From db6a75671547e88f8a58aa24937277901577b3e2 Mon Sep 17 00:00:00 2001
From: "jethro.low" <jethro.low@seventhsense.ai>
Date: Mon, 4 Nov 2024 15:06:37 +0800
Subject: [PATCH] update automation with ssai pipeline

---
 .github/workflows/artifact_validation.yaml | 13 +++++++++++++
 src/test_certs_r4.sh                       |  5 ++++-
 2 files changed, 17 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/artifact_validation.yaml b/.github/workflows/artifact_validation.yaml
index 5224daf..35fbbec 100644
--- a/.github/workflows/artifact_validation.yaml
+++ b/.github/workflows/artifact_validation.yaml
@@ -37,6 +37,19 @@ jobs:
         with:
           name: Compatibility_bc_csv
           path: ./output/
+    ssai_validation:
+    runs-on: ubuntu-latest
+    container: jethrolow/quantcrypt_validator
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+      - name: Test artifacts with SSAI
+        run: ./src/test_certs_r4.sh ssai
+      - name: Save artifacts
+        uses: actions/upload-artifact@v4
+        with:
+          name: Compatibility_ssai_csv
+          path: ./output/
   build_results_html:
     runs-on: ubuntu-latest
     container: ubuntu:latest
diff --git a/src/test_certs_r4.sh b/src/test_certs_r4.sh
index de0479a..a28a76a 100755
--- a/src/test_certs_r4.sh
+++ b/src/test_certs_r4.sh
@@ -6,7 +6,7 @@ if [ $# -lt 1 ]; then
 fi
 
 verifier=$1
-if [ "$verifier" != "bc" ] && [ "$verifier" != "oqs" ]; then
+if [ "$verifier" != "bc" ] && [ "$verifier" != "oqs" ] && [ "$verifier" != "ssai"]; then
     echo "ERROR: verifier \"$verifier\" not supported"
     exit -1
 fi
@@ -64,6 +64,9 @@ test_ta () {
     elif [ "$verifier" = "oqs" ]; then
         output=$(openssl verify -check_ss_sig -verbose -CAfile $tafile $tafile 2>&1)
         status=$?
+    elif [ "$verifier" = "ssai" ]; then
+        output=$(validator ta --ta-certificate $tafile 2>&1)
+        status=$?
     else
         echo "ERROR: verifier \"$verifier\" not supported"
         exit -1