mirror of https://github.com/fluxcd/flux2.git
You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
349 lines
10 KiB
Go
349 lines
10 KiB
Go
/*
|
|
Copyright 2023 The Flux authors
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package integration
|
|
|
|
import (
|
|
"context"
|
|
"flag"
|
|
"fmt"
|
|
"log"
|
|
"math/rand"
|
|
"os"
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/hashicorp/terraform-exec/tfexec"
|
|
tfjson "github.com/hashicorp/terraform-json"
|
|
utilruntime "k8s.io/apimachinery/pkg/util/runtime"
|
|
"k8s.io/client-go/kubernetes/scheme"
|
|
|
|
helmv2 "github.com/fluxcd/helm-controller/api/v2"
|
|
automationv1 "github.com/fluxcd/image-automation-controller/api/v1beta2"
|
|
reflectorv1 "github.com/fluxcd/image-reflector-controller/api/v1beta2"
|
|
kustomizev1 "github.com/fluxcd/kustomize-controller/api/v1"
|
|
notiv1beta3 "github.com/fluxcd/notification-controller/api/v1beta3"
|
|
"github.com/fluxcd/pkg/git"
|
|
sourcev1 "github.com/fluxcd/source-controller/api/v1"
|
|
sourcev1beta2 "github.com/fluxcd/source-controller/api/v1beta2"
|
|
"github.com/fluxcd/test-infra/tftestenv"
|
|
)
|
|
|
|
const (
|
|
// azureTerraformPath is the path to the folder containing the
|
|
// terraform files for azure infra
|
|
azureTerraformPath = "./terraform/azure"
|
|
// gcpTerraformPath is the path to the folder containing the
|
|
// terraform files for gcp infra
|
|
gcpTerraformPath = "./terraform/gcp"
|
|
|
|
// kubeconfigPath is the path of the file containing the kubeconfig
|
|
kubeconfigPath = "./build/kubeconfig"
|
|
|
|
// fluxBin is the path to the flux binary.
|
|
fluxBin = "./build/flux"
|
|
|
|
// default branch to be used when cloning git repositories
|
|
defaultBranch = "main"
|
|
|
|
// envVarGitRepoSSHPath is the environment variable that contains the path
|
|
// to the ssh key for the git repository
|
|
envVarGitRepoSSHPath = "GITREPO_SSH_PATH"
|
|
// envVarGitRepoSSHPubPath is the environment variable that contains the path
|
|
// to the ssh public key for the git repository
|
|
envVarGitRepoSSHPubPath = "GITREPO_SSH_PUB_PATH"
|
|
)
|
|
|
|
var (
|
|
// supportedProviders are the providers supported by the test.
|
|
supportedProviders = []string{"azure", "gcp"}
|
|
|
|
// cfg is a struct containing different variables needed for the test.
|
|
cfg *testConfig
|
|
|
|
// infraOpts are the options for running the terraform environment
|
|
infraOpts tftestenv.Options
|
|
|
|
// versions to tag and push for the podinfo image
|
|
oldPodinfoVersion = "6.0.0"
|
|
newPodinfoVersion = "6.0.1"
|
|
podinfoTags = []string{oldPodinfoVersion, newPodinfoVersion}
|
|
|
|
// testEnv is the test environment. It contains test infrastructure and
|
|
// kubernetes client of the created cluster.
|
|
testEnv *tftestenv.Environment
|
|
|
|
// testTimeout is used as a timeout when testing a condition with gomega's eventually
|
|
testTimeout = 60 * time.Second
|
|
// testInterval is used as an interval when testing a condition with gomega's eventually
|
|
testInterval = 5 * time.Second
|
|
|
|
random *rand.Rand
|
|
|
|
letterRunes = []rune("abcdefghijklmnopqrstuvwxyz1234567890")
|
|
|
|
localImg = "ghcr.io/stefanprodan/podinfo"
|
|
)
|
|
|
|
// testConfig hold different variable that will be needed by the different test functions.
|
|
type testConfig struct {
|
|
// authentication info for git repositories
|
|
gitPat string
|
|
gitUsername string
|
|
gitPrivateKey string
|
|
gitPublicKey string
|
|
defaultGitTransport git.TransportType
|
|
defaultAuthOpts *git.AuthOptions
|
|
knownHosts string
|
|
fleetInfraRepository gitUrl
|
|
applicationRepository gitUrl
|
|
|
|
// sopsArgs is the cloud provider dependent argument to pass to the sops cli
|
|
sopsArgs string
|
|
|
|
// notificationCfg contains the values needed to properly set up notification on the
|
|
// cluster.
|
|
notificationCfg notificationConfig
|
|
|
|
// sopsSecretData is the secret's data for the sops decryption
|
|
sopsSecretData map[string]string
|
|
// kustomizationYaml is the content of the kustomization.yaml for customizing the Flux manifests
|
|
kustomizationYaml string
|
|
|
|
// testRegistry is the registry of the cloud provider.
|
|
testRegistry string
|
|
}
|
|
|
|
// notificationConfig contains various fields for configuring
|
|
// providers and testing notifications for the different
|
|
// cloud providers.
|
|
type notificationConfig struct {
|
|
providerChannel string
|
|
providerType string
|
|
providerAddress string
|
|
secret map[string]string
|
|
notificationChan chan []byte
|
|
closeChan func()
|
|
}
|
|
|
|
// gitUrl contains the http/ssh urls for the created git repositories
|
|
// on the various cloud providers.
|
|
type gitUrl struct {
|
|
http string
|
|
ssh string
|
|
}
|
|
|
|
// getTestConfig gets the test configuration that contains different variables for running the tests
|
|
type getTestConfig func(ctx context.Context, output map[string]*tfjson.StateOutput) (*testConfig, error)
|
|
|
|
// registryLoginFunc is used to perform registry login against a provider based
|
|
// on the terraform state output values. It returns the test registry
|
|
// to test against, read from the terraform state output.
|
|
type registryLoginFunc func(ctx context.Context, output map[string]*tfjson.StateOutput) (string, error)
|
|
|
|
// providerConfig contains the test configurations for the different cloud providers
|
|
type providerConfig struct {
|
|
terraformPath string
|
|
createKubeconfig tftestenv.CreateKubeconfig
|
|
getTestConfig getTestConfig
|
|
// registryLogin is used to perform registry login.
|
|
registryLogin registryLoginFunc
|
|
}
|
|
|
|
func init() {
|
|
utilruntime.Must(sourcev1.AddToScheme(scheme.Scheme))
|
|
utilruntime.Must(sourcev1beta2.AddToScheme(scheme.Scheme))
|
|
utilruntime.Must(kustomizev1.AddToScheme(scheme.Scheme))
|
|
utilruntime.Must(helmv2.AddToScheme(scheme.Scheme))
|
|
utilruntime.Must(reflectorv1.AddToScheme(scheme.Scheme))
|
|
utilruntime.Must(automationv1.AddToScheme(scheme.Scheme))
|
|
utilruntime.Must(notiv1beta3.AddToScheme(scheme.Scheme))
|
|
|
|
random = rand.New(rand.NewSource(time.Now().UnixNano()))
|
|
}
|
|
|
|
func TestMain(m *testing.M) {
|
|
ctx := context.TODO()
|
|
|
|
infraOpts.Bindflags(flag.CommandLine)
|
|
flag.Parse()
|
|
|
|
// Validate the provider.
|
|
if infraOpts.Provider == "" {
|
|
log.Fatalf("-provider flag must be set to one of %v", supportedProviders)
|
|
}
|
|
var supported bool
|
|
for _, p := range supportedProviders {
|
|
if p == infraOpts.Provider {
|
|
supported = true
|
|
break
|
|
}
|
|
}
|
|
if !supported {
|
|
log.Fatalf("Unsupported provider %q, must be one of %v", infraOpts.Provider, supportedProviders)
|
|
}
|
|
// get provider specific configuration
|
|
providerCfg := getProviderConfig(infraOpts.Provider)
|
|
if providerCfg == nil {
|
|
log.Fatalf("Failed to get provider config for %q", infraOpts.Provider)
|
|
}
|
|
|
|
// Run destroy-only mode if enabled.
|
|
if infraOpts.DestroyOnly {
|
|
log.Println("Running in destroy-only mode...")
|
|
envOpts := []tftestenv.EnvironmentOption{
|
|
tftestenv.WithVerbose(infraOpts.Verbose),
|
|
// Ignore any state lock in destroy-only mode.
|
|
tftestenv.WithTfDestroyOptions(tfexec.Lock(false)),
|
|
}
|
|
if err := tftestenv.Destroy(ctx, providerCfg.terraformPath, envOpts...); err != nil {
|
|
panic(err)
|
|
}
|
|
os.Exit(0)
|
|
}
|
|
|
|
// Initialize with non-zero exit code to indicate failure by default unless
|
|
// set by a successful test run.
|
|
exitCode := 1
|
|
|
|
// Setup Terraform binary and init state
|
|
log.Printf("Setting up %s e2e test infrastructure", infraOpts.Provider)
|
|
envOpts := []tftestenv.EnvironmentOption{
|
|
tftestenv.WithExisting(infraOpts.Existing),
|
|
tftestenv.WithRetain(infraOpts.Retain),
|
|
tftestenv.WithVerbose(infraOpts.Verbose),
|
|
tftestenv.WithCreateKubeconfig(providerCfg.createKubeconfig),
|
|
}
|
|
|
|
// Create terraform infrastructure
|
|
var err error
|
|
testEnv, err = tftestenv.New(ctx, scheme.Scheme, providerCfg.terraformPath, kubeconfigPath, envOpts...)
|
|
if err != nil {
|
|
log.Fatalf("Failed to provision the test infrastructure: %v", err)
|
|
}
|
|
|
|
defer func() {
|
|
if err := testEnv.Stop(ctx); err != nil {
|
|
log.Printf("Failed to stop environment: %v", err)
|
|
exitCode = 1
|
|
}
|
|
|
|
// Log the panic error before exit to surface the cause of panic.
|
|
if err := recover(); err != nil {
|
|
log.Printf("panic: %v", err)
|
|
}
|
|
os.Exit(exitCode)
|
|
}()
|
|
|
|
// get terrraform infrastructure
|
|
outputs, err := testEnv.StateOutput(ctx)
|
|
if err != nil {
|
|
panic(fmt.Sprintf("Failed to get the terraform state output: %v", err))
|
|
}
|
|
|
|
// get provider specific test configuration
|
|
cfg, err = providerCfg.getTestConfig(ctx, outputs)
|
|
if err != nil {
|
|
panic(fmt.Sprintf("Failed to get test config: %v", err))
|
|
}
|
|
|
|
regUrl, err := providerCfg.registryLogin(ctx, outputs)
|
|
if err != nil {
|
|
panic(fmt.Sprintf("Failed to log into registry: %v", err))
|
|
}
|
|
|
|
cfg.testRegistry = regUrl
|
|
err = pushTestImages(ctx, cfg.testRegistry, podinfoTags)
|
|
if err != nil {
|
|
panic(fmt.Sprintf("Failed to push test images: %v", err))
|
|
}
|
|
|
|
tmpDir, err := os.MkdirTemp("", "*-flux-test")
|
|
if err != nil {
|
|
panic(fmt.Sprintf("Failed to create tmp dir: %v", err))
|
|
}
|
|
defer func() {
|
|
err := os.RemoveAll(tmpDir)
|
|
if err != nil {
|
|
log.Printf("error removing tmp dir: %s\n", err)
|
|
}
|
|
}()
|
|
|
|
log.Println("Installing flux")
|
|
err = installFlux(ctx, tmpDir, kubeconfigPath)
|
|
defer func() {
|
|
log.Println("Uninstalling Flux")
|
|
if err := uninstallFlux(ctx); err != nil {
|
|
log.Printf("Failed to uninstall: %v", err)
|
|
}
|
|
}()
|
|
if err != nil {
|
|
panic(fmt.Sprintf("error installing Flux: %v", err))
|
|
}
|
|
|
|
// On check failure, log and continue. Controllers may be ready by the time
|
|
// tests run.
|
|
log.Println("Running flux check")
|
|
if err := runFluxCheck(ctx); err != nil {
|
|
log.Printf("flux check failed: %v\n", err)
|
|
}
|
|
|
|
log.Println("Running e2e tests")
|
|
exitCode = m.Run()
|
|
}
|
|
|
|
func getProviderConfig(provider string) *providerConfig {
|
|
switch provider {
|
|
case "azure":
|
|
return &providerConfig{
|
|
terraformPath: azureTerraformPath,
|
|
createKubeconfig: createKubeConfigAKS,
|
|
getTestConfig: getTestConfigAKS,
|
|
registryLogin: registryLoginACR,
|
|
}
|
|
case "gcp":
|
|
return &providerConfig{
|
|
terraformPath: gcpTerraformPath,
|
|
createKubeconfig: createKubeConfigGKE,
|
|
getTestConfig: getTestConfigGKE,
|
|
registryLogin: registryLoginGCR,
|
|
}
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// pushTestImages pushes the local podinfo image to the remote repository specified
|
|
// by repoURL. The image should be existing on the machine.
|
|
func pushTestImages(ctx context.Context, repoURL string, tags []string) error {
|
|
for _, tag := range tags {
|
|
remoteImg := fmt.Sprintf("%s/podinfo:%s", repoURL, tag)
|
|
err := tftestenv.RetagAndPush(ctx, fmt.Sprintf("%s:%s", localImg, tag), remoteImg)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func randStringRunes(n int) string {
|
|
b := make([]rune, n)
|
|
for i := range b {
|
|
b[i] = letterRunes[random.Intn(len(letterRunes))]
|
|
}
|
|
return string(b)
|
|
}
|