ci: add more awslc-fips-2022 testing #5049

lrstewart · 2025-01-17T22:02:11Z

Release Summary:

Description of changes:

I noticed while messing with the fips logic for the openssl-3-fips work that we're missing some awslc-fips testing:

fuzz_batch tests awslc, but not awslc-fips or awslc-fips-2022
sanitizer tests awslc, but not awslc-fips or awslc-fips-2022
valgrind tests awslc and awslc-fips, but not awslc-fips-2022 (the newer version)

awslc is an important libcrypto and fips is a common use case, so we need to make sure we thoroughly test the latest fips version of awslc. Wherever we test with different libcryptos, we should be testing with awslc-fips-2022.

I searched our buildspecs for "S2N_LIBCRYPTO:" to get an idea of which specs used which libcryptos. I added awslc-fips-2022 anywhere it was missing.

Testing:

This adds more testing, which should pass in the CI.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

ci: add more awslc-fips-2022 testing

7e44610

github-actions bot added the s2n-core team label Jan 17, 2025

try image used by existing jobs

283ac7e

lrstewart force-pushed the moreawslcfips branch from 5c8cbe5 to 283ac7e Compare January 17, 2025 22:36

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ci: add more awslc-fips-2022 testing #5049

ci: add more awslc-fips-2022 testing #5049

lrstewart commented Jan 17, 2025

ci: add more awslc-fips-2022 testing #5049

Are you sure you want to change the base?

ci: add more awslc-fips-2022 testing #5049

Conversation

lrstewart commented Jan 17, 2025

Release Summary:

Description of changes:

Testing: