2019-04-01 09:38:33 +00:00
|
|
|
---
|
2016-12-10 02:23:37 +00:00
|
|
|
stages:
|
|
|
|
- unit-tests
|
2018-02-12 15:04:26 +00:00
|
|
|
- moderator
|
|
|
|
- deploy-part1
|
|
|
|
- deploy-part2
|
|
|
|
- deploy-special
|
2016-12-10 02:23:37 +00:00
|
|
|
|
|
|
|
variables:
|
|
|
|
FAILFASTCI_NAMESPACE: 'kargo-ci'
|
2018-11-28 14:13:28 +00:00
|
|
|
GITLAB_REPOSITORY: 'kargo-ci/kubernetes-sigs-kubespray'
|
2019-04-01 09:38:33 +00:00
|
|
|
# DOCKER_HOST: tcp://localhost:2375
|
2016-12-13 22:01:37 +00:00
|
|
|
ANSIBLE_FORCE_COLOR: "true"
|
2018-02-12 10:35:37 +00:00
|
|
|
MAGIC: "ci check this"
|
|
|
|
TEST_ID: "$CI_PIPELINE_ID-$CI_BUILD_ID"
|
|
|
|
CI_TEST_VARS: "./tests/files/${CI_JOB_NAME}.yml"
|
|
|
|
GS_ACCESS_KEY_ID: $GS_KEY
|
|
|
|
GS_SECRET_ACCESS_KEY: $GS_SECRET
|
|
|
|
CONTAINER_ENGINE: docker
|
2018-02-12 14:32:40 +00:00
|
|
|
SSH_USER: root
|
2018-02-12 10:35:37 +00:00
|
|
|
GCE_PREEMPTIBLE: "false"
|
|
|
|
ANSIBLE_KEEP_REMOTE_FILES: "1"
|
|
|
|
ANSIBLE_CONFIG: ./tests/ansible.cfg
|
2018-04-10 13:02:33 +00:00
|
|
|
ANSIBLE_INVENTORY: ./inventory/sample/${CI_JOB_NAME}-${BUILD_NUMBER}.ini
|
2018-02-12 10:35:37 +00:00
|
|
|
IDEMPOT_CHECK: "false"
|
|
|
|
RESET_CHECK: "false"
|
|
|
|
UPGRADE_TEST: "false"
|
2018-02-12 15:04:26 +00:00
|
|
|
LOG_LEVEL: "-vv"
|
2016-12-10 02:23:37 +00:00
|
|
|
|
2016-12-13 22:01:37 +00:00
|
|
|
# asia-east1-a
|
|
|
|
# asia-northeast1-a
|
|
|
|
# europe-west1-b
|
|
|
|
# us-central1-a
|
|
|
|
# us-east1-b
|
|
|
|
# us-west1-a
|
2016-12-10 02:23:37 +00:00
|
|
|
|
|
|
|
before_script:
|
2019-04-01 09:38:33 +00:00
|
|
|
- /usr/bin/python -m pip install -r tests/requirements.txt
|
|
|
|
- mkdir -p /.ssh
|
2016-12-10 02:23:37 +00:00
|
|
|
|
|
|
|
.job: &job
|
|
|
|
tags:
|
|
|
|
- kubernetes
|
|
|
|
- docker
|
2019-04-09 12:57:06 +00:00
|
|
|
image: quay.io/kubespray/kubespray:v2.9.0
|
2016-12-10 02:23:37 +00:00
|
|
|
|
|
|
|
.docker_service: &docker_service
|
|
|
|
services:
|
2019-04-01 09:38:33 +00:00
|
|
|
- docker:dind
|
2016-12-10 02:23:37 +00:00
|
|
|
|
|
|
|
.create_cluster: &create_cluster
|
|
|
|
<<: *job
|
|
|
|
<<: *docker_service
|
|
|
|
|
2018-02-12 10:35:37 +00:00
|
|
|
.testcases: &testcases
|
2016-12-10 02:23:37 +00:00
|
|
|
<<: *job
|
2016-12-13 22:01:37 +00:00
|
|
|
<<: *docker_service
|
|
|
|
cache:
|
|
|
|
key: "$CI_BUILD_REF_NAME"
|
|
|
|
paths:
|
|
|
|
- downloads/
|
|
|
|
- $HOME/.cache
|
|
|
|
before_script:
|
|
|
|
- docker info
|
2018-02-12 14:32:40 +00:00
|
|
|
- /usr/bin/python -m pip install -r requirements.txt
|
|
|
|
- /usr/bin/python -m pip install -r tests/requirements.txt
|
2016-12-13 22:01:37 +00:00
|
|
|
- mkdir -p /.ssh
|
|
|
|
- mkdir -p $HOME/.ssh
|
|
|
|
- ansible-playbook --version
|
2017-10-18 16:28:54 +00:00
|
|
|
- export PYPATH=$([[ ! "$CI_JOB_NAME" =~ "coreos" ]] && echo /usr/bin/python || echo /opt/bin/python)
|
|
|
|
- echo "CI_JOB_NAME is $CI_JOB_NAME"
|
|
|
|
- echo "PYPATH is $PYPATH"
|
2016-12-10 02:23:37 +00:00
|
|
|
script:
|
2016-12-13 22:01:37 +00:00
|
|
|
- pwd
|
|
|
|
- ls
|
|
|
|
- echo ${PWD}
|
2017-06-26 18:24:52 +00:00
|
|
|
- echo "${STARTUP_SCRIPT}"
|
2018-02-12 10:35:37 +00:00
|
|
|
- cd tests && make create-${CI_PLATFORM} -s ; cd -
|
2016-12-10 02:23:37 +00:00
|
|
|
|
2017-02-03 15:50:58 +00:00
|
|
|
# Check out latest tag if testing upgrade
|
2019-02-14 13:09:56 +00:00
|
|
|
- test "${UPGRADE_TEST}" != "false" && git fetch --all && git checkout $(git describe --tags $(git rev-list --tags --max-count=1))
|
2017-10-25 10:45:54 +00:00
|
|
|
# Checkout the CI vars file so it is available
|
|
|
|
- test "${UPGRADE_TEST}" != "false" && git checkout "${CI_BUILD_REF}" tests/files/${CI_JOB_NAME}.yml
|
2018-11-28 08:15:25 +00:00
|
|
|
# Workaround https://github.com/kubernetes-sigs/kubespray/issues/2021
|
2017-12-25 08:57:45 +00:00
|
|
|
- 'sh -c "echo ignore_assert_errors: true | tee -a tests/files/${CI_JOB_NAME}.yml"'
|
2017-02-03 15:50:58 +00:00
|
|
|
|
|
|
|
|
2016-12-13 22:01:37 +00:00
|
|
|
# Create cluster
|
|
|
|
- >
|
2017-10-18 16:28:54 +00:00
|
|
|
ansible-playbook
|
2018-04-10 13:02:33 +00:00
|
|
|
-i ${ANSIBLE_INVENTORY}
|
2017-10-18 16:28:54 +00:00
|
|
|
-b --become-user=root
|
|
|
|
--private-key=${HOME}/.ssh/id_rsa
|
|
|
|
-u $SSH_USER
|
2017-01-18 02:31:59 +00:00
|
|
|
${SSH_ARGS}
|
|
|
|
${LOG_LEVEL}
|
2017-10-18 16:28:54 +00:00
|
|
|
-e @${CI_TEST_VARS}
|
2017-06-21 08:37:13 +00:00
|
|
|
-e ansible_ssh_user=${SSH_USER}
|
2017-01-18 02:31:59 +00:00
|
|
|
-e local_release_dir=${PWD}/downloads
|
2017-02-13 11:13:28 +00:00
|
|
|
--limit "all:!fake_hosts"
|
2016-12-13 22:01:37 +00:00
|
|
|
cluster.yml
|
2016-12-10 02:23:37 +00:00
|
|
|
|
2017-02-03 15:50:58 +00:00
|
|
|
# Repeat deployment if testing upgrade
|
|
|
|
- >
|
2017-06-21 08:37:13 +00:00
|
|
|
if [ "${UPGRADE_TEST}" != "false" ]; then
|
2017-02-14 16:08:44 +00:00
|
|
|
test "${UPGRADE_TEST}" == "basic" && PLAYBOOK="cluster.yml";
|
|
|
|
test "${UPGRADE_TEST}" == "graceful" && PLAYBOOK="upgrade-cluster.yml";
|
2017-06-21 08:37:13 +00:00
|
|
|
git checkout "${CI_BUILD_REF}";
|
2017-10-18 16:28:54 +00:00
|
|
|
ansible-playbook
|
2018-04-10 13:02:33 +00:00
|
|
|
-i ${ANSIBLE_INVENTORY}
|
2017-10-18 16:28:54 +00:00
|
|
|
-b --become-user=root
|
|
|
|
--private-key=${HOME}/.ssh/id_rsa
|
|
|
|
-u $SSH_USER
|
2017-06-21 08:37:13 +00:00
|
|
|
${SSH_ARGS}
|
|
|
|
${LOG_LEVEL}
|
2017-10-18 16:28:54 +00:00
|
|
|
-e @${CI_TEST_VARS}
|
2017-06-21 08:37:13 +00:00
|
|
|
-e ansible_ssh_user=${SSH_USER}
|
|
|
|
-e local_release_dir=${PWD}/downloads
|
|
|
|
--limit "all:!fake_hosts"
|
|
|
|
$PLAYBOOK;
|
2017-02-03 15:50:58 +00:00
|
|
|
fi
|
2016-12-13 22:01:37 +00:00
|
|
|
|
|
|
|
# Tests Cases
|
|
|
|
## Test Master API
|
2018-12-06 10:33:38 +00:00
|
|
|
- ansible-playbook -i ${ANSIBLE_INVENTORY} -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/010_check-apiserver.yml $LOG_LEVEL
|
2016-12-13 22:01:37 +00:00
|
|
|
|
|
|
|
## Ping the between 2 pod
|
2018-04-10 13:02:33 +00:00
|
|
|
- ansible-playbook -i ${ANSIBLE_INVENTORY} -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/030_check-network.yml $LOG_LEVEL
|
2016-12-13 22:01:37 +00:00
|
|
|
|
2016-12-14 16:00:38 +00:00
|
|
|
## Advanced DNS checks
|
2018-04-10 13:02:33 +00:00
|
|
|
- ansible-playbook -i ${ANSIBLE_INVENTORY} -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/040_check-network-adv.yml $LOG_LEVEL
|
2016-12-14 16:00:38 +00:00
|
|
|
|
2017-01-13 11:19:22 +00:00
|
|
|
## Idempotency checks 1/5 (repeat deployment)
|
|
|
|
- >
|
|
|
|
if [ "${IDEMPOT_CHECK}" = "true" ]; then
|
2017-10-18 16:28:54 +00:00
|
|
|
ansible-playbook
|
2018-04-10 13:02:33 +00:00
|
|
|
-i ${ANSIBLE_INVENTORY}
|
2017-10-18 16:28:54 +00:00
|
|
|
-b --become-user=root
|
2017-06-21 08:37:13 +00:00
|
|
|
--private-key=${HOME}/.ssh/id_rsa
|
2017-10-18 16:28:54 +00:00
|
|
|
-u $SSH_USER
|
|
|
|
${SSH_ARGS}
|
|
|
|
${LOG_LEVEL}
|
|
|
|
-e @${CI_TEST_VARS}
|
2017-06-21 08:37:13 +00:00
|
|
|
-e ansible_python_interpreter=${PYPATH}
|
2017-09-13 18:00:51 +00:00
|
|
|
-e local_release_dir=${PWD}/downloads
|
2017-06-21 08:37:13 +00:00
|
|
|
--limit "all:!fake_hosts"
|
2017-01-13 11:19:22 +00:00
|
|
|
cluster.yml;
|
|
|
|
fi
|
|
|
|
|
|
|
|
## Idempotency checks 2/5 (Advanced DNS checks)
|
|
|
|
- >
|
|
|
|
if [ "${IDEMPOT_CHECK}" = "true" ]; then
|
2017-10-18 16:28:54 +00:00
|
|
|
ansible-playbook
|
2018-04-10 13:02:33 +00:00
|
|
|
-i ${ANSIBLE_INVENTORY}
|
2017-10-18 16:28:54 +00:00
|
|
|
-b --become-user=root
|
|
|
|
--private-key=${HOME}/.ssh/id_rsa
|
|
|
|
-u $SSH_USER
|
|
|
|
${SSH_ARGS}
|
|
|
|
${LOG_LEVEL}
|
|
|
|
-e @${CI_TEST_VARS}
|
2017-06-21 08:37:13 +00:00
|
|
|
--limit "all:!fake_hosts"
|
2017-01-13 11:19:22 +00:00
|
|
|
tests/testcases/040_check-network-adv.yml $LOG_LEVEL;
|
|
|
|
fi
|
|
|
|
|
|
|
|
## Idempotency checks 3/5 (reset deployment)
|
|
|
|
- >
|
2017-10-01 09:42:33 +00:00
|
|
|
if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
|
2017-10-18 16:28:54 +00:00
|
|
|
ansible-playbook
|
2018-04-10 13:02:33 +00:00
|
|
|
-i ${ANSIBLE_INVENTORY}
|
2017-10-18 16:28:54 +00:00
|
|
|
-b --become-user=root
|
2017-06-21 08:37:13 +00:00
|
|
|
--private-key=${HOME}/.ssh/id_rsa
|
2017-10-18 16:28:54 +00:00
|
|
|
-u $SSH_USER
|
|
|
|
${SSH_ARGS}
|
|
|
|
${LOG_LEVEL}
|
|
|
|
-e @${CI_TEST_VARS}
|
2017-06-21 08:37:13 +00:00
|
|
|
-e ansible_python_interpreter=${PYPATH}
|
|
|
|
-e reset_confirmation=yes
|
2017-02-13 11:13:28 +00:00
|
|
|
--limit "all:!fake_hosts"
|
2017-01-13 11:19:22 +00:00
|
|
|
reset.yml;
|
|
|
|
fi
|
|
|
|
|
|
|
|
## Idempotency checks 4/5 (redeploy after reset)
|
|
|
|
- >
|
2017-10-01 09:42:33 +00:00
|
|
|
if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
|
2017-10-18 16:28:54 +00:00
|
|
|
ansible-playbook
|
2018-04-10 13:02:33 +00:00
|
|
|
-i ${ANSIBLE_INVENTORY}
|
2017-10-18 16:28:54 +00:00
|
|
|
-b --become-user=root
|
2017-06-21 08:37:13 +00:00
|
|
|
--private-key=${HOME}/.ssh/id_rsa
|
2017-10-18 16:28:54 +00:00
|
|
|
-u $SSH_USER
|
|
|
|
${SSH_ARGS}
|
|
|
|
${LOG_LEVEL}
|
|
|
|
-e @${CI_TEST_VARS}
|
2017-06-21 08:37:13 +00:00
|
|
|
-e ansible_python_interpreter=${PYPATH}
|
2017-09-13 18:00:51 +00:00
|
|
|
-e local_release_dir=${PWD}/downloads
|
2017-06-21 08:37:13 +00:00
|
|
|
--limit "all:!fake_hosts"
|
2017-01-13 11:19:22 +00:00
|
|
|
cluster.yml;
|
|
|
|
fi
|
|
|
|
|
|
|
|
## Idempotency checks 5/5 (Advanced DNS checks)
|
|
|
|
- >
|
2017-10-01 09:42:33 +00:00
|
|
|
if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
|
2018-04-10 13:02:33 +00:00
|
|
|
ansible-playbook -i ${ANSIBLE_INVENTORY} -e ansible_python_interpreter=${PYPATH}
|
2017-06-21 08:37:13 +00:00
|
|
|
-u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root
|
|
|
|
--limit "all:!fake_hosts"
|
2017-01-13 11:19:22 +00:00
|
|
|
tests/testcases/040_check-network-adv.yml $LOG_LEVEL;
|
|
|
|
fi
|
|
|
|
|
2016-12-13 22:01:37 +00:00
|
|
|
after_script:
|
2018-02-12 10:35:37 +00:00
|
|
|
- cd tests && make delete-${CI_PLATFORM} -s ; cd -
|
2016-12-13 22:01:37 +00:00
|
|
|
|
2019-04-16 12:35:05 +00:00
|
|
|
# For failfast, at least 1 job must be defined in .gitlab-ci.yml
|
2018-02-12 15:04:26 +00:00
|
|
|
# Premoderated with manual actions
|
|
|
|
ci-authorized:
|
2019-04-16 12:35:05 +00:00
|
|
|
extends: .job
|
2018-02-12 15:04:26 +00:00
|
|
|
stage: moderator
|
|
|
|
before_script:
|
|
|
|
- apt-get -y install jq
|
|
|
|
script:
|
|
|
|
- /bin/sh scripts/premoderator.sh
|
|
|
|
except: ['triggers', 'master']
|
|
|
|
|
2019-04-16 12:35:05 +00:00
|
|
|
include:
|
|
|
|
- .gitlab-ci/lint.yml
|
|
|
|
- .gitlab-ci/gce.yml
|
|
|
|
- .gitlab-ci/digital-ocean.yml
|
|
|
|
- .gitlab-ci/terraform.yml
|