mirror of
https://github.com/trezor/trezor-firmware.git
synced 2025-01-18 19:31:04 +00:00
224 lines
6.7 KiB
YAML
224 lines
6.7 KiB
YAML
image: registry.gitlab.com/satoshilabs/trezor/trezor-firmware/trezor-firmware-env.nix
|
|
|
|
variables:
|
|
SDL_VIDEODRIVER: "dummy"
|
|
XDG_RUNTIME_DIR: "/var/tmp"
|
|
|
|
# Core
|
|
|
|
core fw regular build:
|
|
stage: build
|
|
script:
|
|
- nix-shell --run "pipenv run make -C core build_cross"
|
|
- nix-shell --run "pipenv run make -C core build_boardloader"
|
|
- nix-shell --run "pipenv run make -C core build_bootloader"
|
|
- nix-shell --run "pipenv run make -C core build_prodtest"
|
|
- nix-shell --run "pipenv run make -C core build_firmware"
|
|
- nix-shell --run "pipenv run make -C core sizecheck"
|
|
- cp core/build/firmware/firmware.bin trezor-fw-regular-$CORE_VERSION-$CI_COMMIT_SHORT_SHA.bin
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- trezor-fw-regular-*.*.*-$CI_COMMIT_SHORT_SHA.bin
|
|
expire_in: 1 week
|
|
|
|
core fw regular debug build:
|
|
stage: build
|
|
script:
|
|
- nix-shell --run "PYOPT=0 pipenv run make -C core build_firmware"
|
|
- cp core/build/firmware/firmware.bin trezor-fw-regular-debug-$CORE_VERSION-$CI_COMMIT_SHORT_SHA.bin
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- trezor-fw-regular-debug-*.*.*-$CI_COMMIT_SHORT_SHA.bin
|
|
expire_in: 1 week
|
|
|
|
core fw btconly build:
|
|
stage: build
|
|
variables:
|
|
BITCOIN_ONLY: "1"
|
|
script:
|
|
- nix-shell --run "pipenv run make -C core build_firmware"
|
|
- mv core/build/firmware/firmware.bin core/build/firmware/firmware-bitcoinonly.bin
|
|
- nix-shell --run "pipenv run ./tools/check-bitcoin-only core/build/firmware/firmware-bitcoinonly.bin"
|
|
- cp core/build/firmware/firmware-bitcoinonly.bin trezor-fw-btconly-$CORE_VERSION-$CI_COMMIT_SHORT_SHA.bin
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- trezor-fw-btconly-*.*.*-$CI_COMMIT_SHORT_SHA.bin
|
|
expire_in: 1 week
|
|
|
|
core unix regular build:
|
|
stage: build
|
|
script:
|
|
- nix-shell --run "pipenv run make -C core build_unix"
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- core/build/unix/micropython
|
|
- core/src/trezor/res/resources.py
|
|
expire_in: 1 week
|
|
|
|
core unix frozen regular build:
|
|
stage: build
|
|
script:
|
|
- nix-shell --run "pipenv run make -C core build_unix_frozen"
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- core/build/unix/micropython
|
|
expire_in: 1 week
|
|
|
|
core unix frozen btconly debug build:
|
|
stage: build
|
|
variables:
|
|
PYOPT: "0"
|
|
BITCOIN_ONLY: "1"
|
|
script:
|
|
- nix-shell --run "pipenv run make -C core build_unix_frozen"
|
|
- mv core/build/unix/micropython core/build/unix/micropython-bitcoinonly
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- core/build/unix/micropython-bitcoinonly
|
|
expire_in: 1 week
|
|
|
|
core unix frozen debug build:
|
|
stage: build
|
|
variables:
|
|
PYOPT: "0"
|
|
script:
|
|
- nix-shell --run "pipenv run make -C core build_unix_frozen"
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
untracked: true
|
|
expire_in: 1 week
|
|
|
|
core unix frozen regular darwin:
|
|
stage: build
|
|
tags:
|
|
- darwin
|
|
when: manual
|
|
script:
|
|
- nix-shell --run "pipenv run make -C core build_unix_frozen"
|
|
- mkdir -p TrezorEmu-$CI_COMMIT_SHORT_SHA.app/Contents/{MacOS,libs}
|
|
- cp -v core/build/unix/micropython TrezorEmu-$CI_COMMIT_SHORT_SHA.app/Contents/MacOS/TrezorEmu-$CI_COMMIT_SHORT_SHA
|
|
- dylibbundler -of -b -i /usr/lib/system -d TrezorEmu-$CI_COMMIT_SHORT_SHA.app/Contents/libs -x TrezorEmu-$CI_COMMIT_SHORT_SHA.app/Contents/MacOS/TrezorEmu-$CI_COMMIT_SHORT_SHA
|
|
- mv TrezorEmu-$CI_COMMIT_SHORT_SHA.app trezor-emu-regular-macos-$CORE_VERSION-$CI_COMMIT_SHORT_SHA.app
|
|
allow_failure: true
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- trezor-emu-regular-macos-$CORE_VERSION-$CI_COMMIT_SHORT_SHA.app
|
|
expire_in: 1 week
|
|
|
|
# Crypto
|
|
|
|
crypto build:
|
|
stage: build
|
|
only:
|
|
changes:
|
|
- ci/**/*
|
|
- crypto/**/*
|
|
script:
|
|
- nix-shell --run "pipenv run make -C crypto"
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- crypto/tests/aestst
|
|
- crypto/tests/libtrezor-crypto.so
|
|
- crypto/tests/test_check
|
|
- crypto/tests/test_openssl
|
|
expire_in: 1 week
|
|
|
|
|
|
# Legacy
|
|
|
|
legacy fw regular build:
|
|
stage: build
|
|
variables:
|
|
MEMORY_PROTECT: "0"
|
|
script:
|
|
- nix-shell --run "pipenv run legacy/script/cibuild"
|
|
- nix-shell --run "pipenv run make -C legacy/demo"
|
|
- mv legacy/firmware/trezor.bin trezor-fw-regular-$LEGACY_VERSION-$CI_COMMIT_SHORT_SHA.bin
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- trezor-fw-regular-*.*.*-$CI_COMMIT_SHORT_SHA.bin
|
|
expire_in: 1 week
|
|
|
|
legacy fw regular debug build:
|
|
stage: build
|
|
variables:
|
|
DEBUG_LINK: "1"
|
|
MEMORY_PROTECT: "0"
|
|
script:
|
|
- nix-shell --run "pipenv run legacy/script/cibuild"
|
|
- mv legacy/firmware/trezor.bin trezor-fw-regular-debug-$LEGACY_VERSION-$CI_COMMIT_SHORT_SHA.bin
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- trezor-fw-regular-debug-*.*.*-$CI_COMMIT_SHORT_SHA.bin
|
|
expire_in: 1 week
|
|
|
|
legacy fw btconly build:
|
|
stage: build
|
|
variables:
|
|
BITCOIN_ONLY: "1"
|
|
MEMORY_PROTECT: "0"
|
|
script:
|
|
- nix-shell --run "pipenv run legacy/script/cibuild"
|
|
- mv legacy/firmware/trezor.bin legacy/firmware/trezor-bitcoinonly.bin
|
|
- nix-shell --run "pipenv run ./tools/check-bitcoin-only legacy/firmware/trezor-bitcoinonly.bin"
|
|
- mv legacy/firmware/trezor-bitcoinonly.bin trezor-fw-btconly-$LEGACY_VERSION-$CI_COMMIT_SHORT_SHA.bin
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- trezor-fw-btconly-*.*.*-$CI_COMMIT_SHORT_SHA.bin
|
|
expire_in: 1 week
|
|
|
|
legacy fw btconly debug build:
|
|
stage: build
|
|
variables:
|
|
BITCOIN_ONLY: "1"
|
|
MEMORY_PROTECT: "0"
|
|
DEBUG_LINK: "1"
|
|
script:
|
|
- nix-shell --run "pipenv run legacy/script/cibuild"
|
|
- nix-shell --run "pipenv run ./tools/check-bitcoin-only legacy/firmware/trezor.bin"
|
|
- mv legacy/firmware/trezor.bin trezor-fw-btconly-debug-$LEGACY_VERSION-$CI_COMMIT_SHORT_SHA.bin
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- trezor-fw-btconly-*.*.*-$CI_COMMIT_SHORT_SHA.bin
|
|
expire_in: 1 week
|
|
|
|
legacy emu regular build:
|
|
stage: build
|
|
variables:
|
|
DEBUG_LINK: "1"
|
|
EMULATOR: "1"
|
|
script:
|
|
- nix-shell --run "pipenv run legacy/script/cibuild"
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- legacy/firmware/trezor.elf
|
|
expire_in: 1 week
|
|
|
|
legacy emu btconly build:
|
|
stage: build
|
|
variables:
|
|
BITCOIN_ONLY: "1"
|
|
DEBUG_LINK: "1"
|
|
EMULATOR: "1"
|
|
script:
|
|
- nix-shell --run "pipenv run legacy/script/cibuild"
|
|
- mv legacy/firmware/trezor.elf legacy/firmware/trezor-bitcoinonly.elf
|
|
artifacts:
|
|
name: "$CI_JOB_NAME-$CI_COMMIT_SHORT_SHA"
|
|
paths:
|
|
- legacy/firmware/trezor-bitcoinonly.elf
|
|
expire_in: 1 week
|