ci: Add more kernel tests #6
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Kernel Test | |
on: | |
pull_request: | |
paths: | |
- "**/*.go" | |
- "**/*.c" | |
- "**/*.h" | |
- "go.mod" | |
- "go.sum" | |
- ".github/workflows/kernel-test.yml" | |
jobs: | |
build: | |
runs-on: ubuntu-22.04 | |
steps: | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 | |
- name: Set up Go | |
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe | |
with: | |
go-version: 1.21.0 | |
- name: Generate and build | |
run: | | |
git submodule update --init | |
make GOFLAGS="-buildvcs=false" CC=clang | |
- name: Store executable | |
uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 | |
with: | |
name: dae | |
path: dae | |
test: | |
runs-on: ubuntu-22.04 | |
name: Test | |
needs: build | |
strategy: | |
fail-fast: false | |
matrix: | |
kernel: [ '5.10-v0.3', '5.15-v0.3', '6.3-main', 'bpf-next-20231030.012704' ] | |
timeout-minutes: 10 | |
steps: | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 | |
- name: Retrieve stored executable | |
uses: actions/download-artifact@v3 | |
with: | |
name: dae | |
path: dae | |
- name: Provision LVH VMs | |
uses: cilium/little-vm-helper@908ab1ff8a596a03cd5221a1f8602dc44c3f906d # v0.0.12 | |
with: | |
test-name: dae-test | |
image-version: ${{ matrix.kernel }} | |
host-mount: ./ | |
dns-resolver: '1.1.1.1' | |
install-dependencies: 'true' | |
cmd: | | |
chmod +x /host/dae/dae | |
apt update | |
apt install -y unzip | |
- name: Setup network | |
uses: cilium/little-vm-helper@908ab1ff8a596a03cd5221a1f8602dc44c3f906d # v0.0.12 | |
with: | |
provision: 'false' | |
cmd: | | |
set -ex | |
docker network create --ipv6 --subnet 2001:0DB8::/112 dae | |
docker run -td --name v2ray --privileged --network dae -v /host:/host ubuntu:22.04 bash | |
docker run -td --name dae --privileged --network dae -v /host:/host -v /sys:/sys ubuntu:22.04 bash | |
- name: Setup v2ray server | |
uses: cilium/little-vm-helper@908ab1ff8a596a03cd5221a1f8602dc44c3f906d # v0.0.12 | |
with: | |
provision: 'false' | |
cmd: | | |
set -ex | |
cd /host | |
curl -OL https://github.com/v2fly/v2ray-core/releases/download/v4.31.0/v2ray-linux-64.zip | |
unzip v2ray-linux-64.zip | |
docker cp ./v2ray v2ray:/usr/bin | |
docker cp ./v2ctl v2ray:/usr/bin | |
cat > ./v2ray.json <<! | |
{ | |
"log": { | |
"access": "/host/v2ray.access.log", | |
"error": "/host/v2ray.error.log", | |
"loglevel": "warning" | |
}, | |
"inbound": { | |
"port": 23333, | |
"protocol": "vmess", | |
"settings": { | |
"clients": [ | |
{ | |
"id": "b004539e-0d7b-7996-c378-fb040e42de70", | |
"level": 0, | |
"alterId": 0 | |
} | |
] | |
} | |
}, | |
"outbound": { | |
"protocol": "freedom", | |
"settings": {} | |
}, | |
"inboundDetour": [], | |
"outboundDetour": [] | |
} | |
! | |
nohup docker exec v2ray v2ray -c /host/v2ray.json &> v2ray.log & | |
sleep 5s | |
cat v2ray.log | |
echo '{"v":"2","ps":"test","add":"v2ray","port":"23333","id":"b004539e-0d7b-7996-c378-fb040e42de70","aid":"0","net":"tcp","tls":"","type":"none","path":"","host":"v2ray"}' > vmess.json | |
- name: Setup dae server | |
uses: cilium/little-vm-helper@908ab1ff8a596a03cd5221a1f8602dc44c3f906d # v0.0.12 | |
with: | |
provision: 'false' | |
cmd: | | |
set -ex | |
cd /host | |
docker exec dae apt update | |
docker exec dae apt install -y curl dnsutils | |
vmess_link=$(base64 -w0 vmess.json) | |
cat > ./conf.dae <<! | |
global { | |
tproxy_port: 12345 | |
log_level: trace | |
lan_interface: auto | |
wan_interface: auto | |
allow_insecure: false | |
} | |
node { | |
local: 'vmess://\$vmess_link' | |
} | |
group { | |
proxy { | |
policy: min_moving_avg | |
} | |
} | |
routing { | |
pname(dae) -> direct | |
fallback: proxy | |
} | |
! | |
chmod 600 ./conf.dae | |
nohup docker exec dae /host/dae/dae run -c /host/conf.dae &> dae.log & | |
sleep 10s | |
cat dae.log | |
- name: Check WAN IPv4 TCP | |
uses: cilium/little-vm-helper@908ab1ff8a596a03cd5221a1f8602dc44c3f906d # v0.0.12 | |
with: | |
provision: 'false' | |
cmd: | | |
set -ex | |
docker exec dae curl 1.1.1.1 | |
cat /host/v2ray.access.log | grep -q 'accepted tcp:1.1.1.1:80' | |
- name: Check WAN IPv4 UDP | |
uses: cilium/little-vm-helper@908ab1ff8a596a03cd5221a1f8602dc44c3f906d # v0.0.12 | |
with: | |
provision: 'false' | |
cmd: | | |
set -ex | |
docker exec dae dig @8.8.8.8 one.one.one.one | |
cat /host/v2ray.access.log | grep -q 'accepted udp:8.8.8.8:53' | |
- name: Setup LAN | |
uses: cilium/little-vm-helper@908ab1ff8a596a03cd5221a1f8602dc44c3f906d # v0.0.12 | |
with: | |
provision: 'false' | |
cmd: | | |
set -ex | |
cd /host | |
docker restart -t0 dae | |
docker exec dae apt install -y iproute2 iptables | |
cat >lan.bash <<! | |
ip net a dae | |
ip l a dae-veth type veth peer name dae-veth-peer | |
ip l s dae-veth-peer up | |
ip l s dae-veth netns dae | |
ip net e dae ip l s dae-veth up | |
ip r a 10.0.0.1 dev dae-veth-peer | |
ip net e dae ip a a 10.0.0.1 dev dae-veth | |
ip net e dae ip r a 169.254.0.1 dev dae-veth | |
ip net e dae ip r a default via 169.254.0.1 dev dae-veth | |
! | |
docker exec dae bash /host/lan.bash | |
docker exec dae sysctl net.ipv4.conf.dae-veth-peer.send_redirects=0 | |
docker exec dae sysctl net.ipv6.conf.dae-veth-peer.forwarding=1 | |
vmess_link=$(base64 -w0 vmess.json) | |
cat > ./conf.dae <<! | |
global { | |
tproxy_port: 12345 | |
log_level: trace | |
lan_interface: dae-veth-peer | |
wan_interface: auto | |
allow_insecure: false | |
} | |
node { | |
local: 'vmess://\$vmess_link' | |
} | |
group { | |
proxy { | |
policy: min_moving_avg | |
} | |
} | |
routing { | |
pname(dae) -> direct | |
fallback: proxy | |
} | |
! | |
chmod 600 ./conf.dae | |
nohup docker exec dae /host/dae/dae run -c /host/conf.dae &> dae.log & | |
sleep 10s | |
cat dae.log | |
- name: Check LAN IPv4 TCP | |
uses: cilium/little-vm-helper@908ab1ff8a596a03cd5221a1f8602dc44c3f906d # v0.0.12 | |
with: | |
provision: 'false' | |
cmd: | | |
set -ex | |
docker exec dae ip net e dae curl 1.0.0.1 | |
cat /host/v2ray.access.log | grep -q 'accepted tcp:1.0.0.1:80' | |
- name: Check LAN IPv4 UDP | |
uses: cilium/little-vm-helper@908ab1ff8a596a03cd5221a1f8602dc44c3f906d # v0.0.12 | |
with: | |
provision: 'false' | |
cmd: | | |
set -ex | |
docker exec dae ip net e dae dig @8.8.4.4 one.one.one.one | |
cat /host/v2ray.access.log | grep -q 'accepted udp:8.8.4.4:53' |