Zeroize HKDF key on drop (#22) #80
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Rust | |
on: | |
push: | |
branches: [main] | |
pull_request: | |
permissions: | |
contents: read | |
env: | |
CARGO_TERM_COLOR: always | |
jobs: | |
test: | |
name: Test | |
runs-on: ubuntu-latest | |
steps: | |
- name: Check out repository | |
uses: actions/checkout@v4 | |
- name: Install toolchain | |
uses: dtolnay/rust-toolchain@v1 | |
with: | |
toolchain: stable | |
- name: Cache build artifacts | |
uses: Swatinem/rust-cache@v2 | |
- name: cargo test | |
run: cargo test | |
# https://github.com/rust-lang/cargo/issues/6669 | |
- name: cargo test --doc | |
run: cargo test --doc | |
lint: | |
name: Lint | |
runs-on: ubuntu-latest | |
steps: | |
- name: Check out repository | |
uses: actions/checkout@v4 | |
- name: Install toolchain | |
uses: dtolnay/rust-toolchain@v1 | |
with: | |
toolchain: stable | |
components: rustfmt, clippy | |
- name: Cache build artifacts | |
uses: Swatinem/rust-cache@v2 | |
- name: cargo fmt (check) | |
run: cargo fmt -- --check -l | |
- name: cargo clippy (warnings) | |
run: cargo clippy --all-targets -- -D warnings | |
- name: cargo clippy --no-default-features (warnings) | |
run: cargo clippy --no-default-features --all-targets -- -D warnings | |
test-fips-1-1-1: | |
name: Test using FIPS openssl 1.1.1 | |
runs-on: ubuntu-latest | |
container: | |
image: registry.access.redhat.com/ubi8/ubi:latest | |
steps: | |
- name: Install dependencies | |
run: dnf install -y gcc openssl-devel | |
- name: Check out repository | |
uses: actions/checkout@v4 | |
- name: Install toolchain | |
uses: dtolnay/rust-toolchain@v1 | |
with: | |
toolchain: stable | |
- name: Cache build artifacts | |
uses: Swatinem/rust-cache@v2 | |
# Use single thread on FIPS to avoid running out of entropy | |
- name: Run cargo test --features fips | |
run: cargo test --tests --features fips -- --test-threads=1 | |
test-fips-openssl-3: | |
name: Test using FIPS openssl 3 | |
runs-on: ubuntu-latest | |
container: | |
image: registry.access.redhat.com/ubi9/ubi:latest | |
steps: | |
- name: Install dependencies | |
run: dnf install -y gcc openssl-devel | |
- name: Check out repository | |
uses: actions/checkout@v4 | |
- name: Install toolchain | |
uses: dtolnay/rust-toolchain@v1 | |
with: | |
toolchain: stable | |
- name: Cache build artifacts | |
uses: Swatinem/rust-cache@v2 | |
- name: Run cargo test --features fips | |
run: cargo test --tests --features fips -- --test-threads=1 |