richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2369 Commits
29 Branches
80 Tags
156 MiB
Tree: b135bcb9d9
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b135bcb9d9'
${ noResults }
kubespray/.gitlab-ci.yml

624 lines
16 KiB
Raw Normal View History

add gitlabci
7 years ago
Splitting out moderator check from syntax check - Attempt to clarify CI runs from contributors
7 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
add gitlabci
7 years ago
Adding yamllinter to ci steps (#1556) * Adding yaml linter to ci check * Minor linting fixes from yamllint * Changing CI to install python pkgs from requirements.txt - adding in a secondary requirements.txt for tests - moving yamllint to tests requirements
7 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add deployment from gitlab-ci
7 years ago
Update .gitlab-ci.yml
7 years ago
Update gce CI (#1748) Use image family for picking latest coreos image Update python deps
7 years ago
Add deployment from gitlab-ci
7 years ago
Add CI cases for testing upgrade from v2.0.1 release These are manual trigger jobs, but should be run if any PR impacts upgrades.
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Make reset check on idempotency check optional By default we do not test reset.yml now.
7 years ago
Add CI cases for testing upgrade from v2.0.1 release These are manual trigger jobs, but should be run if any PR impacts upgrades.
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
Add deployment from gitlab-ci
7 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add deployment from gitlab-ci
7 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
Adding yamllinter to ci steps (#1556) * Adding yaml linter to ci check * Minor linting fixes from yamllint * Changing CI to install python pkgs from requirements.txt - adding in a secondary requirements.txt for tests - moving yamllint to tests requirements
7 years ago
Add deployment from gitlab-ci
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
turn off coreos updates
7 years ago
Add deployment from gitlab-ci
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Sorting ansible args, fixed ci cluster_mode - s/separated/separate/g for cluster_mode so it now generates the correct number of instances
7 years ago
Add deployment from gitlab-ci
7 years ago
Sorting ansible args, fixed ci cluster_mode - s/separated/separate/g for cluster_mode so it now generates the correct number of instances
7 years ago
Update gce CI (#1748) Use image family for picking latest coreos image Update python deps
7 years ago
add gitlabci
7 years ago
Add CI cases for testing upgrade from v2.0.1 release These are manual trigger jobs, but should be run if any PR impacts upgrades.
7 years ago
Add graceful upgrade process Based on #718 introduced by rsmitty. Includes all roles and all options to support deployment of new hosts in case they were added to inventory. Main difference here is that master role is evaluated first so that master components get upgraded first. Fixes #694
7 years ago
Update to Kubernetes v1.7.3 (#1549) Change kubelet deploy mode to host Enable cri and qos per cgroup for kubelet Update CoreOS images Add upgrade hook for switching from kubelet deployment from docker to host. Bump machine type for ubuntu-rkt-sep
7 years ago
Fix broken CI jobs (#1854) * Fix broken CI jobs Adjust image and image_family scenarios for debian. Checkout CI file for upgrades * add debugging to file download * Fix download for alternate playbooks * Update ansible ssh args to force ssh user * Update sync_container.yml
7 years ago
Add CI cases for testing upgrade from v2.0.1 release These are manual trigger jobs, but should be run if any PR impacts upgrades.
7 years ago
Add deployment from gitlab-ci
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Sorting ansible args, fixed ci cluster_mode - s/separated/separate/g for cluster_mode so it now generates the correct number of instances
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add deployment from gitlab-ci
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Sorting ansible args, fixed ci cluster_mode - s/separated/separate/g for cluster_mode so it now generates the correct number of instances
7 years ago
Add synthetic scale deployment mode New deploy modes: scale, ha-scale, separate-scale Creates 200 fake hosts for deployment with fake hostvars. Useful for testing certificate generation and propagation to other master nodes. Updated test cases descriptions.
7 years ago
Add deployment from gitlab-ci
7 years ago
add gitlabci
7 years ago
Add CI cases for testing upgrade from v2.0.1 release These are manual trigger jobs, but should be run if any PR impacts upgrades.
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add graceful upgrade process Based on #718 introduced by rsmitty. Includes all roles and all options to support deployment of new hosts in case they were added to inventory. Main difference here is that master role is evaluated first so that master components get upgraded first. Fixes #694
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add CI cases for testing upgrade from v2.0.1 release These are manual trigger jobs, but should be run if any PR impacts upgrades.
7 years ago
Add deployment from gitlab-ci
7 years ago
Enable HA deploy of kubeadm (#1658) * Enable HA deploy of kubeadm * raise delay to 60s for starting gce hosts
7 years ago
Add deployment from gitlab-ci
7 years ago
Add synthetic scale deployment mode New deploy modes: scale, ha-scale, separate-scale Creates 200 fake hosts for deployment with fake hostvars. Useful for testing certificate generation and propagation to other master nodes. Updated test cases descriptions.
7 years ago
Add deployment from gitlab-ci
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add synthetic scale deployment mode New deploy modes: scale, ha-scale, separate-scale Creates 200 fake hosts for deployment with fake hostvars. Useful for testing certificate generation and propagation to other master nodes. Updated test cases descriptions.
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Fix logic in idempotency tests in CI (#1722)
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add synthetic scale deployment mode New deploy modes: scale, ha-scale, separate-scale Creates 200 fake hosts for deployment with fake hostvars. Useful for testing certificate generation and propagation to other master nodes. Updated test cases descriptions.
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Fix logic in idempotency tests in CI (#1722)
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Fix logic in idempotency tests in CI (#1722)
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Add idempotency checks for CI Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add deployment from gitlab-ci
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add deployment from gitlab-ci
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add all-in-one CI mode and make coreos test aio (#1665)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Move graceful upgrade test to debian canal HA, adjust drain Graceful upgrades require 3 nodes Drain now has a command timeout of 40s
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Upgrade to kubeadm (#1667) * Enable upgrade to kubeadm * fix kubedns upgrade * try upgrade route * use init/upgrade strategy for kubeadm and ignore kubedns svc * Use bin_dir for kubeadm * delete more secrets * fix waiting for terminating pods * Manually enforce kube-proxy for kubeadm deploy * remove proxy. update to kubeadm 1.8.0rc1
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
contiv network support (#1914) * Add Contiv support Contiv is a network plugin for Kubernetes and Docker. It supports vlan/vxlan/BGP/Cisco ACI technologies. It support firewall policies, multiple networks and bridging pods onto physical networks. * Update contiv version to 1.1.4 Update contiv version to 1.1.4 and added SVC_SUBNET in contiv-config. * Load openvswitch module to workaround on CentOS7.4 * Set contiv cni version to 0.1.0 Correct contiv CNI version to 0.1.0. * Use kube_apiserver_endpoint for K8S_API_SERVER Use kube_apiserver_endpoint as K8S_API_SERVER to make contiv talks to a available endpoint no matter if there's a loadbalancer or not. * Make contiv use its own etcd Before this commit, contiv is using a etcd proxy mode to k8s etcd, this work fine when the etcd hosts are co-located with contiv etcd proxy, however the k8s peering certs are only in etcd group, as a result the etcd-proxy is not able to peering with the k8s etcd on etcd group, plus the netplugin is always trying to find the etcd endpoint on localhost, this will cause problem for all netplugins not runnign on etcd group nodes. This commit make contiv uses its own etcd, separate from k8s one. on kube-master nodes (where net-master runs), it will run as leader mode and on all rest nodes it will run as proxy mode. * Use cp instead of rsync to copy cni binaries Since rsync has been removed from hyperkube, this commit changes it to use cp instead. * Make contiv-etcd able to run on master nodes * Add rbac_enabled flag for contiv pods * Add contiv into CNI network plugin lists * migrate contiv test to tests/files Signed-off-by: Cristian Staretu <cristian.staretu@gmail.com> * Add required rules for contiv netplugin * Better handling json return of fwdMode * Make contiv etcd port configurable * Use default var instead of templating * roles/download/defaults/main.yml: use contiv 1.1.7 Signed-off-by: Cristian Staretu <cristian.staretu@gmail.com>
6 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add new addon Istio (#1744) * add istio addon * add addons to a ci job
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
disable idempotency tests (#1872)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
disable idempotency tests (#1872)
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add coreos-alpha weave manual CI builds Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Add coreos-alpha weave manual CI builds Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Adding kubelet in rkt
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Adding kubelet in rkt
7 years ago
Fixed deploy cluster with vault cert manager (#1548) * Added custom ips to etcd vault distributed certificates * Added custom ips to kube-master vault distributed certificates * Added comment about issue_cert_copy_ca var in vault/issue_cert role file * Generate kube-proxy, controller-manager and scheduler certificates by vault * Revert "Disable vault from CI (#1546)" This reverts commit 781f31d2b81b98c8aa6cfda0897d5bd4d966107c. * Fixed upgrade cluster with vault cert manager * Remove vault dir in reset playbook
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
Vault security hardening and role isolation
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
add ci test for rbac
7 years ago
Move CI vars out of gitlab and into var files (#1808)
7 years ago
add ci test for rbac
7 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add all-in-one CI mode and make coreos test aio (#1665)
7 years ago
Add deployment from gitlab-ci
7 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
Add all-in-one CI mode and make coreos test aio (#1665)
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Allow triggered gitlab CI builds Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Rework Gitlab pipeline stages for PRs/merges Run 1 of each part1/2/special for Gitlab CI only for PRs Remaining 2/3 of each stage are manual steps for master only (merges) Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
add gitlabci
7 years ago
Rework CI triggers/pipeline * Run CI triggers in one step * Run all test matrix for triggers * Switch back to g1-small Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add all-in-one CI mode and make coreos test aio (#1665)
7 years ago
Rework CI triggers/pipeline * Run CI triggers in one step * Run all test matrix for triggers * Switch back to g1-small Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add new addon Istio (#1744) * add istio addon * add addons to a ci job
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add new addon Istio (#1744) * add istio addon * add addons to a ci job
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add new addon Istio (#1744) * add istio addon * add addons to a ci job
7 years ago
Rework CI triggers/pipeline * Run CI triggers in one step * Run all test matrix for triggers * Switch back to g1-small Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add new addon Istio (#1744) * add istio addon * add addons to a ci job
7 years ago
Rework CI triggers/pipeline * Run CI triggers in one step * Run all test matrix for triggers * Switch back to g1-small Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Rework CI triggers/pipeline * Run CI triggers in one step * Run all test matrix for triggers * Switch back to g1-small Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
Add deployment from gitlab-ci
7 years ago
add gitlabci
7 years ago
Add deployment from gitlab-ci
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
Upgrade to kubeadm (#1667) * Enable upgrade to kubeadm * fix kubedns upgrade * try upgrade route * use init/upgrade strategy for kubeadm and ignore kubedns svc * Use bin_dir for kubeadm * delete more secrets * fix waiting for terminating pods * Manually enforce kube-proxy for kubeadm deploy * remove proxy. update to kubeadm 1.8.0rc1
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
Upgrade to kubeadm (#1667) * Enable upgrade to kubeadm * fix kubedns upgrade * try upgrade route * use init/upgrade strategy for kubeadm and ignore kubedns svc * Use bin_dir for kubeadm * delete more secrets * fix waiting for terminating pods * Manually enforce kube-proxy for kubeadm deploy * remove proxy. update to kubeadm 1.8.0rc1
7 years ago
kubeadm support (#1631) * kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
7 years ago
contiv network support (#1914) * Add Contiv support Contiv is a network plugin for Kubernetes and Docker. It supports vlan/vxlan/BGP/Cisco ACI technologies. It support firewall policies, multiple networks and bridging pods onto physical networks. * Update contiv version to 1.1.4 Update contiv version to 1.1.4 and added SVC_SUBNET in contiv-config. * Load openvswitch module to workaround on CentOS7.4 * Set contiv cni version to 0.1.0 Correct contiv CNI version to 0.1.0. * Use kube_apiserver_endpoint for K8S_API_SERVER Use kube_apiserver_endpoint as K8S_API_SERVER to make contiv talks to a available endpoint no matter if there's a loadbalancer or not. * Make contiv use its own etcd Before this commit, contiv is using a etcd proxy mode to k8s etcd, this work fine when the etcd hosts are co-located with contiv etcd proxy, however the k8s peering certs are only in etcd group, as a result the etcd-proxy is not able to peering with the k8s etcd on etcd group, plus the netplugin is always trying to find the etcd endpoint on localhost, this will cause problem for all netplugins not runnign on etcd group nodes. This commit make contiv uses its own etcd, separate from k8s one. on kube-master nodes (where net-master runs), it will run as leader mode and on all rest nodes it will run as proxy mode. * Use cp instead of rsync to copy cni binaries Since rsync has been removed from hyperkube, this commit changes it to use cp instead. * Make contiv-etcd able to run on master nodes * Add rbac_enabled flag for contiv pods * Add contiv into CNI network plugin lists * migrate contiv test to tests/files Signed-off-by: Cristian Staretu <cristian.staretu@gmail.com> * Add required rules for contiv netplugin * Better handling json return of fwdMode * Make contiv etcd port configurable * Use default var instead of templating * roles/download/defaults/main.yml: use contiv 1.1.7 Signed-off-by: Cristian Staretu <cristian.staretu@gmail.com>
6 years ago
Add deployment from gitlab-ci
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Rework Gitlab pipeline stages for PRs/merges Run 1 of each part1/2/special for Gitlab CI only for PRs Remaining 2/3 of each stage are manual steps for master only (merges) Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Use gce hostname as inventory name Calico does not allow renaming hosts
7 years ago
Add deployment from gitlab-ci
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Rework CI triggers/pipeline * Run CI triggers in one step * Run all test matrix for triggers * Switch back to g1-small Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Rework CI triggers/pipeline * Run CI triggers in one step * Run all test matrix for triggers * Switch back to g1-small Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Rework Gitlab pipeline stages for PRs/merges Run 1 of each part1/2/special for Gitlab CI only for PRs Remaining 2/3 of each stage are manual steps for master only (merges) Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Rework CI triggers/pipeline * Run CI triggers in one step * Run all test matrix for triggers * Switch back to g1-small Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add deployment from gitlab-ci
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Rework Gitlab pipeline stages for PRs/merges Run 1 of each part1/2/special for Gitlab CI only for PRs Remaining 2/3 of each stage are manual steps for master only (merges) Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Rework Gitlab pipeline stages for PRs/merges Run 1 of each part1/2/special for Gitlab CI only for PRs Remaining 2/3 of each stage are manual steps for master only (merges) Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Manual steps for Gitlab CI pipeline * Reduce default testcase to 2 nodes, add HA case. * Adjust gen_matrix script for Travis/Gitlab CIs. * Enable netchecker deploy foro gitlab CI. * Sync other things from travis matrix and reorder them as build steps for pull requests, master branch, auto/manual. * Do auto-step1 from part1 and manual step2,3 for branches/PRs. * Do manual steps from part2, special for master merges. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Rework CI triggers/pipeline * Run CI triggers in one step * Run all test matrix for triggers * Switch back to g1-small Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Add gitlab CI auto builds for triggers Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add coreos-alpha weave manual CI builds Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Add deployment from gitlab-ci
7 years ago
Remove upgrade from the ubuntu-rkt-sep CI job
7 years ago
Adding kubelet in rkt
7 years ago
Fixed deploy cluster with vault cert manager (#1548) * Added custom ips to etcd vault distributed certificates * Added custom ips to kube-master vault distributed certificates * Added comment about issue_cert_copy_ca var in vault/issue_cert role file * Generate kube-proxy, controller-manager and scheduler certificates by vault * Revert "Disable vault from CI (#1546)" This reverts commit 781f31d2b81b98c8aa6cfda0897d5bd4d966107c. * Fixed upgrade cluster with vault cert manager * Remove vault dir in reset playbook
7 years ago
Vault security hardening and role isolation
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
add ci test for rbac
7 years ago
Upgrade to kubernetes v1.8.0 (#1730) * Upgrade to kubernetes v1.8.0 hyperkube no longer contains rsync, so now use cp * Enable node authorization mode * change kube-proxy cert group name
7 years ago
add ci test for rbac
7 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Splitting out moderator check from syntax check - Attempt to clarify CI runs from contributors
7 years ago
Add deployment from gitlab-ci
7 years ago
Splitting out moderator check from syntax check - Attempt to clarify CI runs from contributors
7 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
add gitlabci
7 years ago
Do not auto-trigger gitlab CI pipeline on PRs For security and resources utilization reasons, do not auto-start CI for opened/updated PRs. A member of the kubernetes-incubator github org has first to approve that the PR is reasonable to test by putting the "ci check this" into the PR's comments. If approved that way, the CI pipeline starts as always. Only the 1st step of the pipeline is premoderatied, the rest will follow each over on success. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Fix pipeline premoderation/unit-tests Do not run unit-tests for master merges. Fix the permissive "null" user. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
Correct indentation and line endings for gitlab config
7 years ago
Splitting out moderator check from syntax check - Attempt to clarify CI runs from contributors
7 years ago
Add upgrade-cluster and reset playbooks to syntax check
7 years ago
Add minimal k8s upgrade playbook
7 years ago
Splitting out moderator check from syntax check - Attempt to clarify CI runs from contributors
7 years ago
Add inventory builder python script Includes tox support for running unit tests. Small note added to getting-started guide for using inventory_builder.py Also adds manual-only unit test.
7 years ago
Adding yamllinter to ci steps (#1556) * Adding yaml linter to ci check * Minor linting fixes from yamllint * Changing CI to install python pkgs from requirements.txt - adding in a secondary requirements.txt for tests - moving yamllint to tests requirements
7 years ago
Add inventory builder python script Includes tox support for running unit tests. Small note added to getting-started guide for using inventory_builder.py Also adds manual-only unit test.
7 years ago
Fix pipeline premoderation/unit-tests Do not run unit-tests for master merges. Fix the permissive "null" user. Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
  1. stages:
  2. - moderator
  3. - unit-tests
  4. - deploy-gce-part1
  5. - deploy-gce-part2
  6. - deploy-gce-special
  8. variables:
  9. FAILFASTCI_NAMESPACE: 'kargo-ci'
  10. # DOCKER_HOST: tcp://localhost:2375
  11. ANSIBLE_FORCE_COLOR: "true"
  13. # asia-east1-a
  14. # asia-northeast1-a
  15. # europe-west1-b
  16. # us-central1-a
  17. # us-east1-b
  18. # us-west1-a
  20. before_script:
  21. - pip install -r tests/requirements.txt
  22. - mkdir -p /.ssh
  24. .job: &job
  25. tags:
  26. - kubernetes
  27. - docker
  28. image: quay.io/ant31/kargo:master
  30. .docker_service: &docker_service
  31. services:
  32. - docker:dind
  34. .create_cluster: &create_cluster
  35. <<: *job
  36. <<: *docker_service
  38. .gce_variables: &gce_variables
  39. GCE_USER: travis
  40. SSH_USER: $GCE_USER
  41. TEST_ID: "$CI_PIPELINE_ID-$CI_BUILD_ID"
  42. CI_TEST_VARS: "./tests/files/${CI_JOB_NAME}.yml"
  43. CONTAINER_ENGINE: docker
  44. PRIVATE_KEY: $GCE_PRIVATE_KEY
  45. GS_ACCESS_KEY_ID: $GS_KEY
  46. GS_SECRET_ACCESS_KEY: $GS_SECRET
  47. CLOUD_MACHINE_TYPE: "g1-small"
  48. GCE_PREEMPTIBLE: "false"
  49. ANSIBLE_KEEP_REMOTE_FILES: "1"
  50. ANSIBLE_CONFIG: ./tests/ansible.cfg
  51. IDEMPOT_CHECK: "false"
  52. RESET_CHECK: "false"
  53. UPGRADE_TEST: "false"
  54. KUBEADM_ENABLED: "false"
  55. LOG_LEVEL: "-vv"
  56. MAGIC: "ci check this"
  58. .gce: &gce
  59. <<: *job
  60. <<: *docker_service
  61. cache:
  62. key: "$CI_BUILD_REF_NAME"
  63. paths:
  64. - downloads/
  65. - $HOME/.cache
  66. before_script:
  67. - docker info
  68. - pip install -r tests/requirements.txt
  69. - mkdir -p /.ssh
  70. - mkdir -p $HOME/.ssh
  71. - echo $PRIVATE_KEY | base64 -d > $HOME/.ssh/id_rsa
  72. - echo $GCE_PEM_FILE | base64 -d > $HOME/.ssh/gce
  73. - echo $GCE_CREDENTIALS > $HOME/.ssh/gce.json
  74. - chmod 400 $HOME/.ssh/id_rsa
  75. - ansible-playbook --version
  76. - export PYPATH=$([[ ! "$CI_JOB_NAME" =~ "coreos" ]] && echo /usr/bin/python || echo /opt/bin/python)
  77. - echo "CI_JOB_NAME is $CI_JOB_NAME"
  78. - echo "PYPATH is $PYPATH"
  79. script:
  80. - pwd
  81. - ls
  82. - echo ${PWD}
  83. - echo "${STARTUP_SCRIPT}"
  84. - >
  85. ansible-playbook tests/cloud_playbooks/create-gce.yml -i tests/local_inventory/hosts.cfg -c local
  86. ${LOG_LEVEL}
  87. -e gce_credentials_file=${HOME}/.ssh/gce.json
  88. -e gce_project_id=${GCE_PROJECT_ID}
  89. -e gce_service_account_email=${GCE_ACCOUNT}
  90. -e inventory_path=${PWD}/inventory/inventory.ini
  91. -e test_id=${TEST_ID}
  92. -e preemptible=$GCE_PREEMPTIBLE
  94. # Check out latest tag if testing upgrade
  95. # Uncomment when gitlab kargo repo has tags
  96. #- test "${UPGRADE_TEST}" != "false" && git fetch --all && git checkout $(git describe --tags $(git rev-list --tags --max-count=1))
  97. - test "${UPGRADE_TEST}" != "false" && git checkout 72ae7638bcc94c66afa8620dfa4ad9a9249327ea
  98. # Checkout the CI vars file so it is available
  99. - test "${UPGRADE_TEST}" != "false" && git checkout "${CI_BUILD_REF}" tests/files/${CI_JOB_NAME}.yml
  102. # Create cluster
  103. - >
  104. ansible-playbook
  105. -i inventory/inventory.ini
  106. -b --become-user=root
  107. --private-key=${HOME}/.ssh/id_rsa
  108. -u $SSH_USER
  109. ${SSH_ARGS}
  110. ${LOG_LEVEL}
  111. -e @${CI_TEST_VARS}
  112. -e ansible_python_interpreter=${PYPATH}
  113. -e ansible_ssh_user=${SSH_USER}
  114. -e local_release_dir=${PWD}/downloads
  115. --limit "all:!fake_hosts"
  116. cluster.yml
  118. # Repeat deployment if testing upgrade
  119. - >
  120. if [ "${UPGRADE_TEST}" != "false" ]; then
  121. test "${UPGRADE_TEST}" == "basic" && PLAYBOOK="cluster.yml";
  122. test "${UPGRADE_TEST}" == "graceful" && PLAYBOOK="upgrade-cluster.yml";
  123. git checkout "${CI_BUILD_REF}";
  124. ansible-playbook
  125. -i inventory/inventory.ini
  126. -b --become-user=root
  127. --private-key=${HOME}/.ssh/id_rsa
  128. -u $SSH_USER
  129. ${SSH_ARGS}
  130. ${LOG_LEVEL}
  131. -e @${CI_TEST_VARS}
  132. -e ansible_python_interpreter=${PYPATH}
  133. -e ansible_ssh_user=${SSH_USER}
  134. -e local_release_dir=${PWD}/downloads
  135. --limit "all:!fake_hosts"
  136. $PLAYBOOK;
  137. fi
  139. # Tests Cases
  140. ## Test Master API
  141. - >
  142. ansible-playbook -i inventory/inventory.ini -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/010_check-apiserver.yml $LOG_LEVEL
  143. -e "{kubeadm_enabled: ${KUBEADM_ENABLED}}"
  145. ## Ping the between 2 pod
  146. - ansible-playbook -i inventory/inventory.ini -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/030_check-network.yml $LOG_LEVEL
  148. ## Advanced DNS checks
  149. - ansible-playbook -i inventory/inventory.ini -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/040_check-network-adv.yml $LOG_LEVEL
  151. ## Idempotency checks 1/5 (repeat deployment)
  152. - >
  153. if [ "${IDEMPOT_CHECK}" = "true" ]; then
  154. ansible-playbook
  155. -i inventory/inventory.ini
  156. -b --become-user=root
  157. --private-key=${HOME}/.ssh/id_rsa
  158. -u $SSH_USER
  159. ${SSH_ARGS}
  160. ${LOG_LEVEL}
  161. -e @${CI_TEST_VARS}
  162. -e ansible_python_interpreter=${PYPATH}
  163. -e local_release_dir=${PWD}/downloads
  164. --limit "all:!fake_hosts"
  165. cluster.yml;
  166. fi
  168. ## Idempotency checks 2/5 (Advanced DNS checks)
  169. - >
  170. if [ "${IDEMPOT_CHECK}" = "true" ]; then
  171. ansible-playbook
  172. -i inventory/inventory.ini
  173. -b --become-user=root
  174. --private-key=${HOME}/.ssh/id_rsa
  175. -u $SSH_USER
  176. ${SSH_ARGS}
  177. ${LOG_LEVEL}
  178. -e @${CI_TEST_VARS}
  179. --limit "all:!fake_hosts"
  180. tests/testcases/040_check-network-adv.yml $LOG_LEVEL;
  181. fi
  183. ## Idempotency checks 3/5 (reset deployment)
  184. - >
  185. if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
  186. ansible-playbook
  187. -i inventory/inventory.ini
  188. -b --become-user=root
  189. --private-key=${HOME}/.ssh/id_rsa
  190. -u $SSH_USER
  191. ${SSH_ARGS}
  192. ${LOG_LEVEL}
  193. -e @${CI_TEST_VARS}
  194. -e ansible_python_interpreter=${PYPATH}
  195. -e reset_confirmation=yes
  196. --limit "all:!fake_hosts"
  197. reset.yml;
  198. fi
  200. ## Idempotency checks 4/5 (redeploy after reset)
  201. - >
  202. if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
  203. ansible-playbook
  204. -i inventory/inventory.ini
  205. -b --become-user=root
  206. --private-key=${HOME}/.ssh/id_rsa
  207. -u $SSH_USER
  208. ${SSH_ARGS}
  209. ${LOG_LEVEL}
  210. -e @${CI_TEST_VARS}
  211. -e ansible_python_interpreter=${PYPATH}
  212. -e local_release_dir=${PWD}/downloads
  213. --limit "all:!fake_hosts"
  214. cluster.yml;
  215. fi
  217. ## Idempotency checks 5/5 (Advanced DNS checks)
  218. - >
  219. if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
  220. ansible-playbook -i inventory/inventory.ini -e ansible_python_interpreter=${PYPATH}
  221. -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root
  222. --limit "all:!fake_hosts"
  223. tests/testcases/040_check-network-adv.yml $LOG_LEVEL;
  224. fi
  226. after_script:
  227. - >
  228. ansible-playbook -i inventory/inventory.ini tests/cloud_playbooks/delete-gce.yml -c local $LOG_LEVEL
  229. -e @${CI_TEST_VARS}
  230. -e test_id=${TEST_ID}
  231. -e gce_project_id=${GCE_PROJECT_ID}
  232. -e gce_service_account_email=${GCE_ACCOUNT}
  233. -e gce_credentials_file=${HOME}/.ssh/gce.json
  234. -e inventory_path=${PWD}/inventory/inventory.ini
  236. # Test matrix. Leave the comments for markup scripts.
  237. .coreos_calico_aio_variables: &coreos_calico_aio_variables
  238. # stage: deploy-gce-part1
  239. MOVED_TO_GROUP_VARS: "true"
  241. .ubuntu_canal_ha_variables: &ubuntu_canal_ha_variables
  242. # stage: deploy-gce-part1
  243. UPGRADE_TEST: "graceful"
  245. .centos_weave_kubeadm_variables: &centos_weave_kubeadm_variables
  246. # stage: deploy-gce-part1
  247. UPGRADE_TEST: "graceful"
  249. .ubuntu_canal_kubeadm_variables: &ubuntu_canal_kubeadm_variables
  250. # stage: deploy-gce-part1
  251. MOVED_TO_GROUP_VARS: "true"
  253. .ubuntu_contiv_sep_variables: &ubuntu_contiv_sep_variables
  254. # stage: deploy-gce-special
  255. MOVED_TO_GROUP_VARS: "true"
  257. .rhel7_weave_variables: &rhel7_weave_variables
  258. # stage: deploy-gce-part1
  259. MOVED_TO_GROUP_VARS: "true"
  261. .centos7_flannel_addons_variables: &centos7_flannel_addons_variables
  262. # stage: deploy-gce-part2
  263. MOVED_TO_GROUP_VARS: "true"
  265. .debian8_calico_variables: &debian8_calico_variables
  266. # stage: deploy-gce-part2
  267. MOVED_TO_GROUP_VARS: "true"
  269. .coreos_canal_variables: &coreos_canal_variables
  270. # stage: deploy-gce-part2
  271. MOVED_TO_GROUP_VARS: "true"
  273. .rhel7_canal_sep_variables: &rhel7_canal_sep_variables
  274. # stage: deploy-gce-special
  275. MOVED_TO_GROUP_VARS: "true"
  277. .ubuntu_weave_sep_variables: &ubuntu_weave_sep_variables
  278. # stage: deploy-gce-special
  279. MOVED_TO_GROUP_VARS: "true"
  281. .centos7_calico_ha_variables: &centos7_calico_ha_variables
  282. # stage: deploy-gce-special
  283. MOVED_TO_GROUP_VARS: "true"
  285. .coreos_alpha_weave_ha_variables: &coreos_alpha_weave_ha_variables
  286. # stage: deploy-gce-special
  287. MOVED_TO_GROUP_VARS: "true"
  289. .ubuntu_rkt_sep_variables: &ubuntu_rkt_sep_variables
  290. # stage: deploy-gce-part1
  291. MOVED_TO_GROUP_VARS: "true"
  293. .ubuntu_vault_sep_variables: &ubuntu_vault_sep_variables
  294. # stage: deploy-gce-part1
  295. MOVED_TO_GROUP_VARS: "true"
  297. .ubuntu_flannel_variables: &ubuntu_flannel_variables
  298. # stage: deploy-gce-special
  299. MOVED_TO_GROUP_VARS: "true"
  301. # Builds for PRs only (premoderated by unit-tests step) and triggers (auto)
  302. coreos-calico-aio:
  303. stage: deploy-gce-part1
  304. <<: *job
  305. <<: *gce
  306. variables:
  307. <<: *gce_variables
  308. <<: *coreos_calico_aio_variables
  309. when: on_success
  310. except: ['triggers']
  311. only: [/^pr-.*$/]
  313. coreos-calico-sep-triggers:
  314. stage: deploy-gce-part1
  315. <<: *job
  316. <<: *gce
  317. variables:
  318. <<: *gce_variables
  319. <<: *coreos_calico_aio_variables
  320. when: on_success
  321. only: ['triggers']
  323. centos7-flannel-addons:
  324. stage: deploy-gce-part2
  325. <<: *job
  326. <<: *gce
  327. variables:
  328. <<: *gce_variables
  329. <<: *centos7_flannel_addons_variables
  330. when: on_success
  331. except: ['triggers']
  332. only: [/^pr-.*$/]
  334. centos7-flannel-addons-triggers:
  335. stage: deploy-gce-part1
  336. <<: *job
  337. <<: *gce
  338. variables:
  339. <<: *gce_variables
  340. <<: *centos7_flannel_addons_variables
  341. when: on_success
  342. only: ['triggers']
  344. ubuntu-weave-sep:
  345. stage: deploy-gce-special
  346. <<: *job
  347. <<: *gce
  348. variables:
  349. <<: *gce_variables
  350. <<: *ubuntu_weave_sep_variables
  351. when: on_success
  352. except: ['triggers']
  353. only: [/^pr-.*$/]
  355. ubuntu-weave-sep-triggers:
  356. stage: deploy-gce-part1
  357. <<: *job
  358. <<: *gce
  359. variables:
  360. <<: *gce_variables
  361. <<: *ubuntu_weave_sep_variables
  362. when: on_success
  363. only: ['triggers']
  365. # More builds for PRs/merges (manual) and triggers (auto)
  366. ubuntu-canal-ha:
  367. stage: deploy-gce-part1
  368. <<: *job
  369. <<: *gce
  370. variables:
  371. <<: *gce_variables
  372. <<: *ubuntu_canal_ha_variables
  373. when: manual
  374. except: ['triggers']
  375. only: ['master', /^pr-.*$/]
  377. ubuntu-canal-ha-triggers:
  378. stage: deploy-gce-part1
  379. <<: *job
  380. <<: *gce
  381. variables:
  382. <<: *gce_variables
  383. <<: *ubuntu_canal_ha_variables
  384. when: on_success
  385. only: ['triggers']
  387. ubuntu-canal-kubeadm:
  388. stage: deploy-gce-part1
  389. <<: *job
  390. <<: *gce
  391. variables:
  392. <<: *gce_variables
  393. <<: *ubuntu_canal_kubeadm_variables
  394. when: manual
  395. except: ['triggers']
  396. only: ['master', /^pr-.*$/]
  398. ubuntu-canal-kubeadm-triggers:
  399. stage: deploy-gce-part1
  400. <<: *job
  401. <<: *gce
  402. variables:
  403. <<: *gce_variables
  404. <<: *ubuntu_canal_kubeadm_variables
  405. when: on_success
  406. only: ['triggers']
  408. centos-weave-kubeadm:
  409. stage: deploy-gce-part1
  410. <<: *job
  411. <<: *gce
  412. variables:
  413. <<: *gce_variables
  414. <<: *centos_weave_kubeadm_variables
  415. when: manual
  416. except: ['triggers']
  417. only: ['master', /^pr-.*$/]
  419. centos-weave-kubeadm-triggers:
  420. stage: deploy-gce-part1
  421. <<: *job
  422. <<: *gce
  423. variables:
  424. <<: *gce_variables
  425. <<: *centos_weave_kubeadm_variables
  426. when: on_success
  427. only: ['triggers']
  429. ubuntu-contiv-sep:
  430. stage: deploy-gce-special
  431. <<: *job
  432. <<: *gce
  433. variables:
  434. <<: *gce_variables
  435. <<: *ubuntu_contiv_sep_variables
  436. when: manual
  437. except: ['triggers']
  438. only: ['master', /^pr-.*$/]
  440. rhel7-weave:
  441. stage: deploy-gce-part1
  442. <<: *job
  443. <<: *gce
  444. variables:
  445. <<: *gce_variables
  446. <<: *rhel7_weave_variables
  447. when: manual
  448. except: ['triggers']
  449. only: ['master', /^pr-.*$/]
  451. rhel7-weave-triggers:
  452. stage: deploy-gce-part1
  453. <<: *job
  454. <<: *gce
  455. variables:
  456. <<: *gce_variables
  457. <<: *rhel7_weave_variables
  458. when: on_success
  459. only: ['triggers']
  461. debian8-calico-upgrade:
  462. stage: deploy-gce-part2
  463. <<: *job
  464. <<: *gce
  465. variables:
  466. <<: *gce_variables
  467. <<: *debian8_calico_variables
  468. when: manual
  469. except: ['triggers']
  470. only: ['master', /^pr-.*$/]
  472. debian8-calico-triggers:
  473. stage: deploy-gce-part1
  474. <<: *job
  475. <<: *gce
  476. variables:
  477. <<: *gce_variables
  478. <<: *debian8_calico_variables
  479. when: on_success
  480. only: ['triggers']
  482. coreos-canal:
  483. stage: deploy-gce-part2
  484. <<: *job
  485. <<: *gce
  486. variables:
  487. <<: *gce_variables
  488. <<: *coreos_canal_variables
  489. when: manual
  490. except: ['triggers']
  491. only: ['master', /^pr-.*$/]
  493. coreos-canal-triggers:
  494. stage: deploy-gce-part1
  495. <<: *job
  496. <<: *gce
  497. variables:
  498. <<: *gce_variables
  499. <<: *coreos_canal_variables
  500. when: on_success
  501. only: ['triggers']
  503. rhel7-canal-sep:
  504. stage: deploy-gce-special
  505. <<: *job
  506. <<: *gce
  507. variables:
  508. <<: *gce_variables
  509. <<: *rhel7_canal_sep_variables
  510. when: manual
  511. except: ['triggers']
  512. only: ['master', /^pr-.*$/,]
  514. rhel7-canal-sep-triggers:
  515. stage: deploy-gce-part1
  516. <<: *job
  517. <<: *gce
  518. variables:
  519. <<: *gce_variables
  520. <<: *rhel7_canal_sep_variables
  521. when: on_success
  522. only: ['triggers']
  524. centos7-calico-ha:
  525. stage: deploy-gce-special
  526. <<: *job
  527. <<: *gce
  528. variables:
  529. <<: *gce_variables
  530. <<: *centos7_calico_ha_variables
  531. when: manual
  532. except: ['triggers']
  533. only: ['master', /^pr-.*$/]
  535. centos7-calico-ha-triggers:
  536. stage: deploy-gce-part1
  537. <<: *job
  538. <<: *gce
  539. variables:
  540. <<: *gce_variables
  541. <<: *centos7_calico_ha_variables
  542. when: on_success
  543. only: ['triggers']
  545. # no triggers yet https://github.com/kubernetes-incubator/kargo/issues/613
  546. coreos-alpha-weave-ha:
  547. stage: deploy-gce-special
  548. <<: *job
  549. <<: *gce
  550. variables:
  551. <<: *gce_variables
  552. <<: *coreos_alpha_weave_ha_variables
  553. when: manual
  554. except: ['triggers']
  555. only: ['master', /^pr-.*$/]
  557. ubuntu-rkt-sep:
  558. stage: deploy-gce-part1
  559. <<: *job
  560. <<: *gce
  561. variables:
  562. <<: *gce_variables
  563. <<: *ubuntu_rkt_sep_variables
  564. when: manual
  565. except: ['triggers']
  566. only: ['master', /^pr-.*$/]
  568. ubuntu-vault-sep:
  569. stage: deploy-gce-part1
  570. <<: *job
  571. <<: *gce
  572. variables:
  573. <<: *gce_variables
  574. <<: *ubuntu_vault_sep_variables
  575. when: manual
  576. except: ['triggers']
  577. only: ['master', /^pr-.*$/]
  579. ubuntu-flannel-sep:
  580. stage: deploy-gce-special
  581. <<: *job
  582. <<: *gce
  583. variables:
  584. <<: *gce_variables
  585. <<: *ubuntu_flannel_variables
  586. when: manual
  587. except: ['triggers']
  588. only: ['master', /^pr-.*$/]
  590. # Premoderated with manual actions
  591. ci-authorized:
  592. <<: *job
  593. stage: moderator
  594. before_script:
  595. - apt-get -y install jq
  596. script:
  597. - /bin/sh scripts/premoderator.sh
  598. except: ['triggers', 'master']
  600. syntax-check:
  601. <<: *job
  602. stage: unit-tests
  603. script:
  604. - ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root cluster.yml -vvv --syntax-check
  605. - ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root upgrade-cluster.yml -vvv --syntax-check
  606. - ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root reset.yml -vvv --syntax-check
  607. - ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root extra_playbooks/upgrade-only-k8s.yml -vvv --syntax-check
  608. except: ['triggers', 'master']
  610. yamllint:
  611. <<: *job
  612. stage: unit-tests
  613. script:
  614. - yamllint roles
  615. except: ['triggers', 'master']
  617. tox-inventory-builder:
  618. stage: unit-tests
  619. <<: *job
  620. script:
  621. - pip install tox
  622. - cd contrib/inventory_builder && tox
  623. when: manual
  624. except: ['triggers', 'master']