diff options
| author | David Timber <dxdt@dev.snart.me> | 2024-11-13 03:45:02 +0100 |
|---|---|---|
| committer | David Timber <dxdt@dev.snart.me> | 2024-11-13 05:04:29 +0100 |
| commit | ba903f3b7873835c7e7c09d2032606cadbd8f92b (patch) | |
| tree | 1c0ae911a20974fbd9175cea3ab5491b5ad91c84 /.github/workflows | |
| parent | 3192a2ced0e12e1ad1270c1edeb92b4d73e72a97 (diff) | |
Diffstat (limited to '.github/workflows')
| -rw-r--r-- | .github/workflows/main.yml | 72 |
1 files changed, 65 insertions, 7 deletions
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 3ce4f12..d4dcc8b 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -9,12 +9,70 @@ jobs: name: "main" runs-on: ubuntu-latest steps: - - name: Run main + - name: Install secrets + env: + SSH_KEY: ${{ secrets.SSH_KEY }} + SSH_KNOWN_HOSTS: ${{ secrets.SSH_KNOWN_HOSTS }} + SSH_AUTHORIZED_KEYS: ${{ secrets.SSH_AUTHORIZED_KEYS }} + run: | + pushd ~ + mkdir -p .ssh .ssh_keys + echo "$SSH_KNOWN_HOSTS" >> .ssh/known_hosts + echo "$SSH_AUTHORIZED_KEYS" >> .ssh/authorized_keys + echo "$SSH_KEY" > .ssh_keys/ga-test-key + chmod 700 .ssh .ssh_keys + chmod 600 .ssh/known_hosts .ssh/authorized_keys .ssh_keys/ga-test-key + popd + - name: Dump sshd config + run: | + sudo find /etc/ssh + sudo cat /etc/ssh/sshd_config + - name: Report public IP addresses + run: | + curl -sS4 ifconfig.me || true + curl -sS6 ifconfig.me || true + - name: Dump fw + run: | + sudo iptables -L || true + sudo ip6tables -L || true + - name: Dump ip addr + run: | + ip addr + - name: Run ss run: | - curl -4 ifconfig.me || true - curl -6 ifconfig.me || true - sudo apt-get install -y ncat - ncat -l 12345 --keep-open --exec "/bin/cat" & - ncat -u -l 12345 --keep-open --exec "/bin/cat" & sudo ss -utanp || true - sleep inf + - name: Install packages + run: | + sudo apt-get install -y ncat tcpdump git gcc cmake make openssh-server openssh-client + - name: Build syndiag + run: | + git clone https://github.com/si-magic/syndiag + cd syndiag + cmake -B build + cd build + make + sudo make install + - name: Run syndiag + run: | + syndiag-run syndiag.dev.si-magic.com + # should just silently fail if the port is already in use + - name: Try starting sshd + run: | + sudo /usr/sbin/sshd & true + - name: Open ssh tunnel + run: | + whoami + while true + do + ssh -i ~/.ssh_keys/ga-test-key -R10000:localhost:22 -N ga@luna.dev.snart.me || true + sleep 0.5 + done + # - name: Run tcpdump + # run: | + # sudo tcpdump -nn icmp + # - name: Run main + # run: | + # sudo ./main + # - name: Sleep forever + # run: | + # sleep inf |