richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6557 Commits
30 Branches
81 Tags
149 MiB
Tree: e4fe679916
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'e4fe679916'
${ noResults }
kubespray/tests/testcases/030_check-network.yml

150 lines
5.0 KiB
Raw Normal View History

Add complete test integration
8 years ago
Replace kube-master with kube_control_plane (#7256) This replaces kube-master with kube_control_plane because of [1]: The Kubernetes project is moving away from wording that is considered offensive. A new working group WG Naming was created to track this work, and the word "master" was declared as offensive. A proposal was formalized for replacing the word "master" with "control plane". This means it should be removed from source code, documentation, and user-facing configuration from Kubernetes and its sub-projects. NOTE: The reason why this changes it to kube_control_plane not kube-control-plane is for valid group names on ansible. [1]: https://github.com/kubernetes/enhancements/blob/master/keps/sig-cluster-lifecycle/kubeadm/2067-rename-master-label-taint/README.md#motivation
3 years ago
Merge 020_check and 030_check (#4623) * Merge 020_check and 030_check * Fix pods output and fail if test pods is not ready
5 years ago
[registry] Switch registry to use registry.k8s.io Please see the conversation here: https://groups.google.com/a/kubernetes.io/g/dev/c/DYZYNQ_A6_c
2 years ago
Merge 020_check and 030_check (#4623) * Merge 020_check and 030_check * Fix pods output and fail if test pods is not ready
5 years ago
Add complete test integration
8 years ago
Remove support for CoreOS Container Linux (#6576)
4 years ago
Improve CI test matrix For Travis CI and GCE, add a naive generator script into a markdown table. Add GCE/Travis CI matrix docs. Add CoreOS test cases. Rework existing cases w/o loosing of coverage. Rework postinstall tests to support CoreOS as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Fix kubespray flatcar ansible_os_family and ansible_distribution (#8029) Closes https://github.com/kubernetes-sigs/kubespray/issues/8028 Signed-off-by: Iago Santos <iago.santos.pardo@adfinis.com>
3 years ago
Improve CI test matrix For Travis CI and GCE, add a naive generator script into a markdown table. Add GCE/Travis CI matrix docs. Add CoreOS test cases. Rework existing cases w/o loosing of coverage. Rework postinstall tests to support CoreOS as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Fix Ansible-lint error [E502] (#4743)
5 years ago
Improve CI test matrix For Travis CI and GCE, add a naive generator script into a markdown table. Add GCE/Travis CI matrix docs. Add CoreOS test cases. Rework existing cases w/o loosing of coverage. Rework postinstall tests to support CoreOS as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Fix kubespray flatcar ansible_os_family and ansible_distribution (#8029) Closes https://github.com/kubernetes-sigs/kubespray/issues/8028 Signed-off-by: Iago Santos <iago.santos.pardo@adfinis.com>
3 years ago
Improve CI test matrix For Travis CI and GCE, add a naive generator script into a markdown table. Add GCE/Travis CI matrix docs. Add CoreOS test cases. Rework existing cases w/o loosing of coverage. Rework postinstall tests to support CoreOS as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Rotate kubelet server certificate. (#6453) * Rotate kubelet server certificate. * CI test kubelet server cert rotation * Approve kubelet serving certificates in tests.
4 years ago
Move to Ansible 3.4.0 (#7672) * Ansible: move to Ansible 3.4.0 which uses ansible-base 2.10.10 * Docs: add a note about ansible upgrade post 2.9.x * CI: ensure ansible is removed before ansible 3.x is installed to avoid pip failures * Ansible: use newer ansible-lint * Fix ansible-lint 5.0.11 found issues * syntax issues * risky-file-permissions * var-naming * role-name * molecule tests * Mitogen: use 0.3.0rc1 which adds support for ansible 2.10+ * Pin ansible-base to 2.10.11 to get package fix on RHEL8
3 years ago
Rotate kubelet server certificate. (#6453) * Rotate kubelet server certificate. * CI test kubelet server cert rotation * Approve kubelet serving certificates in tests.
4 years ago
Fix a bunch of failed quality rules (#6646)
4 years ago
Merge 020_check and 030_check (#4623) * Merge 020_check and 030_check * Fix pods output and fail if test pods is not ready
5 years ago
Wait for available API token in a new namespace (#7045) Just after creating a namespace, the corresponding token could not be created and sometimes the pod creation might be failed. This adds check of the token in the new namespace to make this test case stable.
3 years ago
Fix issue with api token wait check not working (#7566)
3 years ago
Wait for available API token in a new namespace (#7045) Just after creating a namespace, the corresponding token could not be created and sometimes the pod creation might be failed. This adds check of the token in the new namespace to make this test case stable.
3 years ago
Fix a bunch of failed quality rules (#6646)
4 years ago
Fix ansible-lint E301 for commands fetching data (#6465)
4 years ago
Replace "replicas" option (CI tests) removed in latest k8s versions (#6068)
4 years ago
Merge 020_check and 030_check (#4623) * Merge 020_check and 030_check * Fix pods output and fail if test pods is not ready
5 years ago
Move to Ansible 3.4.0 (#7672) * Ansible: move to Ansible 3.4.0 which uses ansible-base 2.10.10 * Docs: add a note about ansible upgrade post 2.9.x * CI: ensure ansible is removed before ansible 3.x is installed to avoid pip failures * Ansible: use newer ansible-lint * Fix ansible-lint 5.0.11 found issues * syntax issues * risky-file-permissions * var-naming * role-name * molecule tests * Mitogen: use 0.3.0rc1 which adds support for ansible 2.10+ * Pin ansible-base to 2.10.11 to get package fix on RHEL8
3 years ago
Add cluster dump artifact in CI jobs (#5796)
4 years ago
Fix a bunch of failed quality rules (#6646)
4 years ago
Fix ansible-lint E301 for commands fetching data (#6465)
4 years ago
Add a testcase to check that pods are running (#4555)
5 years ago
Upgrade to kubeadm (#1667) * Enable upgrade to kubeadm * fix kubedns upgrade * try upgrade route * use init/upgrade strategy for kubeadm and ignore kubedns svc * Use bin_dir for kubeadm * delete more secrets * fix waiting for terminating pods * Manually enforce kube-proxy for kubeadm deploy * remove proxy. update to kubeadm 1.8.0rc1
7 years ago
Add a testcase to check that pods are running (#4555)
5 years ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Fix a bunch of failed quality rules (#6646)
4 years ago
Fix ansible-lint E301 for commands fetching data (#6465)
4 years ago
Upgrade to kubeadm (#1667) * Enable upgrade to kubeadm * fix kubedns upgrade * try upgrade route * use init/upgrade strategy for kubeadm and ignore kubedns svc * Use bin_dir for kubeadm * delete more secrets * fix waiting for terminating pods * Manually enforce kube-proxy for kubeadm deploy * remove proxy. update to kubeadm 1.8.0rc1
7 years ago
Move to Ansible 3.4.0 (#7672) * Ansible: move to Ansible 3.4.0 which uses ansible-base 2.10.10 * Docs: add a note about ansible upgrade post 2.9.x * CI: ensure ansible is removed before ansible 3.x is installed to avoid pip failures * Ansible: use newer ansible-lint * Fix ansible-lint 5.0.11 found issues * syntax issues * risky-file-permissions * var-naming * role-name * molecule tests * Mitogen: use 0.3.0rc1 which adds support for ansible 2.10+ * Pin ansible-base to 2.10.11 to get package fix on RHEL8
3 years ago
Fix Ansible-lint error [E502] (#4743)
5 years ago
Merge 020_check and 030_check (#4623) * Merge 020_check and 030_check * Fix pods output and fail if test pods is not ready
5 years ago
Fix ansible-lint E301 for commands fetching data (#6465)
4 years ago
ansible-lint: add spaces around variables [E206] (#4699)
5 years ago
Add .editorconfig file (#6307)
4 years ago
Fix ansible-lint E301 for commands fetching data (#6465)
4 years ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Move to Ansible 3.4.0 (#7672) * Ansible: move to Ansible 3.4.0 which uses ansible-base 2.10.10 * Docs: add a note about ansible upgrade post 2.9.x * CI: ensure ansible is removed before ansible 3.x is installed to avoid pip failures * Ansible: use newer ansible-lint * Fix ansible-lint 5.0.11 found issues * syntax issues * risky-file-permissions * var-naming * role-name * molecule tests * Mitogen: use 0.3.0rc1 which adds support for ansible 2.10+ * Pin ansible-base to 2.10.11 to get package fix on RHEL8
3 years ago
fix apply for netchecker upgrade (#1659) * fix apply for netchecker upgrade and graceful upgrade * Speed up daemonset upgrades. Make check wait for ds upgrades.
7 years ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Fix ansible-lint E301 for commands fetching data (#6465)
4 years ago
ansible-lint: add spaces around variables [E206] (#4699)
5 years ago
Add .editorconfig file (#6307)
4 years ago
Fix ansible-lint E301 for commands fetching data (#6465)
4 years ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
fix apply for netchecker upgrade (#1659) * fix apply for netchecker upgrade and graceful upgrade * Speed up daemonset upgrades. Make check wait for ds upgrades.
7 years ago
Fix a bunch of failed quality rules (#6646)
4 years ago
Fix ansible-lint E301 for commands fetching data (#6465)
4 years ago
fix apply for netchecker upgrade (#1659) * fix apply for netchecker upgrade and graceful upgrade * Speed up daemonset upgrades. Make check wait for ds upgrades.
7 years ago
Move to Ansible 3.4.0 (#7672) * Ansible: move to Ansible 3.4.0 which uses ansible-base 2.10.10 * Docs: add a note about ansible upgrade post 2.9.x * CI: ensure ansible is removed before ansible 3.x is installed to avoid pip failures * Ansible: use newer ansible-lint * Fix ansible-lint 5.0.11 found issues * syntax issues * risky-file-permissions * var-naming * role-name * molecule tests * Mitogen: use 0.3.0rc1 which adds support for ansible 2.10+ * Pin ansible-base to 2.10.11 to get package fix on RHEL8
3 years ago
Fix Ansible-lint error [E502] (#4743)
5 years ago
Add complete test integration
8 years ago
Fix Ansible-lint error [E502] (#4743)
5 years ago
Add subnet var in tests
7 years ago
Add complete test integration
8 years ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
ansible-lint: add spaces around variables [E206] (#4699)
5 years ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
ansible-lint: add spaces around variables [E206] (#4699)
5 years ago
Add complete test integration
8 years ago
Fix Ansible-lint error [E502] (#4743)
5 years ago
ansible-lint: add spaces around variables [E206] (#4699)
5 years ago
Add complete test integration
8 years ago
Fix ansible-lint E305 (#6459)
4 years ago
Fix Ansible-lint error [E502] (#4743)
5 years ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
ansible-lint: add spaces around variables [E206] (#4699)
5 years ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Fix ansible-lint E305 (#6459)
4 years ago
Fix Ansible-lint error [E502] (#4743)
5 years ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
ansible-lint: add spaces around variables [E206] (#4699)
5 years ago
  1. ---
  2. - hosts: kube_control_plane[0]
  3. vars:
  4. test_image_repo: registry.k8s.io/busybox
  5. test_image_tag: latest
  7. tasks:
  8. - name: Force binaries directory for Flatcar Container Linux by Kinvolk
  9. set_fact:
  10. bin_dir: "/opt/bin"
  11. when: ansible_os_family in ["Flatcar", "Flatcar Container Linux by Kinvolk"]
  13. - name: Force binaries directory for other hosts
  14. set_fact:
  15. bin_dir: "/usr/local/bin"
  16. when: not ansible_os_family in ["Flatcar", "Flatcar Container Linux by Kinvolk"]
  18. - name: Approve kubelet serving certificates
  19. block:
  21. - name: Get certificate signing requests
  22. command: "{{ bin_dir }}/kubectl get csr -o name"
  23. register: get_csr
  24. changed_when: false
  26. - name: Check there are csrs
  27. assert:
  28. that: get_csr.stdout_lines | length > 0
  29. fail_msg: kubelet_rotate_server_certificates is {{ kubelet_rotate_server_certificates }} but no csr's found
  31. - name: Approve certificates
  32. command: "{{ bin_dir }}/kubectl certificate approve {{ get_csr.stdout_lines | join(' ') }}"
  33. register: certificate_approve
  34. when: get_csr.stdout_lines | length > 0
  35. changed_when: certificate_approve.stdout
  37. - debug: # noqa unnamed-task
  38. msg: "{{ certificate_approve.stdout.split('\n') }}"
  40. when: kubelet_rotate_server_certificates | default(false)
  42. - name: Create test namespace
  43. command: "{{ bin_dir }}/kubectl create namespace test"
  44. changed_when: false
  46. - name: Wait for API token of test namespace
  47. shell: "set -o pipefail && {{ bin_dir }}/kubectl describe serviceaccounts default --namespace test | grep Tokens | awk '{print $2}'"
  48. args:
  49. executable: /bin/bash
  50. changed_when: false
  51. register: default_token
  52. until: default_token.stdout | length > 0
  53. retries: 5
  54. delay: 5
  56. - name: Run 2 busybox pods in test ns
  57. command: "{{ bin_dir }}/kubectl run {{ item }} --image={{ test_image_repo }}:{{ test_image_tag }} --namespace test --command -- tail -f /dev/null"
  58. changed_when: false
  59. loop:
  60. - busybox1
  61. - busybox2
  63. - import_role: # noqa unnamed-task
  64. name: cluster-dump
  66. - name: Check that all pods are running and ready
  67. command: "{{ bin_dir }}/kubectl get pods --namespace test --no-headers -o yaml"
  68. changed_when: false
  69. register: run_pods_log
  70. until:
  71. # Check that all pods are running
  72. - '(run_pods_log.stdout | from_yaml)["items"] | map(attribute = "status.phase") | unique | list == ["Running"]'
  73. # Check that all pods are ready
  74. - '(run_pods_log.stdout | from_yaml)["items"] | map(attribute = "status.containerStatuses") | map("map", attribute = "ready") | map("min") | min'
  75. retries: 18
  76. delay: 10
  77. failed_when: false
  78. no_log: true
  80. - name: Get pod names
  81. command: "{{ bin_dir }}/kubectl get pods -n test -o json"
  82. changed_when: false
  83. register: pods
  84. no_log: true
  86. - debug: # noqa unnamed-task
  87. msg: "{{ pods.stdout.split('\n') }}"
  88. failed_when: not run_pods_log is success
  90. - name: Get hostnet pods
  91. command: "{{ bin_dir }}/kubectl get pods -n test -o
  92. jsonpath='{range .items[?(.spec.hostNetwork)]}{.metadata.name} {.status.podIP} {.status.containerStatuses} {end}'"
  93. changed_when: false
  94. register: hostnet_pods
  95. ignore_errors: true # noqa ignore-errors
  96. no_log: true
  98. - name: Get running pods
  99. command: "{{ bin_dir }}/kubectl get pods -n test -o
  100. jsonpath='{range .items[?(.status.phase==\"Running\")]}{.metadata.name} {.status.podIP} {.status.containerStatuses} {end}'"
  101. changed_when: False
  102. register: running_pods
  103. no_log: true
  105. - name: Check kubectl output
  106. command: "{{ bin_dir }}/kubectl get pods --all-namespaces -owide"
  107. changed_when: False
  108. register: get_pods
  109. no_log: true
  111. - debug: # noqa unnamed-task
  112. msg: "{{ get_pods.stdout.split('\n') }}"
  114. - name: Set networking facts
  115. set_fact:
  116. kube_pods_subnet: 10.233.64.0/18
  117. pod_names: "{{ (pods.stdout | from_json)['items'] | map(attribute = 'metadata.name') | list }}"
  118. pod_ips: "{{ (pods.stdout | from_json)['items'] | selectattr('status.podIP', 'defined') | map(attribute = 'status.podIP') | list }}"
  119. pods_hostnet: |
  120. {% set list = hostnet_pods.stdout.split(" ") %}
  121. {{ list }}
  122. pods_running: |
  123. {% set list = running_pods.stdout.split(" ") %}
  124. {{ list }}
  126. - name: Check pods IP are in correct network
  127. assert:
  128. that: item | ipaddr(kube_pods_subnet)
  129. when:
  130. - not item in pods_hostnet
  131. - item in pods_running
  132. with_items: "{{ pod_ips }}"
  134. - name: Ping between pods is working
  135. command: "{{ bin_dir }}/kubectl -n test exec {{ item[0] }} -- ping -c 4 {{ item[1] }}"
  136. when:
  137. - not item[0] in pods_hostnet
  138. - not item[1] in pods_hostnet
  139. with_nested:
  140. - "{{ pod_names }}"
  141. - "{{ pod_ips }}"
  143. - name: Ping between hostnet pods is working
  144. command: "{{ bin_dir }}/kubectl -n test exec {{ item[0] }} -- ping -c 4 {{ item[1] }}"
  145. when:
  146. - item[0] in pods_hostnet
  147. - item[1] in pods_hostnet
  148. with_nested:
  149. - "{{ pod_names }}"
  150. - "{{ pod_ips }}"