a143..b56a7bb9a4 100644 --- a/.github/workflows/test-custom-tlv-simulator.yml +++ b/.github/workflows/test-custom-tlv-simulator.yml @@ -10,7 +10,7 @@ jobs: custom_tlv_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-elf-scattered.yml b/.github/workflows/test-elf-scattered.yml index 0b5bb6f11a..b67126c59c 100644 --- a/.github/workflows/test-elf-scattered.yml +++ b/.github/workflows/test-elf-scattered.yml @@ -10,7 +10,7 @@ jobs: elf_scattered_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-external-library-paths.yml b/.github/workflows/test-external-library-paths.yml index a73067de9f..8b31353fcf 100644 --- a/.github/workflows/test-external-library-paths.yml +++ b/.github/workflows/test-external-library-paths.yml @@ -11,7 +11,7 @@ jobs: test_external_libs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 15 # Matrix to test multiple configurations diff --git a/.github/workflows/test-filesystem.yml b/.github/workflows/test-filesystem.yml index 592b0da461..3762da14fb 100644 --- a/.github/workflows/test-filesystem.yml +++ b/.github/workflows/test-filesystem.yml @@ -10,7 +10,7 @@ jobs: build-lib-fs-example: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 steps: - name: Checkout repository uses: actions/checkout@v4 diff --git a/.github/workflows/test-hooks-simulator.yml b/.github/workflows/test-hooks-simulator.yml index ef46ca20d5..20872c6c1e 100644 --- a/.github/workflows/test-hooks-simulator.yml +++ b/.github/workflows/test-hooks-simulator.yml @@ -10,7 +10,7 @@ jobs: hooks_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 30 strategy: fail-fast: false diff --git a/.github/workflows/test-keytools.yml b/.github/workflows/test-keytools.yml index 4a7217dbd6..10a65a3a15 100644 --- a/.github/workflows/test-keytools.yml +++ b/.github/workflows/test-keytools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-library.yml b/.github/workflows/test-library.yml index fe0a91b3cc..af50aa4380 100644 --- a/.github/workflows/test-library.yml +++ b/.github/workflows/test-library.yml @@ -10,7 +10,7 @@ jobs: test-lib: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-parse-tools.yml b/.github/workflows/test-parse-tools.yml index 1971f50c63..b583f1d992 100644 --- a/.github/workflows/test-parse-tools.yml +++ b/.github/workflows/test-parse-tools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.3 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-powerfail-simulator.yml b/.github/workflows/test-powerfail-simulator.yml index 8ea20d541f..c4c38adcd2 100644 --- a/.github/workflows/test-powerfail-simulator.yml +++ b/.github/workflows/test-powerfail-simulator.yml @@ -10,7 +10,7 @@ jobs: powerfail_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-sim-self-update.yml b/.github/workflows/test-sim-self-update.yml index 0c24feff1c..6027ca4150 100644 --- a/.github/workflows/test-sim-self-update.yml +++ b/.github/workflows/test-sim-self-update.yml @@ -10,7 +10,7 @@ jobs: self_update_simulator_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-sunnyday-simulator.yml b/.github/workflows/test-sunnyday-simulator.yml index 41e2ebf5cc..b26618adf6 100644 --- a/.github/workflows/test-sunnyday-simulator.yml +++ b/.github/workflows/test-sunnyday-simulator.yml @@ -10,7 +10,7 @@ jobs: simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-units.yml b/.github/workflows/test-units.yml index a8facf2a0f..e0ca4e0250 100644 --- a/.github/workflows/test-units.yml +++ b/.github/workflows/test-units.yml @@ -10,7 +10,7 @@ jobs: unit_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-vscode.yml b/.github/workflows/test-vscode.yml index 30a6c6c41c..008ff355e2 100644 --- a/.github/workflows/test-vscode.yml +++ b/.github/workflows/test-vscode.yml @@ -21,7 +21,7 @@ jobs: check: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 # Provide fallbacks when not workflow_dispatch env: WORKSPACE_PATH: ${{ github.event_name == 'workflow_dispatch' && inputs.workspace_path || 'IDE/VSCode/wolfBoot.code-workspace' }} diff --git a/.github/workflows/test-wolfhsm-simulator.yml b/.github/workflows/test-wolfhsm-simulator.yml index ebf6aabc55..cb91fb627e 100644 --- a/.github/workflows/test-wolfhsm-simulator.yml +++ b/.github/workflows/test-wolfhsm-simulator.yml @@ -49,7 +49,7 @@ jobs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.2 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 timeout-minutes: 30 steps: From 1a5683cf7071058ced9ac43b6bc01b38c5fc1812 Mon Sep 17 00:00:00 2001 From: Daniele Lacamera Date: Tue, 24 Mar 2026 13:35:01 +0100 Subject: [PATCH 6/9] Bump CI v0.9.4 --- .github/workflows/footprint.yml | 2 +- .github/workflows/test-build-cmake-dot-config.yml | 2 +- .github/workflows/test-build-cmake-presets.yml | 3 ++- .github/workflows/test-build-cmake-script.yml | 2 +- .github/workflows/test-build-cmake.yml | 2 +- .github/workflows/test-build-lms.yml | 2 +- .github/workflows/test-build-mcux-sdk-manifests.yml | 2 +- .github/workflows/test-build-mcux-sdk.yml | 2 +- .github/workflows/test-build-pico-sdk.yml | 2 +- .github/workflows/test-build-powerpc.yml | 2 +- .github/workflows/test-build-psoc6.yml | 2 +- .github/workflows/test-build-stm32cube.yml | 2 +- .github/workflows/test-build.yml | 2 +- .github/workflows/test-cppcheck.yml | 2 +- .github/workflows/test-custom-tlv-simulator.yml | 2 +- .github/workflows/test-elf-scattered.yml | 2 +- .github/workflows/test-external-library-paths.yml | 2 +- .github/workflows/test-filesystem.yml | 2 +- .github/workflows/test-hooks-simulator.yml | 2 +- .github/workflows/test-keytools.yml | 2 +- .github/workflows/test-library.yml | 2 +- .github/workflows/test-parse-tools.yml | 2 +- .github/workflows/test-powerfail-simulator.yml | 2 +- .github/workflows/test-sim-self-update.yml | 2 +- .github/workflows/test-sunnyday-simulator.yml | 2 +- .github/workflows/test-units.yml | 2 +- .github/workflows/test-vscode.yml | 2 +- .github/workflows/test-wolfhsm-simulator.yml | 2 +- 28 files changed, 29 insertions(+), 28 deletions(-) diff --git a/.github/workflows/footprint.yml b/.github/workflows/footprint.yml index f5f3a6948a..96200eb404 100644 --- a/.github/workflows/footprint.yml +++ b/.github/workflows/footprint.yml @@ -10,7 +10,7 @@ jobs: footprint_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-cmake-dot-config.yml b/.github/workflows/test-build-cmake-dot-config.yml index 5aa3ee6440..ca993d3826 100644 --- a/.github/workflows/test-build-cmake-dot-config.yml +++ b/.github/workflows/test-build-cmake-dot-config.yml @@ -10,7 +10,7 @@ jobs: name: cmake .config test (${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake-presets.yml b/.github/workflows/test-build-cmake-presets.yml index 09d8472b00..4278af1dd1 100644 --- a/.github/workflows/test-build-cmake-presets.yml +++ b/.github/workflows/test-build-cmake-presets.yml @@ -8,13 +8,14 @@ on: permissions: contents: read + packages: read jobs: ubuntu-cmake: name: Build on Ubuntu runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 20 defaults: run: diff --git a/.github/workflows/test-build-cmake-script.yml b/.github/workflows/test-build-cmake-script.yml index c46db1a319..d3f20ca8b8 100644 --- a/.github/workflows/test-build-cmake-script.yml +++ b/.github/workflows/test-build-cmake-script.yml @@ -14,7 +14,7 @@ jobs: name: Build wolfBoot (target=${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake.yml b/.github/workflows/test-build-cmake.yml index a7b3c1f307..b1744c8ab6 100644 --- a/.github/workflows/test-build-cmake.yml +++ b/.github/workflows/test-build-cmake.yml @@ -8,7 +8,7 @@ jobs: cmake_automated_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-lms.yml b/.github/workflows/test-build-lms.yml index 41042bd25e..610504798a 100644 --- a/.github/workflows/test-build-lms.yml +++ b/.github/workflows/test-build-lms.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk-manifests.yml b/.github/workflows/test-build-mcux-sdk-manifests.yml index 474b97e7dd..3b233d4246 100644 --- a/.github/workflows/test-build-mcux-sdk-manifests.yml +++ b/.github/workflows/test-build-mcux-sdk-manifests.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk.yml b/.github/workflows/test-build-mcux-sdk.yml index b01030f6c9..f62812c416 100644 --- a/.github/workflows/test-build-mcux-sdk.yml +++ b/.github/workflows/test-build-mcux-sdk.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-pico-sdk.yml b/.github/workflows/test-build-pico-sdk.yml index 28a4982009..950af4e5e0 100644 --- a/.github/workflows/test-build-pico-sdk.yml +++ b/.github/workflows/test-build-pico-sdk.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-powerpc.yml b/.github/workflows/test-build-powerpc.yml index a22bff475a..ef6d787a9a 100644 --- a/.github/workflows/test-build-powerpc.yml +++ b/.github/workflows/test-build-powerpc.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.4 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-psoc6.yml b/.github/workflows/test-build-psoc6.yml index 104c8372a7..eab1d030bb 100644 --- a/.github/workflows/test-build-psoc6.yml +++ b/.github/workflows/test-build-psoc6.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-stm32cube.yml b/.github/workflows/test-build-stm32cube.yml index f6e1ff4611..130580f25b 100644 --- a/.github/workflows/test-build-stm32cube.yml +++ b/.github/workflows/test-build-stm32cube.yml @@ -23,7 +23,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build.yml b/.github/workflows/test-build.yml index 41042bd25e..610504798a 100644 --- a/.github/workflows/test-build.yml +++ b/.github/workflows/test-build.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-cppcheck.yml b/.github/workflows/test-cppcheck.yml index 228a3321a3..f392f7fc15 100644 --- a/.github/workflows/test-cppcheck.yml +++ b/.github/workflows/test-cppcheck.yml @@ -10,7 +10,7 @@ jobs: cppcheck: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-custom-tlv-simulator.yml b/.github/workflows/test-custom-tlv-simulator.yml index b56a7bb9a4..fdb095d8fb 100644 --- a/.github/workflows/test-custom-tlv-simulator.yml +++ b/.github/workflows/test-custom-tlv-simulator.yml @@ -10,7 +10,7 @@ jobs: custom_tlv_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-elf-scattered.yml b/.github/workflows/test-elf-scattered.yml index b67126c59c..25db11d4e3 100644 --- a/.github/workflows/test-elf-scattered.yml +++ b/.github/workflows/test-elf-scattered.yml @@ -10,7 +10,7 @@ jobs: elf_scattered_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-external-library-paths.yml b/.github/workflows/test-external-library-paths.yml index 8b31353fcf..1ef6db86ec 100644 --- a/.github/workflows/test-external-library-paths.yml +++ b/.github/workflows/test-external-library-paths.yml @@ -11,7 +11,7 @@ jobs: test_external_libs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 15 # Matrix to test multiple configurations diff --git a/.github/workflows/test-filesystem.yml b/.github/workflows/test-filesystem.yml index 3762da14fb..64c8273f05 100644 --- a/.github/workflows/test-filesystem.yml +++ b/.github/workflows/test-filesystem.yml @@ -10,7 +10,7 @@ jobs: build-lib-fs-example: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 steps: - name: Checkout repository uses: actions/checkout@v4 diff --git a/.github/workflows/test-hooks-simulator.yml b/.github/workflows/test-hooks-simulator.yml index 20872c6c1e..7fbe7b8511 100644 --- a/.github/workflows/test-hooks-simulator.yml +++ b/.github/workflows/test-hooks-simulator.yml @@ -10,7 +10,7 @@ jobs: hooks_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 30 strategy: fail-fast: false diff --git a/.github/workflows/test-keytools.yml b/.github/workflows/test-keytools.yml index 10a65a3a15..0e959c424a 100644 --- a/.github/workflows/test-keytools.yml +++ b/.github/workflows/test-keytools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-library.yml b/.github/workflows/test-library.yml index af50aa4380..1104e86858 100644 --- a/.github/workflows/test-library.yml +++ b/.github/workflows/test-library.yml @@ -10,7 +10,7 @@ jobs: test-lib: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-parse-tools.yml b/.github/workflows/test-parse-tools.yml index b583f1d992..8b390cb3c2 100644 --- a/.github/workflows/test-parse-tools.yml +++ b/.github/workflows/test-parse-tools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.4 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-powerfail-simulator.yml b/.github/workflows/test-powerfail-simulator.yml index c4c38adcd2..e29436510a 100644 --- a/.github/workflows/test-powerfail-simulator.yml +++ b/.github/workflows/test-powerfail-simulator.yml @@ -10,7 +10,7 @@ jobs: powerfail_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-sim-self-update.yml b/.github/workflows/test-sim-self-update.yml index 6027ca4150..0ff9b5b879 100644 --- a/.github/workflows/test-sim-self-update.yml +++ b/.github/workflows/test-sim-self-update.yml @@ -10,7 +10,7 @@ jobs: self_update_simulator_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-sunnyday-simulator.yml b/.github/workflows/test-sunnyday-simulator.yml index b26618adf6..a91cd44316 100644 --- a/.github/workflows/test-sunnyday-simulator.yml +++ b/.github/workflows/test-sunnyday-simulator.yml @@ -10,7 +10,7 @@ jobs: simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-units.yml b/.github/workflows/test-units.yml index e0ca4e0250..17687775b6 100644 --- a/.github/workflows/test-units.yml +++ b/.github/workflows/test-units.yml @@ -10,7 +10,7 @@ jobs: unit_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-vscode.yml b/.github/workflows/test-vscode.yml index 008ff355e2..6149aa87ee 100644 --- a/.github/workflows/test-vscode.yml +++ b/.github/workflows/test-vscode.yml @@ -21,7 +21,7 @@ jobs: check: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 # Provide fallbacks when not workflow_dispatch env: WORKSPACE_PATH: ${{ github.event_name == 'workflow_dispatch' && inputs.workspace_path || 'IDE/VSCode/wolfBoot.code-workspace' }} diff --git a/.github/workflows/test-wolfhsm-simulator.yml b/.github/workflows/test-wolfhsm-simulator.yml index cb91fb627e..9b1839ce70 100644 --- a/.github/workflows/test-wolfhsm-simulator.yml +++ b/.github/workflows/test-wolfhsm-simulator.yml @@ -49,7 +49,7 @@ jobs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.3 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 timeout-minutes: 30 steps: From de831c524f4da13f89506584308a5cd58f3b5c62 Mon Sep 17 00:00:00 2001 From: Daniele Lacamera Date: Tue, 24 Mar 2026 13:52:51 +0100 Subject: [PATCH 7/9] Changed efi target type to be more portable --- Makefile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Makefile b/Makefile index 2260e193a5..a5a81c18b5 100644 --- a/Makefile +++ b/Makefile @@ -318,7 +318,7 @@ wolfboot.efi: wolfboot.elf $(Q)$(OBJCOPY) -j .rodata -j .text -j .sdata -j .data \ -j .dynamic -j .dynsym -j .rel \ -j .rela -j .reloc -j .eh_frame \ - --target=efi-app-x86_64 --subsystem=10 $^ $@ + -O pei-x86-64 --subsystem=10 $^ $@ @echo @echo "\t[SIZE]" $(Q)$(SIZE) wolfboot.efi From 87c1cb3709b9f5d7aa8b82bd07e28ebb8986dccf Mon Sep 17 00:00:00 2001 From: Daniele Lacamera Date: Tue, 24 Mar 2026 13:56:36 +0100 Subject: [PATCH 8/9] Bump CI v0.9.5 --- .github/workflows/footprint.yml | 2 +- .github/workflows/test-build-cmake-dot-config.yml | 2 +- .github/workflows/test-build-cmake-presets.yml | 2 +- .github/workflows/test-build-cmake-script.yml | 2 +- .github/workflows/test-build-cmake.yml | 2 +- .github/workflows/test-build-lms.yml | 2 +- .github/workflows/test-build-mcux-sdk-manifests.yml | 2 +- .github/workflows/test-build-mcux-sdk.yml | 2 +- .github/workflows/test-build-pico-sdk.yml | 2 +- .github/workflows/test-build-powerpc.yml | 2 +- .github/workflows/test-build-psoc6.yml | 2 +- .github/workflows/test-build-stm32cube.yml | 2 +- .github/workflows/test-build.yml | 2 +- .github/workflows/test-cppcheck.yml | 2 +- .github/workflows/test-custom-tlv-simulator.yml | 2 +- .github/workflows/test-elf-scattered.yml | 2 +- .github/workflows/test-external-library-paths.yml | 2 +- .github/workflows/test-filesystem.yml | 2 +- .github/workflows/test-hooks-simulator.yml | 2 +- .github/workflows/test-keytools.yml | 3 +-- .github/workflows/test-library.yml | 2 +- .github/workflows/test-parse-tools.yml | 2 +- .github/workflows/test-powerfail-simulator.yml | 3 +-- .github/workflows/test-sim-self-update.yml | 2 +- .github/workflows/test-sunnyday-simulator.yml | 2 +- .github/workflows/test-units.yml | 2 +- .github/workflows/test-vscode.yml | 2 +- .github/workflows/test-wolfhsm-simulator.yml | 2 +- 28 files changed, 28 insertions(+), 30 deletions(-) diff --git a/.github/workflows/footprint.yml b/.github/workflows/footprint.yml index 96200eb404..ad92ab7ad4 100644 --- a/.github/workflows/footprint.yml +++ b/.github/workflows/footprint.yml @@ -10,7 +10,7 @@ jobs: footprint_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-cmake-dot-config.yml b/.github/workflows/test-build-cmake-dot-config.yml index ca993d3826..30ce88da14 100644 --- a/.github/workflows/test-build-cmake-dot-config.yml +++ b/.github/workflows/test-build-cmake-dot-config.yml @@ -10,7 +10,7 @@ jobs: name: cmake .config test (${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake-presets.yml b/.github/workflows/test-build-cmake-presets.yml index 4278af1dd1..7eaf06b7ed 100644 --- a/.github/workflows/test-build-cmake-presets.yml +++ b/.github/workflows/test-build-cmake-presets.yml @@ -15,7 +15,7 @@ jobs: name: Build on Ubuntu runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 20 defaults: run: diff --git a/.github/workflows/test-build-cmake-script.yml b/.github/workflows/test-build-cmake-script.yml index d3f20ca8b8..1a779a7f7a 100644 --- a/.github/workflows/test-build-cmake-script.yml +++ b/.github/workflows/test-build-cmake-script.yml @@ -14,7 +14,7 @@ jobs: name: Build wolfBoot (target=${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake.yml b/.github/workflows/test-build-cmake.yml index b1744c8ab6..9f8f9015b7 100644 --- a/.github/workflows/test-build-cmake.yml +++ b/.github/workflows/test-build-cmake.yml @@ -8,7 +8,7 @@ jobs: cmake_automated_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-lms.yml b/.github/workflows/test-build-lms.yml index 610504798a..57f5f5de87 100644 --- a/.github/workflows/test-build-lms.yml +++ b/.github/workflows/test-build-lms.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk-manifests.yml b/.github/workflows/test-build-mcux-sdk-manifests.yml index 3b233d4246..ae4255afd1 100644 --- a/.github/workflows/test-build-mcux-sdk-manifests.yml +++ b/.github/workflows/test-build-mcux-sdk-manifests.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk.yml b/.github/workflows/test-build-mcux-sdk.yml index f62812c416..b28d47b87d 100644 --- a/.github/workflows/test-build-mcux-sdk.yml +++ b/.github/workflows/test-build-mcux-sdk.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-pico-sdk.yml b/.github/workflows/test-build-pico-sdk.yml index 950af4e5e0..99181c045a 100644 --- a/.github/workflows/test-build-pico-sdk.yml +++ b/.github/workflows/test-build-pico-sdk.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-powerpc.yml b/.github/workflows/test-build-powerpc.yml index ef6d787a9a..d4f2aef512 100644 --- a/.github/workflows/test-build-powerpc.yml +++ b/.github/workflows/test-build-powerpc.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.5 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-psoc6.yml b/.github/workflows/test-build-psoc6.yml index eab1d030bb..eedac2a908 100644 --- a/.github/workflows/test-build-psoc6.yml +++ b/.github/workflows/test-build-psoc6.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-stm32cube.yml b/.github/workflows/test-build-stm32cube.yml index 130580f25b..08257c4c24 100644 --- a/.github/workflows/test-build-stm32cube.yml +++ b/.github/workflows/test-build-stm32cube.yml @@ -23,7 +23,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build.yml b/.github/workflows/test-build.yml index 610504798a..57f5f5de87 100644 --- a/.github/workflows/test-build.yml +++ b/.github/workflows/test-build.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-cppcheck.yml b/.github/workflows/test-cppcheck.yml index f392f7fc15..87cb3e8621 100644 --- a/.github/workflows/test-cppcheck.yml +++ b/.github/workflows/test-cppcheck.yml @@ -10,7 +10,7 @@ jobs: cppcheck: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-custom-tlv-simulator.yml b/.github/workflows/test-custom-tlv-simulator.yml index fdb095d8fb..e2d3dcfeb5 100644 --- a/.github/workflows/test-custom-tlv-simulator.yml +++ b/.github/workflows/test-custom-tlv-simulator.yml @@ -10,7 +10,7 @@ jobs: custom_tlv_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-elf-scattered.yml b/.github/workflows/test-elf-scattered.yml index 25db11d4e3..6dc13fc65a 100644 --- a/.github/workflows/test-elf-scattered.yml +++ b/.github/workflows/test-elf-scattered.yml @@ -10,7 +10,7 @@ jobs: elf_scattered_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-external-library-paths.yml b/.github/workflows/test-external-library-paths.yml index 1ef6db86ec..8fcaa83a1e 100644 --- a/.github/workflows/test-external-library-paths.yml +++ b/.github/workflows/test-external-library-paths.yml @@ -11,7 +11,7 @@ jobs: test_external_libs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 15 # Matrix to test multiple configurations diff --git a/.github/workflows/test-filesystem.yml b/.github/workflows/test-filesystem.yml index 64c8273f05..8d22a90272 100644 --- a/.github/workflows/test-filesystem.yml +++ b/.github/workflows/test-filesystem.yml @@ -10,7 +10,7 @@ jobs: build-lib-fs-example: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 steps: - name: Checkout repository uses: actions/checkout@v4 diff --git a/.github/workflows/test-hooks-simulator.yml b/.github/workflows/test-hooks-simulator.yml index 7fbe7b8511..a3e3b73342 100644 --- a/.github/workflows/test-hooks-simulator.yml +++ b/.github/workflows/test-hooks-simulator.yml @@ -10,7 +10,7 @@ jobs: hooks_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 30 strategy: fail-fast: false diff --git a/.github/workflows/test-keytools.yml b/.github/workflows/test-keytools.yml index 0e959c424a..0ed67c99ce 100644 --- a/.github/workflows/test-keytools.yml +++ b/.github/workflows/test-keytools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 15 steps: @@ -295,4 +295,3 @@ jobs: ./tools/keytools/sign --ecc256 --sha256 --custom-tlv-string 0x46 "Hello world" test-app/image.elf wolfboot_signing_private_key.der 3 grep "Hello world" test-app/image_v3_signed.bin - diff --git a/.github/workflows/test-library.yml b/.github/workflows/test-library.yml index 1104e86858..985a76fdb3 100644 --- a/.github/workflows/test-library.yml +++ b/.github/workflows/test-library.yml @@ -10,7 +10,7 @@ jobs: test-lib: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-parse-tools.yml b/.github/workflows/test-parse-tools.yml index 8b390cb3c2..aafb145d0e 100644 --- a/.github/workflows/test-parse-tools.yml +++ b/.github/workflows/test-parse-tools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.5 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-powerfail-simulator.yml b/.github/workflows/test-powerfail-simulator.yml index e29436510a..738e26a07d 100644 --- a/.github/workflows/test-powerfail-simulator.yml +++ b/.github/workflows/test-powerfail-simulator.yml @@ -10,7 +10,7 @@ jobs: powerfail_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 15 steps: @@ -584,4 +584,3 @@ jobs: run: | tools/scripts/sim-update-emergency-fallback.sh - diff --git a/.github/workflows/test-sim-self-update.yml b/.github/workflows/test-sim-self-update.yml index 0ff9b5b879..535638dd03 100644 --- a/.github/workflows/test-sim-self-update.yml +++ b/.github/workflows/test-sim-self-update.yml @@ -10,7 +10,7 @@ jobs: self_update_simulator_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-sunnyday-simulator.yml b/.github/workflows/test-sunnyday-simulator.yml index a91cd44316..b80f0ead90 100644 --- a/.github/workflows/test-sunnyday-simulator.yml +++ b/.github/workflows/test-sunnyday-simulator.yml @@ -10,7 +10,7 @@ jobs: simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-units.yml b/.github/workflows/test-units.yml index 17687775b6..1bd802e654 100644 --- a/.github/workflows/test-units.yml +++ b/.github/workflows/test-units.yml @@ -10,7 +10,7 @@ jobs: unit_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-vscode.yml b/.github/workflows/test-vscode.yml index 6149aa87ee..61f3d7947e 100644 --- a/.github/workflows/test-vscode.yml +++ b/.github/workflows/test-vscode.yml @@ -21,7 +21,7 @@ jobs: check: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 # Provide fallbacks when not workflow_dispatch env: WORKSPACE_PATH: ${{ github.event_name == 'workflow_dispatch' && inputs.workspace_path || 'IDE/VSCode/wolfBoot.code-workspace' }} diff --git a/.github/workflows/test-wolfhsm-simulator.yml b/.github/workflows/test-wolfhsm-simulator.yml index 9b1839ce70..0579a84da6 100644 --- a/.github/workflows/test-wolfhsm-simulator.yml +++ b/.github/workflows/test-wolfhsm-simulator.yml @@ -49,7 +49,7 @@ jobs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.4 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 timeout-minutes: 30 steps: From 47f58ad2f10a0ccbdc4d503b6076f4205ecbaffd Mon Sep 17 00:00:00 2001 From: Daniele Lacamera Date: Tue, 24 Mar 2026 14:25:18 +0100 Subject: [PATCH 9/9] Moving trustzone test to, wolfboot-ci-m33mu CI to v1.0 --- .github/workflows/footprint.yml | 2 +- .github/workflows/test-build-cmake-dot-config.yml | 2 +- .github/workflows/test-build-cmake-presets.yml | 2 +- .github/workflows/test-build-cmake-script.yml | 2 +- .github/workflows/test-build-cmake.yml | 2 +- .github/workflows/test-build-lms.yml | 2 +- .github/workflows/test-build-mcux-sdk-manifests.yml | 2 +- .github/workflows/test-build-mcux-sdk.yml | 2 +- .github/workflows/test-build-pico-sdk.yml | 2 +- .github/workflows/test-build-powerpc.yml | 2 +- .github/workflows/test-build-psoc6.yml | 2 +- .github/workflows/test-build-stm32cube.yml | 2 +- .github/workflows/test-build.yml | 2 +- .github/workflows/test-cppcheck.yml | 2 +- .github/workflows/test-custom-tlv-simulator.yml | 2 +- .github/workflows/test-elf-scattered.yml | 2 +- .github/workflows/test-external-library-paths.yml | 2 +- .github/workflows/test-filesystem.yml | 2 +- .github/workflows/test-hooks-simulator.yml | 2 +- .github/workflows/test-keytools.yml | 3 +-- .github/workflows/test-library.yml | 2 +- .github/workflows/test-parse-tools.yml | 2 +- .github/workflows/test-powerfail-simulator.yml | 3 +-- .github/workflows/test-sim-self-update.yml | 2 +- .github/workflows/test-sunnyday-simulator.yml | 2 +- .github/workflows/test-units.yml | 2 +- .github/workflows/test-vscode.yml | 2 +- .github/workflows/test-wolfhsm-simulator.yml | 2 +- .github/workflows/trustzone-emulator-tests.yml | 2 +- 29 files changed, 29 insertions(+), 31 deletions(-) diff --git a/.github/workflows/footprint.yml b/.github/workflows/footprint.yml index ad92ab7ad4..763429e80a 100644 --- a/.github/workflows/footprint.yml +++ b/.github/workflows/footprint.yml @@ -10,7 +10,7 @@ jobs: footprint_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-cmake-dot-config.yml b/.github/workflows/test-build-cmake-dot-config.yml index 30ce88da14..65661f1964 100644 --- a/.github/workflows/test-build-cmake-dot-config.yml +++ b/.github/workflows/test-build-cmake-dot-config.yml @@ -10,7 +10,7 @@ jobs: name: cmake .config test (${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake-presets.yml b/.github/workflows/test-build-cmake-presets.yml index 7eaf06b7ed..901e03f666 100644 --- a/.github/workflows/test-build-cmake-presets.yml +++ b/.github/workflows/test-build-cmake-presets.yml @@ -15,7 +15,7 @@ jobs: name: Build on Ubuntu runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 20 defaults: run: diff --git a/.github/workflows/test-build-cmake-script.yml b/.github/workflows/test-build-cmake-script.yml index 1a779a7f7a..c8d4f8b72b 100644 --- a/.github/workflows/test-build-cmake-script.yml +++ b/.github/workflows/test-build-cmake-script.yml @@ -14,7 +14,7 @@ jobs: name: Build wolfBoot (target=${{ matrix.target }}) runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-build-cmake.yml b/.github/workflows/test-build-cmake.yml index 9f8f9015b7..7c1e6091f9 100644 --- a/.github/workflows/test-build-cmake.yml +++ b/.github/workflows/test-build-cmake.yml @@ -8,7 +8,7 @@ jobs: cmake_automated_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-build-lms.yml b/.github/workflows/test-build-lms.yml index 57f5f5de87..1553e96c87 100644 --- a/.github/workflows/test-build-lms.yml +++ b/.github/workflows/test-build-lms.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk-manifests.yml b/.github/workflows/test-build-mcux-sdk-manifests.yml index ae4255afd1..b57d4bbd78 100644 --- a/.github/workflows/test-build-mcux-sdk-manifests.yml +++ b/.github/workflows/test-build-mcux-sdk-manifests.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-mcux-sdk.yml b/.github/workflows/test-build-mcux-sdk.yml index b28d47b87d..b6547b649b 100644 --- a/.github/workflows/test-build-mcux-sdk.yml +++ b/.github/workflows/test-build-mcux-sdk.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-pico-sdk.yml b/.github/workflows/test-build-pico-sdk.yml index 99181c045a..c7cc0bef2f 100644 --- a/.github/workflows/test-build-pico-sdk.yml +++ b/.github/workflows/test-build-pico-sdk.yml @@ -22,7 +22,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-powerpc.yml b/.github/workflows/test-build-powerpc.yml index d4f2aef512..9924b53c73 100644 --- a/.github/workflows/test-build-powerpc.yml +++ b/.github/workflows/test-build-powerpc.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v1.0 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-psoc6.yml b/.github/workflows/test-build-psoc6.yml index eedac2a908..1a89e7c698 100644 --- a/.github/workflows/test-build-psoc6.yml +++ b/.github/workflows/test-build-psoc6.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build-stm32cube.yml b/.github/workflows/test-build-stm32cube.yml index 08257c4c24..2d7d94a6be 100644 --- a/.github/workflows/test-build-stm32cube.yml +++ b/.github/workflows/test-build-stm32cube.yml @@ -23,7 +23,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-build.yml b/.github/workflows/test-build.yml index 57f5f5de87..1553e96c87 100644 --- a/.github/workflows/test-build.yml +++ b/.github/workflows/test-build.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-cppcheck.yml b/.github/workflows/test-cppcheck.yml index 87cb3e8621..35436c512b 100644 --- a/.github/workflows/test-cppcheck.yml +++ b/.github/workflows/test-cppcheck.yml @@ -10,7 +10,7 @@ jobs: cppcheck: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-custom-tlv-simulator.yml b/.github/workflows/test-custom-tlv-simulator.yml index e2d3dcfeb5..be94d6d000 100644 --- a/.github/workflows/test-custom-tlv-simulator.yml +++ b/.github/workflows/test-custom-tlv-simulator.yml @@ -10,7 +10,7 @@ jobs: custom_tlv_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-elf-scattered.yml b/.github/workflows/test-elf-scattered.yml index 6dc13fc65a..d47d904660 100644 --- a/.github/workflows/test-elf-scattered.yml +++ b/.github/workflows/test-elf-scattered.yml @@ -10,7 +10,7 @@ jobs: elf_scattered_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-external-library-paths.yml b/.github/workflows/test-external-library-paths.yml index 8fcaa83a1e..4d437547cb 100644 --- a/.github/workflows/test-external-library-paths.yml +++ b/.github/workflows/test-external-library-paths.yml @@ -11,7 +11,7 @@ jobs: test_external_libs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 15 # Matrix to test multiple configurations diff --git a/.github/workflows/test-filesystem.yml b/.github/workflows/test-filesystem.yml index 8d22a90272..3e481c85fe 100644 --- a/.github/workflows/test-filesystem.yml +++ b/.github/workflows/test-filesystem.yml @@ -10,7 +10,7 @@ jobs: build-lib-fs-example: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 steps: - name: Checkout repository uses: actions/checkout@v4 diff --git a/.github/workflows/test-hooks-simulator.yml b/.github/workflows/test-hooks-simulator.yml index a3e3b73342..23f385ac70 100644 --- a/.github/workflows/test-hooks-simulator.yml +++ b/.github/workflows/test-hooks-simulator.yml @@ -10,7 +10,7 @@ jobs: hooks_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 30 strategy: fail-fast: false diff --git a/.github/workflows/test-keytools.yml b/.github/workflows/test-keytools.yml index 0ed67c99ce..5d6848f226 100644 --- a/.github/workflows/test-keytools.yml +++ b/.github/workflows/test-keytools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 15 steps: @@ -294,4 +294,3 @@ jobs: run: | ./tools/keytools/sign --ecc256 --sha256 --custom-tlv-string 0x46 "Hello world" test-app/image.elf wolfboot_signing_private_key.der 3 grep "Hello world" test-app/image_v3_signed.bin - diff --git a/.github/workflows/test-library.yml b/.github/workflows/test-library.yml index 985a76fdb3..ee7417b7d4 100644 --- a/.github/workflows/test-library.yml +++ b/.github/workflows/test-library.yml @@ -10,7 +10,7 @@ jobs: test-lib: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 15 strategy: diff --git a/.github/workflows/test-parse-tools.yml b/.github/workflows/test-parse-tools.yml index aafb145d0e..01c4977d5c 100644 --- a/.github/workflows/test-parse-tools.yml +++ b/.github/workflows/test-parse-tools.yml @@ -11,7 +11,7 @@ jobs: build: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-powerpc:v1.0 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-powerfail-simulator.yml b/.github/workflows/test-powerfail-simulator.yml index 738e26a07d..43b6f5a34a 100644 --- a/.github/workflows/test-powerfail-simulator.yml +++ b/.github/workflows/test-powerfail-simulator.yml @@ -10,7 +10,7 @@ jobs: powerfail_simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 15 steps: @@ -583,4 +583,3 @@ jobs: - name: Run emergency fallback test (FLASH_MULTI_SECTOR_ERASE=1) run: | tools/scripts/sim-update-emergency-fallback.sh - diff --git a/.github/workflows/test-sim-self-update.yml b/.github/workflows/test-sim-self-update.yml index 535638dd03..3726de44fb 100644 --- a/.github/workflows/test-sim-self-update.yml +++ b/.github/workflows/test-sim-self-update.yml @@ -10,7 +10,7 @@ jobs: self_update_simulator_test: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-sunnyday-simulator.yml b/.github/workflows/test-sunnyday-simulator.yml index b80f0ead90..f8b3dd4b73 100644 --- a/.github/workflows/test-sunnyday-simulator.yml +++ b/.github/workflows/test-sunnyday-simulator.yml @@ -10,7 +10,7 @@ jobs: simulator_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 30 steps: diff --git a/.github/workflows/test-units.yml b/.github/workflows/test-units.yml index 1bd802e654..7841f1a8be 100644 --- a/.github/workflows/test-units.yml +++ b/.github/workflows/test-units.yml @@ -10,7 +10,7 @@ jobs: unit_tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 15 steps: diff --git a/.github/workflows/test-vscode.yml b/.github/workflows/test-vscode.yml index 61f3d7947e..c2e28247cb 100644 --- a/.github/workflows/test-vscode.yml +++ b/.github/workflows/test-vscode.yml @@ -21,7 +21,7 @@ jobs: check: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-arm:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-arm:v1.0 # Provide fallbacks when not workflow_dispatch env: WORKSPACE_PATH: ${{ github.event_name == 'workflow_dispatch' && inputs.workspace_path || 'IDE/VSCode/wolfBoot.code-workspace' }} diff --git a/.github/workflows/test-wolfhsm-simulator.yml b/.github/workflows/test-wolfhsm-simulator.yml index 0579a84da6..a5646d1ac1 100644 --- a/.github/workflows/test-wolfhsm-simulator.yml +++ b/.github/workflows/test-wolfhsm-simulator.yml @@ -49,7 +49,7 @@ jobs: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/wolfboot-ci-sim:v0.9.5 + image: ghcr.io/wolfssl/wolfboot-ci-sim:v1.0 timeout-minutes: 30 steps: diff --git a/.github/workflows/trustzone-emulator-tests.yml b/.github/workflows/trustzone-emulator-tests.yml index 2cd626047d..18744bbac2 100644 --- a/.github/workflows/trustzone-emulator-tests.yml +++ b/.github/workflows/trustzone-emulator-tests.yml @@ -8,7 +8,7 @@ jobs: trustzone-emulator-tests: runs-on: ubuntu-latest container: - image: ghcr.io/wolfssl/m33mu-ci:1.9 + image: ghcr.io/wolfssl/wolfboot-ci-m33mu:v1.0 steps: - uses: actions/checkout@v4