824 lines
21 KiB
YAML
824 lines
21 KiB
YAML
---
|
|
stages:
|
|
- unit-tests
|
|
- moderator
|
|
- deploy-part1
|
|
- deploy-part2
|
|
- deploy-special
|
|
|
|
variables:
|
|
FAILFASTCI_NAMESPACE: 'kargo-ci'
|
|
GITLAB_REPOSITORY: 'kargo-ci/kubernetes-sigs-kubespray'
|
|
# DOCKER_HOST: tcp://localhost:2375
|
|
ANSIBLE_FORCE_COLOR: "true"
|
|
MAGIC: "ci check this"
|
|
TEST_ID: "$CI_PIPELINE_ID-$CI_BUILD_ID"
|
|
CI_TEST_VARS: "./tests/files/${CI_JOB_NAME}.yml"
|
|
GS_ACCESS_KEY_ID: $GS_KEY
|
|
GS_SECRET_ACCESS_KEY: $GS_SECRET
|
|
CONTAINER_ENGINE: docker
|
|
SSH_USER: root
|
|
GCE_PREEMPTIBLE: "false"
|
|
ANSIBLE_KEEP_REMOTE_FILES: "1"
|
|
ANSIBLE_CONFIG: ./tests/ansible.cfg
|
|
ANSIBLE_INVENTORY: ./inventory/sample/${CI_JOB_NAME}-${BUILD_NUMBER}.ini
|
|
IDEMPOT_CHECK: "false"
|
|
RESET_CHECK: "false"
|
|
UPGRADE_TEST: "false"
|
|
LOG_LEVEL: "-vv"
|
|
|
|
# asia-east1-a
|
|
# asia-northeast1-a
|
|
# europe-west1-b
|
|
# us-central1-a
|
|
# us-east1-b
|
|
# us-west1-a
|
|
|
|
before_script:
|
|
- /usr/bin/python -m pip install -r tests/requirements.txt
|
|
- mkdir -p /.ssh
|
|
|
|
.job: &job
|
|
tags:
|
|
- kubernetes
|
|
- docker
|
|
image: quay.io/kubespray/kubespray:v2.9.0
|
|
|
|
.docker_service: &docker_service
|
|
services:
|
|
- docker:dind
|
|
|
|
.create_cluster: &create_cluster
|
|
<<: *job
|
|
<<: *docker_service
|
|
|
|
.gce_variables: &gce_variables
|
|
GCE_USER: travis
|
|
SSH_USER: $GCE_USER
|
|
CLOUD_MACHINE_TYPE: "g1-small"
|
|
CI_PLATFORM: "gce"
|
|
PRIVATE_KEY: $GCE_PRIVATE_KEY
|
|
|
|
.do_variables: &do_variables
|
|
PRIVATE_KEY: $DO_PRIVATE_KEY
|
|
CI_PLATFORM: "do"
|
|
SSH_USER: root
|
|
|
|
.ovh_variables: &ovh_variables
|
|
OS_AUTH_URL: https://auth.cloud.ovh.net/v3
|
|
OS_PROJECT_ID: 8d3cd5d737d74227ace462dee0b903fe
|
|
OS_PROJECT_NAME: "9361447987648822"
|
|
OS_USER_DOMAIN_NAME: Default
|
|
OS_PROJECT_DOMAIN_ID: default
|
|
OS_USERNAME: 8XuhBMfkKVrk
|
|
OS_REGION_NAME: UK1
|
|
OS_INTERFACE: public
|
|
OS_IDENTITY_API_VERSION: "3"
|
|
|
|
.testcases: &testcases
|
|
<<: *job
|
|
<<: *docker_service
|
|
cache:
|
|
key: "$CI_BUILD_REF_NAME"
|
|
paths:
|
|
- downloads/
|
|
- $HOME/.cache
|
|
before_script:
|
|
- docker info
|
|
- /usr/bin/python -m pip install -r requirements.txt
|
|
- /usr/bin/python -m pip install -r tests/requirements.txt
|
|
- mkdir -p /.ssh
|
|
- mkdir -p $HOME/.ssh
|
|
- ansible-playbook --version
|
|
- export PYPATH=$([[ ! "$CI_JOB_NAME" =~ "coreos" ]] && echo /usr/bin/python || echo /opt/bin/python)
|
|
- echo "CI_JOB_NAME is $CI_JOB_NAME"
|
|
- echo "PYPATH is $PYPATH"
|
|
script:
|
|
- pwd
|
|
- ls
|
|
- echo ${PWD}
|
|
- echo "${STARTUP_SCRIPT}"
|
|
- cd tests && make create-${CI_PLATFORM} -s ; cd -
|
|
|
|
# Check out latest tag if testing upgrade
|
|
- test "${UPGRADE_TEST}" != "false" && git fetch --all && git checkout $(git describe --tags $(git rev-list --tags --max-count=1))
|
|
# Checkout the CI vars file so it is available
|
|
- test "${UPGRADE_TEST}" != "false" && git checkout "${CI_BUILD_REF}" tests/files/${CI_JOB_NAME}.yml
|
|
# Workaround https://github.com/kubernetes-sigs/kubespray/issues/2021
|
|
- 'sh -c "echo ignore_assert_errors: true | tee -a tests/files/${CI_JOB_NAME}.yml"'
|
|
|
|
|
|
# Create cluster
|
|
- >
|
|
ansible-playbook
|
|
-i ${ANSIBLE_INVENTORY}
|
|
-b --become-user=root
|
|
--private-key=${HOME}/.ssh/id_rsa
|
|
-u $SSH_USER
|
|
${SSH_ARGS}
|
|
${LOG_LEVEL}
|
|
-e @${CI_TEST_VARS}
|
|
-e ansible_ssh_user=${SSH_USER}
|
|
-e local_release_dir=${PWD}/downloads
|
|
--limit "all:!fake_hosts"
|
|
cluster.yml
|
|
|
|
# Repeat deployment if testing upgrade
|
|
- >
|
|
if [ "${UPGRADE_TEST}" != "false" ]; then
|
|
test "${UPGRADE_TEST}" == "basic" && PLAYBOOK="cluster.yml";
|
|
test "${UPGRADE_TEST}" == "graceful" && PLAYBOOK="upgrade-cluster.yml";
|
|
git checkout "${CI_BUILD_REF}";
|
|
ansible-playbook
|
|
-i ${ANSIBLE_INVENTORY}
|
|
-b --become-user=root
|
|
--private-key=${HOME}/.ssh/id_rsa
|
|
-u $SSH_USER
|
|
${SSH_ARGS}
|
|
${LOG_LEVEL}
|
|
-e @${CI_TEST_VARS}
|
|
-e ansible_ssh_user=${SSH_USER}
|
|
-e local_release_dir=${PWD}/downloads
|
|
--limit "all:!fake_hosts"
|
|
$PLAYBOOK;
|
|
fi
|
|
|
|
# Tests Cases
|
|
## Test Master API
|
|
- ansible-playbook -i ${ANSIBLE_INVENTORY} -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/010_check-apiserver.yml $LOG_LEVEL
|
|
|
|
## Ping the between 2 pod
|
|
- ansible-playbook -i ${ANSIBLE_INVENTORY} -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/030_check-network.yml $LOG_LEVEL
|
|
|
|
## Advanced DNS checks
|
|
- ansible-playbook -i ${ANSIBLE_INVENTORY} -e ansible_python_interpreter=${PYPATH} -u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root --limit "all:!fake_hosts" tests/testcases/040_check-network-adv.yml $LOG_LEVEL
|
|
|
|
## Idempotency checks 1/5 (repeat deployment)
|
|
- >
|
|
if [ "${IDEMPOT_CHECK}" = "true" ]; then
|
|
ansible-playbook
|
|
-i ${ANSIBLE_INVENTORY}
|
|
-b --become-user=root
|
|
--private-key=${HOME}/.ssh/id_rsa
|
|
-u $SSH_USER
|
|
${SSH_ARGS}
|
|
${LOG_LEVEL}
|
|
-e @${CI_TEST_VARS}
|
|
-e ansible_python_interpreter=${PYPATH}
|
|
-e local_release_dir=${PWD}/downloads
|
|
--limit "all:!fake_hosts"
|
|
cluster.yml;
|
|
fi
|
|
|
|
## Idempotency checks 2/5 (Advanced DNS checks)
|
|
- >
|
|
if [ "${IDEMPOT_CHECK}" = "true" ]; then
|
|
ansible-playbook
|
|
-i ${ANSIBLE_INVENTORY}
|
|
-b --become-user=root
|
|
--private-key=${HOME}/.ssh/id_rsa
|
|
-u $SSH_USER
|
|
${SSH_ARGS}
|
|
${LOG_LEVEL}
|
|
-e @${CI_TEST_VARS}
|
|
--limit "all:!fake_hosts"
|
|
tests/testcases/040_check-network-adv.yml $LOG_LEVEL;
|
|
fi
|
|
|
|
## Idempotency checks 3/5 (reset deployment)
|
|
- >
|
|
if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
|
|
ansible-playbook
|
|
-i ${ANSIBLE_INVENTORY}
|
|
-b --become-user=root
|
|
--private-key=${HOME}/.ssh/id_rsa
|
|
-u $SSH_USER
|
|
${SSH_ARGS}
|
|
${LOG_LEVEL}
|
|
-e @${CI_TEST_VARS}
|
|
-e ansible_python_interpreter=${PYPATH}
|
|
-e reset_confirmation=yes
|
|
--limit "all:!fake_hosts"
|
|
reset.yml;
|
|
fi
|
|
|
|
## Idempotency checks 4/5 (redeploy after reset)
|
|
- >
|
|
if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
|
|
ansible-playbook
|
|
-i ${ANSIBLE_INVENTORY}
|
|
-b --become-user=root
|
|
--private-key=${HOME}/.ssh/id_rsa
|
|
-u $SSH_USER
|
|
${SSH_ARGS}
|
|
${LOG_LEVEL}
|
|
-e @${CI_TEST_VARS}
|
|
-e ansible_python_interpreter=${PYPATH}
|
|
-e local_release_dir=${PWD}/downloads
|
|
--limit "all:!fake_hosts"
|
|
cluster.yml;
|
|
fi
|
|
|
|
## Idempotency checks 5/5 (Advanced DNS checks)
|
|
- >
|
|
if [ "${IDEMPOT_CHECK}" = "true" -a "${RESET_CHECK}" = "true" ]; then
|
|
ansible-playbook -i ${ANSIBLE_INVENTORY} -e ansible_python_interpreter=${PYPATH}
|
|
-u $SSH_USER -e ansible_ssh_user=$SSH_USER $SSH_ARGS -b --become-user=root
|
|
--limit "all:!fake_hosts"
|
|
tests/testcases/040_check-network-adv.yml $LOG_LEVEL;
|
|
fi
|
|
|
|
after_script:
|
|
- cd tests && make delete-${CI_PLATFORM} -s ; cd -
|
|
|
|
.gce: &gce
|
|
<<: *testcases
|
|
|
|
.do: &do
|
|
<<: *testcases
|
|
|
|
# Test matrix. Leave the comments for markup scripts.
|
|
.coreos_calico_aio_variables: &coreos_calico_aio_variables
|
|
# stage: deploy-part1
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.ubuntu18_flannel_aio_variables: &ubuntu18_flannel_aio_variables
|
|
# stage: deploy-part1
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.centos_weave_kubeadm_variables: ¢os_weave_kubeadm_variables
|
|
# stage: deploy-part1
|
|
UPGRADE_TEST: "graceful"
|
|
|
|
.ubuntu_canal_kubeadm_variables: &ubuntu_canal_kubeadm_variables
|
|
# stage: deploy-part1
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.ubuntu_canal_ha_variables: &ubuntu_canal_ha_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.ubuntu_contiv_sep_variables: &ubuntu_contiv_sep_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.coreos_cilium_variables: &coreos_cilium_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.ubuntu_cilium_sep_variables: &ubuntu_cilium_sep_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.rhel7_weave_variables: &rhel7_weave_variables
|
|
# stage: deploy-part1
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.centos7_flannel_addons_variables: ¢os7_flannel_addons_variables
|
|
# stage: deploy-part2
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.debian9_calico_variables: &debian9_calico_variables
|
|
# stage: deploy-part2
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.coreos_canal_variables: &coreos_canal_variables
|
|
# stage: deploy-part2
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.rhel7_canal_sep_variables: &rhel7_canal_sep_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.ubuntu_weave_sep_variables: &ubuntu_weave_sep_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.centos7_calico_ha_variables: ¢os7_calico_ha_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.centos7_kube_router_variables: ¢os7_kube_router_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.centos7_multus_calico_variables: ¢os7_multus_calico_variables
|
|
# stage: deploy-part2
|
|
UPGRADE_TEST: "graceful"
|
|
|
|
.coreos_alpha_weave_ha_variables: &coreos_alpha_weave_ha_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.coreos_kube_router_variables: &coreos_kube_router_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.ubuntu_rkt_sep_variables: &ubuntu_rkt_sep_variables
|
|
# stage: deploy-part1
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.ubuntu_flannel_variables: &ubuntu_flannel_variables
|
|
# stage: deploy-part2
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.ubuntu_kube_router_variables: &ubuntu_kube_router_variables
|
|
# stage: deploy-special
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
.opensuse_canal_variables: &opensuse_canal_variables
|
|
# stage: deploy-part2
|
|
MOVED_TO_GROUP_VARS: "true"
|
|
|
|
|
|
# Builds for PRs only (premoderated by unit-tests step) and triggers (auto)
|
|
### PR JOBS PART1
|
|
|
|
gce_ubuntu18-flannel-aio:
|
|
stage: deploy-part1
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu18_flannel_aio_variables
|
|
when: on_success
|
|
except: ['triggers']
|
|
only: [/^pr-.*$/]
|
|
|
|
### PR JOBS PART2
|
|
|
|
gce_coreos-calico-aio:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *coreos_calico_aio_variables
|
|
when: on_success
|
|
except: ['triggers']
|
|
only: [/^pr-.*$/]
|
|
|
|
gce_centos7-flannel-addons:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *centos7_flannel_addons_variables
|
|
when: on_success
|
|
except: ['triggers']
|
|
only: [/^pr-.*$/]
|
|
|
|
### MANUAL JOBS
|
|
|
|
gce_centos-weave-kubeadm-sep:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *centos_weave_kubeadm_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_ubuntu-weave-sep:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_weave_sep_variables
|
|
when: manual
|
|
only: ['triggers']
|
|
|
|
gce_coreos-calico-sep-triggers:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *coreos_calico_aio_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_ubuntu-canal-ha-triggers:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_canal_ha_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_centos7-flannel-addons-triggers:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *centos7_flannel_addons_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_ubuntu-weave-sep-triggers:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_weave_sep_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
# More builds for PRs/merges (manual) and triggers (auto)
|
|
do_ubuntu-canal-ha:
|
|
stage: deploy-part2
|
|
<<: *do
|
|
variables:
|
|
<<: *do_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_ubuntu-canal-ha:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_canal_ha_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_ubuntu-canal-kubeadm:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_canal_kubeadm_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_ubuntu-canal-kubeadm-triggers:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_canal_kubeadm_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_ubuntu-flannel-ha:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_flannel_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
|
|
gce_centos-weave-kubeadm-triggers:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *centos_weave_kubeadm_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_ubuntu-contiv-sep:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_contiv_sep_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_coreos-cilium:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *coreos_cilium_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_ubuntu-cilium-sep:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_cilium_sep_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_rhel7-weave:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *rhel7_weave_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_rhel7-weave-triggers:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *rhel7_weave_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_debian9-calico-upgrade:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *debian9_calico_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_debian9-calico-triggers:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *debian9_calico_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_coreos-canal:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *coreos_canal_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_coreos-canal-triggers:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *coreos_canal_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_rhel7-canal-sep:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *rhel7_canal_sep_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_rhel7-canal-sep-triggers:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *rhel7_canal_sep_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_centos7-calico-ha:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *centos7_calico_ha_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_centos7-calico-ha-triggers:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *centos7_calico_ha_variables
|
|
when: on_success
|
|
only: ['triggers']
|
|
|
|
gce_centos7-kube-router:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *centos7_kube_router_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_centos7-multus-calico:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *centos7_multus_calico_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_opensuse-canal:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *opensuse_canal_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
# no triggers yet https://github.com/kubernetes-incubator/kargo/issues/613
|
|
gce_coreos-alpha-weave-ha:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *coreos_alpha_weave_ha_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_coreos-kube-router:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *coreos_kube_router_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_ubuntu-rkt-sep:
|
|
stage: deploy-part2
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_rkt_sep_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
gce_ubuntu-kube-router-sep:
|
|
stage: deploy-special
|
|
<<: *gce
|
|
variables:
|
|
<<: *gce_variables
|
|
<<: *ubuntu_kube_router_variables
|
|
when: manual
|
|
except: ['triggers']
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
# Premoderated with manual actions
|
|
ci-authorized:
|
|
<<: *job
|
|
stage: moderator
|
|
before_script:
|
|
- apt-get -y install jq
|
|
script:
|
|
- /bin/sh scripts/premoderator.sh
|
|
except: ['triggers', 'master']
|
|
|
|
syntax-check:
|
|
<<: *job
|
|
stage: unit-tests
|
|
script:
|
|
- ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root cluster.yml -vvv --syntax-check
|
|
- ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root upgrade-cluster.yml -vvv --syntax-check
|
|
- ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root reset.yml -vvv --syntax-check
|
|
- ansible-playbook -i inventory/local-tests.cfg -u root -e ansible_ssh_user=root -b --become-user=root extra_playbooks/upgrade-only-k8s.yml -vvv --syntax-check
|
|
except: ['triggers', 'master']
|
|
|
|
yamllint:
|
|
<<: *job
|
|
stage: unit-tests
|
|
script:
|
|
- yamllint .
|
|
except: ['triggers', 'master']
|
|
|
|
ansible-lint:
|
|
<<: *job
|
|
stage: unit-tests
|
|
# lint every yml/yaml file that looks like it contains Ansible plays
|
|
script: |-
|
|
grep -Rl '^- hosts: \|^ hosts: \|^- name: ' --include \*.yml --include \*.yaml . | xargs ansible-lint -v
|
|
except: ['triggers', 'master']
|
|
|
|
tox-inventory-builder:
|
|
stage: unit-tests
|
|
<<: *job
|
|
script:
|
|
- pip install tox
|
|
- cd contrib/inventory_builder && tox
|
|
when: manual
|
|
except: ['triggers', 'master']
|
|
|
|
|
|
# Tests for contrib/terraform/
|
|
.terraform_install: &terraform_install
|
|
<<: *job
|
|
before_script:
|
|
# Set Ansible config
|
|
- cp ansible.cfg ~/.ansible.cfg
|
|
# Install Terraform
|
|
- apt-get install -y unzip
|
|
- curl https://releases.hashicorp.com/terraform/${TF_VERSION}/terraform_${TF_VERSION}_linux_amd64.zip > /tmp/terraform.zip
|
|
- unzip /tmp/terraform.zip && mv ./terraform /usr/local/bin/ && terraform --version
|
|
# Prepare inventory
|
|
- cp -LRp contrib/terraform/$PROVIDER/sample-inventory inventory/$CLUSTER
|
|
- cd inventory/$CLUSTER
|
|
- ln -s ../../contrib/terraform/$PROVIDER/hosts
|
|
- terraform init ../../contrib/terraform/$PROVIDER
|
|
# Copy SSH keypair
|
|
- mkdir -p ~/.ssh
|
|
- echo "$PACKET_PRIVATE_KEY" | base64 -d > ~/.ssh/id_rsa
|
|
- chmod 400 ~/.ssh/id_rsa
|
|
- echo "$PACKET_PUBLIC_KEY" | base64 -d > ~/.ssh/id_rsa.pub
|
|
only: ['master', /^pr-.*$/]
|
|
|
|
.terraform_validate: &terraform_validate
|
|
<<: *terraform_install
|
|
stage: unit-tests
|
|
script:
|
|
- terraform validate -var-file=cluster.tf ../../contrib/terraform/$PROVIDER
|
|
- terraform fmt -check -diff ../../contrib/terraform/$PROVIDER
|
|
|
|
.terraform_apply: &terraform_apply
|
|
<<: *terraform_install
|
|
stage: deploy-part2
|
|
when: manual
|
|
script:
|
|
- terraform apply -auto-approve ../../contrib/terraform/$PROVIDER
|
|
- ansible-playbook -i hosts ../../cluster.yml --become
|
|
after_script:
|
|
# Cleanup regardless of exit code
|
|
- cd inventory/$CLUSTER
|
|
- terraform destroy -auto-approve ../../contrib/terraform/$PROVIDER
|
|
|
|
tf-validate-openstack:
|
|
<<: *terraform_validate
|
|
variables:
|
|
TF_VERSION: 0.11.11
|
|
PROVIDER: openstack
|
|
CLUSTER: $CI_COMMIT_REF_NAME
|
|
|
|
tf-validate-packet:
|
|
<<: *terraform_validate
|
|
variables:
|
|
TF_VERSION: 0.11.11
|
|
PROVIDER: packet
|
|
CLUSTER: $CI_COMMIT_REF_NAME
|
|
|
|
tf-validate-aws:
|
|
<<: *terraform_validate
|
|
variables:
|
|
TF_VERSION: 0.11.11
|
|
PROVIDER: aws
|
|
CLUSTER: $CI_COMMIT_REF_NAME
|
|
|
|
tf-apply-packet:
|
|
<<: *terraform_apply
|
|
variables:
|
|
TF_VERSION: 0.11.11
|
|
PROVIDER: packet
|
|
CLUSTER: $CI_COMMIT_REF_NAME
|
|
TF_VAR_cluster_name: $CI_COMMIT_REF_NAME
|
|
TF_VAR_number_of_k8s_masters: "1"
|
|
TF_VAR_number_of_k8s_nodes: "1"
|
|
TF_VAR_plan_k8s_masters: t1.small.x86
|
|
TF_VAR_plan_k8s_nodes: t1.small.x86
|
|
TF_VAR_facility: "ewr1"
|
|
TF_VAR_public_key_path: ""
|
|
|
|
tf-apply-ovh:
|
|
<<: *terraform_apply
|
|
variables:
|
|
<<: *ovh_variables
|
|
TF_VERSION: 0.11.11
|
|
PROVIDER: openstack
|
|
CLUSTER: $CI_COMMIT_REF_NAME
|
|
ANSIBLE_TIMEOUT: "60"
|
|
TF_VAR_cluster_name: $CI_COMMIT_REF_NAME
|
|
TF_VAR_number_of_k8s_masters: "0"
|
|
TF_VAR_number_of_k8s_masters_no_floating_ip: "1"
|
|
TF_VAR_number_of_k8s_masters_no_floating_ip_no_etcd: "0"
|
|
TF_VAR_number_of_etcd: "0"
|
|
TF_VAR_number_of_k8s_nodes: "0"
|
|
TF_VAR_number_of_k8s_nodes_no_floating_ip: "1"
|
|
TF_VAR_number_of_gfs_nodes_no_floating_ip: "0"
|
|
TF_VAR_number_of_bastions: "0"
|
|
TF_VAR_number_of_k8s_masters_no_etcd: "0"
|
|
TF_VAR_use_neutron: "0"
|
|
TF_VAR_floatingip_pool: "Ext-Net"
|
|
TF_VAR_external_net: "6011fbc9-4cbf-46a4-8452-6890a340b60b"
|
|
TF_VAR_network_name: "Ext-Net"
|
|
TF_VAR_flavor_k8s_master: "defa64c3-bd46-43b4-858a-d93bbae0a229" #s1-8
|
|
TF_VAR_flavor_k8s_node: "defa64c3-bd46-43b4-858a-d93bbae0a229" #s1-8
|
|
TF_VAR_image: "Ubuntu 18.04"
|