Update FIH tests to use recent TFM and bump toolchain to 14.2 to ensure compatibility with the TFM version #3296
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| on: | |
| push: | |
| branches: | |
| - main | |
| pull_request: | |
| name: FIH hardening | |
| concurrency: | |
| group: fih-${{ github.event.pull_request.number || github.ref }} | |
| cancel-in-progress: true | |
| jobs: | |
| config: | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| fih_env: | |
| # FIH environment must use the following space separated format: | |
| # BUILD_TYPE SKIP_SIZE DAMAGE_TYPE FIH_LEVEL(optional) | |
| - "RELEASE 2,4,6 SIGNATURE" | |
| - "RELEASE 2,4,6 SIGNATURE LOW" | |
| - "RELEASE 2,4,6 SIGNATURE MEDIUM" | |
| - "RELEASE 8,10 SIGNATURE" | |
| - "RELEASE 8,10 SIGNATURE LOW" | |
| - "RELEASE 8,10 SIGNATURE MEDIUM" | |
| - "MINSIZEREL 2,4,6 SIGNATURE" | |
| - "MINSIZEREL 2,4,6 SIGNATURE LOW" | |
| - "MINSIZEREL 2,4,6 SIGNATURE MEDIUM" | |
| - "MINSIZEREL 8,10 SIGNATURE" | |
| - "MINSIZEREL 8,10 SIGNATURE LOW" | |
| - "MINSIZEREL 8,10 SIGNATURE MEDIUM" | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v2 | |
| with: | |
| fetch-depth: 0 | |
| # Uses Mbed TLS from TFM, and nothing else from here. | |
| submodules: false | |
| - name: Print the environment | |
| run: | | |
| uname -a | |
| lscpu | |
| free | |
| pwd | |
| - name: Signed commit check | |
| if: ${{ github.event_name == 'pull_request' }} | |
| run: | | |
| ./ci/check-signed-off-by.sh | |
| - name: FIH hardening test install | |
| run: | | |
| ./ci/fih-tests_install.sh | |
| - name: FIH hardening test run | |
| env: | |
| FIH_ENV: ${{ matrix.fih_env }} | |
| run: | | |
| ./ci/fih-tests_run.sh |