name: main run-name: main on: # schedule: # - cron: '*/5 * * * *' workflow_dispatch: jobs: Do-snapshot: name: "main" runs-on: ubuntu-latest steps: - name: Install secrets env: SSH_KEY: ${{ secrets.SSH_KEY }} SSH_KNOWN_HOSTS: ${{ secrets.SSH_KNOWN_HOSTS }} SSH_AUTHORIZED_KEYS: ${{ secrets.SSH_AUTHORIZED_KEYS }} run: | pushd ~ mkdir -p .ssh .ssh_keys echo "$SSH_KNOWN_HOSTS" >> .ssh/known_hosts echo "$SSH_AUTHORIZED_KEYS" >> .ssh/authorized_keys echo "$SSH_KEY" > .ssh_keys/ga-test-key chmod 700 .ssh .ssh_keys chmod 600 .ssh/known_hosts .ssh/authorized_keys .ssh_keys/ga-test-key popd - name: Dump sshd config run: | sudo find /etc/ssh sudo cat /etc/ssh/sshd_config - name: Report public IP addresses run: | curl -sS4 ifconfig.me || true curl -sS6 ifconfig.me || true - name: Dump fw run: | sudo iptables -L || true sudo ip6tables -L || true - name: Dump ip addr run: | ip addr - name: Run ss run: | sudo ss -utanp || true - name: Install packages run: | sudo apt-get install -y ncat tcpdump git gcc cmake make openssh-server openssh-client - name: Build syndiag run: | git clone https://github.com/si-magic/syndiag cd syndiag cmake -B build cd build make sudo make install - name: Run syndiag run: | syndiag-run syndiag.dev.si-magic.com # should just silently fail if the port is already in use - name: Try starting sshd run: | sudo /usr/sbin/sshd & true - name: Open ssh tunnel run: | whoami while true do ssh -i ~/.ssh_keys/ga-test-key -R10000:localhost:22 -N ga@luna.dev.snart.me || true sleep 0.5 done # - name: Run tcpdump # run: | # sudo tcpdump -nn icmp # - name: Run main # run: | # sudo ./main # - name: Sleep forever # run: | # sleep inf