mirror of
https://github.com/angristan/openvpn-install.git
synced 2025-12-12 15:32:41 +01:00
a3389c126c
### Summary - Add automated end-to-end testing using Docker to verify the installation script works across 18 Linux distributions - Add Oracle Linux 9 support to the installation script - Drop support for EOL distributions (Debian 8/9/10, CentOS 7, Ubuntu 16.04) - Disable Digital Ocean droplets based end-to-end tests, let's use docker from now on ### Changes **New test infrastructure:** - `test/Dockerfile.server` - Multi-OS server image with `BASE_IMAGE` build arg - `test/Dockerfile.client` - Ubuntu 24.04 client for connectivity testing - `test/server-entrypoint.sh` - Runs install script, verifies files exist, asserts iptables NAT rules, starts OpenVPN - `test/client-entrypoint.sh` - Connects to VPN, verifies tun0 interface, pings gateway - `docker-compose.yml` - Orchestrates server + client with shared volume - `.github/workflows/docker-test.yml` - CI matrix testing 18 OS variants - `.github/workflows/test.yml` - Removed push/PR triggers, now manual only for DO tests - `Makefile` - Local testing commands (`make test`, `make test-ubuntu-24.04`, etc.) **Distributions tested (18 total):** | Family | Versions | |--------|----------| | Ubuntu | 18.04, 20.04, 22.04, 24.04 | | Debian | 11, 12 | | Fedora | 40, 41 | | Rocky Linux | 8, 9 | | AlmaLinux | 8, 9 | | Oracle Linux | 8, 9 | | Amazon Linux | 2, 2023 | | CentOS Stream | 9 | | Arch Linux | latest |
100 lines
4.0 KiB
YAML
100 lines
4.0 KiB
YAML
# DigitalOcean E2E tests (manual trigger only)
|
|
# Primary CI testing is now done via Docker in docker-test.yml
|
|
# This workflow is kept for real-world VM testing when needed
|
|
on:
|
|
workflow_dispatch:
|
|
|
|
name: Test
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
install:
|
|
runs-on: ubuntu-latest
|
|
if: github.repository == 'angristan/openvpn-install' && github.actor == 'angristan'
|
|
strategy:
|
|
matrix:
|
|
os-image:
|
|
- debian-12-x64
|
|
- debian-13-x64
|
|
- ubuntu-22-04-x64
|
|
- ubuntu-24-04-x64
|
|
- fedora-42-x64
|
|
# - centos-stream-9-x64 # yum oomkill
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
|
|
- name: Setup doctl
|
|
uses: digitalocean/action-doctl@v2
|
|
with:
|
|
token: ${{ secrets.DIGITALOCEAN_ACCESS_TOKEN }}
|
|
|
|
- name: Create server
|
|
run: doctl compute droplet create "openvpn-action-${GITHUB_RUN_ID}-${GITHUB_RUN_NUMBER}-${{ matrix.os-image }}" --size s-1vcpu-1gb --image "${{ matrix.os-image }}" --region lon1 --enable-ipv6 --ssh-keys be:66:76:61:a8:71:93:aa:e3:19:ba:d8:0d:d2:2d:d4 --wait
|
|
|
|
- name: Get server ID
|
|
run: echo "value=$(doctl compute droplet list -o json | jq -r '.[] | select(.name == "'"openvpn-action-${GITHUB_RUN_ID}-${GITHUB_RUN_NUMBER}-${{ matrix.os-image }}"'").id')" >> "$GITHUB_OUTPUT"
|
|
id: server_id
|
|
|
|
- name: Move server to dedicated project
|
|
run: doctl projects resources assign ${{ secrets.DIGITALOCEAN_PROJECT_ID }} --resource=do:droplet:${{ steps.server_id.outputs.value }}
|
|
|
|
- name: Wait for server to boot
|
|
run: sleep 90
|
|
|
|
- name: Get server IP
|
|
run: echo "value=$(doctl compute droplet list -o json | jq -r '.[] | select(.name == "'"openvpn-action-${GITHUB_RUN_ID}-${GITHUB_RUN_NUMBER}-${{ matrix.os-image }}"'").networks.v4 | .[] | select(.type == "'"public"'").ip_address')" >> "$GITHUB_OUTPUT"
|
|
id: server_ip
|
|
|
|
- name: Get server OS
|
|
run: echo "value=$(echo "${{ matrix.os-image }}" | cut -d '-' -f1)" >> "$GITHUB_OUTPUT"
|
|
id: server_os
|
|
|
|
- name: Setup remote server (Debian/Ubuntu)
|
|
if: steps.server_os.outputs.value == 'debian' || steps.server_os.outputs.value == 'ubuntu'
|
|
uses: appleboy/ssh-action@v1.2.0
|
|
with:
|
|
host: ${{ steps.server_ip.outputs.value }}
|
|
username: root
|
|
key: ${{ secrets.SSH_KEY }}
|
|
script: set -x && apt-get update && apt-get -o DPkg::Lock::Timeout=120 install -y git
|
|
|
|
- name: Setup remote server (Fedora)
|
|
if: steps.server_os.outputs.value == 'fedora'
|
|
uses: appleboy/ssh-action@v1.2.0
|
|
with:
|
|
host: ${{ steps.server_ip.outputs.value }}
|
|
username: root
|
|
key: ${{ secrets.SSH_KEY }}
|
|
script: set -x && dnf install -y git
|
|
|
|
- name: Setup remote server (CentOS)
|
|
if: steps.server_os.outputs.value == 'centos'
|
|
uses: appleboy/ssh-action@v1.2.0
|
|
with:
|
|
host: ${{ steps.server_ip.outputs.value }}
|
|
username: root
|
|
key: ${{ secrets.SSH_KEY }}
|
|
script: set -x && yum install -y git
|
|
|
|
- name: Download repo and checkout current commit
|
|
uses: appleboy/ssh-action@v1.2.0
|
|
with:
|
|
host: ${{ steps.server_ip.outputs.value }}
|
|
username: root
|
|
key: ${{ secrets.SSH_KEY }}
|
|
script: set -x && git clone https://github.com/angristan/openvpn-install.git && cd openvpn-install && git checkout ${{ github.sha }}
|
|
|
|
- name: Run openvpn-install.sh in headless mode
|
|
uses: appleboy/ssh-action@v1.2.0
|
|
with:
|
|
host: ${{ steps.server_ip.outputs.value }}
|
|
username: root
|
|
key: ${{ secrets.SSH_KEY }}
|
|
script: 'set -x && AUTO_INSTALL=y bash -x ~/openvpn-install/openvpn-install.sh && ps aux | grep openvpn | grep -v grep > /dev/null 2>&1 && echo "Success: OpenVPN is running" && exit 0 || echo "Failure: OpenVPN is not running" && exit 1'
|
|
|
|
- name: Delete server
|
|
run: doctl compute droplet delete -f "openvpn-action-${GITHUB_RUN_ID}-${GITHUB_RUN_NUMBER}-${{ matrix.os-image }}"
|
|
if: always()
|