Add Pipeline to deploy custom agent image for FIPS testing #8035
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
michel-laterman
added
enhancement
|
buildkite test this |
|
@v1v @pazone, can you take a look at this, we need permissions in order to push a custom image to use in the CFT region |
8 tasks
Merged
8 tasks
Can you share the URL link to the error? I'm not familiar with the current user and namespace, but as far as I see, those details are stored at https://github.com/elastic/elastic-agent/blob/aa224536eadf49f8b9b962df240c0caa4861970e/.buildkite/hooks/pre-command#l17.
I see you have enabled the |
pchila
reviewed
Jun 9, 2025
Updatecli tests$ gh pr checkout 8035
$ git checkout -b test/fips-ech-updatecli
$ git push origin test/fips-ech-updatecli
$ # modify .ci/updatecli/values.d/scm.yml to use my fork
$ GITHUB_TOKEN=$(gh auth token) \
GITHUB_ACTOR=v1v \
BRANCH_NAME=test/fips-ech-updatecli updatecli apply \
--config .ci/updatecli/updatecli-bump-vm-images.yml \
--values .ci/updatecli/values.d/scm.ymldiff --git a/.ci/updatecli/values.d/scm.yml b/.ci/updatecli/values.d/scm.yml
index 2708262728..c01cb89d50 100644
--- a/.ci/updatecli/values.d/scm.yml
+++ b/.ci/updatecli/values.d/scm.yml
@@ -1,8 +1,8 @@
scm:
enabled: true
- owner: elastic
+ owner: v1vProduced v1v#9 |
ycombinator
reviewed
Jun 9, 2025
v1v
approved these changes
Jun 9, 2025
v1v
approved these changes
Jun 9, 2025
ycombinator
reviewed
Jun 9, 2025
ycombinator
approved these changes
Jun 9, 2025
💛 Build succeeded, but was flaky
Failed CI StepsHistory
|
|
mergify bot
pushed a commit
that referenced
this pull request
Jun 9, 2025
Add a new buildkite pipeline to build a custom agent image and use it in an ECH deployment for testing. Run FIPS integration tests on VMs with a FIPS provider. (cherry picked from commit 5908ed2) # Conflicts: # testing/integration/fleetserver_fips_test.go
4 tasks
michel-laterman
added a commit
that referenced
this pull request
Jun 10, 2025
Add a new buildkite pipeline to build a custom agent image and use it in an ECH deployment for testing. Run FIPS integration tests on VMs with a FIPS provider. (cherry picked from commit 5908ed2)
michel-laterman
added a commit
that referenced
this pull request
Jun 10, 2025
… FIPS testing (#8415) * Add Pipeline to deploy custom agent image for FIPS testing (#8035) Add a new buildkite pipeline to build a custom agent image and use it in an ECH deployment for testing. Run FIPS integration tests on VMs with a FIPS provider. (cherry picked from commit 5908ed2) * Fix pre-command to support extended testing (#8418) (cherry picked from commit 97246c1) --------- Co-authored-by: Michel Laterman <82832767+michel-laterman@users.noreply.github.com>
v1v
added a commit
that referenced
this pull request
Jun 12, 2025
…ts-oblt-cli * feature/serverless-its-oblt-cli: (51 commits) as agreed let's move the group to the kb.integration pipeline Update .github/workflows/serverless-project.yml ci: invoke serverless integration tests package from BK github-actions: create a serverless project daily [tests] split up serverless and resource leaks integration tests (#8396) chore: Update to elastic/beats@dfdc12e33de0 (#8446) Lock upgrade marker (#8254) build(deps): bump github.com/elastic/elastic-agent-system-metrics from 0.11.12 to 0.11.13 (#8420) Add docker image name template and renamed fips cloud specs (#8429) buildkite(scripts): refactor common scripts (#8365) Use require.Eventually to try and address flakiness (#8421) Fix pre-command to support extended testing (#8418) [Automation] Bump Golang version to 1.24.4 (#8384) chore: Update to elastic/beats@aed2a8b768bd (#8423) [main][Automation] Update versions (#8425) Add Pipeline to deploy custom agent image for FIPS testing (#8035) ci: automatically update OTel components (#8288) [Automation] Bump VM Image version to 1749258065 (#8390) fix: increase context timeout to accommodate for slower machines in Test_checkForUnprivilegedVault (#8374) otel: add cumulativetodeltaprocessor to EDOT collector (#8372) ...
This was referenced Jun 12, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What does this PR do?
Add a new buildkite pipeline to build a custom agent image and use it in an ECH deployment for testing.
Why is it important?
FIPS integration tests will require a custom agent running in the CFT region.
Checklist
I have made corresponding changes to the documentationI have made corresponding change to the default configuration filesI have added tests that prove my fix is effective or that my feature worksI have added an entry in./changelog/fragmentsusing the changelog toolDisruptive User Impact
N/A