chore: refactor github actions

Split up many of the jobs to modular actions.

Author: NDStrahilevitz

.github/actions/generate-kernel-matrix/action.yaml

@@ -0,0 +1,37 @@
+name: Generate Kernel Test Matrix
+description: |
+  Generate kernel test matrix from JSON data file.
+  Adds timestamp suffix for unique runner identification.
+inputs:
+  data-file-path:
+    description: 'Path to the kernel matrix JSON data file'
+    required: false
+    default: '.github/data/kernel-test-matrix.json'
+outputs:
+  matrix:
+    description: 'Generated JSON matrix for GitHub Actions'
+    value: ${{ steps.generate.outputs.matrix }}
+runs:
+  using: composite
+  steps:
+    - name: Generate Matrix
+      id: generate
+      run: |
+        DATA_FILE="${{ inputs.data-file-path }}"
+        
+        if [ ! -f "$DATA_FILE" ]; then
+          echo "Error: Data file not found at $DATA_FILE"
+          exit 1
+        fi
+        
+        # Read the JSON file and add timestamp suffix to each entry
+        timestamp=$(date +%s)
+        matrix=$(jq --arg ts "$timestamp" -c '[.[] | . + {sufix: $ts, job_name: .name}]' "$DATA_FILE")
+        
+        echo "Generated matrix (pretty printed for display):"
+        echo "$matrix" | jq .
+        
+        # Output the matrix as a single line (compact JSON)
+        echo "matrix=$matrix" >> $GITHUB_OUTPUT
+      shell: bash
+

.github/actions/run-e2e-tests/action.yaml

@@ -0,0 +1,99 @@
+name: Run E2E Tests
+description: |
+  Run end-to-end tests including build, compatibility, instrumentation, network, and kernel tests.
+  Handles test failure detection and artifact uploads.
+inputs:
+  job-name:
+    description: 'Job name for artifact naming'
+    required: true
+  run-id:
+    description: 'GitHub run ID for artifact naming'
+    required: true
+  run-attempt:
+    description: 'GitHub run attempt for artifact naming'
+    required: true
+runs:
+  using: composite
+  steps:
+    - name: Build Tracee
+      run: make tracee
+      shell: bash
+    - name: Compatibility Test
+      run: env "PATH=$PATH" make test-compatibility
+      shell: bash
+    - name: Instrumentation Test
+      id: e2e-inst-test
+      run: |
+        ./tests/e2e-inst-test.sh --keep-artifacts 2>&1 | tee /tmp/e2e-inst-test.log
+        exit ${PIPESTATUS[0]}
+      shell: bash
+    - name: Network Test
+      id: e2e-net-test
+      run: |
+        ./tests/e2e-net-test.sh 2>&1 | tee /tmp/e2e-net-test.log
+        exit ${PIPESTATUS[0]}
+      shell: bash
+    - name: Kernel Test
+      id: e2e-kernel-test
+      run: |
+        ./tests/e2e-kernel-test.sh 2>&1 | tee /tmp/e2e-kernel-test.log
+        exit ${PIPESTATUS[0]}
+      shell: bash
+    - name: Determine Failed Test
+      id: failed-test
+      if: failure() && (
+        steps.e2e-inst-test.conclusion == 'failure' ||
+        steps.e2e-net-test.conclusion == 'failure' || 
+        steps.e2e-kernel-test.conclusion == 'failure'
+        )
+      run: |
+        if [[ "${{ steps.e2e-inst-test.conclusion }}" == "failure" ]]; then
+          echo "name=inst" >> $GITHUB_OUTPUT
+        elif [[ "${{ steps.e2e-net-test.conclusion }}" == "failure" ]]; then
+          echo "name=net" >> $GITHUB_OUTPUT
+        elif [[ "${{ steps.e2e-kernel-test.conclusion }}" == "failure" ]]; then
+          echo "name=kernel" >> $GITHUB_OUTPUT
+        else
+          echo "No failed tests. Should not reach this point."
+          exit 1
+        fi
+      shell: bash
+    - name: Upload E2E Test Artifacts
+      if: always() && steps.failed-test.outputs.name != ''
+      uses: actions/upload-artifact@v4
+      with:
+        name: e2e-${{ steps.failed-test.outputs.name }}-artifacts-${{ inputs.job-name }}-${{ inputs.run-id }}-${{ inputs.run-attempt }}
+        path: |
+          /tmp/tracee-log-*
+          /tmp/tracee-output-*
+          /tmp/e2e-*.log
+        retention-days: 7
+        if-no-files-found: warn
+    - name: Notify About Available E2E Test Artifacts
+      if: always() && steps.failed-test.outputs.name != ''
+      run: |
+        echo "::notice title=Debug Artifacts Available::E2E tests failed. Debug artifacts have been uploaded and can be downloaded from the Summary tab. Look for: e2e-${{ steps.failed-test.outputs.name }}-artifacts-${{ inputs.job-name }}-${{ inputs.run-id }}-${{ inputs.run-attempt }}"
+        echo ""
+        echo "📋 **E2E Test Failed - Debug Information Available**"
+        echo ""
+        echo "🔍 **How to access debug artifacts:**"
+        echo "1. Click on the 'Summary' tab above the jobs list"
+        echo "2. Scroll to the bottom of the Summary page"
+        echo "3. Look for the 'Artifacts' section"
+        echo "4. Download: \`e2e-${{ steps.failed-test.outputs.name }}-artifacts-${{ inputs.job-name }}-${{ inputs.run-id }}-${{ inputs.run-attempt }}\`"
+        echo ""
+        echo "📁 **What's included in the artifacts:**"
+        echo "- **Log file**: Full debug-level logs from all E2E tests (tracee-log-*)"
+        echo "- **Output file**: JSON events captured during all E2E tests (tracee-output-*)"
+        echo "- **Pipeline log**: Complete stdout/stderr from the failed test (e2e-*.log)"
+        echo ""
+        echo "⚠️ **Note**: Artifacts are available for 7 days from upload"
+      shell: bash
+    - name: Cleanup E2E Test Artifacts
+      if: always()
+      run: |
+        # Clean up artifact files from runner filesystem
+        rm -f /tmp/tracee-log-* /tmp/tracee-output-* /tmp/e2e-*.log 2>/dev/null || true
+        echo "Cleaned up local artifact files from all E2E tests"
+      shell: bash
+

.github/actions/run-integration-tests/action.yaml

@@ -0,0 +1,24 @@
+name: Run Integration Tests
+description: |
+  Run integration test suite with full eBPF kernel integration.
+  Uploads coverage results to codecov.
+inputs:
+  codecov-token:
+    description: 'Codecov token for coverage upload'
+    required: true
+runs:
+  using: composite
+  steps:
+    - name: Run Integration Tests
+      run: |
+        env "PATH=$PATH" make test-integration
+      shell: bash
+    - name: Upload Integration Test Coverage
+      uses: codecov/codecov-action@af09b5e394c93991b95a5e7646aeb90c1917f78f # v5.5.1
+      with:
+        token: ${{ inputs.codecov-token }}
+        files: ./integration-coverage.txt
+        flags: integration
+        name: integration-tests
+        fail_ci_if_error: false
+

.github/actions/run-unit-tests/action.yaml

@@ -0,0 +1,29 @@
+name: Run Unit Tests
+description: |
+  Run comprehensive unit test suite including main unit tests and script tests.
+  Uploads coverage results to codecov.
+inputs:
+  codecov-token:
+    description: 'Codecov token for coverage upload'
+    required: true
+runs:
+  using: composite
+  steps:
+    - name: Run Full Unit Test Suite
+      run: |
+        # Run comprehensive test suite for all modules (main + types + common + api)
+        make test-unit
+      shell: sh
+    - name: Upload Unit Test Coverage
+      uses: codecov/codecov-action@af09b5e394c93991b95a5e7646aeb90c1917f78f # v5.5.1
+      with:
+        token: ${{ inputs.codecov-token }}
+        files: ./coverage.txt
+        flags: unit
+        name: unit-tests
+        fail_ci_if_error: false
+    - name: Run Scripts Unit Tests
+      run: |
+        make run-scripts-test-unit
+      shell: sh
+

.github/actions/setup-tracee-alpine/action.yaml

@@ -0,0 +1,15 @@
+name: Setup Tracee (Alpine)
+description: |
+  Setup Tracee development environment on Alpine Linux.
+  Fixes Git ownership and installs dependencies.
+  Note: Checkout must be done before calling this action.
+runs:
+  using: composite
+  steps:
+    - name: Fix Git ownership
+      run: git config --global --add safe.directory $GITHUB_WORKSPACE
+      shell: sh
+    - name: Install Dependencies
+      run: ./scripts/installation/install-deps-alpine.sh
+      shell: sh
+

.github/actions/setup-tracee-ubuntu/action.yaml

@@ -0,0 +1,22 @@
+name: Setup Tracee (Ubuntu)
+description: |
+  Setup Tracee development environment on Ubuntu.
+  Installs Git, fixes Git ownership, and installs dependencies.
+  Note: Checkout must be done before calling this action.
+runs:
+  using: composite
+  steps:
+    - name: Install Git
+      run: |
+        export DEBIAN_FRONTEND=noninteractive
+        apt-get update
+        apt-get install -y --no-install-recommends git-core ca-certificates
+        update-ca-certificates
+      shell: bash
+    - name: Fix Git ownership
+      run: git config --global --add safe.directory $GITHUB_WORKSPACE
+      shell: bash
+    - name: Install Dependencies
+      run: ./scripts/installation/install-deps-ubuntu.sh
+      shell: bash
+

.github/data/kernel-test-matrix.json

@@ -0,0 +1,142 @@
+[
+    {
+        "name": "GKE 5.4",
+        "ami": "0013845506cbdf2ca",
+        "arch": "x86_64"
+    },
+    {
+        "name": "GKE 5.10",
+        "ami": "049b1b3a4a5fdf9fd",
+        "arch": "x86_64"
+    },
+    {
+        "name": "GKE 5.15 x86_64",
+        "ami": "01f6d4f80f256ffe4",
+        "arch": "x86_64"
+    },
+    {
+        "name": "GKE 5.15 aarch64",
+        "ami": "079f308677600eebf",
+        "arch": "aarch64"
+    },
+    {
+        "name": "AMZN2 5.10 x86_64",
+        "ami": "05d03d50b6008ede7",
+        "arch": "x86_64"
+    },
+    {
+        "name": "AMZN2 5.10 aarch64",
+        "ami": "05e46d0a87c96bf69",
+        "arch": "aarch64"
+    },
+    {
+        "name": "RHEL8 4.18 x86_64",
+        "ami": "0e6e8bf2181db9d65",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Focal 5.4 x86_64",
+        "ami": "0c75089aa342ffa26",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Focal 5.13 x86_64",
+        "ami": "094d5310a281c8679",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Focal 5.13 aarch64",
+        "ami": "08f88e2a2bd1b72a7",
+        "arch": "aarch64"
+    },
+    {
+        "name": "Jammy 5.15 x86_64",
+        "ami": "0d01de8f7b26afe02",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Jammy 5.15 aarch64",
+        "ami": "08e91aa07134e6a36",
+        "arch": "aarch64"
+    },
+    {
+        "name": "Jammy 5.19 x86_64",
+        "ami": "02691308713b4cec2",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Jammy 5.19 aarch64",
+        "ami": "046579f8e52acb104",
+        "arch": "aarch64"
+    },
+    {
+        "name": "Lunar 6.2 x86_64",
+        "ami": "034e03e1bdb7c205f",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Lunar 6.2 aarch64",
+        "ami": "04b03463ee4e32182",
+        "arch": "aarch64"
+    },
+    {
+        "name": "Mantic 6.5 x86_64",
+        "ami": "0a44ad46e5c42e499",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Mantic 6.5 aarch64",
+        "ami": "0387f77c4820c98db",
+        "arch": "aarch64"
+    },
+    {
+        "name": "Mantic 6.6 x86_64",
+        "ami": "05b5ac8f6c43b3ca5",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Mantic 6.6 aarch64",
+        "ami": "05c9d6cd9343f0a43",
+        "arch": "aarch64"
+    },
+    {
+        "name": "Noble 6.8 x86_64",
+        "ami": "0cc63426ae75d47c8",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Noble 6.8 aarch64",
+        "ami": "0f5260685b3ec2293",
+        "arch": "aarch64"
+    },
+    {
+        "name": "Noble 6.10 x86_64",
+        "ami": "0ae23eabda70efc60",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Noble 6.10 aarch64",
+        "ami": "01ce0f71400b5ff38",
+        "arch": "aarch64"
+    },
+    {
+        "name": "Noble 6.11 x86_64",
+        "ami": "0ce1f88aa63091921",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Noble 6.11 aarch64",
+        "ami": "0123508488affb578",
+        "arch": "aarch64"
+    },
+    {
+        "name": "Noble 6.12 x86_64",
+        "ami": "0e38f3caba1b4234d",
+        "arch": "x86_64"
+    },
+    {
+        "name": "Noble 6.12 aarch64",
+        "ami": "0547f429681dc1f2a",
+        "arch": "aarch64"
+    }
+]