name: CI on: push: pull_request: jobs: build: strategy: matrix: os: [ubuntu-latest, windows-latest] runs-on: ${{ matrix.os }} steps: - uses: actions/checkout@v4 - uses: dtolnay/rust-toolchain@stable with: components: clippy, rustfmt - name: Install system dependencies if: matrix.os == 'ubuntu-latest' run: sudo apt-get update && sudo apt-get install -y libdrm-dev libdrm-amdgpu1 - name: Cargo fmt run: cargo fmt --all -- --check - name: Clippy run: cargo clippy --all-targets --all-features -- -D warnings - name: Build (release) run: cargo build --release --workspace - name: Start agent (Ubuntu) if: matrix.os == 'ubuntu-latest' shell: bash run: | set -euo pipefail # Start the already-built release binary to avoid rebuild delays # Force TLS off for this probe RUST_LOG=info SOCKTOP_ENABLE_SSL=0 ./target/release/socktop_agent -p 3000 > agent.log 2>&1 & AGENT_PID=$! echo "AGENT_PID=$AGENT_PID" >> $GITHUB_ENV # Wait for /healthz to return 200 (60s max) for i in {1..60}; do if curl -fsS http://127.0.0.1:3000/healthz >/dev/null; then echo "agent is ready"; break; fi sleep 1 done if ! curl -fsS http://127.0.0.1:3000/healthz >/dev/null; then echo "--- agent.log (tail) ---" tail -n 200 agent.log || true echo "--- lsof/netstat ---" (command -v ss >/dev/null && ss -ltnp || netstat -ltnp) || true exit 1 fi - name: Run WS probe test (Ubuntu) if: matrix.os == 'ubuntu-latest' shell: bash env: SOCKTOP_WS: ws://127.0.0.1:3000/ws run: | set -euo pipefail cargo test -p socktop --test ws_probe -- --nocapture - name: Stop agent (Ubuntu) if: always() && matrix.os == 'ubuntu-latest' shell: bash run: | if [ -n "${AGENT_PID:-}" ]; then kill $AGENT_PID || true; fi - name: Start agent (Windows) if: matrix.os == 'windows-latest' shell: pwsh run: | # Start the already-built release binary to avoid rebuild delays # Force TLS off for this probe $env:SOCKTOP_ENABLE_SSL = "0" $out = Join-Path $PWD "agent.out.txt" $err = Join-Path $PWD "agent.err.txt" $p = Start-Process -FilePath "${PWD}\\target\\release\\socktop_agent.exe" -ArgumentList "-p 3000" -RedirectStandardOutput $out -RedirectStandardError $err -PassThru -NoNewWindow echo "AGENT_PID=$($p.Id)" | Out-File -FilePath $env:GITHUB_ENV -Append $ready = $false for ($i = 0; $i -lt 60; $i++) { try { $resp = Invoke-WebRequest -UseBasicParsing -Uri "http://127.0.0.1:3000/healthz" -TimeoutSec 2 -ErrorAction Stop if ($resp.StatusCode -eq 200) { $ready = $true; break } } catch { } Start-Sleep -Seconds 1 } if (-not $ready) { Write-Warning "TCP connect to (127.0.0.1 : 3000) failed" if (Test-Path $out) { Write-Host "--- agent.out (tail) ---"; Get-Content $out -Tail 200 } if (Test-Path $err) { Write-Host "--- agent.err (tail) ---"; Get-Content $err -Tail 200 } Write-Host "--- netstat ---" netstat -ano | Select-String ":3000" | ForEach-Object { $_.Line } Write-Error "agent did not become ready" } - name: Run WS probe test (Windows) if: matrix.os == 'windows-latest' shell: pwsh run: | $env:SOCKTOP_WS = "ws://127.0.0.1:3000/ws" cargo test -p socktop --test ws_probe -- --nocapture - name: Stop agent (Windows) if: always() && matrix.os == 'windows-latest' shell: pwsh run: | if ($env:AGENT_PID) { Stop-Process -Id $env:AGENT_PID -Force -ErrorAction SilentlyContinue } - name: Smoke test (client --help) run: cargo run -p socktop -- --help - name: Package artifacts shell: bash run: | set -e mkdir dist if [[ "${{ matrix.os }}" == "windows-latest" ]]; then cp target/release/socktop.exe dist/ cp target/release/socktop_agent.exe dist/ 7z a socktop-${{ matrix.os }}.zip dist/* else cp target/release/socktop dist/ cp target/release/socktop_agent dist/ tar czf socktop-${{ matrix.os }}.tar.gz -C dist . fi - name: Upload build artifacts (ephemeral) uses: actions/upload-artifact@v4 with: name: socktop-${{ matrix.os }} path: | *.tar.gz *.zip - name: Upload to rolling GitHub Release (main only) if: github.ref == 'refs/heads/main' && github.event_name == 'push' uses: softprops/action-gh-release@v2 with: tag_name: latest name: Latest build prerelease: true draft: false files: | *.tar.gz *.zip env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}