Skip to content

Commit

Permalink
feat(.github): add Bootguard Integration Test
Browse files Browse the repository at this point in the history
Signed-off-by: Christian Walter <[email protected]>
  • Loading branch information
walterchris committed Mar 23, 2024
1 parent 252bef9 commit 45e2ccb
Showing 1 changed file with 39 additions and 0 deletions.
39 changes: 39 additions & 0 deletions .github/workflows/build.yml
Original file line number Diff line number Diff line change
Expand Up @@ -52,6 +52,45 @@ jobs:
- name: go test
run: go test -v ./pkg/...

ValidationTestBootguard:
needs: build
runs-on: ubuntu-latest

steps:
- name: Checkout repository
uses: actions/checkout@v4

- name: Download file
run: |
wget "https://download.asrock.com/BIOS/4677/W790%20WS(4.04)ROM.zip"
unzip W790\ WS\(4.04\)ROM.zip
mv W790-WS_4.04.ROM firmware.bin
- name: Download Artifacts
uses: actions/download-artifact@v4
with:
name: artifacts-amd64
path: ./artifacts

- name: Make artifacts executable
run: chmod +x ./artifacts/*

- name: Check FIT
run: |
./artifacts/bg-prov fit-show ./firmware.bin >> fit.log
- name: Check FIT entries
run: |
cat fit.log | grep -s "KeyManifestRecord"
cat fit.log | grep -s "BootPolicyManifestRecord"
- name: Extract and Verify BPM and KM
run: |
./artifacts/bg-prov bpm-export ./firmware.bin bpm.bin
./artifacts/bg-prov km-export ./firmware.bin km.bin
./artifacts/bg-prov bpm-verify ./bpm.bin
./artifacts/bg-prov km-verify ./km.bin
generateTemplates:
needs: build
runs-on: ubuntu-latest
Expand Down

0 comments on commit 45e2ccb

Please sign in to comment.