Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

✨ Pull builder's binary instead of compiling it #86

Merged
merged 28 commits into from
May 25, 2022
Merged

✨ Pull builder's binary instead of compiling it #86

merged 28 commits into from
May 25, 2022

Conversation

laurentsimon
Copy link
Collaborator

This is to address #74 and speeds up the time it takes to build.

laurentsimon
laurentsimon commented May 24, 2022
View reviewed changes
.github/workflows/builder_go_slsa3.yml
# Verifier
VERIFIER_REPOSITORY: slsa-framework/slsa-verifier
VERIFIER_RELEASE_BINARY: slsa-verifier-linux-amd64
VERIFIER_RELEASE_BINARY_SHA256: fb743bc6bb56908d590da66bfe5c266d003aa226b30fcada5f7b9e4aea43b52b
Copy link
Collaborator Author

@laurentsimon laurentsimon May 24, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Note: this hash is invalid. We will update it once we (the maintainers) have cut a release for the verifier and verified the hash is valid thru provenance - see #74 (comment)

laurentsimon
laurentsimon commented May 24, 2022
View reviewed changes
.github/workflows/builder_go_slsa3.yml
@@ -202,7 +218,6 @@ jobs:
- name: Verify builder
env:
BUILDER_HASH: "${{ needs.builder.outputs.go-builder-sha256 }}"
BUILDER_BINARY: "${{ env.BUILDER_BINARY }}"
Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Note: I've removed all occurrences of BUILDER_BINARY: "${{ env.BUILDER_BINARY }}" because they are not needed

@laurentsimon laurentsimon mentioned this pull request May 24, 2022
Open
laurentsimon
laurentsimon commented May 24, 2022
View reviewed changes
.github/workflows/scripts/builder-fetch.sh

set -euo pipefail

# Caller sets the following:
Copy link
Collaborator Author

@laurentsimon laurentsimon May 24, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Note: We will replace this script with Golang code in the future #87

@laurentsimon laurentsimon mentioned this pull request May 24, 2022
Closed
@laurentsimon laurentsimon mentioned this pull request May 25, 2022
Merged
asraa
asraa reviewed May 25, 2022
View reviewed changes
.github/workflows/builder_go_slsa3.yml Outdated
required: false
type: string
compile-builder:
description: "Build the builder from source. This speeds up build time by ~2mn."
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This increases the build time?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

no it does not ^^. Thanks for catching this

.github/workflows/scripts/builder-fetch.sh Show resolved Hide resolved
@laurentsimon laurentsimon enabled auto-merge (squash) May 25, 2022 16:47
@laurentsimon laurentsimon merged commit 635178a into slsa-framework:main May 25, 2022
@joshuagl joshuagl mentioned this pull request Jun 29, 2022
Closed
@kpk47 kpk47 mentioned this pull request Sep 15, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@asraa asraa asraa approved these changes

@ianlewis ianlewis Awaiting requested review from ianlewis

@MarkLodato MarkLodato Awaiting requested review from MarkLodato

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@laurentsimon @asraa