image: registry.gitlab.com/satoshilabs/trezor/trezor-firmware/trezor-firmware-env.nix variables: SDL_VIDEODRIVER: "dummy" XDG_RUNTIME_DIR: "/var/tmp" # Core core fw regular build: stage: build script: - nix-shell --run "pipenv run make -C core build_cross" - nix-shell --run "pipenv run make -C core build_boardloader" - nix-shell --run "pipenv run make -C core build_bootloader" - nix-shell --run "pipenv run make -C core build_prodtest" - nix-shell --run "pipenv run make -C core build_firmware" - nix-shell --run "pipenv run make -C core sizecheck" - export VERSION=$(./tools/version.sh core/embed/firmware/version.h) - cp core/build/firmware/firmware.bin trezor-fw-regular-$VERSION-$CI_COMMIT_SHORT_SHA.bin artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - trezor-fw-regular-*.*.*-$CI_COMMIT_SHORT_SHA.bin expire_in: 1 week core fw regular debug build: stage: build script: - nix-shell --run "PYOPT=0 pipenv run make -C core build_firmware" - export VERSION=$(./tools/version.sh core/embed/firmware/version.h) - cp core/build/firmware/firmware.bin trezor-fw-regular-debug-$VERSION-$CI_COMMIT_SHORT_SHA.bin artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - trezor-fw-regular-debug-*.*.*-$CI_COMMIT_SHORT_SHA.bin expire_in: 1 week core fw btconly build: stage: build variables: BITCOIN_ONLY: "1" script: - nix-shell --run "pipenv run make -C core build_firmware" - mv core/build/firmware/firmware.bin core/build/firmware/firmware-bitcoinonly.bin - nix-shell --run "pipenv run ./tools/check-bitcoin-only core/build/firmware/firmware-bitcoinonly.bin" - export VERSION=$(./tools/version.sh core/embed/firmware/version.h) - cp core/build/firmware/firmware-bitcoinonly.bin trezor-fw-btconly-$VERSION-$CI_COMMIT_SHORT_SHA.bin artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - trezor-fw-btconly-*.*.*-$CI_COMMIT_SHORT_SHA.bin expire_in: 1 week core unix regular build: stage: build script: - nix-shell --run "pipenv run make -C core build_unix" artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - core/build/unix/micropython - core/src/trezor/res/resources.py expire_in: 1 week core unix frozen regular build: stage: build script: - nix-shell --run "pipenv run make -C core build_unix_frozen" artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - core/build/unix/micropython expire_in: 1 week core unix frozen btconly debug build: stage: build variables: PYOPT: "0" BITCOIN_ONLY: "1" script: - nix-shell --run "pipenv run make -C core build_unix_frozen" - mv core/build/unix/micropython core/build/unix/micropython-bitcoinonly artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - core/build/unix/micropython-bitcoinonly expire_in: 1 week core unix frozen debug build: stage: build variables: PYOPT: "0" script: - nix-shell --run "pipenv run make -C core build_unix_frozen" artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" untracked: true expire_in: 1 week core unix frozen regular darwin: stage: build tags: - darwin when: manual script: - . $HOME/.nix-profile/etc/profile.d/nix.sh - nix-shell --run "pipenv run make -C core build_unix_frozen" - mkdir -p TrezorEmu-$CI_COMMIT_SHORT_SHA.app/Contents/{MacOS,libs} - cp -v core/build/unix/micropython TrezorEmu-$CI_COMMIT_SHORT_SHA.app/Contents/MacOS/TrezorEmu-$CI_COMMIT_SHORT_SHA - dylibbundler -of -b -i /usr/lib/system -d TrezorEmu-$CI_COMMIT_SHORT_SHA.app/Contents/libs -x TrezorEmu-$CI_COMMIT_SHORT_SHA.app/Contents/MacOS/TrezorEmu-$CI_COMMIT_SHORT_SHA - mv TrezorEmu-$CI_COMMIT_SHORT_SHA.app trezor-emu-regular-macos-$VERSION-$CI_COMMIT_SHORT_SHA.app allow_failure: true artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - trezor-emu-regular-macos-$VERSION-$CI_COMMIT_SHORT_SHA.app expire_in: 1 week # Crypto crypto build: stage: build only: changes: - ci/**/* - crypto/**/* script: - nix-shell --run "pipenv run make -C crypto" artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - crypto/tests/aestst - crypto/tests/libtrezor-crypto.so - crypto/tests/test_check - crypto/tests/test_openssl expire_in: 1 week # Legacy legacy fw regular build: stage: build variables: MEMORY_PROTECT: "0" script: - nix-shell --run "pipenv run legacy/script/cibuild" - nix-shell --run "pipenv run make -C legacy/demo" - export VERSION=$(./tools/version.sh legacy/firmware/version.h) - mv legacy/firmware/trezor.bin trezor-fw-regular-$VERSION-$CI_COMMIT_SHORT_SHA.bin artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - trezor-fw-regular-*.*.*-$CI_COMMIT_SHORT_SHA.bin expire_in: 1 week legacy fw debug build: stage: build variables: DEBUG_LINK: "1" MEMORY_PROTECT: "0" script: - nix-shell --run "pipenv run legacy/script/cibuild" - export VERSION=$(./tools/version.sh legacy/firmware/version.h) - mv legacy/firmware/trezor.bin trezor-fw-regular-debug-$VERSION-$CI_COMMIT_SHORT_SHA.bin artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - trezor-fw-regular-debug-*.*.*-$CI_COMMIT_SHORT_SHA.bin expire_in: 1 week legacy fw btconly build: stage: build variables: BITCOIN_ONLY: "1" MEMORY_PROTECT: "0" script: - nix-shell --run "pipenv run legacy/script/cibuild" - mv legacy/firmware/trezor.bin legacy/firmware/trezor-bitcoinonly.bin - nix-shell --run "pipenv run ./tools/check-bitcoin-only legacy/firmware/trezor-bitcoinonly.bin" - export VERSION=$(./tools/version.sh legacy/firmware/version.h) - mv legacy/firmware/trezor-bitcoinonly.bin trezor-fw-btconly-$VERSION-$CI_COMMIT_SHORT_SHA.bin artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - trezor-fw-btconly-*.*.*-$CI_COMMIT_SHORT_SHA.bin expire_in: 1 week legacy emu regular build: stage: build variables: DEBUG_LINK: "1" EMULATOR: "1" script: - nix-shell --run "pipenv run legacy/script/cibuild" artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - legacy/firmware/trezor.elf expire_in: 1 week legacy emu btconly build: stage: build variables: BITCOIN_ONLY: "1" DEBUG_LINK: "1" EMULATOR: "1" script: - nix-shell --run "pipenv run legacy/script/cibuild" - mv legacy/firmware/trezor.elf legacy/firmware/trezor-bitcoinonly.elf artifacts: name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA" paths: - legacy/firmware/trezor-bitcoinonly.elf expire_in: 1 week