Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-02-23 08:20:15 -05:00
Code Issues Packages Projects Releases Wiki Activity

reference selection

Browse Source
This commit is contained in:
miampf 2025-02-05 15:24:08 +01:00
parent f3cf8bedc4
commit a1541824c8
No known key found for this signature in database
GPG Key ID: EF039364B5B6886C
1 changed files with 9 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
.github/workflows/check-measurements-reproducibility.yml vendored
View File

@ -3,15 +3,22 @@ on:
release:
types: [created]
workflow_dispatch:
inputs:
releasetag:
type: string
description: The release to checkout and download.
required: true
jobs:
check-reproducibility:
runs-on: ubuntu-22.04
env:
REF: ${{ github.event_name == 'workflow_dispatch' ? github.event.inputs.releasetag : github.event.release.tag_name }}
steps:
- name: Checkout
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with:
ref: ${{ github.event.release.tag_name }}
ref: ${{ env.REF }}
- name: Set up bazel
uses: ./.github/actions/setup_bazel_nix
with:
@ -33,7 +40,7 @@ jobs:
cd $(mktemp -d)
echo "Downloading release measurements"
curl -O https://cdn.confidential.cloud/constellation/v2/ref/-/stream/stable/v2.20.0/image/measurements.json
curl -O https://cdn.confidential.cloud/constellation/v2/ref/-/stream/stable/${{ env.REF }}/image/measurements.json
# compare all measurements with our own
for directory in $buildPath/system/!(mkosi_wrapper.sh); do