Enable more golangci-lint #254
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: validate | |
| on: | |
| push: | |
| tags: | |
| - v* | |
| branches: | |
| - master | |
| pull_request: | |
| jobs: | |
| commit: | |
| runs-on: ubuntu-24.04 | |
| # Only check commits on pull requests. | |
| if: github.event_name == 'pull_request' | |
| steps: | |
| - name: get pr commits | |
| id: 'get-pr-commits' | |
| uses: tim-actions/get-pr-commits@198af03565609bb4ed924d1260247b4881f09e7d # v1.3.1 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| - name: check subject line length | |
| uses: tim-actions/commit-message-checker-with-regex@094fc16ff83d04e2ec73edb5eaf6aa267db33791 # v0.3.2 | |
| with: | |
| commits: ${{ steps.get-pr-commits.outputs.commits }} | |
| pattern: '^.{0,72}(\n.*)*$' | |
| error: 'Subject too long (max 72)' | |
| lint: | |
| runs-on: ubuntu-24.04 | |
| steps: | |
| - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0 | |
| with: | |
| go-version: 1.25.x | |
| - uses: golangci/golangci-lint-action@0a35821d5c230e903fcfe077583637dea1b27b47 # v9.0.0 | |
| with: | |
| version: v2.6 | |
| codespell: | |
| runs-on: ubuntu-24.04 | |
| steps: | |
| - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| - name: install deps | |
| # Version of codespell bundled with Ubuntu is way old, so use pip. | |
| run: pip install codespell | |
| - name: run codespell | |
| run: codespell | |
| cross: | |
| runs-on: ubuntu-24.04 | |
| steps: | |
| - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| - name: cross | |
| run: make build-cross | |
| test-stubs: | |
| runs-on: macos-latest | |
| steps: | |
| - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0 | |
| with: | |
| go-version: 1.25.x | |
| - uses: golangci/golangci-lint-action@0a35821d5c230e903fcfe077583637dea1b27b47 # v9.0.0 | |
| with: | |
| version: v2.6 | |
| - name: test-stubs | |
| run: make test | |
| test: | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| go-version: [1.24.x, 1.25.x] | |
| race: ["-race", ""] | |
| runs-on: ubuntu-24.04 | |
| steps: | |
| - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| - name: install go ${{ matrix.go-version }} | |
| uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0 | |
| with: | |
| go-version: ${{ matrix.go-version }} | |
| - name: build | |
| run: make BUILDFLAGS="${{ matrix.race }}" build | |
| - name: test | |
| run: make TESTFLAGS="${{ matrix.race }}" test | |
| vm: | |
| name: "VM" | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| template: | |
| - template://almalinux-8 | |
| - template://centos-stream-9 | |
| - template://fedora | |
| - template://experimental/opensuse-tumbleweed | |
| runs-on: ubuntu-24.04 | |
| steps: | |
| - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| - name: "Install Lima" | |
| uses: lima-vm/lima-actions/setup@25af04b575e17da32eb5173456ef8afaf1a76bad # v1.1.0 | |
| id: lima-actions-setup | |
| - name: "Cache ~/.cache/lima" | |
| uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0 | |
| with: | |
| path: ~/.cache/lima | |
| key: lima-${{ steps.lima-actions-setup.outputs.version }}-${{ matrix.template }} | |
| - name: "Start VM" | |
| # --plain is set to disable file sharing, port forwarding, built-in containerd, etc. for faster start up | |
| run: limactl start --plain --name=default ${{ matrix.template }} | |
| - name: "Initialize VM" | |
| run: | | |
| set -eux -o pipefail | |
| # Sync the current directory to /tmp/selinux in the guest | |
| limactl cp -r . default:/tmp/selinux | |
| # Install packages | |
| if lima command -v dnf >/dev/null; then | |
| lima sudo dnf install --setopt=install_weak_deps=false --setopt=tsflags=nodocs -y git-core make golang | |
| elif lima command -v zypper >/dev/null; then | |
| lima sudo zypper install -y git make go | |
| else | |
| echo >&2 "Unsupported distribution" | |
| exit 1 | |
| fi | |
| - name: "make test" | |
| continue-on-error: true | |
| run: lima make -C /tmp/selinux test | |
| - name: "32-bit test" | |
| continue-on-error: true | |
| run: lima make -C /tmp/selinux GOARCH=386 test | |
| # https://github.com/opencontainers/selinux/issues/222 | |
| # https://github.com/opencontainers/selinux/issues/225 | |
| - name: "racy test" | |
| continue-on-error: true | |
| run: lima bash -c 'cd /tmp/selinux && go test -timeout 10m -count 100000 ./go-selinux' | |
| - name: "Show AVC denials" | |
| run: lima sudo ausearch -m AVC,USER_AVC || true | |
| all-done: | |
| needs: | |
| - commit | |
| - lint | |
| - codespell | |
| - cross | |
| - test-stubs | |
| - test | |
| - vm | |
| runs-on: ubuntu-24.04 | |
| steps: | |
| - run: echo "All jobs completed" |