Skip to content

Commit

Permalink
Jenkins jobs for antrea (#294)
Browse files Browse the repository at this point in the history 
* README for introduction
* jobs in yaml for jenkins-job-builder

Co-Authored-By: Antonin Bas <antonin.bas@gmail.com>
  • Loading branch information
@lzhecheng @antoninbas
lzhecheng and antoninbas committed Jan 15, 2020
1 parent 48dfa97 commit a3168dc
Show file tree
Hide file tree
Showing 4 changed files with 617 additions and 0 deletions.
30 changes: 30 additions & 0 deletions ci/jenkins/README.md
View file
@@ -0,0 +1,30 @@
## Antrea CI: Jenkins

### Reasons for Jenkins
We have tests as Github Action but Jenkins allows tests running on a cluster of multiple nodes and offers better environment setup options.

### List of Jenkins jobs
* [e2e](https://github.com/vmware-tanzu/antrea/tree/master/test/e2e): end-to-end tests for Antrea.
* conformance: community tests using sonobuoy, focusing on "Conformance", and skipping "Slow", "Serial", "Disruptive", "Flaky", "Feature", "sig-cli", "sig-storage", "sig-auth", "sig-api-machinery", "sig-apps" and "sig-node".
* network policy: community tests using sonobuoy, focusing on "Feature:NetworkPolicy", and skipping "allow ingress access from updated pod" and "named port".
Test "named port" will be supported soon, see issue [#122](https://github.com/vmware-tanzu/antrea/issues/122).
Test "allow ingress access from updated pod" fails because of a bug in the test definition, see issue [#85908](https://github.com/kubernetes/kubernetes/issues/85908).

### Requirements
Yaml files under [`ci/jenkins/jobs`](https://github.com/vmware-tanzu/antrea/tree/master/ci/jenkins/jobs) can be generated via jenkins-job-builder. If you want to try out the tests on your local jenkins setup, please notice the following requirements:
* Jenkins setup
* Plugins: ghprb, throttle-concurrents
* Install [jenkins-job-builder](https://docs.openstack.org/infra/jenkins-job-builder/index.html)
* Define your `ANTREA_GIT_CREDENTIAL` which is the credential for your private repo
* Define your `ghpr_auth`, `antrea_admin_list`, `antrea_org_list` and `antrea_white_list` as [defaults](https://docs.openstack.org/infra/jenkins-job-builder/definition.html#defaults) variables in a separate file

### Apply the jobs
Run the command to test if jobs can be generated correctly.
```bash
jenkins-jobs test -r ci/jenkins/jobs
```

Run the command to apply these jobs.
```bash
jenkins-jobs update -r ci/jenkins/jobs
```
59 changes: 59 additions & 0 deletions ci/jenkins/jobs/job-templates.yaml
View file
@@ -0,0 +1,59 @@
- job-template:
name: '{name}-{test_name}-for-pull-request'
node: '{node}'
block-downstream: false
block-upstream: false
builders: '{builders}'
concurrent: true
description: '{description}'
disabled: false
project-type: freestyle
properties:
- build-discarder:
artifact-days-to-keep: -1
artifact-num-to-keep: -1
days-to-keep: 7
num-to-keep: 30
- github:
url: 'https://github.com/{org_repo}'
- throttle:
max-per-node: 1
max-total: 0
categories: '{throttle_concurrent_builds_category}'
option: category
enabled: '{throttle_concurrent_builds_enabled}'
publishers: '{publishers}'
scm:
- git:
branches: '{branches}'
credentials-id: '{git_credentials_id}'
name: origin
refspec: +refs/heads/*:refs/remotes/origin/* +refs/pull/${{ghprbPullId}}/*:refs/remotes/origin/pr/${{ghprbPullId}}/*
url: 'https://github.com/{org_repo}'
wipe-workspace: true
included-regions: '{included_regions}'
triggers:
- github-pull-request:
admin-list: '{admin_list}'
allow-whitelist-orgs-as-admins: '{allow_whitelist_orgs_as_admins}'
auth-id: '{ghpr_auth}'
auto-close-on-fail: false
build-desc-template: null
github-hooks: true
only-trigger-phrase: '{only_trigger_phrase}'
org-list: '{org_list}'
permit-all: '{trigger_permit_all}'
trigger-phrase: '{trigger_phrase}'
white-list-target-branches: []
white-list: '{white_list}'
status-context: '{status_context}'
status-url: '{status_url}'
success-status: '{success_status}'
failure-status: '{failure_status}'
error-status: '{error_status}'
triggered-status: '{triggered_status}'
started-status: '{started_status}'
- pollscm:
cron: '{cron}'
ignore-post-commit-hooks: '{ignore_post_commit_hooks}'
wrappers: '{wrappers}'
174 changes: 174 additions & 0 deletions ci/jenkins/jobs/macros.yaml
View file
@@ -0,0 +1,174 @@
- builder:
name: builder-job-updater
builders:
- shell: |-
cp /var/jenkins_home/tmp/defaults.yaml ci/jenkins/jobs
jenkins-jobs update -r ci/jenkins/jobs
rm ci/jenkins/jobs/defaults.yaml
- builder:
name: builder-list-tests
builders:
- shell: |-
set +x
rm -f COMMENT_EXIST
rm -f body.json
echo "{{\"body\": \"Thanks for your PR.\\\nUnit tests and code linters are run automatically every time the PR is updated.\\\nE2e, conformance and network policy tests can only be triggered by a member of the vmware-tanzu organization. Regular contributors to the project should join the org.\\\n\\\nThe following commands are available:\\\n* \`/test-e2e\`: to trigger e2e tests.\\\n* \`/skip-e2e\`: to skip e2e tests.\\\n* \`/test-conformance\`: to trigger conformance tests.\\\n* \`/skip-conformance\`: to skip conformance tests.\\\n* \`/test-networkpolicy\`: to trigger networkpolicy tests.\\\n* \`/skip-networkpolicy\`: to skip networkpolicy tests.\\\n* \`/test-all\`: to trigger all tests.\\\n* \`/skip-all\`: to skip all tests.\\\n\\\nThese commands can only be run by members of the vmware-tanzu organization.\"}}" > body.json
B="$(cat body.json | jq .body)"
# read -r: preserve \n from the input line.
curl "https://api.github.com/repos/{org_repo}/issues/${{ghprbPullId}}/comments" | jq '.[].body' | while read -r LINE
do
if [ "$LINE" = "$B" ]
then
echo Found existing comment!
# pipeline runs in subshell, setting variable won't have effect on the parent process
# so use a file as a flag
touch COMMENT_EXIST
break
fi
done
if !(test -f COMMENT_EXIST)
then
echo Ask the question!
curl -u "${{GH_CREDENTIAL}}" -X POST -H 'Content-type: application/json' -d @body.json "https://api.github.com/repos/{org_repo}/issues/${{ghprbPullId}}/comments"
else
echo Question already asked!
fi
- builder:
name: builder-pending-label
builders:
- shell: 'exit 1 # fail on purpose'

- builder:
name: prepare-antrea
builders:
- shell: |-
echo ====== Cleanup Antrea Installation ======
export KUBECONFIG=/var/lib/jenkins/kube.conf
kubectl delete daemonset antrea-agent -n kube-system || true
kubectl delete -f /var/lib/jenkins/antrea.yml || true
kubectl delete ns antrea-test || true
- shell: |-
echo ====== Building Antrea for the Following Commit ======
git show --numstat
export GO111MODULE=on
export GOPATH=/var/lib/jenkins/go
export GOROOT=/usr/local/go
export GOCACHE="${WORKSPACE}/../gocache"
export PATH=$GOROOT/bin:$PATH
make clean
docker images | grep 'antrea-ubuntu' | awk '{print $3}' | xargs -r docker rmi || true
docker images | grep '<none>' | awk '{print $3}' | xargs -r docker rmi || true
make
- shell: |-
echo ====== Delivering Antrea to all the Nodes ======
export KUBECONFIG=/var/lib/jenkins/kube.conf
cp -f build/yamls/*.yml /var/lib/jenkins
docker save -o antrea-ubuntu.tar antrea/antrea-ubuntu:latest
kubectl get nodes -o wide --no-headers=true | awk '$3 != "master" {print $6}' | while read IP; do
rsync -avr --progress --inplace -e "ssh -o StrictHostKeyChecking=no" antrea-ubuntu.tar jenkins@${IP}:/var/lib/jenkins/antrea-ubuntu.tar
ssh -o StrictHostKeyChecking=no -n jenkins@${IP} "docker images | grep 'antrea-ubuntu' | awk '{print \$3}' | xargs -r docker rmi ; docker load -i /var/lib/jenkins/antrea-ubuntu.tar ; docker images | grep '<none>' | awk '{print \$3}' | xargs -r docker rmi" || true
done
- builder:
name: builder-e2e
builders:
- shell: |-
echo ====== Running Antrea E2E Tests ======
export GO111MODULE=on
export JENKINS_HOME=/var/lib/jenkins
export GOPATH=$JENKINS_HOME/go
export GOROOT=/usr/local/go
export GOCACHE=$JENKINS_HOME/.cache/go-build
export PATH=$GOROOT/bin:$PATH
export KUBECONFIG=$JENKINS_HOME/kube.conf
mkdir -p test/e2e/infra/vagrant/playbook/kube
cp -f "${JENKINS_HOME}/kube.conf" test/e2e/infra/vagrant/playbook/kube/config
cp -f "${JENKINS_HOME}/ssh-config" test/e2e/infra/vagrant/ssh-config
set +e
mkdir -p `pwd`/antrea-test-logs
go test -v github.com/vmware-tanzu/antrea/test/e2e --logs-export-dir `pwd`/antrea-test-logs
test_rc=$?
set -e
tar -zcf antrea-test-logs.tar.gz antrea-test-logs
echo ====== Cleanup Antrea Installation ======
for antrea_yml in /var/lib/jenkins/*.yml
do
kubectl delete -f ${antrea_yml} --ignore-not-found=true || true
done
kubectl delete ns antrea-test || true
exit "$test_rc"
- builder:
name: builder-conformance
builders:
- shell: |-
echo ====== Running Antrea Conformance Tests ======
export GO111MODULE=on
export JENKINS_HOME=/var/lib/jenkins
export GOPATH=$JENKINS_HOME/go
export GOROOT=/usr/local/go
export GOCACHE=$JENKINS_HOME/.cache/go-build
export PATH=$GOROOT/bin:$PATH
export KUBECONFIG=$JENKINS_HOME/kube.conf
kubectl apply -f build/yamls/antrea.yml
kubectl rollout restart deployment/coredns -n kube-system
kubectl rollout status deployment/coredns -n kube-system
kubectl rollout status deployment.apps/antrea-controller -n kube-system
kubectl rollout status daemonset/antrea-agent -n kube-system
# Run sonobouy
sonobuoy delete --wait
sonobuoy run --wait --e2e-focus "{focus_regex}" --e2e-skip "{skip_regex}" --e2e-parallel y
results="$(sonobuoy retrieve)"
echo '=== Print all results ==='
sonobuoy results "$results"
echo '=== Print failed cases if any ==='
sonobuoy results "$results" >> RESULT
test_rc=0
if grep -Fxq "Failed tests:" RESULT
then
echo "Failed cases exist."
test_rc=1
else
echo "All tests passed."
fi
# Clean up sonobouy resources
sonobuoy delete --wait
rm RESULT
echo ====== Cleanup Antrea Installation ======
for antrea_yml in /var/lib/jenkins/*.yml
do
kubectl delete -f ${{antrea_yml}} --ignore-not-found=true || true
done
kubectl delete ns antrea-test || true
exit "$test_rc"

0 comments on commit a3168dc

Please sign in to comment.