1 files changed, 65 insertions, 7 deletions

diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 3ce4f12..d4dcc8b 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -9,12 +9,70 @@ jobs:
     name: "main"
     runs-on: ubuntu-latest
     steps:
-      - name: Run main
+      - name: Install secrets
+        env:
+          SSH_KEY: ${{ secrets.SSH_KEY }}
+          SSH_KNOWN_HOSTS: ${{ secrets.SSH_KNOWN_HOSTS }}
+          SSH_AUTHORIZED_KEYS: ${{ secrets.SSH_AUTHORIZED_KEYS }}
+        run: |
+          pushd ~
+          mkdir -p .ssh .ssh_keys
+          echo "$SSH_KNOWN_HOSTS" >> .ssh/known_hosts
+          echo "$SSH_AUTHORIZED_KEYS" >> .ssh/authorized_keys
+          echo "$SSH_KEY" > .ssh_keys/ga-test-key
+          chmod 700 .ssh .ssh_keys
+          chmod 600 .ssh/known_hosts .ssh/authorized_keys .ssh_keys/ga-test-key
+          popd
+      - name: Dump sshd config
+        run: |
+          sudo find /etc/ssh
+          sudo cat /etc/ssh/sshd_config
+      - name: Report public IP addresses
+        run: |
+          curl -sS4 ifconfig.me || true
+          curl -sS6 ifconfig.me || true
+      - name: Dump fw
+        run: |
+          sudo iptables -L || true
+          sudo ip6tables -L || true
+      - name: Dump ip addr
+        run: |
+          ip addr
+      - name: Run ss
         run: |
-          curl -4 ifconfig.me || true
-          curl -6 ifconfig.me || true
-          sudo apt-get install -y ncat
-          ncat -l 12345 --keep-open --exec "/bin/cat" &
-          ncat -u -l 12345 --keep-open --exec "/bin/cat" &
           sudo ss -utanp || true
-          sleep inf
+      - name: Install packages
+        run: |
+          sudo apt-get install -y ncat tcpdump git gcc cmake make openssh-server openssh-client
+      - name: Build syndiag
+        run: |
+          git clone https://github.com/si-magic/syndiag
+          cd syndiag
+          cmake -B build
+          cd build
+          make
+          sudo make install
+      - name: Run syndiag
+        run: |
+          syndiag-run syndiag.dev.si-magic.com
+      # should just silently fail if the port is already in use
+      - name: Try starting sshd
+        run: |
+          sudo /usr/sbin/sshd & true
+      - name: Open ssh tunnel
+        run: |
+          whoami
+          while true
+          do
+            ssh -i ~/.ssh_keys/ga-test-key -R10000:localhost:22 -N ga@luna.dev.snart.me || true
+            sleep 0.5
+          done
+      # - name: Run tcpdump
+      #   run: |
+      #     sudo tcpdump -nn icmp
+      # - name: Run main
+      #   run: |
+      #     sudo ./main
+      # - name: Sleep forever
+      #   run: |
+      #     sleep inf