.github/workflows/ci.yml #6

Workflow file for this run

	name: CI

	on:
	workflow_dispatch:

	jobs:
	build:
	runs-on: ubuntu-latest
	services:
	# Docker without TLS (plain TCP) !DEPRECATED! with next docker release
	docker-no-tls:
	image: docker:28.1-dind
	env:
	DOCKER_TLS_CERTDIR: ""
	ports:
	- 2375:2375
	options: >-
	--privileged
	--tmpfs /var/lib/docker

	# Docker with TLS (secure TCP)
	docker-tls:
	image: docker:28.1-dind
	env:
	DOCKER_TLS_CERTDIR: /certs
	ports:
	- 2376:2376
	options: >-
	--privileged
	--tmpfs /var/lib/docker
	volumes:
	- /tmp/certs:/certs

	strategy:
	matrix:
	framework:
	- net8.0
	- net9.0
	steps:
	- uses: actions/checkout@v4
	with:
	fetch-depth: 0

	- name: Setup .NET Core
	uses: actions/setup-dotnet@v4
	with:
	dotnet-version: 9.x
	- name: Build
	run: dotnet build -c Release --framework ${{ matrix.framework }}

	- name: Generate TLS certs for Docker
	run: \|
	mkdir -p /tmp/certs

	# Generate CA key and cert
	openssl genrsa -out /tmp/certs/ca-key.pem 2048
	openssl req -x509 -new -nodes -key /tmp/certs/ca-key.pem -sha256 -days 365 -out /tmp/certs/ca.pem -subj "/CN=docker-ca"

	# Generate server key and CSR
	openssl genrsa -out /tmp/certs/server-key.pem 2048
	openssl req -new -key /tmp/certs/server-key.pem -out /tmp/certs/server.csr -subj "/CN=localhost"

	# Sign server cert with CA
	openssl x509 -req -in /tmp/certs/server.csr -CA /tmp/certs/ca.pem -CAkey /tmp/certs/ca-key.pem -CAcreateserial -out /tmp/certs/server-cert.pem -days 365 -sha256

	# Generate client key and CSR
	openssl genrsa -out /tmp/certs/key.pem 2048
	openssl req -new -key /tmp/certs/key.pem -out /tmp/certs/client.csr -subj "/CN=client"

	# Sign client cert with CA
	openssl x509 -req -in /tmp/certs/client.csr -CA /tmp/certs/ca.pem -CAkey /tmp/certs/ca-key.pem -CAcreateserial -out /tmp/certs/cert.pem -days 365 -sha256

	# create pfx
	openssl pkcs12 -export -out /tmp/certs/client.pfx -inkey /tmp/certs/key.pem -in /tmp/certs/cert.pem -certfile /tmp/certs/ca.pem -passout pass:

	- name: Wait for Docker (no TLS) to be healthy
	run: \|
	for i in {1..10}; do
	if docker --host=tcp://localhost:2375 version; then
	echo "Docker (no TLS) is ready!"
	exit 0
	fi
	echo "Waiting for Docker (no TLS) to be ready..."
	sleep 3
	done
	echo "Docker (no TLS) did not become ready in time."
	exit 1

	- name: Wait for Docker (with TLS) to be healthy
	run: \|
	for i in {1..10}; do
	if docker --host=tcp://localhost:2376 --tlsverify \
	--tlscacert=/tmp/certs/ca.pem \
	--tlscert=/tmp/certs/cert.pem \
	--tlskey=/tmp/certs/key.pem version; then
	echo "Docker (TLS) is ready!"
	exit 0
	fi
	echo "Waiting for Docker (TLS) to be ready..."
	sleep 3
	done
	echo "Docker (TLS) did not become ready in time."
	exit 1

	- name: Test
	run: dotnet test -c Release --framework ${{ matrix.framework }} --no-build --logger console

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

.github/workflows/ci.yml #6

Workflow file

.github/workflows/ci.yml #6

Uh oh!

Workflow file for this run