github/kata-containers
1
0
Fork 1
mirror of https://github.com/kata-containers/kata-containers.git synced 2025-08-18 07:58:36 +00:00
Code Issues Projects Releases Wiki Activity

DO NOT MERGE: Comment out tests to save ci cycles

Browse Source
This commit is contained in:
stevenhorsman 2025-07-17 11:57:38 +01:00
parent 097c3715e7
commit 64a0dc6d49
2 changed files with 325 additions and 325 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

362
.github/workflows/ci.yaml vendored
View File

@ -279,55 +279,55 @@ jobs:
platforms: linux/amd64 platforms: linux/amd64
file: src/tools/csi-kata-directvolume/Dockerfile file: src/tools/csi-kata-directvolume/Dockerfile
run-kata-monitor-tests: # run-kata-monitor-tests:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: build-kata-static-tarball-amd64 # needs: build-kata-static-tarball-amd64
uses: ./.github/workflows/run-kata-monitor-tests.yaml # uses: ./.github/workflows/run-kata-monitor-tests.yaml
with: # with:
tarball-suffix: -${{ inputs.tag }} # tarball-suffix: -${{ inputs.tag }}
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
run-k8s-tests-on-aks: # run-k8s-tests-on-aks:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: publish-kata-deploy-payload-amd64 # needs: publish-kata-deploy-payload-amd64
uses: ./.github/workflows/run-k8s-tests-on-aks.yaml # uses: ./.github/workflows/run-k8s-tests-on-aks.yaml
with: # with:
tarball-suffix: -${{ inputs.tag }} # tarball-suffix: -${{ inputs.tag }}
registry: ghcr.io # registry: ghcr.io
repo: ${{ github.repository_owner }}/kata-deploy-ci # repo: ${{ github.repository_owner }}/kata-deploy-ci
tag: ${{ inputs.tag }}-amd64 # tag: ${{ inputs.tag }}-amd64
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
pr-number: ${{ inputs.pr-number }} # pr-number: ${{ inputs.pr-number }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
secrets: # secrets:
AZ_APPID: ${{ secrets.AZ_APPID }} # AZ_APPID: ${{ secrets.AZ_APPID }}
AZ_TENANT_ID: ${{ secrets.AZ_TENANT_ID }} # AZ_TENANT_ID: ${{ secrets.AZ_TENANT_ID }}
AZ_SUBSCRIPTION_ID: ${{ secrets.AZ_SUBSCRIPTION_ID }} # AZ_SUBSCRIPTION_ID: ${{ secrets.AZ_SUBSCRIPTION_ID }}
run-k8s-tests-on-amd64: # run-k8s-tests-on-amd64:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: publish-kata-deploy-payload-amd64 # needs: publish-kata-deploy-payload-amd64
uses: ./.github/workflows/run-k8s-tests-on-amd64.yaml # uses: ./.github/workflows/run-k8s-tests-on-amd64.yaml
with: # with:
registry: ghcr.io # registry: ghcr.io
repo: ${{ github.repository_owner }}/kata-deploy-ci # repo: ${{ github.repository_owner }}/kata-deploy-ci
tag: ${{ inputs.tag }}-amd64 # tag: ${{ inputs.tag }}-amd64
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
pr-number: ${{ inputs.pr-number }} # pr-number: ${{ inputs.pr-number }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
run-k8s-tests-on-arm64: # run-k8s-tests-on-arm64:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: publish-kata-deploy-payload-arm64 # needs: publish-kata-deploy-payload-arm64
uses: ./.github/workflows/run-k8s-tests-on-arm64.yaml # uses: ./.github/workflows/run-k8s-tests-on-arm64.yaml
with: # with:
registry: ghcr.io # registry: ghcr.io
repo: ${{ github.repository_owner }}/kata-deploy-ci # repo: ${{ github.repository_owner }}/kata-deploy-ci
tag: ${{ inputs.tag }}-arm64 # tag: ${{ inputs.tag }}-arm64
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
pr-number: ${{ inputs.pr-number }} # pr-number: ${{ inputs.pr-number }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
run-k8s-tests-on-nvidia-gpu: run-k8s-tests-on-nvidia-gpu:
if: ${{ inputs.skip-test != 'yes' }} if: ${{ inputs.skip-test != 'yes' }}
@ -366,146 +366,146 @@ jobs:
AZ_SUBSCRIPTION_ID: ${{ secrets.AZ_SUBSCRIPTION_ID }} AZ_SUBSCRIPTION_ID: ${{ secrets.AZ_SUBSCRIPTION_ID }}
ITA_KEY: ${{ secrets.ITA_KEY }} ITA_KEY: ${{ secrets.ITA_KEY }}
run-k8s-tests-on-zvsi: # run-k8s-tests-on-zvsi:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: [publish-kata-deploy-payload-s390x, build-and-publish-tee-confidential-unencrypted-image] # needs: [publish-kata-deploy-payload-s390x, build-and-publish-tee-confidential-unencrypted-image]
uses: ./.github/workflows/run-k8s-tests-on-zvsi.yaml # uses: ./.github/workflows/run-k8s-tests-on-zvsi.yaml
with: # with:
registry: ghcr.io # registry: ghcr.io
repo: ${{ github.repository_owner }}/kata-deploy-ci # repo: ${{ github.repository_owner }}/kata-deploy-ci
tag: ${{ inputs.tag }}-s390x # tag: ${{ inputs.tag }}-s390x
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
pr-number: ${{ inputs.pr-number }} # pr-number: ${{ inputs.pr-number }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
secrets: # secrets:
AUTHENTICATED_IMAGE_PASSWORD: ${{ secrets.AUTHENTICATED_IMAGE_PASSWORD }} # AUTHENTICATED_IMAGE_PASSWORD: ${{ secrets.AUTHENTICATED_IMAGE_PASSWORD }}
run-k8s-tests-on-ppc64le: # run-k8s-tests-on-ppc64le:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: publish-kata-deploy-payload-ppc64le # needs: publish-kata-deploy-payload-ppc64le
uses: ./.github/workflows/run-k8s-tests-on-ppc64le.yaml # uses: ./.github/workflows/run-k8s-tests-on-ppc64le.yaml
with: # with:
registry: ghcr.io # registry: ghcr.io
repo: ${{ github.repository_owner }}/kata-deploy-ci # repo: ${{ github.repository_owner }}/kata-deploy-ci
tag: ${{ inputs.tag }}-ppc64le # tag: ${{ inputs.tag }}-ppc64le
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
pr-number: ${{ inputs.pr-number }} # pr-number: ${{ inputs.pr-number }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
run-kata-deploy-tests: # run-kata-deploy-tests:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: [publish-kata-deploy-payload-amd64] # needs: [publish-kata-deploy-payload-amd64]
uses: ./.github/workflows/run-kata-deploy-tests.yaml # uses: ./.github/workflows/run-kata-deploy-tests.yaml
with: # with:
registry: ghcr.io # registry: ghcr.io
repo: ${{ github.repository_owner }}/kata-deploy-ci # repo: ${{ github.repository_owner }}/kata-deploy-ci
tag: ${{ inputs.tag }}-amd64 # tag: ${{ inputs.tag }}-amd64
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
pr-number: ${{ inputs.pr-number }} # pr-number: ${{ inputs.pr-number }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
run-basic-amd64-tests: # run-basic-amd64-tests:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: build-kata-static-tarball-amd64 # needs: build-kata-static-tarball-amd64
uses: ./.github/workflows/basic-ci-amd64.yaml # uses: ./.github/workflows/basic-ci-amd64.yaml
with: # with:
tarball-suffix: -${{ inputs.tag }} # tarball-suffix: -${{ inputs.tag }}
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
run-basic-s390x-tests: # run-basic-s390x-tests:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: build-kata-static-tarball-s390x # needs: build-kata-static-tarball-s390x
uses: ./.github/workflows/basic-ci-s390x.yaml # uses: ./.github/workflows/basic-ci-s390x.yaml
with: # with:
tarball-suffix: -${{ inputs.tag }} # tarball-suffix: -${{ inputs.tag }}
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
run-cri-containerd-amd64: # run-cri-containerd-amd64:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: build-kata-static-tarball-amd64 # needs: build-kata-static-tarball-amd64
strategy: # strategy:
fail-fast: false # fail-fast: false
matrix: # matrix:
params: [ # params: [
{ containerd_version: lts, vmm: clh }, # { containerd_version: lts, vmm: clh },
{ containerd_version: lts, vmm: dragonball }, # { containerd_version: lts, vmm: dragonball },
{ containerd_version: lts, vmm: qemu }, # { containerd_version: lts, vmm: qemu },
{ containerd_version: lts, vmm: stratovirt }, # { containerd_version: lts, vmm: stratovirt },
{ containerd_version: lts, vmm: cloud-hypervisor }, # { containerd_version: lts, vmm: cloud-hypervisor },
{ containerd_version: lts, vmm: qemu-runtime-rs }, # { containerd_version: lts, vmm: qemu-runtime-rs },
{ containerd_version: active, vmm: clh }, # { containerd_version: active, vmm: clh },
{ containerd_version: active, vmm: dragonball }, # { containerd_version: active, vmm: dragonball },
{ containerd_version: active, vmm: qemu }, # { containerd_version: active, vmm: qemu },
{ containerd_version: active, vmm: stratovirt }, # { containerd_version: active, vmm: stratovirt },
{ containerd_version: active, vmm: cloud-hypervisor }, # { containerd_version: active, vmm: cloud-hypervisor },
{ containerd_version: active, vmm: qemu-runtime-rs }, # { containerd_version: active, vmm: qemu-runtime-rs },
] # ]
uses: ./.github/workflows/run-cri-containerd-tests.yaml # uses: ./.github/workflows/run-cri-containerd-tests.yaml
with: # with:
tarball-suffix: -${{ inputs.tag }} # tarball-suffix: -${{ inputs.tag }}
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
runner: ubuntu-22.04 # runner: ubuntu-22.04
arch: amd64 # arch: amd64
containerd_version: ${{ matrix.params.containerd_version }} # containerd_version: ${{ matrix.params.containerd_version }}
vmm: ${{ matrix.params.vmm }} # vmm: ${{ matrix.params.vmm }}
run-cri-containerd-s390x: # run-cri-containerd-s390x:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: build-kata-static-tarball-s390x # needs: build-kata-static-tarball-s390x
strategy: # strategy:
fail-fast: false # fail-fast: false
matrix: # matrix:
params: [ # params: [
{ containerd_version: active, vmm: qemu }, # { containerd_version: active, vmm: qemu },
{ containerd_version: active, vmm: qemu-runtime-rs }, # { containerd_version: active, vmm: qemu-runtime-rs },
] # ]
uses: ./.github/workflows/run-cri-containerd-tests.yaml # uses: ./.github/workflows/run-cri-containerd-tests.yaml
with: # with:
tarball-suffix: -${{ inputs.tag }} # tarball-suffix: -${{ inputs.tag }}
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
runner: s390x-large # runner: s390x-large
arch: s390x # arch: s390x
containerd_version: ${{ matrix.params.containerd_version }} # containerd_version: ${{ matrix.params.containerd_version }}
vmm: ${{ matrix.params.vmm }} # vmm: ${{ matrix.params.vmm }}
run-cri-containerd-tests-ppc64le: # run-cri-containerd-tests-ppc64le:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: build-kata-static-tarball-ppc64le # needs: build-kata-static-tarball-ppc64le
strategy: # strategy:
fail-fast: false # fail-fast: false
matrix: # matrix:
params: [ # params: [
{ containerd_version: active, vmm: qemu }, # { containerd_version: active, vmm: qemu },
] # ]
uses: ./.github/workflows/run-cri-containerd-tests.yaml # uses: ./.github/workflows/run-cri-containerd-tests.yaml
with: # with:
tarball-suffix: -${{ inputs.tag }} # tarball-suffix: -${{ inputs.tag }}
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
runner: ppc64le # runner: ppc64le
arch: ppc64le # arch: ppc64le
containerd_version: ${{ matrix.params.containerd_version }} # containerd_version: ${{ matrix.params.containerd_version }}
vmm: ${{ matrix.params.vmm }} # vmm: ${{ matrix.params.vmm }}
run-cri-containerd-tests-arm64: # run-cri-containerd-tests-arm64:
if: ${{ inputs.skip-test != 'yes' }} # if: ${{ inputs.skip-test != 'yes' }}
needs: build-kata-static-tarball-arm64 # needs: build-kata-static-tarball-arm64
strategy: # strategy:
fail-fast: false # fail-fast: false
matrix: # matrix:
params: [ # params: [
{ containerd_version: active, vmm: qemu }, # { containerd_version: active, vmm: qemu },
] # ]
uses: ./.github/workflows/run-cri-containerd-tests.yaml # uses: ./.github/workflows/run-cri-containerd-tests.yaml
with: # with:
tarball-suffix: -${{ inputs.tag }} # tarball-suffix: -${{ inputs.tag }}
commit-hash: ${{ inputs.commit-hash }} # commit-hash: ${{ inputs.commit-hash }}
target-branch: ${{ inputs.target-branch }} # target-branch: ${{ inputs.target-branch }}
runner: arm64-non-k8s # runner: arm64-non-k8s
arch: arm64 # arch: arm64
containerd_version: ${{ matrix.params.containerd_version }} # containerd_version: ${{ matrix.params.containerd_version }}
vmm: ${{ matrix.params.vmm }} # vmm: ${{ matrix.params.vmm }}

288
.github/workflows/run-kata-coco-tests.yaml vendored
View File

@ -41,175 +41,175 @@ permissions:
id-token: write id-token: write
jobs: jobs:
run-k8s-tests-on-tdx: # run-k8s-tests-on-tdx:
strategy: # strategy:
fail-fast: false # fail-fast: false
matrix: # matrix:
vmm: # vmm:
- qemu-tdx # - qemu-tdx
snapshotter: # snapshotter:
- nydus # - nydus
pull-type: # pull-type:
- guest-pull # - guest-pull
runs-on: tdx # runs-on: tdx
env: # env:
DOCKER_REGISTRY: ${{ inputs.registry }} # DOCKER_REGISTRY: ${{ inputs.registry }}
DOCKER_REPO: ${{ inputs.repo }} # DOCKER_REPO: ${{ inputs.repo }}
DOCKER_TAG: ${{ inputs.tag }} # DOCKER_TAG: ${{ inputs.tag }}
GH_PR_NUMBER: ${{ inputs.pr-number }} # GH_PR_NUMBER: ${{ inputs.pr-number }}
KATA_HYPERVISOR: ${{ matrix.vmm }} # KATA_HYPERVISOR: ${{ matrix.vmm }}
KUBERNETES: "vanilla" # KUBERNETES: "vanilla"
USING_NFD: "true" # USING_NFD: "true"
KBS: "true" # KBS: "true"
K8S_TEST_HOST_TYPE: "baremetal" # K8S_TEST_HOST_TYPE: "baremetal"
KBS_INGRESS: "nodeport" # KBS_INGRESS: "nodeport"
SNAPSHOTTER: ${{ matrix.snapshotter }} # SNAPSHOTTER: ${{ matrix.snapshotter }}
PULL_TYPE: ${{ matrix.pull-type }} # PULL_TYPE: ${{ matrix.pull-type }}
AUTHENTICATED_IMAGE_USER: ${{ vars.AUTHENTICATED_IMAGE_USER }} # AUTHENTICATED_IMAGE_USER: ${{ vars.AUTHENTICATED_IMAGE_USER }}
AUTHENTICATED_IMAGE_PASSWORD: ${{ secrets.AUTHENTICATED_IMAGE_PASSWORD }} # AUTHENTICATED_IMAGE_PASSWORD: ${{ secrets.AUTHENTICATED_IMAGE_PASSWORD }}
ITA_KEY: ${{ secrets.ITA_KEY }} # ITA_KEY: ${{ secrets.ITA_KEY }}
AUTO_GENERATE_POLICY: "yes" # AUTO_GENERATE_POLICY: "yes"
steps: # steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 # - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: # with:
ref: ${{ inputs.commit-hash }} # ref: ${{ inputs.commit-hash }}
fetch-depth: 0 # fetch-depth: 0
persist-credentials: false # persist-credentials: false
- name: Rebase atop of the latest target branch # - name: Rebase atop of the latest target branch
run: | # run: |
./tests/git-helper.sh "rebase-atop-of-the-latest-target-branch" # ./tests/git-helper.sh "rebase-atop-of-the-latest-target-branch"
env: # env:
TARGET_BRANCH: ${{ inputs.target-branch }} # TARGET_BRANCH: ${{ inputs.target-branch }}
- name: Deploy Snapshotter # - name: Deploy Snapshotter
timeout-minutes: 5 # timeout-minutes: 5
run: bash tests/integration/kubernetes/gha-run.sh deploy-snapshotter # run: bash tests/integration/kubernetes/gha-run.sh deploy-snapshotter
- name: Deploy Kata # - name: Deploy Kata
timeout-minutes: 10 # timeout-minutes: 10
run: bash tests/integration/kubernetes/gha-run.sh deploy-kata-tdx # run: bash tests/integration/kubernetes/gha-run.sh deploy-kata-tdx
- name: Uninstall previous `kbs-client` # - name: Uninstall previous `kbs-client`
timeout-minutes: 10 # timeout-minutes: 10
run: bash tests/integration/kubernetes/gha-run.sh uninstall-kbs-client # run: bash tests/integration/kubernetes/gha-run.sh uninstall-kbs-client
- name: Deploy CoCo KBS # - name: Deploy CoCo KBS
timeout-minutes: 10 # timeout-minutes: 10
run: bash tests/integration/kubernetes/gha-run.sh deploy-coco-kbs # run: bash tests/integration/kubernetes/gha-run.sh deploy-coco-kbs
- name: Install `kbs-client` # - name: Install `kbs-client`
timeout-minutes: 10 # timeout-minutes: 10
run: bash tests/integration/kubernetes/gha-run.sh install-kbs-client # run: bash tests/integration/kubernetes/gha-run.sh install-kbs-client
- name: Deploy CSI driver # - name: Deploy CSI driver
timeout-minutes: 5 # timeout-minutes: 5
run: bash tests/integration/kubernetes/gha-run.sh deploy-csi-driver # run: bash tests/integration/kubernetes/gha-run.sh deploy-csi-driver
- name: Run tests # - name: Run tests
timeout-minutes: 100 # timeout-minutes: 100
run: bash tests/integration/kubernetes/gha-run.sh run-tests # run: bash tests/integration/kubernetes/gha-run.sh run-tests
- name: Delete kata-deploy # - name: Delete kata-deploy
if: always() # if: always()
run: bash tests/integration/kubernetes/gha-run.sh cleanup-tdx # run: bash tests/integration/kubernetes/gha-run.sh cleanup-tdx
- name: Delete Snapshotter # - name: Delete Snapshotter
if: always() # if: always()
run: bash tests/integration/kubernetes/gha-run.sh cleanup-snapshotter # run: bash tests/integration/kubernetes/gha-run.sh cleanup-snapshotter
- name: Delete CoCo KBS # - name: Delete CoCo KBS
if: always() # if: always()
run: bash tests/integration/kubernetes/gha-run.sh delete-coco-kbs # run: bash tests/integration/kubernetes/gha-run.sh delete-coco-kbs
- name: Delete CSI driver # - name: Delete CSI driver
timeout-minutes: 5 # timeout-minutes: 5
run: bash tests/integration/kubernetes/gha-run.sh delete-csi-driver # run: bash tests/integration/kubernetes/gha-run.sh delete-csi-driver
run-k8s-tests-sev-snp: # run-k8s-tests-sev-snp:
strategy: # strategy:
fail-fast: false # fail-fast: false
matrix: # matrix:
vmm: # vmm:
- qemu-snp # - qemu-snp
snapshotter: # snapshotter:
- nydus # - nydus
pull-type: # pull-type:
- guest-pull # - guest-pull
runs-on: sev-snp # runs-on: sev-snp
env: # env:
DOCKER_REGISTRY: ${{ inputs.registry }} # DOCKER_REGISTRY: ${{ inputs.registry }}
DOCKER_REPO: ${{ inputs.repo }} # DOCKER_REPO: ${{ inputs.repo }}
DOCKER_TAG: ${{ inputs.tag }} # DOCKER_TAG: ${{ inputs.tag }}
GH_PR_NUMBER: ${{ inputs.pr-number }} # GH_PR_NUMBER: ${{ inputs.pr-number }}
KATA_HYPERVISOR: ${{ matrix.vmm }} # KATA_HYPERVISOR: ${{ matrix.vmm }}
KUBECONFIG: /home/kata/.kube/config # KUBECONFIG: /home/kata/.kube/config
KUBERNETES: "vanilla" # KUBERNETES: "vanilla"
USING_NFD: "false" # USING_NFD: "false"
KBS: "true" # KBS: "true"
KBS_INGRESS: "nodeport" # KBS_INGRESS: "nodeport"
K8S_TEST_HOST_TYPE: "baremetal" # K8S_TEST_HOST_TYPE: "baremetal"
SNAPSHOTTER: ${{ matrix.snapshotter }} # SNAPSHOTTER: ${{ matrix.snapshotter }}
PULL_TYPE: ${{ matrix.pull-type }} # PULL_TYPE: ${{ matrix.pull-type }}
AUTHENTICATED_IMAGE_USER: ${{ vars.AUTHENTICATED_IMAGE_USER }} # AUTHENTICATED_IMAGE_USER: ${{ vars.AUTHENTICATED_IMAGE_USER }}
AUTHENTICATED_IMAGE_PASSWORD: ${{ secrets.AUTHENTICATED_IMAGE_PASSWORD }} # AUTHENTICATED_IMAGE_PASSWORD: ${{ secrets.AUTHENTICATED_IMAGE_PASSWORD }}
AUTO_GENERATE_POLICY: "yes" # AUTO_GENERATE_POLICY: "yes"
steps: # steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 # - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: # with:
ref: ${{ inputs.commit-hash }} # ref: ${{ inputs.commit-hash }}
fetch-depth: 0 # fetch-depth: 0
persist-credentials: false # persist-credentials: false
- name: Rebase atop of the latest target branch # - name: Rebase atop of the latest target branch
run: | # run: |
./tests/git-helper.sh "rebase-atop-of-the-latest-target-branch" # ./tests/git-helper.sh "rebase-atop-of-the-latest-target-branch"
env: # env:
TARGET_BRANCH: ${{ inputs.target-branch }} # TARGET_BRANCH: ${{ inputs.target-branch }}
- name: Deploy Snapshotter # - name: Deploy Snapshotter
timeout-minutes: 5 # timeout-minutes: 5
run: bash tests/integration/kubernetes/gha-run.sh deploy-snapshotter # run: bash tests/integration/kubernetes/gha-run.sh deploy-snapshotter
- name: Deploy Kata # - name: Deploy Kata
timeout-minutes: 10 # timeout-minutes: 10
run: bash tests/integration/kubernetes/gha-run.sh deploy-kata-snp # run: bash tests/integration/kubernetes/gha-run.sh deploy-kata-snp
- name: Uninstall previous `kbs-client` # - name: Uninstall previous `kbs-client`
timeout-minutes: 10 # timeout-minutes: 10
run: bash tests/integration/kubernetes/gha-run.sh uninstall-kbs-client # run: bash tests/integration/kubernetes/gha-run.sh uninstall-kbs-client
- name: Deploy CoCo KBS # - name: Deploy CoCo KBS
timeout-minutes: 10 # timeout-minutes: 10
run: bash tests/integration/kubernetes/gha-run.sh deploy-coco-kbs # run: bash tests/integration/kubernetes/gha-run.sh deploy-coco-kbs
- name: Install `kbs-client` # - name: Install `kbs-client`
timeout-minutes: 10 # timeout-minutes: 10
run: bash tests/integration/kubernetes/gha-run.sh install-kbs-client # run: bash tests/integration/kubernetes/gha-run.sh install-kbs-client
- name: Deploy CSI driver # - name: Deploy CSI driver
timeout-minutes: 5 # timeout-minutes: 5
run: bash tests/integration/kubernetes/gha-run.sh deploy-csi-driver # run: bash tests/integration/kubernetes/gha-run.sh deploy-csi-driver
- name: Run tests # - name: Run tests
timeout-minutes: 50 # timeout-minutes: 50
run: bash tests/integration/kubernetes/gha-run.sh run-tests # run: bash tests/integration/kubernetes/gha-run.sh run-tests
- name: Delete kata-deploy # - name: Delete kata-deploy
if: always() # if: always()
run: bash tests/integration/kubernetes/gha-run.sh cleanup-snp # run: bash tests/integration/kubernetes/gha-run.sh cleanup-snp
- name: Delete Snapshotter # - name: Delete Snapshotter
if: always() # if: always()
run: bash tests/integration/kubernetes/gha-run.sh cleanup-snapshotter # run: bash tests/integration/kubernetes/gha-run.sh cleanup-snapshotter
- name: Delete CoCo KBS # - name: Delete CoCo KBS
if: always() # if: always()
run: bash tests/integration/kubernetes/gha-run.sh delete-coco-kbs # run: bash tests/integration/kubernetes/gha-run.sh delete-coco-kbs
- name: Delete CSI driver # - name: Delete CSI driver
timeout-minutes: 5 # timeout-minutes: 5
run: bash tests/integration/kubernetes/gha-run.sh delete-csi-driver # run: bash tests/integration/kubernetes/gha-run.sh delete-csi-driver
# Generate jobs for testing CoCo on non-TEE environments # Generate jobs for testing CoCo on non-TEE environments
run-k8s-tests-coco-nontee: run-k8s-tests-coco-nontee: