File: README.md

package info (click to toggle)
opensc 0.26.1-3
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 11,420 kB
  • sloc: ansic: 178,823; xml: 6,327; sh: 2,115; makefile: 1,023; cpp: 304; lex: 92
file content (63 lines) | stat: -rw-r--r-- 2,132 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
 
# Testing locally using containers

You can run the tests executed in github actions in containers locally. This can
be handy to test some modification of the code or the CI pipeline.

First, we need to prepare the container image. This already runs setup and
mounts current working directory to the container:

```
$ podman build -v $PWD:/src:z -t opensc-build containers/opensc-build
```

Now, you can jump into the container with preinstalled dependencies to build
OpenSC:

```
$ podman run -v $PWD:/src:z -ti opensc-build
```
If you want to run the build manually, investigate some issues, you can start
with shell
```
$ podman run -v $PWD:/src:z -ti opensc-build /bin/bash
# .github/build.sh
```
To debug some issues with gdb, the container needs some more capabilities.
With the following configuration, I am able to run gdb to debug possible
issues:
```
$ podman run --cap-add=SYS_PTRACE --security-opt seccomp=unconfined -v $PWD:/src:z -ti opensc-build /bin/bash
# .github/build.sh
# apt install -y libtool-bin gdb
# libtool --mode=execute gdb --args ./src/tools/pkcs11-tool --test-threads IN -L --module=/usr/lib/softhsm/libsofthsm2.so
```

Similarly for tests, you can build a container for example for CAC testing:
```
$ podman build -v $PWD:/src:z -t opensc-cac containers/opensc-test-cac
```
and then run the tests:
```
$ podman run -v $PWD:/src:z -ti opensc-cac
```

The javacard tests are very similar. This can be used to build a container for
PIV testing:
```
$ podman build -v $PWD:/src:z -t opensc-piv containers/opensc-test-piv
```
and then run the tests:
```
$ podman run -v $PWD:/src:z -ti opensc-piv
```

## Footnotes and explanations

If you are using Docker, you will need to replace "podman" with "docker" and
maybe change the generic Containerfile name to Dockerfile, but otherwise it
should work the same way.

The `:z` option to the volume argument is needed on SELinux-enabled systems to
allow podman accessing your files. On the first invocation, podman will relabel
the directory to be accessible from the container. On any follow-up invocations
it will make sure the new files have expected labels.