richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2569 Commits
29 Branches
80 Tags
155 MiB
Tree: 7a20d69809
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7a20d69809'
${ noResults }
kubespray/.gitlab-ci.yml

636 lines
16 KiB
Raw Normal View History

add gitlabci
7 years ago
fix inventory paths
6 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
Enable multiple CI platform / Add DigitalOcean
6 years ago
Force to /usr/bin/python in CI
6 years ago
Enable multiple CI platform / Add DigitalOcean
6 years ago
fix inventory paths
6 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
add gitlabci
7 years ago
Force to /usr/bin/python in CI
6 years ago
add gitlabci
7 years ago
Force to /usr/bin/python in CI
6 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
Update .gitlab-ci.yml
7 years ago
Enable multiple CI platform / Add DigitalOcean
6 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
fix inventory paths
6 years ago
Enable multiple CI platform / Add DigitalOcean
6 years ago
Force to /usr/bin/python in CI
6 years ago
Enable multiple CI platform / Add DigitalOcean
6 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
Force to /usr/bin/python in CI
6 years ago
Add deployment from gitlab-ci
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
turn off coreos updates
7 years ago
Enable multiple CI platform / Add DigitalOcean
6 years ago
add gitlabci
7 years ago
Add CI cases for testing upgrade from v2.0.1 release These are manual trigger jobs, but should be run if any PR impacts upgrades.
7 years ago
Add graceful upgrade process Based on #718 introduced by rsmitty. Includes all roles and all options to support deployment of new hosts in case they were added to inventory. Main difference here is that master role is evaluated first so that master components get upgraded first. Fixes #694
7 years ago
Update Kubernetes to v1.9.0 (#2100) Update checksum for kubeadm Use v1.9.0 kubeadm params Include hash of ca.crt for kubeadm join Update tag for testing upgrades Add workaround for testing upgrades Remove scale CI scenarios because of slow inventory parsing in ansible 2.4.x. Change region for tests to us-central1 to improve ansible performance
6 years ago
Fix broken CI jobs (#1854) * Fix broken CI jobs Adjust image and image_family scenarios for debian. Checkout CI file for upgrades * add debugging to file download * Fix download for alternate playbooks * Update ansible ssh args to force ssh user * Update sync_container.yml
7 years ago
Update Kubernetes to v1.9.0 (#2100) Update checksum for kubeadm Use v1.9.0 kubeadm params Include hash of ca.crt for kubeadm join Update tag for testing upgrades Add workaround for testing upgrades Remove scale CI scenarios because of slow inventory parsing in ansible 2.4.x. Change region for tests to us-central1 to improve ansible performance
6 years ago
Add CI cases for testing upgrade from v2.0.1 release These are manual trigger jobs, but should be run if any PR impacts upgrades.
7 years ago
Add deployment from gitlab-ci
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Sorting ansible args, fixed ci cluster_mode - s/separated/separate/g for cluster_mode so it now generates the correct number of instances
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add deployment from gitlab-ci
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Sorting ansible args, fixed ci cluster_mode - s/separated/separate/g for cluster_mode so it now generates the correct number of instances
7 years ago
Add synthetic scale deployment mode New deploy modes: scale, ha-scale, separate-scale Creates 200 fake hosts for deployment with fake hostvars. Useful for testing certificate generation and propagation to other master nodes. Updated test cases descriptions.
7 years ago
Add deployment from gitlab-ci
7 years ago
add gitlabci
7 years ago
Add CI cases for testing upgrade from v2.0.1 release These are manual trigger jobs, but should be run if any PR impacts upgrades.
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add graceful upgrade process Based on #718 introduced by rsmitty. Includes all roles and all options to support deployment of new hosts in case they were added to inventory. Main difference here is that master role is evaluated first so that master components get upgraded first. Fixes #694
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add CI cases for testing upgrade from v2.0.1 release These are manual trigger jobs, but should be run if any PR impacts upgrades.
7 years ago
Add deployment from gitlab-ci
7 years ago
Enable HA deploy of kubeadm (#1658) * Enable HA deploy of kubeadm * raise delay to 60s for starting gce hosts
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Enable HA deploy of kubeadm (#1658) * Enable HA deploy of kubeadm * raise delay to 60s for starting gce hosts
7 years ago
Add deployment from gitlab-ci
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Add deployment from gitlab-ci
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Fix logic in idempotency tests in CI (#1722)
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add synthetic scale deployment mode New deploy modes: scale, ha-scale, separate-scale Creates 200 fake hosts for deployment with fake hostvars. Useful for testing certificate generation and propagation to other master nodes. Updated test cases descriptions.
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Fix logic in idempotency tests in CI (#1722)
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Fix logic in idempotency tests in CI (#1722)
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add deployment from gitlab-ci
7 years ago
Enable multiple CI platform / Add DigitalOcean
6 years ago
Add deployment from gitlab-ci
7 years ago
Enable multiple CI platform / Add DigitalOcean
6 years ago
Add digitalocean test case
7 years ago
Enable multiple CI platform / Add DigitalOcean
6 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add all-in-one CI mode and make coreos test aio (#1665)
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
fix inventory paths
6 years ago
Move graceful upgrade test to debian canal HA, adjust drain Graceful upgrades require 3 nodes Drain now has a command timeout of 40s
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Upgrade to kubeadm (#1667) * Enable upgrade to kubeadm * fix kubedns upgrade * try upgrade route * use init/upgrade strategy for kubeadm and ignore kubedns svc * Use bin_dir for kubeadm * delete more secrets * fix waiting for terminating pods * Manually enforce kube-proxy for kubeadm deploy * remove proxy. update to kubeadm 1.8.0rc1
7 years ago
fix inventory paths
6 years ago
Upgrade to kubeadm (#1667) * Enable upgrade to kubeadm * fix kubedns upgrade * try upgrade route * use init/upgrade strategy for kubeadm and ignore kubedns svc * Use bin_dir for kubeadm * delete more secrets * fix waiting for terminating pods * Manually enforce kube-proxy for kubeadm deploy * remove proxy. update to kubeadm 1.8.0rc1
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
contiv network support (#1914) * Add Contiv support Contiv is a network plugin for Kubernetes and Docker. It supports vlan/vxlan/BGP/Cisco ACI technologies. It support firewall policies, multiple networks and bridging pods onto physical networks. * Update contiv version to 1.1.4 Update contiv version to 1.1.4 and added SVC_SUBNET in contiv-config. * Load openvswitch module to workaround on CentOS7.4 * Set contiv cni version to 0.1.0 Correct contiv CNI version to 0.1.0. * Use kube_apiserver_endpoint for K8S_API_SERVER Use kube_apiserver_endpoint as K8S_API_SERVER to make contiv talks to a available endpoint no matter if there's a loadbalancer or not. * Make contiv use its own etcd Before this commit, contiv is using a etcd proxy mode to k8s etcd, this work fine when the etcd hosts are co-located with contiv etcd proxy, however the k8s peering certs are only in etcd group, as a result the etcd-proxy is not able to peering with the k8s etcd on etcd group, plus the netplugin is always trying to find the etcd endpoint on localhost, this will cause problem for all netplugins not runnign on etcd group nodes. This commit make contiv uses its own etcd, separate from k8s one. on kube-master nodes (where net-master runs), it will run as leader mode and on all rest nodes it will run as proxy mode. * Use cp instead of rsync to copy cni binaries Since rsync has been removed from hyperkube, this commit changes it to use cp instead. * Make contiv-etcd able to run on master nodes * Add rbac_enabled flag for contiv pods * Add contiv into CNI network plugin lists * migrate contiv test to tests/files Signed-off-by: Cristian Staretu <cristian.staretu@gmail.com> * Add required rules for contiv netplugin * Better handling json return of fwdMode * Make contiv etcd port configurable * Use default var instead of templating * roles/download/defaults/main.yml: use contiv 1.1.7 Signed-off-by: Cristian Staretu <cristian.staretu@gmail.com>
6 years ago
fix inventory paths
6 years ago
contiv network support (#1914) * Add Contiv support Contiv is a network plugin for Kubernetes and Docker. It supports vlan/vxlan/BGP/Cisco ACI technologies. It support firewall policies, multiple networks and bridging pods onto physical networks. * Update contiv version to 1.1.4 Update contiv version to 1.1.4 and added SVC_SUBNET in contiv-config. * Load openvswitch module to workaround on CentOS7.4 * Set contiv cni version to 0.1.0 Correct contiv CNI version to 0.1.0. * Use kube_apiserver_endpoint for K8S_API_SERVER Use kube_apiserver_endpoint as K8S_API_SERVER to make contiv talks to a available endpoint no matter if there's a loadbalancer or not. * Make contiv use its own etcd Before this commit, contiv is using a etcd proxy mode to k8s etcd, this work fine when the etcd hosts are co-located with contiv etcd proxy, however the k8s peering certs are only in etcd group, as a result the etcd-proxy is not able to peering with the k8s etcd on etcd group, plus the netplugin is always trying to find the etcd endpoint on localhost, this will cause problem for all netplugins not runnign on etcd group nodes. This commit make contiv uses its own etcd, separate from k8s one. on kube-master nodes (where net-master runs), it will run as leader mode and on all rest nodes it will run as proxy mode. * Use cp instead of rsync to copy cni binaries Since rsync has been removed from hyperkube, this commit changes it to use cp instead. * Make contiv-etcd able to run on master nodes * Add rbac_enabled flag for contiv pods * Add contiv into CNI network plugin lists * migrate contiv test to tests/files Signed-off-by: Cristian Staretu <cristian.staretu@gmail.com> * Add required rules for contiv netplugin * Better handling json return of fwdMode * Make contiv etcd port configurable * Use default var instead of templating * roles/download/defaults/main.yml: use contiv 1.1.7 Signed-off-by: Cristian Staretu <cristian.staretu@gmail.com>
6 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add new addon Istio (#1744) * add istio addon * add addons to a ci job
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
fix inventory paths
6 years ago
disable idempotency tests (#1872)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
fix inventory paths
6 years ago
disable idempotency tests (#1872)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add coreos-alpha weave manual CI builds Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add coreos-alpha weave manual CI builds Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Adding kubelet in rkt
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Adding kubelet in rkt
7 years ago
Fixed deploy cluster with vault cert manager (#1548) * Added custom ips to etcd vault distributed certificates * Added custom ips to kube-master vault distributed certificates * Added comment about issue_cert_copy_ca var in vault/issue_cert role file * Generate kube-proxy, controller-manager and scheduler certificates by vault * Revert "Disable vault from CI (#1546)" This reverts commit 781f31d2b81b98c8aa6cfda0897d5bd4d966107c. * Fixed upgrade cluster with vault cert manager * Remove vault dir in reset playbook
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Vault security hardening and role isolation
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
fix inventory paths
6 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
add ci test for rbac
7 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
fix inventory paths
6 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
Add all-in-one CI mode and make coreos test aio (#1665)
7 years ago
Fix tests
6 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Allow triggered gitlab CI builds Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
fix inventory paths
6 years ago
add gitlabci
7 years ago
fix inventory paths
6 years ago
Add digitalocean test case
7 years ago
Fix tests
6 years ago
Rework CI triggers/pipeline * Run CI triggers in one step * Run all test matrix for triggers * Switch back to g1-small Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
fix inventory paths
6 years ago
  1. stages:
  2. - unit-tests
  3. - moderator
  4. - deploy-part1
  5. - deploy-part2
  6. - deploy-special
  8. variables:
  9. FAILFASTCI_NAMESPACE: 'kargo-ci'
  10. # DOCKER_HOST: tcp://localhost:2375
  11. ANSIBLE_FORCE_COLOR: "true"
  12. MAGIC: "ci check this"
  13. TEST_ID: "$CI_PIPELINE_ID-$CI_BUILD_ID"
  14. CI_TEST_VARS: "./tests/files/${CI_JOB_NAME}.yml"
  15. GS_ACCESS_KEY_ID: $GS_KEY
  16. GS_SECRET_ACCESS_KEY: $GS_SECRET
  17. CONTAINER_ENGINE: docker
  18. SSH_USER: root
  19. GCE_PREEMPTIBLE: "false"
  20. ANSIBLE_KEEP_REMOTE_FILES: "1"
  21. ANSIBLE_CONFIG: ./tests/ansible.cfg
  22. IDEMPOT_CHECK: "false"
  23. RESET_CHECK: "false"
  24. UPGRADE_TEST: "false"
  25. KUBEADM_ENABLED: "false"
  26. LOG_LEVEL: "-vv"
  28. # asia-east1-a
  29. # asia-northeast1-a
  30. # europe-west1-b
  31. # us-central1-a
  32. # us-east1-b
  33. # us-west1-a
  35. before_script:
  36. - /usr/bin/python -m pip install -r tests/requirements.txt
  37. - mkdir -p /.ssh
  39. .job: &job
  40. tags:
  41. - kubernetes
  42. - docker
  43. image: quay.io/kubespray/kubespray:latest
  45. .docker_service: &docker_service
  46. services:
  47. - docker:dind
  49. .create_cluster: &create_cluster
  50. <<: *job
  51. <<: *docker_service
  53. .gce_variables: &gce_variables
  54. GCE_USER: travis
  55. SSH_USER: $GCE_USER
  56. CLOUD_MACHINE_TYPE: "g1-small"
  57. CI_PLATFORM: "gce"
  58. PRIVATE_KEY: $GCE_PRIVATE_KEY
  60. .do_variables: &do_variables
  61. PRIVATE_KEY: $DO_PRIVATE_KEY
  62. CI_PLATFORM: "do"
  63. SSH_USER: root
  66. .testcases: &testcases
  67. <<: *job
  68. <<: *docker_service
  69. cache:
  70. key: "$CI_BUILD_REF_NAME"
  71. paths:
  72. - downloads/
  73. - $HOME/.cache
  74. before_script:
  75. - docker info
  76. - /usr/bin/python -m pip install -r requirements.txt
  77. - /usr/bin/python -m pip install -r tests/requirements.txt
  78. - mkdir -p /.ssh
  79. - mkdir -p $HOME/.ssh
  80. - ansible-playbook --version
  81. - export PYPATH=$([[ ! "$CI_JOB_NAME" =~ "coreos" ]] && echo /usr/bin/python || echo /opt/bin/python)
  82. - echo "CI_JOB_NAME is $CI_JOB_NAME"
  83. - echo "PYPATH is $PYPATH"
  84. script:
  85. - pwd
  86. - ls
  87. - echo ${PWD}
  88. - echo "${STARTUP_SCRIPT}"
  89. - cd tests && make create-${CI_PLATFORM} -s ; cd -
  91. # Check out latest tag if testing upgrade
  92. # Uncomment when gitlab kargo repo has tags
  93. #- test "${UPGRADE_TEST}" != "false" && git fetch --all && git checkout $(git describe --tags $(git rev-list --tags --max-count=1))
  94. - test "${UPGRADE_TEST}" != "false" && git checkout ba0a03a8ba2d97a73d06242ec4bb3c7e2012e58c
  95. # Checkout the CI vars file so it is available
  96. - test "${UPGRADE_TEST}" != "false" && git checkout "${CI_BUILD_REF}" tests/files/${CI_JOB_NAME}.yml
  97. # Workaround https://github.com/kubernetes-incubator/kubespray/issues/2021
  98. - 'sh -c "echo ignore_assert_errors: true | tee -a tests/files/${CI_JOB_NAME}.yml"'
  101. # Create cluster
  102. - >
  103. ansible-playbook
  104. -i inventory/sample/hosts.ini
  105. -b --become-user=root
  106. --private-key=${HOME}/.ssh/id_rsa
  107. -u $SSH_USER
  108. ${SSH_ARGS}
  109. ${LOG_LEVEL}
  110. -e @${CI_TEST_VARS}
  111. -e ansible_python_interpreter=${PYPATH}
  112. -e ansible_ssh_user=${SSH_USER}
  113. -e local_release_dir=${PWD}/downloads
  114. --limit "all:!fake_hosts"
  115. cluster.yml
  117. # Repeat deployment if testing upgrade
  118. - >
  119. if [ "${UPGRADE_TEST}" != "false" ]; then
  120. test "${UPGRADE_TEST}" == "basic" && PLAYBOOK="cluster.yml";
  121. test "${UPGRADE_TEST}" == "graceful" && PLAYBOOK="upgrade-cluster.yml";
  122. git checkout "${CI_BUILD_REF}";
  123. ansible-playbook
  124. -i inventory/sample/hosts.ini
  125. -b --become-user=root
  126. --private-key=${HOME}/.ssh/id_rsa
  127. -u $SSH_USER
  128. ${SSH_ARGS}
  129. ${LOG_LEVEL}
  130. -e @${CI_TEST_VARS}
  131. -e ansible_python_interpreter=${PYPATH}
  132. -e ansible_ssh_user=${SSH_USER}
  133. -e local_release_dir=${PWD}/downloads
  134. --limit "all:!fake_hosts"
  135. $PLAYBOOK;
  136. fi
  138. # Tests Cases
  139. ## Test Master API
  140. - >
  141. ansible-playbook -i inventory/sample/hosts.ini -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/010_check-apiserver.yml $LOG_LEVEL
  142. -e "{kubeadm_enabled: ${KUBEADM_ENABLED}}"
  144. ## Ping the between 2 pod
  145. - ansible-playbook -i inventory/sample/hosts.ini -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/030_check-network.yml $LOG_LEVEL
  147. ## Advanced DNS checks
  148. - ansible-playbook -i inventory/sample/hosts.ini -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/040_check-network-adv.yml $LOG_LEVEL
  150. ## Idempotency checks 1/5 (repeat deployment)
  151. - >
  152. if [ "${IDEMPOT_CHECK}" = "true" ]; then
  153. ansible-playbook
  154. -i inventory/sample/hosts.ini
  155. -b --become-user=root
  156. --private-key=${HOME}/.ssh/id_rsa
  157. -u $SSH_USER
  158. ${SSH_ARGS}
  159. ${LOG_LEVEL}
  160. -e @${CI_TEST_VARS}
  161. -e ansible_python_interpreter=${PYPATH}
  162. -e local_release_dir=${PWD}/downloads
  163. --limit "all:!fake_hosts"
  164. cluster.yml;
  165. fi
  167. ## Idempotency checks 2/5 (Advanced DNS checks)
  168. - >
  169. if [ "${IDEMPOT_CHECK}" = "true" ]; then
  170. ansible-playbook
  171. -i inventory/sample/hosts.ini
  172. -b --become-user=root
  173. --private-key=${HOME}/.ssh/id_rsa
  174. -u $SSH_USER
  175. ${SSH_ARGS}
  176. ${LOG_LEVEL}
  177. -e @${CI_TEST_VARS}
  178. --limit "all:!fake_hosts"
  179. tests/testcases/040_check-network-adv.yml $LOG_LEVEL;
  180. fi
  182. ## Idempotency checks 3/5 (reset deployment)
  183. - >
  184. if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
  185. ansible-playbook
  186. -i inventory/sample/hosts.ini
  187. -b --become-user=root
  188. --private-key=${HOME}/.ssh/id_rsa
  189. -u $SSH_USER
  190. ${SSH_ARGS}
  191. ${LOG_LEVEL}
  192. -e @${CI_TEST_VARS}
  193. -e ansible_python_interpreter=${PYPATH}
  194. -e reset_confirmation=yes
  195. --limit "all:!fake_hosts"
  196. reset.yml;
  197. fi
  199. ## Idempotency checks 4/5 (redeploy after reset)
  200. - >
  201. if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
  202. ansible-playbook
  203. -i inventory/sample/hosts.ini
  204. -b --become-user=root
  205. --private-key=${HOME}/.ssh/id_rsa
  206. -u $SSH_USER
  207. ${SSH_ARGS}
  208. ${LOG_LEVEL}
  209. -e @${CI_TEST_VARS}
  210. -e ansible_python_interpreter=${PYPATH}
  211. -e local_release_dir=${PWD}/downloads
  212. --limit "all:!fake_hosts"
  213. cluster.yml;
  214. fi
  216. ## Idempotency checks 5/5 (Advanced DNS checks)
  217. - >
  218. if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
  219. ansible-playbook -i inventory/sample/hosts.ini -e ansible_python_interpreter=${PYPATH}
  220. -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root
  221. --limit "all:!fake_hosts"
  222. tests/testcases/040_check-network-adv.yml $LOG_LEVEL;
  223. fi
  225. after_script:
  226. - cd tests && make delete-${CI_PLATFORM} -s ; cd -
  228. .gce: &gce
  229. <<: *testcases
  230. variables:
  231. <<: *gce_variables
  233. .do: &do
  234. variables:
  235. <<: *do_variables
  236. <<: *testcases
  238. # Test matrix. Leave the comments for markup scripts.
  239. .coreos_calico_aio_variables: &coreos_calico_aio_variables
  240. # stage: deploy-part1
  241. MOVED_TO_GROUP_VARS: "true"
  243. .ubuntu_canal_ha_variables: &ubuntu_canal_ha_variables
  244. # stage: deploy-part1
  245. UPGRADE_TEST: "graceful"
  247. .centos_weave_kubeadm_variables: &centos_weave_kubeadm_variables
  248. # stage: deploy-part1
  249. UPGRADE_TEST: "graceful"
  251. .ubuntu_canal_kubeadm_variables: &ubuntu_canal_kubeadm_variables
  252. # stage: deploy-part1
  253. MOVED_TO_GROUP_VARS: "true"
  255. .ubuntu_contiv_sep_variables: &ubuntu_contiv_sep_variables
  256. # stage: deploy-special
  257. MOVED_TO_GROUP_VARS: "true"
  259. .rhel7_weave_variables: &rhel7_weave_variables
  260. # stage: deploy-part1
  261. MOVED_TO_GROUP_VARS: "true"
  263. .centos7_flannel_addons_variables: &centos7_flannel_addons_variables
  264. # stage: deploy-part2
  265. MOVED_TO_GROUP_VARS: "true"
  267. .debian8_calico_variables: &debian8_calico_variables
  268. # stage: deploy-part2
  269. MOVED_TO_GROUP_VARS: "true"
  271. .coreos_canal_variables: &coreos_canal_variables
  272. # stage: deploy-part2
  273. MOVED_TO_GROUP_VARS: "true"
  275. .rhel7_canal_sep_variables: &rhel7_canal_sep_variables
  276. # stage: deploy-special
  277. MOVED_TO_GROUP_VARS: "true"
  279. .ubuntu_weave_sep_variables: &ubuntu_weave_sep_variables
  280. # stage: deploy-special
  281. MOVED_TO_GROUP_VARS: "true"
  283. .centos7_calico_ha_variables: &centos7_calico_ha_variables
  284. # stage: deploy-special
  285. MOVED_TO_GROUP_VARS: "true"
  287. .coreos_alpha_weave_ha_variables: &coreos_alpha_weave_ha_variables
  288. # stage: deploy-special
  289. MOVED_TO_GROUP_VARS: "true"
  291. .ubuntu_rkt_sep_variables: &ubuntu_rkt_sep_variables
  292. # stage: deploy-part1
  293. MOVED_TO_GROUP_VARS: "true"
  295. .ubuntu_vault_sep_variables: &ubuntu_vault_sep_variables
  296. # stage: deploy-part1
  297. MOVED_TO_GROUP_VARS: "true"
  299. .ubuntu_flannel_variables: &ubuntu_flannel_variables
  300. # stage: deploy-special
  301. MOVED_TO_GROUP_VARS: "true"
  303. # Builds for PRs only (premoderated by unit-tests step) and triggers (auto)
  304. gce_coreos-calico-aio:
  305. stage: deploy-part1
  306. <<: *job
  307. <<: *gce
  308. variables:
  309. <<: *coreos_calico_aio_variables
  310. <<: *gce_variables
  311. when: on_success
  312. except: ['triggers']
  313. only: [/^pr-.*$/]
  315. do_ubuntu-canal-ha:
  316. stage: deploy-part1
  317. <<: *job
  318. <<: *do
  319. variables:
  320. <<: *do_variables
  321. when: on_success
  322. except: ['triggers']
  323. only: [/^pr-.*$/]
  325. gce_coreos-calico-sep-triggers:
  326. stage: deploy-part1
  327. <<: *job
  328. <<: *gce
  329. variables:
  330. <<: *gce_variables
  331. <<: *coreos_calico_aio_variables
  332. when: on_success
  333. only: ['triggers']
  335. gce_centos7-flannel-addons:
  336. stage: deploy-part2
  337. <<: *job
  338. <<: *gce
  339. variables:
  340. <<: *gce_variables
  341. <<: *centos7_flannel_addons_variables
  342. when: on_success
  343. except: ['triggers']
  344. only: [/^pr-.*$/]
  346. gce_centos7-flannel-addons-triggers:
  347. stage: deploy-part1
  348. <<: *job
  349. <<: *gce
  350. variables:
  351. <<: *gce_variables
  352. <<: *centos7_flannel_addons_variables
  353. when: on_success
  354. only: ['triggers']
  356. gce_ubuntu-weave-sep:
  357. stage: deploy-special
  358. <<: *job
  359. <<: *gce
  360. variables:
  361. <<: *gce_variables
  362. <<: *ubuntu_weave_sep_variables
  363. when: on_success
  364. except: ['triggers']
  365. only: [/^pr-.*$/]
  367. gce_ubuntu-weave-sep-triggers:
  368. stage: deploy-part1
  369. <<: *job
  370. <<: *gce
  371. variables:
  372. <<: *gce_variables
  373. <<: *ubuntu_weave_sep_variables
  374. when: on_success
  375. only: ['triggers']
  377. # More builds for PRs/merges (manual) and triggers (auto)
  378. gce_ubuntu-canal-ha:
  379. stage: deploy-part1
  380. <<: *job
  381. <<: *gce
  382. variables:
  383. <<: *gce_variables
  384. <<: *ubuntu_canal_ha_variables
  385. when: manual
  386. except: ['triggers']
  387. only: ['master', /^pr-.*$/]
  389. gce_ubuntu-canal-ha-triggers:
  390. stage: deploy-part1
  391. <<: *job
  392. <<: *gce
  393. variables:
  394. <<: *gce_variables
  395. <<: *ubuntu_canal_ha_variables
  396. when: on_success
  397. only: ['triggers']
  399. gce_ubuntu-canal-kubeadm:
  400. stage: deploy-part1
  401. <<: *job
  402. <<: *gce
  403. variables:
  404. <<: *gce_variables
  405. <<: *ubuntu_canal_kubeadm_variables
  406. when: manual
  407. except: ['triggers']
  408. only: ['master', /^pr-.*$/]
  410. gce_ubuntu-canal-kubeadm-triggers:
  411. stage: deploy-part1
  412. <<: *job
  413. <<: *gce
  414. variables:
  415. <<: *gce_variables
  416. <<: *ubuntu_canal_kubeadm_variables
  417. when: on_success
  418. only: ['triggers']
  420. gce_centos-weave-kubeadm:
  421. stage: deploy-part1
  422. <<: *job
  423. <<: *gce
  424. variables:
  425. <<: *gce_variables
  426. <<: *centos_weave_kubeadm_variables
  427. when: manual
  428. except: ['triggers']
  429. only: ['master', /^pr-.*$/]
  431. gce_centos-weave-kubeadm-triggers:
  432. stage: deploy-part1
  433. <<: *job
  434. <<: *gce
  435. variables:
  436. <<: *gce_variables
  437. <<: *centos_weave_kubeadm_variables
  438. when: on_success
  439. only: ['triggers']
  441. gce_ubuntu-contiv-sep:
  442. stage: deploy-special
  443. <<: *job
  444. <<: *gce
  445. variables:
  446. <<: *gce_variables
  447. <<: *ubuntu_contiv_sep_variables
  448. when: manual
  449. except: ['triggers']
  450. only: ['master', /^pr-.*$/]
  452. gce_rhel7-weave:
  453. stage: deploy-part1
  454. <<: *job
  455. <<: *gce
  456. variables:
  457. <<: *gce_variables
  458. <<: *rhel7_weave_variables
  459. when: manual
  460. except: ['triggers']
  461. only: ['master', /^pr-.*$/]
  463. gce_rhel7-weave-triggers:
  464. stage: deploy-part1
  465. <<: *job
  466. <<: *gce
  467. variables:
  468. <<: *gce_variables
  469. <<: *rhel7_weave_variables
  470. when: on_success
  471. only: ['triggers']
  473. gce_debian8-calico-upgrade:
  474. stage: deploy-part2
  475. <<: *job
  476. <<: *gce
  477. variables:
  478. <<: *gce_variables
  479. <<: *debian8_calico_variables
  480. when: manual
  481. except: ['triggers']
  482. only: ['master', /^pr-.*$/]
  484. gce_debian8-calico-triggers:
  485. stage: deploy-part1
  486. <<: *job
  487. <<: *gce
  488. variables:
  489. <<: *gce_variables
  490. <<: *debian8_calico_variables
  491. when: on_success
  492. only: ['triggers']
  494. gce_coreos-canal:
  495. stage: deploy-part2
  496. <<: *job
  497. <<: *gce
  498. variables:
  499. <<: *gce_variables
  500. <<: *coreos_canal_variables
  501. when: manual
  502. except: ['triggers']
  503. only: ['master', /^pr-.*$/]
  505. gce_coreos-canal-triggers:
  506. stage: deploy-part1
  507. <<: *job
  508. <<: *gce
  509. variables:
  510. <<: *gce_variables
  511. <<: *coreos_canal_variables
  512. when: on_success
  513. only: ['triggers']
  515. gce_rhel7-canal-sep:
  516. stage: deploy-special
  517. <<: *job
  518. <<: *gce
  519. variables:
  520. <<: *gce_variables
  521. <<: *rhel7_canal_sep_variables
  522. when: manual
  523. except: ['triggers']
  524. only: ['master', /^pr-.*$/,]
  526. gce_rhel7-canal-sep-triggers:
  527. stage: deploy-part1
  528. <<: *job
  529. <<: *gce
  530. variables:
  531. <<: *gce_variables
  532. <<: *rhel7_canal_sep_variables
  533. when: on_success
  534. only: ['triggers']
  536. gce_centos7-calico-ha:
  537. stage: deploy-special
  538. <<: *job
  539. <<: *gce
  540. variables:
  541. <<: *gce_variables
  542. <<: *centos7_calico_ha_variables
  543. when: manual
  544. except: ['triggers']
  545. only: ['master', /^pr-.*$/]
  547. gce_centos7-calico-ha-triggers:
  548. stage: deploy-part1
  549. <<: *job
  550. <<: *gce
  551. variables:
  552. <<: *gce_variables
  553. <<: *centos7_calico_ha_variables
  554. when: on_success
  555. only: ['triggers']
  557. # no triggers yet https://github.com/kubernetes-incubator/kargo/issues/613
  558. gce_coreos-alpha-weave-ha:
  559. stage: deploy-special
  560. <<: *job
  561. <<: *gce
  562. variables:
  563. <<: *gce_variables
  564. <<: *coreos_alpha_weave_ha_variables
  565. when: manual
  566. except: ['triggers']
  567. only: ['master', /^pr-.*$/]
  569. gce_ubuntu-rkt-sep:
  570. stage: deploy-part1
  571. <<: *job
  572. <<: *gce
  573. variables:
  574. <<: *gce_variables
  575. <<: *ubuntu_rkt_sep_variables
  576. when: manual
  577. except: ['triggers']
  578. only: ['master', /^pr-.*$/]
  580. gce_ubuntu-vault-sep:
  581. stage: deploy-part1
  582. <<: *job
  583. <<: *gce
  584. variables:
  585. <<: *gce_variables
  586. <<: *ubuntu_vault_sep_variables
  587. when: manual
  588. except: ['triggers']
  589. only: ['master', /^pr-.*$/]
  591. gce_ubuntu-flannel-sep:
  592. stage: deploy-special
  593. <<: *job
  594. <<: *gce
  595. variables:
  596. <<: *gce_variables
  597. <<: *ubuntu_flannel_variables
  598. when: manual
  599. except: ['triggers']
  600. only: ['master', /^pr-.*$/]
  602. # Premoderated with manual actions
  603. ci-authorized:
  604. <<: *job
  605. stage: moderator
  606. before_script:
  607. - apt-get -y install jq
  608. script:
  609. - /bin/sh scripts/premoderator.sh
  610. except: ['triggers', 'master']
  612. syntax-check:
  613. <<: *job
  614. stage: unit-tests
  615. script:
  616. - ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root cluster.yml -vvv --syntax-check
  617. - ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root upgrade-cluster.yml -vvv --syntax-check
  618. - ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root reset.yml -vvv --syntax-check
  619. - ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root extra_playbooks/upgrade-only-k8s.yml -vvv --syntax-check
  620. except: ['triggers', 'master']
  622. yamllint:
  623. <<: *job
  624. stage: unit-tests
  625. script:
  626. - yamllint roles
  627. except: ['triggers', 'master']
  629. tox-inventory-builder:
  630. stage: unit-tests
  631. <<: *job
  632. script:
  633. - pip install tox
  634. - cd contrib/inventory_builder && tox
  635. when: manual
  636. except: ['triggers', 'master']