Azure
/
azure-container-networking
зеркало из https://github.com/Azure/azure-container-networking.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
azure-container-networking/.pipelines/npm/npm-conformance-tests.yaml

561 строка
23 KiB
YAML
Исходник Обычный вид История

ci: Update triggers for NPM pipelines (#2867) ci: add triggers to npm pipelines
2024-07-22 22:25:45 +03:00
pr:
branches:
include:
- master
- release/*
paths:
include:
- npm/*
- .pipelines/npm/*
[ci] Add NPM Conformance Test Pipeline (#792) * [ci] Add NPM conformance pipeline
2021-02-19 21:52:21 +03:00
trigger:
ci: Update triggers for NPM pipelines (#2867) ci: add triggers to npm pipelines
2024-07-22 22:25:45 +03:00
branches:
include:
- master
tags:
include:
- "*"
[ci] Add NPM Conformance Test Pipeline (#792) * [ci] Add NPM conformance pipeline
2021-02-19 21:52:21 +03:00
variables:
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
- name: VNET_NAME
value: npm-vnet
- name: NUM_PARALLEL_JOBS_FOR_STRESS_TEST
value: "3"
[ci] Add NPM Conformance Test Pipeline (#792) * [ci] Add NPM conformance pipeline
2021-02-19 21:52:21 +03:00
jobs:
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
- job: setup
displayName: "Configure Test Environment"
pool:
name: $(BUILD_POOL_NAME_DEFAULT)
demands:
- agent.os -equals Linux
- Role -equals Build
steps:
- checkout: self
- script: |
go version
go env
which go
echo $PATH
mkdir -p '$(GOBIN)'
mkdir -p '$(GOPATH)/pkg'
BUILD_NUMBER=$(Build.BuildNumber)
test: [NPM] fail cyclonus if unfinished (#1681) * prevent chance of overlap in resource groups * print npm pod state and capture previous logs * fail cyclonus if it doesn't complete * redirect to /dev/null * remove incorrect use of --kubeconfig
2022-10-31 21:00:42 +03:00
# format: npm-<year>-<month>-<day>-<minute>-<second>
RG=e2e-$(echo "npm-`date "+%Y-%m-%d-%M-%S"`")
Pipeline support for Go submodules versioned independently of root repo (#1533) * use submodule specific tags Signed-off-by: Evan Baker <rbtr@users.noreply.github.com> * support separate go submodule versions Signed-off-by: Evan Baker <rbtr@users.noreply.github.com> * move version and tag responsibilities to the makefile Signed-off-by: Evan Baker <rbtr@users.noreply.github.com> * update integration tests to use component tags Signed-off-by: Evan Baker <rbtr@users.noreply.github.com> Signed-off-by: Evan Baker <rbtr@users.noreply.github.com>
2022-09-01 21:35:01 +03:00
TAG=$(make npm-version)
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
echo "Resource group: $RG"
echo "Image tag: $TAG"
echo "##vso[task.setvariable variable=RESOURCE_GROUP;isOutput=true;]$RG"
echo "##vso[task.setvariable variable=TAG;isOutput=true;]$TAG"
name: "EnvironmentalVariables"
displayName: "Set environmental variables"
condition: always()
- job: containerize
dependsOn: [setup]
displayName: Build Images
variables:
TAG: $[ dependencies.setup.outputs['EnvironmentalVariables.TAG'] ]
pool:
name: "$(BUILD_POOL_NAME_DEFAULT)"
strategy:
matrix:
npm_linux_amd64:
arch: amd64
Add multiplat Windows 2019 and 2022 image support to tooling and pipelines, use for CNS/NPM (#1820) * build: add ws2019 cns image to build pipeline * add windows2019 build pool * fix: npm pipelines * fix: npm pipelines * update multiplat build process for winver flavors * optional buildx push for npm cyclonus --------- Signed-off-by: Evan Baker <rbtr@users.noreply.github.com> Co-authored-by: Matthew Long <61910737+thatmattlong@users.noreply.github.com> Co-authored-by: Matthew Long <Matthew.Long@microsoft.com>
2023-03-01 03:25:00 +03:00
name: npm
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
os: linux
Add multiplat Windows 2019 and 2022 image support to tooling and pipelines, use for CNS/NPM (#1820) * build: add ws2019 cns image to build pipeline * add windows2019 build pool * fix: npm pipelines * fix: npm pipelines * update multiplat build process for winver flavors * optional buildx push for npm cyclonus --------- Signed-off-by: Evan Baker <rbtr@users.noreply.github.com> Co-authored-by: Matthew Long <61910737+thatmattlong@users.noreply.github.com> Co-authored-by: Matthew Long <Matthew.Long@microsoft.com>
2023-03-01 03:25:00 +03:00
npm_windows2022_amd64:
arch: amd64
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
name: npm
Add multiplat Windows 2019 and 2022 image support to tooling and pipelines, use for CNS/NPM (#1820) * build: add ws2019 cns image to build pipeline * add windows2019 build pool * fix: npm pipelines * fix: npm pipelines * update multiplat build process for winver flavors * optional buildx push for npm cyclonus --------- Signed-off-by: Evan Baker <rbtr@users.noreply.github.com> Co-authored-by: Matthew Long <61910737+thatmattlong@users.noreply.github.com> Co-authored-by: Matthew Long <Matthew.Long@microsoft.com>
2023-03-01 03:25:00 +03:00
os: windows
os_version: ltsc2022
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
steps:
- template: ../containers/container-template.yaml
parameters:
arch: $(arch)
name: $(name)
Add multiplat Windows 2019 and 2022 image support to tooling and pipelines, use for CNS/NPM (#1820) * build: add ws2019 cns image to build pipeline * add windows2019 build pool * fix: npm pipelines * fix: npm pipelines * update multiplat build process for winver flavors * optional buildx push for npm cyclonus --------- Signed-off-by: Evan Baker <rbtr@users.noreply.github.com> Co-authored-by: Matthew Long <61910737+thatmattlong@users.noreply.github.com> Co-authored-by: Matthew Long <Matthew.Long@microsoft.com>
2023-03-01 03:25:00 +03:00
os: $(os)
os_version: $(os_version)
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
- job: k8se2e
displayName: "Build Kubernetes Test Suite"
pool:
name: $(BUILD_POOL_NAME_DEFAULT)
demands:
- agent.os -equals Linux
- Role -equals Build
steps:
- checkout: self
- bash: |
ci: Updating k8s test suite for NPM to latest (#2707) * test: latest k8s test suite * ci: Update test suite
2024-04-25 01:35:17 +03:00
git clone https://github.com/kubernetes/kubernetes.git --depth=1
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
cd kubernetes
export PATH=$PATH:/usr/local/go/bin/
make WHAT=test/e2e/e2e.test
displayName: "Build Kubernetes e2e.test"
- publish: $(System.DefaultWorkingDirectory)/kubernetes/_output/local/bin/linux/amd64
artifact: Test
- job: Create_Cluster_and_Run_Test
timeoutInMinutes: 360
displayName: "Run Kubernetes Network Policy Test Suite"
strategy:
matrix:
perf: [NPM] [LINUX] add NetPols in background (#1969) * wip: apply dirty NetPols every 500ms in Linux * only build npm linux image * fix: check for empty cache * feat: toggle for netpol interval. default 500 ms * ci: remove stages "build binaries" and "run windows tests" * wip: max batched netpols (toggle-specified) * ci: remove manifest build/push for win npm * wip: handle ipset deletion properly and max batch for delete too * fix: correct remove policy * fix: only remove policy if it was in kernel * finalize toggles, allowing ability to turn off iptablesInBackground * ci: conf + cyc use PR's configmaps * fix: lints * fix dp toggle: iptablesInBackground * fix lock typo and config logging * fix background thread. add comments. only add tmp ref when enabled * copy pod selector list * fix: removepolicy needs namespace too * rename opInfo to event * fix: fix references and prevent concurrent map read/write * tmp: debug logging * fix: missing set references by swap keys and values * Revert "tmp: debug logging" This reverts commit 70ed34c714ea4a6d009a1fe90a7168be4bedd5bf. * fix: add podSelectorList to fake NetPol * log: do not print error when failing to delete non-existent nft rule * log: verbose iptables bootup * log: use fmt.Errorf for clean logging * log: never return error for iptables in background and fix some lints * fix: activate/deactivate azure chain rules * fix: correctly decrement netpols in kernel * ci: run UTs again * ci: update profiles. default to placefirst=false * address comment: rename batch to pendingPolicy * refactor: make dirty cache OS-specific * test: UTs * test: put UT cfg back to placefirst to not break things * ci: update cyclonus workflows * fmt: address comment & lint * fmt: rename numInKernel to policiesInKernel * log: switch to fmt.Errorf * fmt: whitespace * feat: resiliency to errors while reconciling dirty netpols * log: temporarily print everything for ipset restore * fix: remove nomatch from ipset -D for cidr blocks * test: UTs for non-happy path * test: fix hns fake * fix: don't change windows. let it delete ipsets when removing policies * fix windows lint * fix: ignore chain doesn't exist errors for iptables -D * feat: latency and failure metrics * test: update exit code for UT * metrics: new metrics should go in node-metrics path * style: simplify nesting * style: move identical windows & linux code to shared file * ci: remove v1 conformance and cyclonus * feat: add NetPols in background from the DP (revert background code in pMgr) * style: remove "background" from iptables metrics * revert changes in ipsetmanager, const.go, and dp.Remove/UpdatePolicy * style: whitespace * perf: use len() instead of creating slice from map * remove verbosity for iptables bootup * build: add return statement * style: whitespace * build: fix variable shadowing * build: fix more import shadowing * build: windows pointer issue and UT issue * test: fix UT for iptables error code 2 * ci: enable linux scale test * ci: revert to master pipeline.yaml * revert changes to chain-management. do changes in PR #2012 * log: change wording * test: UTs for netpol in background * log: wording * feat: apply ipsets for each netpol individually * config: rearrange ConfigMap & update capz yaml * fix: windows bootup phase logic for addpolicy * feat: restrict netpol in background to linux + nftables * test: skip nftables check for UT * style: netpols[0] instead of loop * log: address log comments * style: lint for long line --------- Co-authored-by: Vamsi Kalapala <vakr@microsoft.com>
2023-07-19 19:13:52 +03:00
v2-foreground:
AZURE_CLUSTER: "conformance-v2-foreground"
PROFILE: "v2-foreground"
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
IS_STRESS_TEST: "false"
perf: [NPM] [LINUX] add NetPols in background (#1969) * wip: apply dirty NetPols every 500ms in Linux * only build npm linux image * fix: check for empty cache * feat: toggle for netpol interval. default 500 ms * ci: remove stages "build binaries" and "run windows tests" * wip: max batched netpols (toggle-specified) * ci: remove manifest build/push for win npm * wip: handle ipset deletion properly and max batch for delete too * fix: correct remove policy * fix: only remove policy if it was in kernel * finalize toggles, allowing ability to turn off iptablesInBackground * ci: conf + cyc use PR's configmaps * fix: lints * fix dp toggle: iptablesInBackground * fix lock typo and config logging * fix background thread. add comments. only add tmp ref when enabled * copy pod selector list * fix: removepolicy needs namespace too * rename opInfo to event * fix: fix references and prevent concurrent map read/write * tmp: debug logging * fix: missing set references by swap keys and values * Revert "tmp: debug logging" This reverts commit 70ed34c714ea4a6d009a1fe90a7168be4bedd5bf. * fix: add podSelectorList to fake NetPol * log: do not print error when failing to delete non-existent nft rule * log: verbose iptables bootup * log: use fmt.Errorf for clean logging * log: never return error for iptables in background and fix some lints * fix: activate/deactivate azure chain rules * fix: correctly decrement netpols in kernel * ci: run UTs again * ci: update profiles. default to placefirst=false * address comment: rename batch to pendingPolicy * refactor: make dirty cache OS-specific * test: UTs * test: put UT cfg back to placefirst to not break things * ci: update cyclonus workflows * fmt: address comment & lint * fmt: rename numInKernel to policiesInKernel * log: switch to fmt.Errorf * fmt: whitespace * feat: resiliency to errors while reconciling dirty netpols * log: temporarily print everything for ipset restore * fix: remove nomatch from ipset -D for cidr blocks * test: UTs for non-happy path * test: fix hns fake * fix: don't change windows. let it delete ipsets when removing policies * fix windows lint * fix: ignore chain doesn't exist errors for iptables -D * feat: latency and failure metrics * test: update exit code for UT * metrics: new metrics should go in node-metrics path * style: simplify nesting * style: move identical windows & linux code to shared file * ci: remove v1 conformance and cyclonus * feat: add NetPols in background from the DP (revert background code in pMgr) * style: remove "background" from iptables metrics * revert changes in ipsetmanager, const.go, and dp.Remove/UpdatePolicy * style: whitespace * perf: use len() instead of creating slice from map * remove verbosity for iptables bootup * build: add return statement * style: whitespace * build: fix variable shadowing * build: fix more import shadowing * build: windows pointer issue and UT issue * test: fix UT for iptables error code 2 * ci: enable linux scale test * ci: revert to master pipeline.yaml * revert changes to chain-management. do changes in PR #2012 * log: change wording * test: UTs for netpol in background * log: wording * feat: apply ipsets for each netpol individually * config: rearrange ConfigMap & update capz yaml * fix: windows bootup phase logic for addpolicy * feat: restrict netpol in background to linux + nftables * test: skip nftables check for UT * style: netpols[0] instead of loop * log: address log comments * style: lint for long line --------- Co-authored-by: Vamsi Kalapala <vakr@microsoft.com>
2023-07-19 19:13:52 +03:00
v2-background:
AZURE_CLUSTER: "conformance-v2-background"
PROFILE: "v2-background"
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
IS_STRESS_TEST: "false"
perf: [NPM] [LINUX] add NetPols in background (#1969) * wip: apply dirty NetPols every 500ms in Linux * only build npm linux image * fix: check for empty cache * feat: toggle for netpol interval. default 500 ms * ci: remove stages "build binaries" and "run windows tests" * wip: max batched netpols (toggle-specified) * ci: remove manifest build/push for win npm * wip: handle ipset deletion properly and max batch for delete too * fix: correct remove policy * fix: only remove policy if it was in kernel * finalize toggles, allowing ability to turn off iptablesInBackground * ci: conf + cyc use PR's configmaps * fix: lints * fix dp toggle: iptablesInBackground * fix lock typo and config logging * fix background thread. add comments. only add tmp ref when enabled * copy pod selector list * fix: removepolicy needs namespace too * rename opInfo to event * fix: fix references and prevent concurrent map read/write * tmp: debug logging * fix: missing set references by swap keys and values * Revert "tmp: debug logging" This reverts commit 70ed34c714ea4a6d009a1fe90a7168be4bedd5bf. * fix: add podSelectorList to fake NetPol * log: do not print error when failing to delete non-existent nft rule * log: verbose iptables bootup * log: use fmt.Errorf for clean logging * log: never return error for iptables in background and fix some lints * fix: activate/deactivate azure chain rules * fix: correctly decrement netpols in kernel * ci: run UTs again * ci: update profiles. default to placefirst=false * address comment: rename batch to pendingPolicy * refactor: make dirty cache OS-specific * test: UTs * test: put UT cfg back to placefirst to not break things * ci: update cyclonus workflows * fmt: address comment & lint * fmt: rename numInKernel to policiesInKernel * log: switch to fmt.Errorf * fmt: whitespace * feat: resiliency to errors while reconciling dirty netpols * log: temporarily print everything for ipset restore * fix: remove nomatch from ipset -D for cidr blocks * test: UTs for non-happy path * test: fix hns fake * fix: don't change windows. let it delete ipsets when removing policies * fix windows lint * fix: ignore chain doesn't exist errors for iptables -D * feat: latency and failure metrics * test: update exit code for UT * metrics: new metrics should go in node-metrics path * style: simplify nesting * style: move identical windows & linux code to shared file * ci: remove v1 conformance and cyclonus * feat: add NetPols in background from the DP (revert background code in pMgr) * style: remove "background" from iptables metrics * revert changes in ipsetmanager, const.go, and dp.Remove/UpdatePolicy * style: whitespace * perf: use len() instead of creating slice from map * remove verbosity for iptables bootup * build: add return statement * style: whitespace * build: fix variable shadowing * build: fix more import shadowing * build: windows pointer issue and UT issue * test: fix UT for iptables error code 2 * ci: enable linux scale test * ci: revert to master pipeline.yaml * revert changes to chain-management. do changes in PR #2012 * log: change wording * test: UTs for netpol in background * log: wording * feat: apply ipsets for each netpol individually * config: rearrange ConfigMap & update capz yaml * fix: windows bootup phase logic for addpolicy * feat: restrict netpol in background to linux + nftables * test: skip nftables check for UT * style: netpols[0] instead of loop * log: address log comments * style: lint for long line --------- Co-authored-by: Vamsi Kalapala <vakr@microsoft.com>
2023-07-19 19:13:52 +03:00
v2-ws22:
AZURE_CLUSTER: "conformance-v2-ws22"
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
PROFILE: "v2-default-ws22"
IS_STRESS_TEST: "false"
perf: [NPM] [LINUX] add NetPols in background (#1969) * wip: apply dirty NetPols every 500ms in Linux * only build npm linux image * fix: check for empty cache * feat: toggle for netpol interval. default 500 ms * ci: remove stages "build binaries" and "run windows tests" * wip: max batched netpols (toggle-specified) * ci: remove manifest build/push for win npm * wip: handle ipset deletion properly and max batch for delete too * fix: correct remove policy * fix: only remove policy if it was in kernel * finalize toggles, allowing ability to turn off iptablesInBackground * ci: conf + cyc use PR's configmaps * fix: lints * fix dp toggle: iptablesInBackground * fix lock typo and config logging * fix background thread. add comments. only add tmp ref when enabled * copy pod selector list * fix: removepolicy needs namespace too * rename opInfo to event * fix: fix references and prevent concurrent map read/write * tmp: debug logging * fix: missing set references by swap keys and values * Revert "tmp: debug logging" This reverts commit 70ed34c714ea4a6d009a1fe90a7168be4bedd5bf. * fix: add podSelectorList to fake NetPol * log: do not print error when failing to delete non-existent nft rule * log: verbose iptables bootup * log: use fmt.Errorf for clean logging * log: never return error for iptables in background and fix some lints * fix: activate/deactivate azure chain rules * fix: correctly decrement netpols in kernel * ci: run UTs again * ci: update profiles. default to placefirst=false * address comment: rename batch to pendingPolicy * refactor: make dirty cache OS-specific * test: UTs * test: put UT cfg back to placefirst to not break things * ci: update cyclonus workflows * fmt: address comment & lint * fmt: rename numInKernel to policiesInKernel * log: switch to fmt.Errorf * fmt: whitespace * feat: resiliency to errors while reconciling dirty netpols * log: temporarily print everything for ipset restore * fix: remove nomatch from ipset -D for cidr blocks * test: UTs for non-happy path * test: fix hns fake * fix: don't change windows. let it delete ipsets when removing policies * fix windows lint * fix: ignore chain doesn't exist errors for iptables -D * feat: latency and failure metrics * test: update exit code for UT * metrics: new metrics should go in node-metrics path * style: simplify nesting * style: move identical windows & linux code to shared file * ci: remove v1 conformance and cyclonus * feat: add NetPols in background from the DP (revert background code in pMgr) * style: remove "background" from iptables metrics * revert changes in ipsetmanager, const.go, and dp.Remove/UpdatePolicy * style: whitespace * perf: use len() instead of creating slice from map * remove verbosity for iptables bootup * build: add return statement * style: whitespace * build: fix variable shadowing * build: fix more import shadowing * build: windows pointer issue and UT issue * test: fix UT for iptables error code 2 * ci: enable linux scale test * ci: revert to master pipeline.yaml * revert changes to chain-management. do changes in PR #2012 * log: change wording * test: UTs for netpol in background * log: wording * feat: apply ipsets for each netpol individually * config: rearrange ConfigMap & update capz yaml * fix: windows bootup phase logic for addpolicy * feat: restrict netpol in background to linux + nftables * test: skip nftables check for UT * style: netpols[0] instead of loop * log: address log comments * style: lint for long line --------- Co-authored-by: Vamsi Kalapala <vakr@microsoft.com>
2023-07-19 19:13:52 +03:00
v2-linux-stress:
AZURE_CLUSTER: "conformance-v2-linux-stress"
PROFILE: "v2-background"
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
IS_STRESS_TEST: "true"
pool:
name: $(BUILD_POOL_NAME_DEFAULT)
demands:
- agent.os -equals Linux
- Role -equals Build
Add multiplat Windows 2019 and 2022 image support to tooling and pipelines, use for CNS/NPM (#1820) * build: add ws2019 cns image to build pipeline * add windows2019 build pool * fix: npm pipelines * fix: npm pipelines * update multiplat build process for winver flavors * optional buildx push for npm cyclonus --------- Signed-off-by: Evan Baker <rbtr@users.noreply.github.com> Co-authored-by: Matthew Long <61910737+thatmattlong@users.noreply.github.com> Co-authored-by: Matthew Long <Matthew.Long@microsoft.com>
2023-03-01 03:25:00 +03:00
dependsOn: [setup, k8se2e, containerize]
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
variables:
RESOURCE_GROUP: $[ dependencies.setup.outputs['EnvironmentalVariables.RESOURCE_GROUP'] ]
TAG: $[ dependencies.setup.outputs['EnvironmentalVariables.TAG'] ]
FQDN: empty
steps:
perf: [NPM] [LINUX] add NetPols in background (#1969) * wip: apply dirty NetPols every 500ms in Linux * only build npm linux image * fix: check for empty cache * feat: toggle for netpol interval. default 500 ms * ci: remove stages "build binaries" and "run windows tests" * wip: max batched netpols (toggle-specified) * ci: remove manifest build/push for win npm * wip: handle ipset deletion properly and max batch for delete too * fix: correct remove policy * fix: only remove policy if it was in kernel * finalize toggles, allowing ability to turn off iptablesInBackground * ci: conf + cyc use PR's configmaps * fix: lints * fix dp toggle: iptablesInBackground * fix lock typo and config logging * fix background thread. add comments. only add tmp ref when enabled * copy pod selector list * fix: removepolicy needs namespace too * rename opInfo to event * fix: fix references and prevent concurrent map read/write * tmp: debug logging * fix: missing set references by swap keys and values * Revert "tmp: debug logging" This reverts commit 70ed34c714ea4a6d009a1fe90a7168be4bedd5bf. * fix: add podSelectorList to fake NetPol * log: do not print error when failing to delete non-existent nft rule * log: verbose iptables bootup * log: use fmt.Errorf for clean logging * log: never return error for iptables in background and fix some lints * fix: activate/deactivate azure chain rules * fix: correctly decrement netpols in kernel * ci: run UTs again * ci: update profiles. default to placefirst=false * address comment: rename batch to pendingPolicy * refactor: make dirty cache OS-specific * test: UTs * test: put UT cfg back to placefirst to not break things * ci: update cyclonus workflows * fmt: address comment & lint * fmt: rename numInKernel to policiesInKernel * log: switch to fmt.Errorf * fmt: whitespace * feat: resiliency to errors while reconciling dirty netpols * log: temporarily print everything for ipset restore * fix: remove nomatch from ipset -D for cidr blocks * test: UTs for non-happy path * test: fix hns fake * fix: don't change windows. let it delete ipsets when removing policies * fix windows lint * fix: ignore chain doesn't exist errors for iptables -D * feat: latency and failure metrics * test: update exit code for UT * metrics: new metrics should go in node-metrics path * style: simplify nesting * style: move identical windows & linux code to shared file * ci: remove v1 conformance and cyclonus * feat: add NetPols in background from the DP (revert background code in pMgr) * style: remove "background" from iptables metrics * revert changes in ipsetmanager, const.go, and dp.Remove/UpdatePolicy * style: whitespace * perf: use len() instead of creating slice from map * remove verbosity for iptables bootup * build: add return statement * style: whitespace * build: fix variable shadowing * build: fix more import shadowing * build: windows pointer issue and UT issue * test: fix UT for iptables error code 2 * ci: enable linux scale test * ci: revert to master pipeline.yaml * revert changes to chain-management. do changes in PR #2012 * log: change wording * test: UTs for netpol in background * log: wording * feat: apply ipsets for each netpol individually * config: rearrange ConfigMap & update capz yaml * fix: windows bootup phase logic for addpolicy * feat: restrict netpol in background to linux + nftables * test: skip nftables check for UT * style: netpols[0] instead of loop * log: address log comments * style: lint for long line --------- Co-authored-by: Vamsi Kalapala <vakr@microsoft.com>
2023-07-19 19:13:52 +03:00
- checkout: self
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
- download: current
artifact: Test
- task: AzureCLI@2
displayName: "Create resource group"
inputs:
azureSubscription: $(BUILD_VALIDATIONS_SERVICE_CONNECTION)
scriptType: "bash"
scriptLocation: "inlineScript"
inlineScript: |
az group create -n $(RESOURCE_GROUP) -l $(LOCATION) -o table
echo created RG $(RESOURCE_GROUP) in $(LOCATION)
az version
- task: AzureCLI@2
displayName: "Deploy NPM to Test Cluster"
inputs:
azureSubscription: $(BUILD_VALIDATIONS_SERVICE_CONNECTION)
scriptType: "bash"
scriptLocation: "inlineScript"
failOnStderr: true
inlineScript: |
ci: Updating k8s test suite for NPM to latest (#2707) * test: latest k8s test suite * ci: Update test suite
2024-04-25 01:35:17 +03:00
# get kubectl
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
curl -LO https://dl.k8s.io/release/v1.23.0/bin/linux/amd64/kubectl
chmod +x kubectl
echo Cluster $(AZURE_CLUSTER)
echo Resource $(RESOURCE_GROUP)
if [[ $(AZURE_CLUSTER) == *ws22 ]] # * is used for pattern matching
then
az extension add --name aks-preview
az extension update --name aks-preview
echo "creating WS22 Cluster";
az aks create \
--resource-group $(RESOURCE_GROUP) \
--name $(AZURE_CLUSTER) \
--generate-ssh-keys \
--windows-admin-username e2eadmin \
--windows-admin-password alpha@numeric!password2 \
--network-plugin azure \
--vm-set-type VirtualMachineScaleSets \
--node-vm-size Standard_D4s_v3 \
--node-count 1
Pipelines: Failfast on an error (#1592) * fix: pipelines exit early on error * fix: pipelines exit early on error * adding fail check
2022-09-10 01:08:27 +03:00
if [ $? != 0 ]
then
echo "Failing fast since previous command failed"
exit 1
fi
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
# don't schedule anything on the linux system pool
echo "Updating $(AZURE_CLUSTER) to not schedule anything on linux pool..."
az aks nodepool update \
--cluster-name $(AZURE_CLUSTER) \
-g $(RESOURCE_GROUP) \
-n nodepool1 \
--node-taints CriticalAddonsOnly=true:NoSchedule
Pipelines: Failfast on an error (#1592) * fix: pipelines exit early on error * fix: pipelines exit early on error * adding fail check
2022-09-10 01:08:27 +03:00
if [ $? != 0 ]
then
echo "Failing fast since previous command failed"
exit 1
fi
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
echo "Adding Windows nodepool to $(AZURE_CLUSTER) to group $(RESOURCE_GROUP)"
az aks nodepool add \
--resource-group $(RESOURCE_GROUP) \
--cluster-name $(AZURE_CLUSTER) \
--name awin22 \
--os-type Windows \
--os-sku Windows2022 \
--node-vm-size Standard_D4s_v3 \
--node-count 2
Pipelines: Failfast on an error (#1592) * fix: pipelines exit early on error * fix: pipelines exit early on error * adding fail check
2022-09-10 01:08:27 +03:00
if [ $? != 0 ]
then
echo "Failing fast since previous command failed"
exit 1
fi
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
az aks get-credentials -n $(AZURE_CLUSTER) -g $(RESOURCE_GROUP) --file ./kubeconfig
perf: [NPM] [LINUX] add NetPols in background (#1969) * wip: apply dirty NetPols every 500ms in Linux * only build npm linux image * fix: check for empty cache * feat: toggle for netpol interval. default 500 ms * ci: remove stages "build binaries" and "run windows tests" * wip: max batched netpols (toggle-specified) * ci: remove manifest build/push for win npm * wip: handle ipset deletion properly and max batch for delete too * fix: correct remove policy * fix: only remove policy if it was in kernel * finalize toggles, allowing ability to turn off iptablesInBackground * ci: conf + cyc use PR's configmaps * fix: lints * fix dp toggle: iptablesInBackground * fix lock typo and config logging * fix background thread. add comments. only add tmp ref when enabled * copy pod selector list * fix: removepolicy needs namespace too * rename opInfo to event * fix: fix references and prevent concurrent map read/write * tmp: debug logging * fix: missing set references by swap keys and values * Revert "tmp: debug logging" This reverts commit 70ed34c714ea4a6d009a1fe90a7168be4bedd5bf. * fix: add podSelectorList to fake NetPol * log: do not print error when failing to delete non-existent nft rule * log: verbose iptables bootup * log: use fmt.Errorf for clean logging * log: never return error for iptables in background and fix some lints * fix: activate/deactivate azure chain rules * fix: correctly decrement netpols in kernel * ci: run UTs again * ci: update profiles. default to placefirst=false * address comment: rename batch to pendingPolicy * refactor: make dirty cache OS-specific * test: UTs * test: put UT cfg back to placefirst to not break things * ci: update cyclonus workflows * fmt: address comment & lint * fmt: rename numInKernel to policiesInKernel * log: switch to fmt.Errorf * fmt: whitespace * feat: resiliency to errors while reconciling dirty netpols * log: temporarily print everything for ipset restore * fix: remove nomatch from ipset -D for cidr blocks * test: UTs for non-happy path * test: fix hns fake * fix: don't change windows. let it delete ipsets when removing policies * fix windows lint * fix: ignore chain doesn't exist errors for iptables -D * feat: latency and failure metrics * test: update exit code for UT * metrics: new metrics should go in node-metrics path * style: simplify nesting * style: move identical windows & linux code to shared file * ci: remove v1 conformance and cyclonus * feat: add NetPols in background from the DP (revert background code in pMgr) * style: remove "background" from iptables metrics * revert changes in ipsetmanager, const.go, and dp.Remove/UpdatePolicy * style: whitespace * perf: use len() instead of creating slice from map * remove verbosity for iptables bootup * build: add return statement * style: whitespace * build: fix variable shadowing * build: fix more import shadowing * build: windows pointer issue and UT issue * test: fix UT for iptables error code 2 * ci: enable linux scale test * ci: revert to master pipeline.yaml * revert changes to chain-management. do changes in PR #2012 * log: change wording * test: UTs for netpol in background * log: wording * feat: apply ipsets for each netpol individually * config: rearrange ConfigMap & update capz yaml * fix: windows bootup phase logic for addpolicy * feat: restrict netpol in background to linux + nftables * test: skip nftables check for UT * style: netpols[0] instead of loop * log: address log comments * style: lint for long line --------- Co-authored-by: Vamsi Kalapala <vakr@microsoft.com>
2023-07-19 19:13:52 +03:00
./kubectl --kubeconfig=./kubeconfig apply -f $(Pipeline.Workspace)/s/npm/examples/windows/azure-npm.yaml
Add multiplat Windows 2019 and 2022 image support to tooling and pipelines, use for CNS/NPM (#1820) * build: add ws2019 cns image to build pipeline * add windows2019 build pool * fix: npm pipelines * fix: npm pipelines * update multiplat build process for winver flavors * optional buildx push for npm cyclonus --------- Signed-off-by: Evan Baker <rbtr@users.noreply.github.com> Co-authored-by: Matthew Long <61910737+thatmattlong@users.noreply.github.com> Co-authored-by: Matthew Long <Matthew.Long@microsoft.com>
2023-03-01 03:25:00 +03:00
./kubectl --kubeconfig=./kubeconfig set image daemonset/azure-npm-win -n kube-system azure-npm=$IMAGE_REGISTRY/azure-npm:windows-amd64-ltsc2022-$(TAG)
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
else
ci: Updating k8s test suite for NPM to latest (#2707) * test: latest k8s test suite * ci: Update test suite
2024-04-25 01:35:17 +03:00
echo "Creating Linux Cluster";
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
az aks create --no-ssh-key \
--resource-group $(RESOURCE_GROUP) \
--name $(AZURE_CLUSTER) \
--network-plugin azure
Pipelines: Failfast on an error (#1592) * fix: pipelines exit early on error * fix: pipelines exit early on error * adding fail check
2022-09-10 01:08:27 +03:00
if [ $? != 0 ]
then
echo "Failing fast since previous command failed"
exit 1
fi
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
az aks get-credentials -n $(AZURE_CLUSTER) -g $(RESOURCE_GROUP) --file ./kubeconfig
# deploy azure-npm
perf: [NPM] [LINUX] add NetPols in background (#1969) * wip: apply dirty NetPols every 500ms in Linux * only build npm linux image * fix: check for empty cache * feat: toggle for netpol interval. default 500 ms * ci: remove stages "build binaries" and "run windows tests" * wip: max batched netpols (toggle-specified) * ci: remove manifest build/push for win npm * wip: handle ipset deletion properly and max batch for delete too * fix: correct remove policy * fix: only remove policy if it was in kernel * finalize toggles, allowing ability to turn off iptablesInBackground * ci: conf + cyc use PR's configmaps * fix: lints * fix dp toggle: iptablesInBackground * fix lock typo and config logging * fix background thread. add comments. only add tmp ref when enabled * copy pod selector list * fix: removepolicy needs namespace too * rename opInfo to event * fix: fix references and prevent concurrent map read/write * tmp: debug logging * fix: missing set references by swap keys and values * Revert "tmp: debug logging" This reverts commit 70ed34c714ea4a6d009a1fe90a7168be4bedd5bf. * fix: add podSelectorList to fake NetPol * log: do not print error when failing to delete non-existent nft rule * log: verbose iptables bootup * log: use fmt.Errorf for clean logging * log: never return error for iptables in background and fix some lints * fix: activate/deactivate azure chain rules * fix: correctly decrement netpols in kernel * ci: run UTs again * ci: update profiles. default to placefirst=false * address comment: rename batch to pendingPolicy * refactor: make dirty cache OS-specific * test: UTs * test: put UT cfg back to placefirst to not break things * ci: update cyclonus workflows * fmt: address comment & lint * fmt: rename numInKernel to policiesInKernel * log: switch to fmt.Errorf * fmt: whitespace * feat: resiliency to errors while reconciling dirty netpols * log: temporarily print everything for ipset restore * fix: remove nomatch from ipset -D for cidr blocks * test: UTs for non-happy path * test: fix hns fake * fix: don't change windows. let it delete ipsets when removing policies * fix windows lint * fix: ignore chain doesn't exist errors for iptables -D * feat: latency and failure metrics * test: update exit code for UT * metrics: new metrics should go in node-metrics path * style: simplify nesting * style: move identical windows & linux code to shared file * ci: remove v1 conformance and cyclonus * feat: add NetPols in background from the DP (revert background code in pMgr) * style: remove "background" from iptables metrics * revert changes in ipsetmanager, const.go, and dp.Remove/UpdatePolicy * style: whitespace * perf: use len() instead of creating slice from map * remove verbosity for iptables bootup * build: add return statement * style: whitespace * build: fix variable shadowing * build: fix more import shadowing * build: windows pointer issue and UT issue * test: fix UT for iptables error code 2 * ci: enable linux scale test * ci: revert to master pipeline.yaml * revert changes to chain-management. do changes in PR #2012 * log: change wording * test: UTs for netpol in background * log: wording * feat: apply ipsets for each netpol individually * config: rearrange ConfigMap & update capz yaml * fix: windows bootup phase logic for addpolicy * feat: restrict netpol in background to linux + nftables * test: skip nftables check for UT * style: netpols[0] instead of loop * log: address log comments * style: lint for long line --------- Co-authored-by: Vamsi Kalapala <vakr@microsoft.com>
2023-07-19 19:13:52 +03:00
./kubectl --kubeconfig=./kubeconfig apply -f $(Pipeline.Workspace)/s/npm/azure-npm.yaml
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
# swap azure-npm image with one built during run
./kubectl --kubeconfig=./kubeconfig set image daemonset/azure-npm -n kube-system azure-npm=$IMAGE_REGISTRY/azure-npm:linux-amd64-$(TAG)
# swap NPM profile with one specified as parameter
perf: [NPM] [LINUX] add NetPols in background (#1969) * wip: apply dirty NetPols every 500ms in Linux * only build npm linux image * fix: check for empty cache * feat: toggle for netpol interval. default 500 ms * ci: remove stages "build binaries" and "run windows tests" * wip: max batched netpols (toggle-specified) * ci: remove manifest build/push for win npm * wip: handle ipset deletion properly and max batch for delete too * fix: correct remove policy * fix: only remove policy if it was in kernel * finalize toggles, allowing ability to turn off iptablesInBackground * ci: conf + cyc use PR's configmaps * fix: lints * fix dp toggle: iptablesInBackground * fix lock typo and config logging * fix background thread. add comments. only add tmp ref when enabled * copy pod selector list * fix: removepolicy needs namespace too * rename opInfo to event * fix: fix references and prevent concurrent map read/write * tmp: debug logging * fix: missing set references by swap keys and values * Revert "tmp: debug logging" This reverts commit 70ed34c714ea4a6d009a1fe90a7168be4bedd5bf. * fix: add podSelectorList to fake NetPol * log: do not print error when failing to delete non-existent nft rule * log: verbose iptables bootup * log: use fmt.Errorf for clean logging * log: never return error for iptables in background and fix some lints * fix: activate/deactivate azure chain rules * fix: correctly decrement netpols in kernel * ci: run UTs again * ci: update profiles. default to placefirst=false * address comment: rename batch to pendingPolicy * refactor: make dirty cache OS-specific * test: UTs * test: put UT cfg back to placefirst to not break things * ci: update cyclonus workflows * fmt: address comment & lint * fmt: rename numInKernel to policiesInKernel * log: switch to fmt.Errorf * fmt: whitespace * feat: resiliency to errors while reconciling dirty netpols * log: temporarily print everything for ipset restore * fix: remove nomatch from ipset -D for cidr blocks * test: UTs for non-happy path * test: fix hns fake * fix: don't change windows. let it delete ipsets when removing policies * fix windows lint * fix: ignore chain doesn't exist errors for iptables -D * feat: latency and failure metrics * test: update exit code for UT * metrics: new metrics should go in node-metrics path * style: simplify nesting * style: move identical windows & linux code to shared file * ci: remove v1 conformance and cyclonus * feat: add NetPols in background from the DP (revert background code in pMgr) * style: remove "background" from iptables metrics * revert changes in ipsetmanager, const.go, and dp.Remove/UpdatePolicy * style: whitespace * perf: use len() instead of creating slice from map * remove verbosity for iptables bootup * build: add return statement * style: whitespace * build: fix variable shadowing * build: fix more import shadowing * build: windows pointer issue and UT issue * test: fix UT for iptables error code 2 * ci: enable linux scale test * ci: revert to master pipeline.yaml * revert changes to chain-management. do changes in PR #2012 * log: change wording * test: UTs for netpol in background * log: wording * feat: apply ipsets for each netpol individually * config: rearrange ConfigMap & update capz yaml * fix: windows bootup phase logic for addpolicy * feat: restrict netpol in background to linux + nftables * test: skip nftables check for UT * style: netpols[0] instead of loop * log: address log comments * style: lint for long line --------- Co-authored-by: Vamsi Kalapala <vakr@microsoft.com>
2023-07-19 19:13:52 +03:00
./kubectl --kubeconfig=./kubeconfig apply -f $(Pipeline.Workspace)/s/npm/profiles/$(PROFILE).yaml
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
./kubectl --kubeconfig=./kubeconfig rollout restart ds azure-npm -n kube-system
fi
./kubectl --kubeconfig=./kubeconfig describe daemonset azure-npm -n kube-system
Pipelines: Failfast on an error (#1592) * fix: pipelines exit early on error * fix: pipelines exit early on error * adding fail check
2022-09-10 01:08:27 +03:00
if [ $? != 0 ]
then
echo "Failing fast since previous command failed"
exit 1
fi
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
FQDN=`az aks show -n $(AZURE_CLUSTER) -g $(RESOURCE_GROUP) --query fqdn -o tsv`
echo "##vso[task.setvariable variable=FQDN]$FQDN"
- bash: |
echo "sleeping 3 minutes to allow NPM pods to restart"
sleep 180
set -o pipefail
## create the output folder and include the kubeconfig there
npmLogsFolder=$(System.DefaultWorkingDirectory)/npmLogs_$(AZURE_CLUSTER)
mkdir -p $npmLogsFolder
cp ./kubeconfig $npmLogsFolder/kubeconfig
npmPodList=`kubectl --kubeconfig=./kubeconfig get pods -n kube-system | grep npm | awk '{print $1}'`
echo "Found NPM pods: $npmPodList"
[fix] IPset fail if set doesn't exist when attempting to add to list (#828) * ipset fail if set doesn't exist when attempting to add to list * bail out on add to set when ip is empty * check set type when adding to list * revert checking nil value * fix test build issues * additional ip check * ip check with parseip * prometheus count * delete from set checks * delete from set checks * log on skipping pod * logging pipeline * npm logs ci
2021-03-24 20:50:52 +03:00
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
## Run all Conformance tests in the background
echo $FQDN
chmod +x $(Pipeline.Workspace)/Test/e2e.test
runConformance () {
KUBERNETES_SERVICE_HOST="$FQDN" KUBERNETES_SERVICE_PORT=443 $(Pipeline.Workspace)/Test/e2e.test --provider=local --ginkgo.focus="NetworkPolicy" --ginkgo.skip="SCTP" --kubeconfig=./kubeconfig
# there can't be a command after e2e.test because the exit code is important
}
runConformanceWindows () {
ci: Updating k8s test suite for NPM to latest (#2707) * test: latest k8s test suite * ci: Update test suite
2024-04-25 01:35:17 +03:00
git clone https://github.com/kubernetes/kubernetes.git --depth=1
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
cd kubernetes
git checkout sleep-before-probing
export PATH=$PATH:/usr/local/go/bin/
make WHAT=test/e2e/e2e.test
cd ..
ci: [NPM] speed up Windows conformance and disable Windows Cyclonus/Scale (#2874) * ci: comment out windows cyclonus and windows scale test Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> * ci: slim down windows conformance to 14 tests Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> * ci: make sure conformance skips "Linux Only" Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> * ci: conformance was not running test cases due to formatting Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> --------- Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com>
2024-07-24 04:57:02 +03:00
# full suite of ~32 test cases is taking too long...
# nomatch1="should enforce policy based on PodSelector or NamespaceSelector"
# nomatch2="should enforce policy based on NamespaceSelector with MatchExpressions using default ns label"
# nomatch3="should enforce policy based on PodSelector and NamespaceSelector"
# nomatch4="should enforce policy based on Multiple PodSelectors and NamespaceSelectors"
# cidrExcept1="should ensure an IP overlapping both IPBlock.CIDR and IPBlock.Except is allowed"
# cidrExcept2="should enforce except clause while egress access to server in CIDR block"
# namedPorts="named port"
# wrongK8sVersion="Netpol API"
# toSkip="\[LinuxOnly\]|$nomatch1|$nomatch2|$nomatch3|$nomatch4|$cidrExcept1|$cidrExcept2|$namedPorts|$wrongK8sVersion|SCTP"
# slimmed down to 14 tests like npm-cni-integration-test.yaml
# NetworkPolicy between server and...
f1="client should enforce policy to allow traffic only from a different namespace, based on NamespaceSelector"
f2="client should deny egress from pods based on PodSelector"
f3="client should enforce multiple, stacked policies with overlapping podSelectors"
f4="client should enforce egress policy allowing traffic to a server in a different namespace based on PodSelector and NamespaceSelector"
f5="client should work with Ingress, Egress specified together"
f6="client should enforce ingress policy allowing any port traffic to a server on a specific protocol"
f7="client should not allow access by TCP when a policy specifies only UDP"
f8="client should allow egress access to server in CIDR block"
f9="client should enforce policy based on Ports"
f10="client should support allow-all policy"
f11="client should enforce updated policy"
f12="client should support denying of egress traffic on the client side"
f13="client should stop enforcing policies after they are deleted"
f14="client should support a 'default-deny-ingress' policy"
focus="$f1|$f2|$f3|$f4|$f5|$f6|$f7|$f8|$f9|$f10|$f11|$f12|$f13|$f14"
KUBERNETES_SERVICE_HOST="$FQDN" KUBERNETES_SERVICE_PORT=443 \
$(System.DefaultWorkingDirectory)/kubernetes/_output/local/bin/linux/amd64/e2e.test \
--provider=local \
--ginkgo.focus="$focus" \
--ginkgo.skip="\[LinuxOnly\]|NetworkPolicyLegacy|SCTP" \
--node-os-distro=windows \
--allowed-not-ready-nodes=1 \
--kubeconfig=./kubeconfig \
--ginkgo.timeout="2h"
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
}
exitCode=0
if [ $(IS_STRESS_TEST) == "true" ]; then
echo "Running $NUM_PARALLEL_JOBS_FOR_STRESS_TEST conformance tests at once and writing outputs to files"
declare -a conformancePIDs
for round in $(seq 1 $NUM_PARALLEL_JOBS_FOR_STRESS_TEST); do
# for each iteration, run the conformance test and echos in the background, and write the output of the conformance test to a file
ci: Updating k8s test suite for NPM to latest (#2707) * test: latest k8s test suite * ci: Update test suite
2024-04-25 01:35:17 +03:00
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
# run the conformance test in the foreground and write the output to stdout and a file
if [[ $(AZURE_CLUSTER) == *ws22 ]] # * is used for pattern matching
then
echo "starting conformance test #$round" && \
runConformanceWindows | tee $npmLogsFolder/conformance-results-$round && \
echo "finished conformance test #$round" &
pidOfConformanceTest=$!
conformancePIDs+=($pidOfConformanceTest)
else
echo "starting windows conformance test #$round" && \
runConformance > $npmLogsFolder/conformance-results-$round && \
echo "finished conformance test #$round" &
pidOfConformanceTest=$!
conformancePIDs+=($pidOfConformanceTest)
fi
done
# wait until all conformance tests finish and take note of any failed tests
for round in $(seq 1 $NUM_PARALLEL_JOBS_FOR_STRESS_TEST); do
i=$((round-1))
wait ${conformancePIDs[$i]}
exitCode=$?
if [ $exitCode != 0 ]; then
echo "conformance test #$round failed"
break
fi
done
else
# run the conformance test in the foreground and write the output to stdout and a file
if [[ $(AZURE_CLUSTER) == *ws22 ]] # * is used for pattern matching
then
runConformanceWindows | tee $npmLogsFolder/conformance-results
exitCode=$?
else
runConformance | tee $npmLogsFolder/conformance-results
test: [NPM] Stress Testing & Fix Conformance Logs (#1264) * test logs * wip * add IS_STRESS_TEST to matrix * finish * Copy instead of move kubeconfig * fix folder name * Fix folder name again * sleep and fix published folder * should be done * rearrange and exit properly * test exit code * finalized * make num parallel jobs a global setting
2022-03-08 21:19:23 +03:00
exitCode=$?
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
fi
fi
test: [NPM] fail cyclonus if unfinished (#1681) * prevent chance of overlap in resource groups * print npm pod state and capture previous logs * fail cyclonus if it doesn't complete * redirect to /dev/null * remove incorrect use of --kubeconfig
2022-10-31 21:00:42 +03:00
# get all current npm pods
kubectl --kubeconfig=./kubeconfig get pods -n kube-system | grep npm
npmPodList=`kubectl --kubeconfig=./kubeconfig get pods -n kube-system | grep npm | awk '{print $1}'`
# capture all logs
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
for npmPod in $npmPodList; do
./kubectl --kubeconfig=./kubeconfig logs -n kube-system $npmPod > $npmLogsFolder/$npmPod-logs.txt
test: [NPM] Stress Testing & Fix Conformance Logs (#1264) * test logs * wip * add IS_STRESS_TEST to matrix * finish * Copy instead of move kubeconfig * fix folder name * Fix folder name again * sleep and fix published folder * should be done * rearrange and exit properly * test exit code * finalized * make num parallel jobs a global setting
2022-03-08 21:19:23 +03:00
done
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
test: [NPM] fail cyclonus if unfinished (#1681) * prevent chance of overlap in resource groups * print npm pod state and capture previous logs * fail cyclonus if it doesn't complete * redirect to /dev/null * remove incorrect use of --kubeconfig
2022-10-31 21:00:42 +03:00
# capture any previous logs in case there was a crash
for npmPod in $npmPodList; do
previousLogFile=$npmLogsFolder/previous-$npmPod-logs.txt
./kubectl --kubeconfig=./kubeconfig logs -n kube-system $npmPod -p > $previousLogFile
if [[ $? -ne 0 ]]; then
# remove the empty file if kubectl logs failed (e.g. there was no previous terminated container)
rm $previousLogFile
fi
done
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
exit $exitCode
ci: [NPM] scale test pipeline using KWOK (#1915) * wip * temporarily disable most conf runs * update readme * back to raw yamls and clone the branch to run scale test * fix raw yaml URLs * fix inline script * fix length of rg name * uncomment all conf again * comment out everything unnecessary for testing * remove commented out dependencies * use master branch for pipeline * label nodes * multiple nodes * uncomment rest of conformance pipeline (originally commented for testing) * fix print out for time taken in test-connectivity.sh * fix: run kwok command in background * mkdir for kwok log * try azure cli 1 to fix login error * Revert "try azure cli 1 to fix login error" This reverts commit f1671e3939d1f723a38fb37ffd2d197cd0e396a6. * move scale test to new pipeline yaml * remove scale test from conformance pipeline yaml * revert name change for cyclonus job * remove unnecessary image build and variable * error codes and display names * change sleep and wait for npm logic * look at directory * use pre-cloned repo * fix directory path * install kubectl first * FIXME: comment out succeeded condition * kubectl binary arg * kubectl for scale test * fix label selector * fix kubectl path * fix kubectl binary arg * fix kwok, more steps * FIXME: temporarily use custom fast image * fix kwok pid and add comment * 10m timeout for connectivity after crud * fix kwok command invocation * bump up timeouts for testing * higher memory limit * add note to connectivity script * fix sed * no need to curl npm yaml * tmp: comment things out to test final step * only check if kwok pods are running, not necessarily ready * Revert "tmp: comment things out to test final step" This reverts commit 7b21125ab1e371e1ab8bb57f76846f591971983e. * update registry keys to fix HNS reliability * update regkey code * sleep to let NPM restart in case of bootup failure * adaptive wait timeout * change some errors to warnings * log date * make sure all pods are labeled * delete and readd labels after deleting pods * tmp: skip large scale up and connectivity check for testing * fix overwrite arg * rename tasks and uncomment things * update command for updating reg key * make timeout logic simpler * back to reg add command for regkeys * official timeouts instead of test values * delete task updating registry keys and stop hardcoding npm image * increase sleep
2023-05-18 19:57:21 +03:00
displayName: "Run Test Suite and Get Logs ($(PROFILE))"
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
failOnStderr: false
- publish: $(System.DefaultWorkingDirectory)/npmLogs_$(AZURE_CLUSTER)
condition: always()
artifact: NpmLogs_$(AZURE_CLUSTER)
ci: [NPM] speed up Windows conformance and disable Windows Cyclonus/Scale (#2874) * ci: comment out windows cyclonus and windows scale test Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> * ci: slim down windows conformance to 14 tests Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> * ci: make sure conformance skips "Linux Only" Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> * ci: conformance was not running test cases due to formatting Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> --------- Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com>
2024-07-24 04:57:02 +03:00
# 2024/07/23: Windows Cyclonus is consistently timing after 6 hours
# - job: Create_Windows_Cluster_and_Run_Test
# timeoutInMinutes: 360
# displayName: "Run Windows Cyclonus"
# pool:
# name: $(BUILD_POOL_NAME_DEFAULT)
# demands:
# - agent.os -equals Linux
# - Role -equals Build
# dependsOn: [containerize, setup]
# variables:
# RESOURCE_GROUP: $[ dependencies.setup.outputs['EnvironmentalVariables.RESOURCE_GROUP'] ]
# TAG: $[ dependencies.setup.outputs['EnvironmentalVariables.TAG'] ]
# FQDN: empty
# strategy:
# matrix:
# v2-windows:
# PROFILE: "cyc-ws22"
# steps:
# - checkout: self
# - task: AzureCLI@2
# displayName: "Create AKS Cluster"
# inputs:
# azureSubscription: $(BUILD_VALIDATIONS_SERVICE_CONNECTION)
# scriptType: "bash"
# scriptLocation: "inlineScript"
# failOnStderr: true
# inlineScript: |
# az extension add --name aks-preview
# az extension update --name aks-preview
# export CLUSTER_NAME=$(RESOURCE_GROUP)-$(PROFILE)
# echo "Creating resource group named $CLUSTER_NAME"
# az group create --name $CLUSTER_NAME -l $(LOCATION) -o table
# echo "Creating resource group named $CLUSTER_NAME"
# az aks create \
# --resource-group $CLUSTER_NAME \
# --name $CLUSTER_NAME \
# --generate-ssh-keys \
# --windows-admin-username e2eadmin \
# --windows-admin-password alpha@numeric!password2 \
# --network-plugin azure \
# --vm-set-type VirtualMachineScaleSets \
# --node-vm-size Standard_D8s_v3 \
# --node-count 1 \
# --uptime-sla
# # don't schedule anything on the linux system pool
# echo "Updating $CLUSTER_NAME to not schedule anything on linux pool..."
# az aks nodepool update \
# --cluster-name $CLUSTER_NAME \
# -g $CLUSTER_NAME \
# -n nodepool1 \
# --node-taints CriticalAddonsOnly=true:NoSchedule
# echo "Adding Windows nodepool to $CLUSTER_NAME"
# az aks nodepool add \
# --resource-group $CLUSTER_NAME \
# --cluster-name $CLUSTER_NAME \
# --name awin22 \
# --os-type Windows \
# --os-sku Windows2022 \
# --node-vm-size Standard_D4s_v3 \
# --node-count 3
# echo "Getting credentials to $CLUSTER_NAME"
# az aks get-credentials -g $CLUSTER_NAME -n $CLUSTER_NAME --overwrite-existing --file ./kubeconfig
# mkdir -p ~/.kube/
# cp ./kubeconfig ~/.kube/config
# - task: AzureCLI@2
# displayName: "Deploy NPM to Test Cluster"
# inputs:
# azureSubscription: $(BUILD_VALIDATIONS_SERVICE_CONNECTION)
# scriptType: "bash"
# scriptLocation: "inlineScript"
# failOnStderr: true
# inlineScript: |
# export CLUSTER_NAME=$(RESOURCE_GROUP)-$(PROFILE)
# curl -LO https://dl.k8s.io/release/v1.23.0/bin/linux/amd64/kubectl
# chmod +x kubectl
# # deploy azure-npm
# ./kubectl --kubeconfig=./kubeconfig apply -f $(Pipeline.Workspace)/s/npm/examples/windows/azure-npm.yaml
# # swap azure-npm image with one built during run
# ./kubectl --kubeconfig=./kubeconfig set image daemonset/azure-npm-win -n kube-system azure-npm=$IMAGE_REGISTRY/azure-npm:windows-amd64-ltsc2022-$(TAG)
# echo "sleeping and waiting for NPM pods to be ready..."
# sleep 1m
# ./kubectl --kubeconfig=./kubeconfig wait --for=condition=Ready pod -n kube-system -l k8s-app=azure-npm --timeout=5m
# echo "sleeping 3 more minutes to let windows NPM finish bootup phase"
# ./kubectl --kubeconfig=./kubeconfig get po -n kube-system -owide -A
# echo "Showing cluster status for $CLUSTER_NAME"
# FQDN=`az aks show -n $CLUSTER_NAME -g $CLUSTER_NAME --query fqdn -o tsv`
# echo "##vso[task.setvariable variable=FQDN]$FQDN"
# - script: |
# cat ~/.kube/config
# curl -fsSL github.com/mattfenwick/cyclonus/releases/latest/download/cyclonus_linux_amd64.tar.gz | tar -zxv
# name: download_cyclonus
# displayName: "Download Cyclonus"
# failOnStderr: false
# condition: always()
# - script: |
# ./test/cyclonus/test-cyclonus-windows.sh
# name: cyclonus
# displayName: "Run Cyclonus Test"
# failOnStderr: false
# condition: succeeded()
# - bash: |
# export CLUSTER_NAME=$(RESOURCE_GROUP)-$(PROFILE)
# cp cyclonus-$CLUSTER_NAME $(System.DefaultWorkingDirectory)/$CLUSTER_NAME/cyclonus-$CLUSTER_NAME
# echo "Getting cluster state for $CLUSTER_NAME"
# mkdir -p $(System.DefaultWorkingDirectory)/$CLUSTER_NAME
# kubectl get pods -n kube-system | grep npm
# kubectl logs -n kube-system -l k8s-app=azure-npm --tail -1 --prefix > $(System.DefaultWorkingDirectory)/$CLUSTER_NAME/npm-logs_$(PROFILE).txt
# # capture any previous logs in case there was a crash
# npmPodList=`kubectl get pods -n kube-system | grep npm | awk '{print $1}'`
# for npmPod in $npmPodList; do
# previousLogFile=$(System.DefaultWorkingDirectory)/$CLUSTER_NAME/previous-npm-logs_$(PROFILE).txt
# kubectl logs -n kube-system $npmPod -p > $previousLogFile
# if [[ $? -ne 0 ]]; then
# # remove the empty file if kubectl logs failed (e.g. there was no previous terminated container)
# rm $previousLogFile
# fi
# done
# cp ./kubeconfig $(System.DefaultWorkingDirectory)/$CLUSTER_NAME/.kubeconfig
# condition: always()
# - publish: $(System.DefaultWorkingDirectory)/$(RESOURCE_GROUP)-$(PROFILE)
# condition: always()
# artifact: NpmLogs-$(RESOURCE_GROUP)-$(PROFILE)
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
- job: clean_up
displayName: "Cleanup"
pool:
name: $(BUILD_POOL_NAME_DEFAULT)
demands:
- agent.os -equals Linux
- Role -equals Build
dependsOn:
ci: [NPM] speed up Windows conformance and disable Windows Cyclonus/Scale (#2874) * ci: comment out windows cyclonus and windows scale test Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> * ci: slim down windows conformance to 14 tests Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> * ci: make sure conformance skips "Linux Only" Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> * ci: conformance was not running test cases due to formatting Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com> --------- Signed-off-by: Hunter Gregory <42728408+huntergregory@users.noreply.github.com>
2024-07-24 04:57:02 +03:00
[Create_Cluster_and_Run_Test, setup]
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
variables:
RESOURCE_GROUP: $[ dependencies.setup.outputs['EnvironmentalVariables.RESOURCE_GROUP'] ]
steps:
- checkout: none
- task: AzureCLI@2
displayName: "Delete Test Cluster Resource Group"
inputs:
azureSubscription: $(BUILD_VALIDATIONS_SERVICE_CONNECTION)
scriptType: "bash"
scriptLocation: "inlineScript"
ci: [NPM] improve scale pipeline & fix edge case in scale script (#1975) * ci: check if directory is empty before applying it * ci: don't wait for pods if they weren't created * docs: fix script name * ci: wip for enabling linux scale test * ci: parameters for linux vs windows * ci: adjust params * ci: fix bash typo * ci: fix cp * ci: fix npm url * ci: increase max pods for linux nodepool * ci: start building windows image again * tmp: use apply netpol in background image * Revert "tmp: use apply netpol in background image" This reverts commit eff43c5439bd505f31ca972af2525ad992c2c951. * refactor: use CLUSTER_NAME variable * ci: require succeeded() for scale & conformance tests * test: fix vars used in test-scale.sh checks * ci: disable linux, reenable windows * ci: increase sleep before waiting for NPM to start & log info when it doesn't * ci: better log capture & remove command from other pipeline * ci: do not get logs of npm on kwok nodes * ci: do not get logs of npm on kwok nodes (part 2)
2023-06-09 20:00:03 +03:00
condition: succeeded()
Add Cyclonus Windows job (#1363) * add cyclonus windows job * control plane jobs * add cyclonus to conformance * run cyclonus from pipeline vm * containerize * cluster name * rg name * shorter rg * k8s version * update wait timeout * logging * get kubeconfigs * date * kubeconfig * shorter name * job timeout * bigger vm * increase vm size * kubernetes version * feature preview register * increase node size * exit code * failonstderr * move windows specifics closer * omit failstderr * wait for npm pods to restart * update conformance scope * retry * seperate conformance for platforms * revert branch * hunter's branch
2022-08-08 20:43:44 +03:00
inlineScript: |
echo Deleting $(RESOURCE_GROUP)
az group delete -n $(RESOURCE_GROUP) --yes