diff options
Diffstat (limited to 'security/nss/automation/taskcluster/docker-ecckiila')
4 files changed, 99 insertions, 0 deletions
diff --git a/security/nss/automation/taskcluster/docker-ecckiila/Dockerfile b/security/nss/automation/taskcluster/docker-ecckiila/Dockerfile new file mode 100644 index 0000000000..f51b775822 --- /dev/null +++ b/security/nss/automation/taskcluster/docker-ecckiila/Dockerfile @@ -0,0 +1,50 @@ +# Minimal image with clang-format 3.9. +FROM ubuntu:bionic-20221215 +LABEL maintainer="iaroslav.gridin@tuni.fi" + +# for new clang/llvm +RUN apt-get update \ + && apt-get install -y --no-install-recommends \ + ca-certificates \ + locales \ + cmake \ + build-essential \ + git \ + clang-10 \ + mercurial \ + unifdef \ + python3-mako \ + libgmp-dev \ + jq \ + python3-setuptools \ + python3-pip \ + python3-dev \ + clang-format-10 \ + && rm -rf /var/lib/apt/lists/* \ + && apt-get autoremove -y && apt-get clean -y + +RUN pip3 install fastecdsa + +ENV SHELL /bin/bash +ENV USER worker +ENV LOGNAME $USER +ENV HOME /home/$USER +ENV HOSTNAME taskcluster-worker +ENV LANG en_US.UTF-8 +ENV LC_ALL $LANG +ENV HOST localhost +ENV DOMSUF localdomain + +RUN locale-gen $LANG \ + && DEBIAN_FRONTEND=noninteractive dpkg-reconfigure locales + +RUN useradd -d $HOME -s $SHELL -m $USER +WORKDIR $HOME + +ADD bin $HOME/bin +RUN chmod +x $HOME/bin/* + +USER $USER + +# Set a default command for debugging. +CMD ["/bin/bash", "--login"] diff --git a/security/nss/automation/taskcluster/docker-ecckiila/bin/checkout.sh b/security/nss/automation/taskcluster/docker-ecckiila/bin/checkout.sh new file mode 100755 index 0000000000..2a7d32c46b --- /dev/null +++ b/security/nss/automation/taskcluster/docker-ecckiila/bin/checkout.sh @@ -0,0 +1,25 @@ +#!/usr/bin/env bash + +set -v -e -x + +if [ $(id -u) = 0 ]; then + # Drop privileges by re-running this script. + exec su worker $0 +fi + +# Default values for testing. +REVISION=${NSS_HEAD_REVISION:-default} +REPOSITORY=${NSS_HEAD_REPOSITORY:-https://hg.mozilla.org/projects/nss} + +# Clone NSS. +hg clone -r $REVISION $REPOSITORY nss + +# Clone NSPR if needed. +hg clone -r default https://hg.mozilla.org/projects/nspr + +if [[ -f nss/nspr.patch && "$ALLOW_NSPR_PATCH" == "1" ]]; then + pushd nspr + cat ../nss/nspr.patch | patch -p1 + popd +fi + diff --git a/security/nss/automation/taskcluster/docker-ecckiila/bin/ecckiila.sh b/security/nss/automation/taskcluster/docker-ecckiila/bin/ecckiila.sh new file mode 100755 index 0000000000..e9549b2050 --- /dev/null +++ b/security/nss/automation/taskcluster/docker-ecckiila/bin/ecckiila.sh @@ -0,0 +1,10 @@ +#!/usr/bin/env bash + +set -v -e -x + +if [ $(id -u) = 0 ]; then + # Drop privileges by re-running this script. + exec su worker $0 +fi + +git clone --depth=1 https://gitlab.com/nisec/ecckiila.git diff --git a/security/nss/automation/taskcluster/docker-ecckiila/bin/run.sh b/security/nss/automation/taskcluster/docker-ecckiila/bin/run.sh new file mode 100755 index 0000000000..dae0032034 --- /dev/null +++ b/security/nss/automation/taskcluster/docker-ecckiila/bin/run.sh @@ -0,0 +1,14 @@ +#!/bin/bash -eu +# +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, You can obtain one at http://mozilla.org/MPL/2.0/. +# +################################################################################ + +set -e -x -v + +cd $HOME/ecckiila +cp $HOME/nss/.clang-format ./ +for c in secp384r1 secp521r1; do (cd ecp/$c && cmake . && make && unifdef ecp_$c.c -URIG_NULL -DRIG_NSS -URIG_GOST -UOPENSSL_BUILDING_OPENSSL -UKIILA_OPENSSL_EMIT_CURVEDEF -UKIILA_UNUSED -UOPENSSL_NO_ASM -ULIB_TEST -x2 > tmp_ecp_$c.c && clang-format-10 -i tmp_ecp_$c.c && diff $HOME/nss/lib/freebl/ecl/ecp_$c.c tmp_ecp_$c.c); done; + |