CI: Turbo C 2.01 get and decrypt #130
Conversation
|
The download url should be a variable?, that way a forked repository can set the secret and url for hosting their own encrypted archive of the compiler to use. Doesn't help people without access to a public host or the compiler, but potentially allows more users to run the compiler before merging. Also, I think it would be better to have the secret at the FDOS organization level?, so all repositories can use the compiler, not just FreeCOM. Unfortunately, this looks like the best option as the only other I can think of would be to make a download that could be used to infringe and I'm not willing to do that. |
Yes I would have done that, but I don't possess the organisation CI/CD Admin role so it's greyed out for me.
Yes it could be github variable too. I'll rework that too. Thanks |
andrewbird
force-pushed
the
tc-build-fixes-02
branch
from
ee546a9 to
d0578ce
Compare
|
Thanks for the new role, I've added two new vars for archive location and filename. I've also renamed the passphrase secret in line with the others. If the archive path/name is now set and the passphrase is not, the script will try to unpack the file as is. That way if others want to host an unencrypted tarfile they can. |
Notes:
1/ Set the Github Actions variables as follows
a) TC201_ARCHIVE_PATHNAME to the URL without final component.
b) TC201_ARCHIVE_FILENAME to the name of the file to be downloaded.
2/ If the archive is GPG symmetrically encrypted set the following
secret to your own freecom Github repository secrets to get your PRs
built with Turbo C, otherwise they will only be checked fully
**after** they have been merged.
a) TC201_ARCHIVE_PASSPHRASE to the decryption passphrase.
andrewbird
force-pushed
the
tc-build-fixes-02
branch
from
d0578ce to
4717a5a
Compare
@PerditionC I see this GPG encrypted file method as a proof of concept, it works but is far from ideal. I really want all PRs to be checked with Turbo C 2.01, not just those users that have access to the passphrase (you can find that in https://github.com/FDOS/freecom/settings/secrets/actions to copy to your own repo). For this to happen the TC201.tar unencrypted file needs to be hosted somewhere else public.
Note: add the secret TC201_SYMMETRIC_PASSPHRASE to your own freecom github repository secrets to get your PRs built with Turbo C, otherwise they will only be checked fully after they have been merged.