empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-06 08:55:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
397ef427e0
fleet/.github/workflows/integration.yml

373 lines
15 KiB
YAML
Raw Normal View History

Orbit to wait for osqueryd extension manager socket to be ready (#3836) * Wait for osquery extension manager socket to be ready * PR review feedback * Add WIP Github Action to test orbit * Set fleet address on fleetctl * Add logging for troubleshooting * Add prepare db statement * Use tls-skip-verify on fleetctl * Move steps around * Fix addresses * Fix fleetctl path * Add certs.pem to orbit root dir * Add orbit logs * Increase timeout * Add proper orbit log paths * Fix tmp path orbit * Add get hosts command to troubleshoot * Fix orbit job termination * Add comments to workflows * Wait for server to go down * Add orbit Windows job * Use bash on windws-latest * Fix missing quote * Run orbit on Ubuntu * Bump host count * Increase timeout for extensions and not terminate on err * Add comment to clarify high timeout value * Revert change, we do want to exit in case of err
2022-02-22 18:05:32 +00:00
# This workflow tests enrolling of agents on the supported platforms,
# using the latest version of fleet, fleetctl and orbit.
#
# It starts the latest release of fleet with the "fleetctl preview" command.
# It generates the installers for the latest version of Orbit with the
# "fleetctl package" command.
set default shell in workflows (#8108) * wait for mysql in workflows
2022-10-07 15:43:56 +00:00
name: Test Fleetctl, Orbit & Preview
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
on:
workflow_dispatch: # Manual
schedule:
- cron: '0 2 * * *' # Nightly 2AM UTC
set default shell in workflows (#8108) * wait for mysql in workflows
2022-10-07 15:43:56 +00:00
add concurrency to ci (#8271) * add concurrency to ci * add readme for workflows
2022-10-24 20:01:00 +00:00
# This allows a subsequently queued workflow run to interrupt previous runs
concurrency:
group: ${{ github.workflow }}-${{ github.head_ref || github.run_id}}
cancel-in-progress: true
set default shell in workflows (#8108) * wait for mysql in workflows
2022-10-07 15:43:56 +00:00
defaults:
run:
# fail-fast using bash -eo pipefail. See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#exit-codes-and-error-action-preference
shell: bash
Added explicit read permissions + tweaked permissions (#4843) * Added explicit read permissions + tweaked permissions As a part of #4698 - this should fix the remaining warnings we get from the OSSF scorecard in relation to github workflows. They now all have explicit read permissions with more granular permissions granted in jobs. * Update tfsec.yml New workflow that I had not fixed in this PR.
2022-03-28 20:20:31 +00:00
permissions:
contents: read
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
jobs:
gen:
runs-on: ubuntu-latest
outputs:
subdomain: ${{ steps.gen.outputs.subdomain }}
address: ${{ steps.gen.outputs.address }}
steps:
- id: gen
run: |
UUID=$(uuidgen)
Fix integration Github action using the deprecated command set-output (#11282)
2023-04-26 15:15:23 +00:00
echo "subdomain=fleet-test-$UUID" >> $GITHUB_OUTPUT
echo "address=https://fleet-test-$UUID.fleetuem.com" >> $GITHUB_OUTPUT
set default shell in workflows (#8108) * wait for mysql in workflows
2022-10-07 15:43:56 +00:00
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
run-server:
runs-on: ubuntu-latest
needs: gen
steps:
- name: Start tunnel
set default shell in workflows (#8108) * wait for mysql in workflows
2022-10-07 15:43:56 +00:00
env:
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
CERT_PEM: ${{ secrets.CLOUDFLARE_TUNNEL_FLEETUEM_CERT_B64 }}
run: |
CI: Add shell cmd for windows runner and add some debug logs to help troubleshoot (#13592) After @rfairburn made the DNS change the clouldflared tunnel started working again (after months of being broken). #13547 Run: https://github.com/fleetdm/fleet/actions/runs/6025182774 This PR adds some fixes to the two workflows that make use of cloudflared. There are still some issues to fix but these are some changes needed to continue/help troubleshooting.
2023-08-30 18:49:47 +00:00
# Increase maximum receive buffer size to roughly 2.5 MB.
# Cloudflared uses quic-go. This buffer holds packets that have been received by the kernel,
# but not yet read by the application (quic-go in this case). Once this buffer fills up, the
# kernel will drop any new incoming packet.
# See https://github.com/quic-go/quic-go/wiki/UDP-Receive-Buffer-Size.
sudo sysctl -w net.core.rmem_max=2500000
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
# Install cloudflared
wget https://github.com/cloudflare/cloudflared/releases/latest/download/cloudflared-linux-amd64.deb
sudo dpkg -i cloudflared-linux-amd64.deb
# Add secret
echo "$CERT_PEM" | base64 -d > cert.pem
# Start tunnel
CI: Add shell cmd for windows runner and add some debug logs to help troubleshoot (#13592) After @rfairburn made the DNS change the clouldflared tunnel started working again (after months of being broken). #13547 Run: https://github.com/fleetdm/fleet/actions/runs/6025182774 This PR adds some fixes to the two workflows that make use of cloudflared. There are still some issues to fix but these are some changes needed to continue/help troubleshooting.
2023-08-30 18:49:47 +00:00
cloudflared tunnel --origincert cert.pem --hostname ${{ needs.gen.outputs.subdomain }} --url http://localhost:1337 --name ${{ needs.gen.outputs.subdomain }} --logfile cloudflared.log &
Upload logs on `fleetctl preview` action (#5745) * Upload logs on fleetctl preview action * Group logs * Avoid hidden folder
2022-05-16 21:39:31 +00:00
until [[ $(cloudflared tunnel --origincert cert.pem info -o json ${{ needs.gen.outputs.subdomain }} | jq '.conns[0].conns[0].is_pending_reconnect') = false ]]; do
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
echo "Awaiting tunnel ready..."
sleep 5
done
# Download fleet and fleetctl binaries from last successful build on main
- name: Download binaries
Bump dawidd6/action-download-artifact from 2.23.0 to 2.26.0 (#10218) Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 2.23.0 to 2.26.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/5e780fc7bbd0cac69fc73271ed86edf5dcb72d67"><code>5e780fc</code></a> Use <code>commit</code> as <code>head_sha</code> to reduce number of API calls (<a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/227">#227</a>)</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/b59d8c6a6c5c6c6437954f470d963c0b20ea7415"><code>b59d8c6</code></a> Add pagination to appropriate listWorkflowRunArtifacts call (<a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/225">#225</a>)</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/5004d5476e64af71d021e6c98993829d8820969d"><code>5004d54</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/219">#219</a> from dawidd6/dependabot-npm_and_yarn-actions-artifact...</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/b1a9c91d1facc7d48fbea64ebcde5200d03974da"><code>b1a9c91</code></a> build(deps): bump <code>@​actions/artifact</code> from 1.1.0 to 1.1.1</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/bd10f381a96414ce2b13a11bfa89902ba7cea07f"><code>bd10f38</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/218">#218</a> from dawidd6/dependabot-npm_and_yarn-adm-zip-0.5.10</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/61a654a8cea55e04f2132f6065bf5aa7971f6c1a"><code>61a654a</code></a> build(deps): bump adm-zip from 0.5.9 to 0.5.10</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/dcadc4bd451c57c1059d0418c158ef667d28310b"><code>dcadc4b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/211">#211</a> from koplo199/master</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/ceeb280c4fe021932f278832823a149fba4997dd"><code>ceeb280</code></a> Remove unnecessary semicolon</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/806bb52fe0932bb09fc232c570628a680ac9edd2"><code>806bb52</code></a> Catch 'Artifact has expired' error</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/e6e25ac3a2b93187502a8be1ef9e9603afc34925"><code>e6e25ac</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/209">#209</a> from dawidd6/v2</li> <li>Additional commits viewable in <a href="https://github.com/dawidd6/action-download-artifact/compare/7847792dd435a50521b8e3bd3576dae7459d1fa8...5e780fc7bbd0cac69fc73271ed86edf5dcb72d67">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dawidd6/action-download-artifact&package-manager=github_actions&previous-version=2.23.0&new-version=2.26.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Zach Wasserman <zach@fleetdm.com>
2023-03-01 19:32:47 +00:00
uses: dawidd6/action-download-artifact@5e780fc7bbd0cac69fc73271ed86edf5dcb72d67
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
with:
workflow: build-binaries.yaml
branch: main
name: build
path: build
check_artifacts: true
- name: Run Fleet server
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
timeout-minutes: 10
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
run: |
chmod +x ./build/fleetctl
./build/fleetctl preview --no-hosts
./build/fleetctl config set --address ${{ needs.gen.outputs.address }}
./build/fleetctl get enroll-secret
docker compose -f ~/.fleet/preview/docker-compose.yml logs --follow fleet01 fleet02 &
# Wait for all of the hosts to be enrolled
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
EXPECTED=3
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
until [ $(./build/fleetctl get hosts --json | wc -l | tee hostcount) -ge $EXPECTED ]; do
echo -n "Waiting for hosts to enroll: "
cat hostcount | xargs echo -n
echo " / $EXPECTED"
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
sleep 20
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
done
echo "Success! $EXPECTED hosts enrolled."
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
- name: Show enrolled hosts
if: always()
run: |
./build/fleetctl get hosts --json
Add slack notif when integration test fails (#5332)
2022-04-22 17:39:55 +00:00
- name: Slack Notification
if: failure()
Bump slackapi/slack-github-action from 1.18.0 to 1.24.0 (#12293) Bumps [slackapi/slack-github-action](https://github.com/slackapi/slack-github-action) from 1.18.0 to 1.24.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/slackapi/slack-github-action/releases">slackapi/slack-github-action's releases</a>.</em></p> <blockquote> <h2>Slack Send V1.24.0</h2> <h2>What's Changed</h2> <ul> <li>Add in testing instructions for maintainer's guide and standardize bullet point punctuation by <a href="https://github.com/hello-ashleyintech"><code>@​hello-ashleyintech</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/140">slackapi/slack-github-action#140</a></li> <li>Added checks for bot token and webhook url length by <a href="https://github.com/koki-develop"><code>@​koki-develop</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/124">slackapi/slack-github-action#124</a></li> <li>Add channel_id output parameter by <a href="https://github.com/maso7"><code>@​maso7</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/149">slackapi/slack-github-action#149</a></li> <li><a href="https://redirect.github.com/slackapi/slack-github-action/issues/171">#171</a> Update Technique 2 to use Actions context instead of values property by <a href="https://github.com/mwbrooks"><code>@​mwbrooks</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/172">slackapi/slack-github-action#172</a></li> <li>Fix interpolation of variables in file-based payloads by <a href="https://github.com/filmaj"><code>@​filmaj</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/200">slackapi/slack-github-action#200</a></li> <li>Update README.md with variable usage and links to example workflows by <a href="https://github.com/filmaj"><code>@​filmaj</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/201">slackapi/slack-github-action#201</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/koki-develop"><code>@​koki-develop</code></a> made their first contribution in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/124">slackapi/slack-github-action#124</a></li> <li><a href="https://github.com/maso7"><code>@​maso7</code></a> made their first contribution in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/149">slackapi/slack-github-action#149</a></li> <li><a href="https://github.com/mwbrooks"><code>@​mwbrooks</code></a> made their first contribution in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/172">slackapi/slack-github-action#172</a></li> <li><a href="https://github.com/hnarimiya"><code>@​hnarimiya</code></a> made their first contribution in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/200">slackapi/slack-github-action#200</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/slackapi/slack-github-action/compare/v1.23.0...v1.24.0">https://github.com/slackapi/slack-github-action/compare/v1.23.0...v1.24.0</a></p> <h2>Slack Send V1.23.0</h2> <h2>What's Changed</h2> <ul> <li>Bump node from 12 to 16 by <a href="https://github.com/quinnjn"><code>@​quinnjn</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/128">slackapi/slack-github-action#128</a></li> <li>Bump eslint from 8.23.0 to 8.24.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/135">slackapi/slack-github-action#135</a></li> <li>Bump <code>@​actions/core</code> from 1.9.1 to 1.10.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/134">slackapi/slack-github-action#134</a></li> <li>Bump <code>@​actions/github</code> from 5.0.3 to 5.1.1 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/133">slackapi/slack-github-action#133</a></li> <li>Use https proxy agent by <a href="https://github.com/EHitchcockIAG"><code>@​EHitchcockIAG</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/132">slackapi/slack-github-action#132</a></li> <li>Release v1.23.0 by <a href="https://github.com/hello-ashleyintech"><code>@​hello-ashleyintech</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/139">slackapi/slack-github-action#139</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/quinnjn"><code>@​quinnjn</code></a> made their first contribution in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/128">slackapi/slack-github-action#128</a></li> <li><a href="https://github.com/EHitchcockIAG"><code>@​EHitchcockIAG</code></a> made their first contribution in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/132">slackapi/slack-github-action#132</a></li> <li><a href="https://github.com/hello-ashleyintech"><code>@​hello-ashleyintech</code></a> made their first contribution in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/139">slackapi/slack-github-action#139</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/slackapi/slack-github-action/compare/v1.22.0...v1.23.0">https://github.com/slackapi/slack-github-action/compare/v1.22.0...v1.23.0</a></p> <h2>Slack Send V1.22.0</h2> <h2>What's Changed</h2> <ul> <li>feat(message): support multiple channel IDs by <a href="https://github.com/treemmett"><code>@​treemmett</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/126">slackapi/slack-github-action#126</a> (fixes <a href="https://redirect.github.com/slackapi/slack-github-action/issues/118">#118</a>)</li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/treemmett"><code>@​treemmett</code></a> made their first contribution in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/126">slackapi/slack-github-action#126</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/slackapi/slack-github-action/compare/v1.21.0...v1.22.0">https://github.com/slackapi/slack-github-action/compare/v1.21.0...v1.22.0</a></p> <h2>Slack Send V1.21.0</h2> <h2>What's Changed</h2> <ul> <li>updated to 1.21.0, fixed update-ts by <a href="https://github.com/stevengill"><code>@​stevengill</code></a> in <a href="https://redirect.github.com/slackapi/slack-github-action/pull/110">slackapi/slack-github-action#110</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/slackapi/slack-github-action/compare/v1.20.0...v1.21.0">https://github.com/slackapi/slack-github-action/compare/v1.20.0...v1.21.0</a></p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/slackapi/slack-github-action/commit/e28cf165c92ffef168d23c5c9000cffc8a25e117"><code>e28cf16</code></a> Automatic compilation</li> <li><a href="https://github.com/slackapi/slack-github-action/commit/f07b4a2d031f34c3b178cc488f68dd4ea0595c1d"><code>f07b4a2</code></a> bump package version to v1.24.0</li> <li><a href="https://github.com/slackapi/slack-github-action/commit/2c8b741a8271a726a82b26bab167236b2b395f48"><code>2c8b741</code></a> Update README.md with variable usage and links to example workflows. (<a href="https://redirect.github.com/slackapi/slack-github-action/issues/201">#201</a>)</li> <li><a href="https://github.com/slackapi/slack-github-action/commit/81a1dc0cd9125fcd4ebb978042f69ebdf636faf4"><code>81a1dc0</code></a> Fixed to be able to use env of Step (<a href="https://redirect.github.com/slackapi/slack-github-action/issues/200">#200</a>)</li> <li><a href="https://github.com/slackapi/slack-github-action/commit/4eb73136079188d577719fa06040cb68f1d2ef56"><code>4eb7313</code></a> Bump sinon from 15.0.3 to 15.0.4 (<a href="https://redirect.github.com/slackapi/slack-github-action/issues/194">#194</a>)</li> <li><a href="https://github.com/slackapi/slack-github-action/commit/17394c7ff6cc7e12009d6a3ca833aa7c6f6e08dd"><code>17394c7</code></a> Bump eslint-plugin-jsdoc from 40.1.1 to 43.1.1 (<a href="https://redirect.github.com/slackapi/slack-github-action/issues/195">#195</a>)</li> <li><a href="https://github.com/slackapi/slack-github-action/commit/2746ea822228ddb38878b2bc08e6f1444dab944e"><code>2746ea8</code></a> Bump axios from 1.3.4 to 1.4.0 (<a href="https://redirect.github.com/slackapi/slack-github-action/issues/196">#196</a>)</li> <li><a href="https://github.com/slackapi/slack-github-action/commit/1b89efce668bcf845ffcf8b566c702be34f6d7dc"><code>1b89efc</code></a> Bump eslint from 8.37.0 to 8.39.0 (<a href="https://redirect.github.com/slackapi/slack-github-action/issues/197">#197</a>)</li> <li><a href="https://github.com/slackapi/slack-github-action/commit/0e608ca73820eccb299d9937bfcc14fa56bbe5f8"><code>0e608ca</code></a> Bump eslint-plugin-jsdoc from 40.0.0 to 40.1.1 (<a href="https://redirect.github.com/slackapi/slack-github-action/issues/188">#188</a>)</li> <li><a href="https://github.com/slackapi/slack-github-action/commit/02b50ad38bb77b61c5b207f5d5d8f5dbdf82b353"><code>02b50ad</code></a> Bump eslint from 8.35.0 to 8.37.0 (<a href="https://redirect.github.com/slackapi/slack-github-action/issues/189">#189</a>)</li> <li>Additional commits viewable in <a href="https://github.com/slackapi/slack-github-action/compare/16b6c78ee73689a627b65332b34e5d409c7299da...e28cf165c92ffef168d23c5c9000cffc8a25e117">compare view</a></li> </ul> </details> <br /> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-23 19:32:30 +00:00
uses: slackapi/slack-github-action@e28cf165c92ffef168d23c5c9000cffc8a25e117 # v1.24.0
Add slack notif when integration test fails (#5332)
2022-04-22 17:39:55 +00:00
with:
payload: |
{
"text": "${{ job.status }}\n${{ github.event.pull_request.html_url || github.event.head.html_url }}",
"blocks": [
{
"type": "section",
"text": {
"type": "mrkdwn",
"text": "Integration test result: ${{ job.status }}\nhttps://github.com/fleetdm/fleet/actions/runs/${{ github.run_id }}\n${{ github.event.pull_request.html_url || github.event.head.html_url }}"
}
}
]
}
env:
Notify Go and Integration CI failures to new channel (#10235)
2023-03-01 23:14:07 +00:00
SLACK_WEBHOOK_URL: ${{ secrets.SLACK_G_HELP_ENGINEERING_WEBHOOK_URL }}
Add slack notif when integration test fails (#5332)
2022-04-22 17:39:55 +00:00
SLACK_WEBHOOK_TYPE: INCOMING_WEBHOOK
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
- name: Cleanup tunnel
if: always()
set default shell in workflows (#8108) * wait for mysql in workflows
2022-10-07 15:43:56 +00:00
run: cloudflared tunnel --origincert cert.pem delete --force ${{ needs.gen.outputs.subdomain }}
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
CI: Add shell cmd for windows runner and add some debug logs to help troubleshoot (#13592) After @rfairburn made the DNS change the clouldflared tunnel started working again (after months of being broken). #13547 Run: https://github.com/fleetdm/fleet/actions/runs/6025182774 This PR adds some fixes to the two workflows that make use of cloudflared. There are still some issues to fix but these are some changes needed to continue/help troubleshooting.
2023-08-30 18:49:47 +00:00
- name: Upload cloudflared logs
if: always()
uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v2
with:
name: cloudflared.log
path: cloudflared.log
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
login:
runs-on: ubuntu-latest
needs: gen
outputs:
token: ${{ steps.login.outputs.token }}
steps:
# Download fleet and fleetctl binaries from last successful build on main
- name: Download binaries
Bump dawidd6/action-download-artifact from 2.23.0 to 2.26.0 (#10218) Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 2.23.0 to 2.26.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/5e780fc7bbd0cac69fc73271ed86edf5dcb72d67"><code>5e780fc</code></a> Use <code>commit</code> as <code>head_sha</code> to reduce number of API calls (<a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/227">#227</a>)</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/b59d8c6a6c5c6c6437954f470d963c0b20ea7415"><code>b59d8c6</code></a> Add pagination to appropriate listWorkflowRunArtifacts call (<a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/225">#225</a>)</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/5004d5476e64af71d021e6c98993829d8820969d"><code>5004d54</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/219">#219</a> from dawidd6/dependabot-npm_and_yarn-actions-artifact...</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/b1a9c91d1facc7d48fbea64ebcde5200d03974da"><code>b1a9c91</code></a> build(deps): bump <code>@​actions/artifact</code> from 1.1.0 to 1.1.1</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/bd10f381a96414ce2b13a11bfa89902ba7cea07f"><code>bd10f38</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/218">#218</a> from dawidd6/dependabot-npm_and_yarn-adm-zip-0.5.10</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/61a654a8cea55e04f2132f6065bf5aa7971f6c1a"><code>61a654a</code></a> build(deps): bump adm-zip from 0.5.9 to 0.5.10</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/dcadc4bd451c57c1059d0418c158ef667d28310b"><code>dcadc4b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/211">#211</a> from koplo199/master</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/ceeb280c4fe021932f278832823a149fba4997dd"><code>ceeb280</code></a> Remove unnecessary semicolon</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/806bb52fe0932bb09fc232c570628a680ac9edd2"><code>806bb52</code></a> Catch 'Artifact has expired' error</li> <li><a href="https://github.com/dawidd6/action-download-artifact/commit/e6e25ac3a2b93187502a8be1ef9e9603afc34925"><code>e6e25ac</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/209">#209</a> from dawidd6/v2</li> <li>Additional commits viewable in <a href="https://github.com/dawidd6/action-download-artifact/compare/7847792dd435a50521b8e3bd3576dae7459d1fa8...5e780fc7bbd0cac69fc73271ed86edf5dcb72d67">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dawidd6/action-download-artifact&package-manager=github_actions&previous-version=2.23.0&new-version=2.26.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Zach Wasserman <zach@fleetdm.com>
2023-03-01 19:32:47 +00:00
uses: dawidd6/action-download-artifact@5e780fc7bbd0cac69fc73271ed86edf5dcb72d67
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
with:
workflow: build-binaries.yaml
branch: main
name: build
path: build
check_artifacts: true
set default shell in workflows (#8108) * wait for mysql in workflows
2022-10-07 15:43:56 +00:00
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
# Login only here and share the token because otherwise we could hit rate limits.
- id: login
name: Attempt login
timeout-minutes: 5
run: |
chmod +x ./build/fleetctl
./build/fleetctl config set --address ${{ needs.gen.outputs.address }}
Increase minimum password length to 12 characters (#5712)
2022-05-18 17:03:00 +00:00
until ./build/fleetctl login --email admin@example.com --password preview1337#
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
do
echo "Retrying in 5s..."
sleep 5
done
TOKEN=$(cat ~/.fleet/config| grep token | awk '{ print $2 }')
Convert remaining uses of set-output for Github Actions (#11352)
2023-04-27 21:11:27 +00:00
echo "token=$TOKEN" >> $GITHUB_OUTPUT
set default shell in workflows (#8108) * wait for mysql in workflows
2022-10-07 15:43:56 +00:00
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
orbit-macos:
CI: Add shell cmd for windows runner and add some debug logs to help troubleshoot (#13592) After @rfairburn made the DNS change the clouldflared tunnel started working again (after months of being broken). #13547 Run: https://github.com/fleetdm/fleet/actions/runs/6025182774 This PR adds some fixes to the two workflows that make use of cloudflared. There are still some issues to fix but these are some changes needed to continue/help troubleshooting.
2023-08-30 18:49:47 +00:00
timeout-minutes: 10
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
strategy:
matrix:
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
# To run multiple VMs that have the same UUID we need to implement
# https://github.com/fleetdm/fleet/issues/8021 (otherwise orbit and osqueryd
# in the same host are enrolled as two hosts in Fleet).
# Until then we will just test the `stable` channel in all components.
#
# Alternatively, we can bring back the `edge` channel when we decide to upgrade
# our worker to macOS 13 in the future, as they changed the virtualization
# layer for 13 and now it has random UUIDs (https://github.com/actions/runner-images/issues/7591).
orbit-channel: [ 'stable' ]
osqueryd-channel: [ 'stable' ]
desktop-channel: [ 'stable' ]
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
runs-on: macos-latest
needs: [gen, login]
steps:
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
- name: Checkout Code
Pin all workflow actions versions by commit (#13462)
2023-08-31 17:09:21 +00:00
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
- name: Install dependencies
run: |
npm install -g fleetctl
fleetctl config set --address ${{ needs.gen.outputs.address }} --token ${{ needs.login.outputs.token }}
- name: Install Orbit
run: |
sudo hostname macos-orbit-${{ matrix.orbit-channel }}-osqueryd-${{ matrix.osqueryd-channel }}
SECRET_JSON=$(fleetctl get enroll_secret --json --debug)
echo $SECRET_JSON
SECRET=$(echo $SECRET_JSON | jq -r '.spec.secrets[0].secret')
echo "Secret: $SECRET"
echo "Hostname: $(hostname -s)"
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
fleetctl package --type pkg --fleet-url=${{ needs.gen.outputs.address }} --enroll-secret=$SECRET --orbit-channel=${{ matrix.orbit-channel }} --osqueryd-channel=${{ matrix.osqueryd-channel }} --desktop-channel=${{ matrix.desktop-channel }} --fleet-desktop --debug
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
sudo installer -pkg fleet-osquery.pkg -target /
until fleetctl get hosts | grep -iF $(hostname -s);
do
echo "Awaiting enrollment..."
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
sleep 10
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
done
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
- name: Collect orbit logs
if: always()
run: |
mkdir orbit-logs
sudo cp /var/log/orbit/* orbit-logs/
- name: Upload Orbit logs
if: always()
Bump actions/upload-artifact from 3.1.0 to 3.1.2 (#10183) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 3.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's releases</a>.</em></p> <blockquote> <h2>v3.1.2</h2> <ul> <li>Update all <code>@actions/*</code> NPM packages to their latest versions- <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/374">#374</a></li> <li>Update all dev dependencies to their most recent versions - <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/375">#375</a></li> </ul> <h2>v3.1.1</h2> <ul> <li>Update actions/core package to latest version to remove <code>set-output</code> deprecation warning <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/351">#351</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/upload-artifact/commit/0b7f8abb1508181956e8e162db84b466c27e18ce"><code>0b7f8ab</code></a> ci(github): update action/download-artifact from v1 to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/312">#312</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/013d2b89baa2f354c5ffec54c68bec4ab39a2534"><code>013d2b8</code></a> Create devcontainer for codespaces + update all dev dependencies (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/375">#375</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/055b8b3f04a4a7ed853f2c6ab04256f83e4874dc"><code>055b8b3</code></a> Bump Actions NPM dependencies (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/374">#374</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/7a5d4831f75130126bffffb8443b412485f7b836"><code>7a5d483</code></a> ci(github): update action/checkout from v2 to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/315">#315</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/e0057a5b76f2fdad976135e8dd7b691e632b9056"><code>e0057a5</code></a> README: Bump actions/checkout to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/352">#352</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/7fe6c13ac83e8572a115d6d5e45afc880cc4fe7e"><code>7fe6c13</code></a> Update to latest <code>actions/publish-action</code> (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/363">#363</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/83fd05a356d7e2593de66fc9913b3002723633cb"><code>83fd05a</code></a> Bump actions-core to v1.10.0 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/356">#356</a>)</li> <li>See full diff in <a href="https://github.com/actions/upload-artifact/compare/3cea5372237819ed00197afe530f5a7ea3e805c8...0b7f8abb1508181956e8e162db84b466c27e18ce">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=3.1.0&new-version=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-24 18:27:56 +00:00
uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v2
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
with:
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
name: orbit-macos-${{ matrix.orbit-channel }}-${{ matrix.osqueryd-channel }}-${{ matrix.desktop-channel }}-logs
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
path: |
orbit-logs
- name: Uninstall Orbit
run: |
./orbit/tools/cleanup/cleanup_macos.sh
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
orbit-ubuntu:
CI: Add shell cmd for windows runner and add some debug logs to help troubleshoot (#13592) After @rfairburn made the DNS change the clouldflared tunnel started working again (after months of being broken). #13547 Run: https://github.com/fleetdm/fleet/actions/runs/6025182774 This PR adds some fixes to the two workflows that make use of cloudflared. There are still some issues to fix but these are some changes needed to continue/help troubleshooting.
2023-08-30 18:49:47 +00:00
timeout-minutes: 10
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
strategy:
matrix:
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
# To run multiple VMs that have the same UUID we need to implement
# https://github.com/fleetdm/fleet/issues/8021 (otherwise orbit and osqueryd
# in the same host are enrolled as two hosts in Fleet).
# Until then we will just test the `stable` channel in all components.
orbit-channel: [ 'stable' ]
osqueryd-channel: [ 'stable' ]
desktop-channel: [ 'stable' ]
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
runs-on: ubuntu-latest
needs: [gen, login]
steps:
- name: Install dependencies
run: |
npm install -g fleetctl
fleetctl config set --address ${{ needs.gen.outputs.address }} --token ${{ needs.login.outputs.token }}
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
- name: Install Go
Pin all workflow actions versions by commit (#13462)
2023-08-31 17:09:21 +00:00
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
with:
Use go variable to set version in workflows (#14890)
2023-11-03 14:42:27 +00:00
go-version: ${{ vars.GO_VERSION }}
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
- name: Checkout Code
Pin all workflow actions versions by commit (#13462)
2023-08-31 17:09:21 +00:00
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
- name: Build Fleetctl
run: make fleetctl
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
- name: Install Orbit
run: |
sudo hostname ubuntu-orbit-${{ matrix.orbit-channel }}-osqueryd-${{ matrix.osqueryd-channel }}
chmod +x ./build/fleetctl
SECRET_JSON=$(fleetctl get enroll_secret --json --debug)
echo $SECRET_JSON
SECRET=$(echo $SECRET_JSON | jq -r '.spec.secrets[0].secret')
echo "Secret: $SECRET"
echo "Hostname: $(hostname -s)"
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
./build/fleetctl package --type deb --fleet-url=${{ needs.gen.outputs.address }} --enroll-secret=$SECRET --orbit-channel=${{ matrix.orbit-channel }} --osqueryd-channel=${{ matrix.osqueryd-channel }} --desktop-channel=${{ matrix.desktop-channel }} --fleet-desktop --debug
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
sudo dpkg -i fleet-osquery*
until fleetctl get hosts | grep -iF $(hostname -s);
do
echo "Awaiting enrollment..."
sudo systemctl status orbit.service || true
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
sleep 10
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
done
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
- name: Collect orbit logs
if: always()
run: |
sudo journalctl -u orbit.service > orbit-logs
- name: Upload Orbit logs
if: always()
Bump actions/upload-artifact from 3.1.0 to 3.1.2 (#10183) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 3.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's releases</a>.</em></p> <blockquote> <h2>v3.1.2</h2> <ul> <li>Update all <code>@actions/*</code> NPM packages to their latest versions- <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/374">#374</a></li> <li>Update all dev dependencies to their most recent versions - <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/375">#375</a></li> </ul> <h2>v3.1.1</h2> <ul> <li>Update actions/core package to latest version to remove <code>set-output</code> deprecation warning <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/351">#351</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/upload-artifact/commit/0b7f8abb1508181956e8e162db84b466c27e18ce"><code>0b7f8ab</code></a> ci(github): update action/download-artifact from v1 to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/312">#312</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/013d2b89baa2f354c5ffec54c68bec4ab39a2534"><code>013d2b8</code></a> Create devcontainer for codespaces + update all dev dependencies (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/375">#375</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/055b8b3f04a4a7ed853f2c6ab04256f83e4874dc"><code>055b8b3</code></a> Bump Actions NPM dependencies (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/374">#374</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/7a5d4831f75130126bffffb8443b412485f7b836"><code>7a5d483</code></a> ci(github): update action/checkout from v2 to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/315">#315</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/e0057a5b76f2fdad976135e8dd7b691e632b9056"><code>e0057a5</code></a> README: Bump actions/checkout to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/352">#352</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/7fe6c13ac83e8572a115d6d5e45afc880cc4fe7e"><code>7fe6c13</code></a> Update to latest <code>actions/publish-action</code> (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/363">#363</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/83fd05a356d7e2593de66fc9913b3002723633cb"><code>83fd05a</code></a> Bump actions-core to v1.10.0 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/356">#356</a>)</li> <li>See full diff in <a href="https://github.com/actions/upload-artifact/compare/3cea5372237819ed00197afe530f5a7ea3e805c8...0b7f8abb1508181956e8e162db84b466c27e18ce">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=3.1.0&new-version=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-24 18:27:56 +00:00
uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v2
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
with:
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
name: orbit-ubuntu-${{ matrix.orbit-channel }}-${{ matrix.osqueryd-channel }}-${{ matrix.desktop-channel }}-logs
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
path: |
orbit-logs
- name: Uninstall Orbit
run: |
Add pre and post remove scripts for rpm and deb packages (#5150)
2022-04-19 12:32:47 +00:00
sudo apt remove fleet-osquery -y
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
orbit-windows-build:
CI: Add shell cmd for windows runner and add some debug logs to help troubleshoot (#13592) After @rfairburn made the DNS change the clouldflared tunnel started working again (after months of being broken). #13547 Run: https://github.com/fleetdm/fleet/actions/runs/6025182774 This PR adds some fixes to the two workflows that make use of cloudflared. There are still some issues to fix but these are some changes needed to continue/help troubleshooting.
2023-08-30 18:49:47 +00:00
timeout-minutes: 10
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
strategy:
matrix:
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
# To run multiple VMs that have the same UUID we need to implement
# https://github.com/fleetdm/fleet/issues/8021 (otherwise orbit and osqueryd
# in the same host are enrolled as two hosts in Fleet).
# Until then we will just test the `stable` channel in all components.
orbit-channel: [ 'stable' ]
osqueryd-channel: [ 'stable' ]
desktop-channel: [ 'stable' ]
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
runs-on: ubuntu-latest
needs: [gen, login]
steps:
- name: Install dependencies
run: |
docker pull fleetdm/wix:latest &
npm install -g fleetctl
fleetctl config set --address ${{ needs.gen.outputs.address }} --token ${{ needs.login.outputs.token }}
- name: Build Orbit
run: |
SECRET_JSON=$(fleetctl get enroll_secret --json --debug)
echo $SECRET_JSON
SECRET=$(echo $SECRET_JSON | jq -r '.spec.secrets[0].secret')
echo "Secret: $SECRET"
echo "Hostname: $(hostname -s)"
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
fleetctl package --type msi --fleet-url=${{ needs.gen.outputs.address }} --enroll-secret=$SECRET --orbit-channel=${{ matrix.orbit-channel }} --osqueryd-channel=${{ matrix.osqueryd-channel }} --desktop-channel=${{ matrix.desktop-channel }} --fleet-desktop --debug
mv fleet-osquery.msi orbit-${{ matrix.orbit-channel }}-osqueryd-${{ matrix.osqueryd-channel }}-desktop-${{ matrix.desktop-channel }}.msi
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
- name: Upload MSI
Bump actions/upload-artifact from 3.1.0 to 3.1.2 (#10183) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 3.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's releases</a>.</em></p> <blockquote> <h2>v3.1.2</h2> <ul> <li>Update all <code>@actions/*</code> NPM packages to their latest versions- <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/374">#374</a></li> <li>Update all dev dependencies to their most recent versions - <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/375">#375</a></li> </ul> <h2>v3.1.1</h2> <ul> <li>Update actions/core package to latest version to remove <code>set-output</code> deprecation warning <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/351">#351</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/upload-artifact/commit/0b7f8abb1508181956e8e162db84b466c27e18ce"><code>0b7f8ab</code></a> ci(github): update action/download-artifact from v1 to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/312">#312</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/013d2b89baa2f354c5ffec54c68bec4ab39a2534"><code>013d2b8</code></a> Create devcontainer for codespaces + update all dev dependencies (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/375">#375</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/055b8b3f04a4a7ed853f2c6ab04256f83e4874dc"><code>055b8b3</code></a> Bump Actions NPM dependencies (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/374">#374</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/7a5d4831f75130126bffffb8443b412485f7b836"><code>7a5d483</code></a> ci(github): update action/checkout from v2 to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/315">#315</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/e0057a5b76f2fdad976135e8dd7b691e632b9056"><code>e0057a5</code></a> README: Bump actions/checkout to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/352">#352</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/7fe6c13ac83e8572a115d6d5e45afc880cc4fe7e"><code>7fe6c13</code></a> Update to latest <code>actions/publish-action</code> (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/363">#363</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/83fd05a356d7e2593de66fc9913b3002723633cb"><code>83fd05a</code></a> Bump actions-core to v1.10.0 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/356">#356</a>)</li> <li>See full diff in <a href="https://github.com/actions/upload-artifact/compare/3cea5372237819ed00197afe530f5a7ea3e805c8...0b7f8abb1508181956e8e162db84b466c27e18ce">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=3.1.0&new-version=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-24 18:27:56 +00:00
uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v2
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
with:
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
name: orbit-${{ matrix.orbit-channel }}-osqueryd-${{ matrix.osqueryd-channel }}-desktop-${{ matrix.desktop-channel }}.msi
path: orbit-${{ matrix.orbit-channel }}-osqueryd-${{ matrix.osqueryd-channel }}-desktop-${{ matrix.desktop-channel }}.msi
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
orbit-windows:
CI: Add shell cmd for windows runner and add some debug logs to help troubleshoot (#13592) After @rfairburn made the DNS change the clouldflared tunnel started working again (after months of being broken). #13547 Run: https://github.com/fleetdm/fleet/actions/runs/6025182774 This PR adds some fixes to the two workflows that make use of cloudflared. There are still some issues to fix but these are some changes needed to continue/help troubleshooting.
2023-08-30 18:49:47 +00:00
timeout-minutes: 10
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
strategy:
matrix:
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
# To run multiple VMs that have the same UUID we need to implement
# https://github.com/fleetdm/fleet/issues/8021 (otherwise orbit and osqueryd
# in the same host are enrolled as two hosts in Fleet).
# Until then we will just test the `stable` channel in all components.
orbit-channel: [ 'stable' ]
osqueryd-channel: [ 'stable' ]
desktop-channel: [ 'stable' ]
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
needs: [gen, login, orbit-windows-build]
runs-on: windows-latest
steps:
- name: Install dependencies
shell: bash
run: |
npm install -g fleetctl
fleetctl config set --address ${{ needs.gen.outputs.address }} --token ${{ needs.login.outputs.token }} --tls-skip-verify
- name: Download MSI
id: download
Bump actions/download-artifact from 2.1.0 to 3 (#5205) Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2.1.0 to 3. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](https://github.com/actions/download-artifact/compare/f023be2c48cc18debc3bacd34cb396e0295e2869...fb598a63ae348fa914e94cd0ff38f362e927b741) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-19 01:59:59 +00:00
uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v2
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
with:
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
name: orbit-${{ matrix.orbit-channel }}-osqueryd-${{ matrix.osqueryd-channel }}-desktop-${{ matrix.desktop-channel }}.msi
set default shell in workflows (#8108) * wait for mysql in workflows
2022-10-07 15:43:56 +00:00
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
- name: Install Orbit
CI: Add shell cmd for windows runner and add some debug logs to help troubleshoot (#13592) After @rfairburn made the DNS change the clouldflared tunnel started working again (after months of being broken). #13547 Run: https://github.com/fleetdm/fleet/actions/runs/6025182774 This PR adds some fixes to the two workflows that make use of cloudflared. There are still some issues to fix but these are some changes needed to continue/help troubleshooting.
2023-08-30 18:49:47 +00:00
shell: cmd
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
run: |
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
msiexec /i ${{steps.download.outputs.download-path}}\orbit-${{ matrix.orbit-channel }}-osqueryd-${{ matrix.osqueryd-channel }}-desktop-${{ matrix.desktop-channel }}.msi /quiet /passive /lv log.txt
Integration test packaging (#3633)
2022-01-13 21:59:22 +00:00
sleep 30
# We can't very accurately check the install on these Windows hosts since the hostnames tend to
# overlap and we can't control the hostnames. Instead we just return and have the run-server job
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
# wait until the expected number of hosts enroll.
CI: Add shell cmd for windows runner and add some debug logs to help troubleshoot (#13592) After @rfairburn made the DNS change the clouldflared tunnel started working again (after months of being broken). #13547 Run: https://github.com/fleetdm/fleet/actions/runs/6025182774 This PR adds some fixes to the two workflows that make use of cloudflared. There are still some issues to fix but these are some changes needed to continue/help troubleshooting.
2023-08-30 18:49:47 +00:00
- name: Upload orbit install log
if: always()
uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v2
with:
name: msiexec-install-log
path: log.txt
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
- name: Upload Orbit logs
if: always()
Bump actions/upload-artifact from 3.1.0 to 3.1.2 (#10183) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 3.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's releases</a>.</em></p> <blockquote> <h2>v3.1.2</h2> <ul> <li>Update all <code>@actions/*</code> NPM packages to their latest versions- <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/374">#374</a></li> <li>Update all dev dependencies to their most recent versions - <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/375">#375</a></li> </ul> <h2>v3.1.1</h2> <ul> <li>Update actions/core package to latest version to remove <code>set-output</code> deprecation warning <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/351">#351</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/upload-artifact/commit/0b7f8abb1508181956e8e162db84b466c27e18ce"><code>0b7f8ab</code></a> ci(github): update action/download-artifact from v1 to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/312">#312</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/013d2b89baa2f354c5ffec54c68bec4ab39a2534"><code>013d2b8</code></a> Create devcontainer for codespaces + update all dev dependencies (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/375">#375</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/055b8b3f04a4a7ed853f2c6ab04256f83e4874dc"><code>055b8b3</code></a> Bump Actions NPM dependencies (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/374">#374</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/7a5d4831f75130126bffffb8443b412485f7b836"><code>7a5d483</code></a> ci(github): update action/checkout from v2 to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/315">#315</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/e0057a5b76f2fdad976135e8dd7b691e632b9056"><code>e0057a5</code></a> README: Bump actions/checkout to v3 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/352">#352</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/7fe6c13ac83e8572a115d6d5e45afc880cc4fe7e"><code>7fe6c13</code></a> Update to latest <code>actions/publish-action</code> (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/363">#363</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/83fd05a356d7e2593de66fc9913b3002723633cb"><code>83fd05a</code></a> Bump actions-core to v1.10.0 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/356">#356</a>)</li> <li>See full diff in <a href="https://github.com/actions/upload-artifact/compare/3cea5372237819ed00197afe530f5a7ea3e805c8...0b7f8abb1508181956e8e162db84b466c27e18ce">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=3.1.0&new-version=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-24 18:27:56 +00:00
uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v2
Amend `fleetctl package` to support `/var/lib` legacy orbit (legacy would mean <= 0.0.11) (#5532) * Add logs to troubleshoot orbit * Run journalctl on a different step * Add legacy orbit support to opt version of fleetctl * Fix macos logs permission error * Checkout repository * Compile fleetctl from branch
2022-05-03 19:46:02 +00:00
with:
Attempt to stabilize the broken integration.yml workflow (#13653) #13547 This is an attempt to stabilize this workflow that has been broken for 4-6 months. # Issue and proposed solution Github runner VMs re-use UUIDs, which is not supported by Orbit (this causes a host to be enrolled as two hosts in Fleet), thus, until that is fixed in https://github.com/fleetdm/fleet/issues/8021 I propose we stabilize this workflow by testing all `stable` channels only (which is better than having the build broken all the time IMO). Once https://github.com/fleetdm/fleet/issues/8021 is fixed we can re-add the edge channels.
2023-09-01 15:25:17 +00:00
name: orbit-windows-${{ matrix.orbit-channel }}-${{ matrix.osqueryd-channel }}-${{ matrix.desktop-channel }}-logs
Add automation for orbit shell (with TUF) (#5856) * fix old root dir in orbit * add changes * Add automation for orbit shell (with TUF) * Fix workflow syntax * Add logging to latest fleetctl preview action * Add changes to fix workflow * Use macOS host for TUF server and package generation * Remove copy/paste if clause * Fix orbit logs on macOS, Ubuntu * Simplify TUF and generation of packages * Set enroll secret instead of getting it * Increase timeouts * Add step id * Fixes to the upload/download of artifacts * Rearrange steps to not lose the downloads * Fix copy/paste * Add fleetctl login step * Add missing config set * Fix quotes on Windows * Increase timeout * Fix job termination * Disable FLEET_DESKTOP for now * Checkout repository on macOS * Fix logs path * Enable fleet desktop * Use cancel, nitpick Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-06-01 16:54:16 +00:00
path: C:\Windows\system32\config\systemprofile\AppData\Local\FleetDM\Orbit\Logs\orbit-osquery.log
Reference in New Issue Copy Permalink