crowdsec/.github/workflows/ci_functests-install.yml

name: Functionnal tests install

on:
  push:
    branches:
      - wip_lapi
      - master
  pull_request:
    branches:
      - wip_lapi
      - master

jobs:
  build:
    name: Install generated release and perform upgrade tests
    runs-on: ubuntu-latest
    steps:
    - name: Set up Go 1.13
      uses: actions/setup-go@v1
      with:
        go-version: 1.13
      id: go
    - name: Check out code into the Go module directory
      uses: actions/checkout@v2
    - name: Build release
      run: BUILD_VERSION=xxx make release
    - name: Install release
      run: |
        cd crowdsec-xxx
        sudo bash -x ./wizard.sh --bininstall
        sudo cscli machines add -a        
    - name: Post-installation check
      run: |
        sudo cscli hub update        
    - name: Install collection
      run: |
        sudo cscli hub list -a
        sudo cscli parsers install crowdsecurity/syslog-logs crowdsecurity/sshd-logs crowdsecurity/dateparse-enrich
        sudo cscli scenarios install crowdsecurity/ssh-bf        
    - name: Crowdsec start service
      run: |
        sudo systemctl start crowdsec        
    - name: Generate fake ssh bf logs
      run: |
        for i in `seq 1 10` ; do 
          echo `date '+%b %d %H:%M:%S '`'sd-126005 sshd[12422]: Invalid user netflix from 1.1.1.172 port 35424' >> ssh-bf.log
        done;        
    - name: Process ssh-bf logs in time-machine
      run: |
        sudo crowdsec -file ./ssh-bf.log -type syslog -no-api        
    - name: Cscli ban list check
      #check that we got the expected ban and that the filters are working properly
      run: |
        sudo cscli decisions list
        sudo cscli decisions list -o=json | jq -e '.[].decisions[0].value == "1.1.1.172"'
        sudo cscli decisions list -r 1.1.1.0/24 -o=json --contained | jq -e '.[].decisions[0].value == "1.1.1.172"'
        sudo cscli decisions list -r 1.1.2.0/24 -o=json | jq -e '. == null'
        sudo cscli decisions list -i 1.1.1.172 -o=json | jq -e '.[].decisions[0].value == "1.1.1.172"'
        sudo cscli decisions list -i 1.1.1.173 -o=json | jq -e '. == null'        
    - name: Cscli ban del check
      #check that the delete is working and that filters are working properly
      run: |
        sudo cscli decisions delete -i 1.1.1.173
        sudo cscli decisions list -o=json | jq -e '.[].decisions[0].value == "1.1.1.172"'
        sudo cscli decisions delete -i 1.1.1.172
        sudo cscli decisions list -o=json | jq -e '. == null'        
    - name: Metrics check
      run: |
        sudo cscli metrics        
    - name: Service stop & config change
      #shutdown the service, edit that acquisition.yaml
      run: |
        sudo systemctl stop crowdsec
        echo "" | sudo tee -a /etc/crowdsec/acquis.yaml > /dev/null
        echo "filename: /tmp/test.log" | sudo tee -a /etc/crowdsec/acquis.yaml > /dev/null
        echo "labels:" | sudo tee -a /etc/crowdsec/acquis.yaml > /dev/null
        echo "  type: syslog" | sudo tee -a /etc/crowdsec/acquis.yaml > /dev/null
        touch /tmp/test.log        
    - name: Service start & check
      run: |
        sudo systemctl start crowdsec || sudo journalctl -xe        
    - name: Trigger events via normal acquisition
      run: |
        cat ssh-bf.log >> /tmp/test.log
        sleep 1        
    - name: Check results
      run: |
        sudo cscli decisions list -o=json | jq -e '.[].decisions[0].value == "1.1.1.172"'