general/occlum
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

[ci] Add init aecs to hw ci

Browse Source
This commit is contained in:
Zheng, Qi 2023-09-04 17:46:14 +08:00 committed by volcano
parent 3edfc9c541
commit f54eabfa92
1 changed files with 56 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

57
.github/workflows/hw_mode_test.yml vendored
View File

@ -898,7 +898,7 @@ jobs:
if: ${{ always() }} if: ${{ always() }}
run: docker stop ${{ env.CONTAINER_NAME }} run: docker stop ${{ env.CONTAINER_NAME }}
Init_RA_test: Init_RA_grpc:
timeout-minutes: 180 timeout-minutes: 180
if: github.event_name == 'push' || github.event_name == 'schedule' || contains(github.event.pull_request.labels.*.name, 'SGX-hardware-test-required') || contains(github.event.pull_request.labels.*.name, 'Pre-release-test') if: github.event_name == 'push' || github.event_name == 'schedule' || contains(github.event.pull_request.labels.*.name, 'SGX-hardware-test-required') || contains(github.event.pull_request.labels.*.name, 'Pre-release-test')
runs-on: ${{ matrix.self_runner }} runs-on: ${{ matrix.self_runner }}
@ -952,6 +952,61 @@ jobs:
if: ${{ always() }} if: ${{ always() }}
run: docker stop ${{ env.CONTAINER_NAME }} run: docker stop ${{ env.CONTAINER_NAME }}
Init_RA_AECS:
timeout-minutes: 180
if: github.event_name == 'push' || github.event_name == 'schedule' || contains(github.event.pull_request.labels.*.name, 'SGX-hardware-test-required') || contains(github.event.pull_request.labels.*.name, 'Pre-release-test')
runs-on: ${{ matrix.self_runner }}
strategy:
matrix:
self_runner: [[self-hosted, SGX2-HW]]
steps:
- name: Clean before running
run: |
sudo chown -R ${{ secrets.CI_ADMIN }} "${{ github.workspace }}"
- uses: AutoModality/action-clean@v1
- name: Checkout code
if: github.event_name == 'push' || github.event_name == 'schedule'
uses: actions/checkout@v2
with:
submodules: true
- name: Checkout code from fork
if: contains(github.event.pull_request.labels.*.name, 'SGX-hardware-test-required') || contains(github.event.pull_request.labels.*.name, 'Pre-release-test')
uses: actions/checkout@v2
with:
ref: refs/pull/${{ github.event.pull_request.number }}/merge
submodules: true
- uses: ./.github/workflows/composite_action/hw
with:
container-name: ${{ github.job }}
build-envs: 'OCCLUM_RELEASE_BUILD=1'
container-run-params: '--network host'
- name: Build the init_aecs_client demo
run: docker exec ${{ env.CONTAINER_NAME }} bash -c "cd /root/occlum/demos/remote_attestation/init_aecs_client; ./build.sh"
- name: Start the test AECS service
run: |
wget https://raw.githubusercontent.com/SOFAEnclave/enclave-configuration-service/master/deployment/aecs_test.sh;
wget https://raw.githubusercontent.com/SOFAEnclave/enclave-configuration-service/master/deployment/run_image.sh;
chmod +x ./aecs_test.sh;
chmod +x ./run_image.sh;
sed -i "s/-it/-itd/g" run_image.sh;
./aecs_test.sh start
- name: Run init_aecs_client demo
run: docker exec ${{ env.CONTAINER_NAME }} bash -c "cd /root/occlum/demos/remote_attestation/init_aecs_client/occlum_instance; UA_ENV_PCCS_URL=https://sgx-dcap-server.cn-shanghai.aliyuncs.com/sgx/certification/v3/ occlum run /bin/busybox cat /etc/saved_secret_rsa_keypair"
- name: Clean the environment
if: ${{ always() }}
run: |
docker stop ${{ env.CONTAINER_NAME }};
./aecs_test.sh stop
MySQL_test: MySQL_test:
timeout-minutes: 180 timeout-minutes: 180
if: github.event_name == 'push' || github.event_name == 'schedule' || contains(github.event.pull_request.labels.*.name, 'SGX-hardware-test-required') || contains(github.event.pull_request.labels.*.name, 'Pre-release-test') if: github.event_name == 'push' || github.event_name == 'schedule' || contains(github.event.pull_request.labels.*.name, 'SGX-hardware-test-required') || contains(github.event.pull_request.labels.*.name, 'Pre-release-test')