mirror of
https://github.com/kyverno/kyverno.git
synced 2024-12-14 11:57:48 +00:00
279 lines
8.8 KiB
YAML
279 lines
8.8 KiB
YAML
name: Conformance tests
|
|
|
|
on:
|
|
pull_request:
|
|
branches:
|
|
- 'main'
|
|
- 'release*'
|
|
|
|
permissions: {}
|
|
|
|
concurrency:
|
|
group: ${{ github.workflow }}-${{ github.ref }}
|
|
cancel-in-progress: true
|
|
|
|
jobs:
|
|
prepare-images:
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
contents: read
|
|
steps:
|
|
- name: Checkout
|
|
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
|
|
- name: Setup build env
|
|
uses: ./.github/actions/setup-build-env
|
|
with:
|
|
build-cache-key: build-images
|
|
- name: ko build
|
|
run: VERSION=${{ github.ref_name }} make docker-save-image-all
|
|
- name: upload images archive
|
|
uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
|
|
with:
|
|
name: kyverno.tar
|
|
path: kyverno.tar
|
|
retention-days: 1
|
|
if-no-files-found: error
|
|
|
|
# runs conformance test suites with configuration:
|
|
standard:
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
contents: read
|
|
strategy:
|
|
fail-fast: false
|
|
matrix:
|
|
config:
|
|
- name: standard
|
|
values:
|
|
- standard
|
|
k8s-version:
|
|
- name: v1.24
|
|
version: v1.24.12
|
|
- name: v1.25
|
|
version: v1.25.8
|
|
- name: v1.26
|
|
version: v1.26.3
|
|
- name: v1.27
|
|
version: v1.27.1
|
|
tests:
|
|
- autogen
|
|
- cleanup
|
|
- events
|
|
- exceptions
|
|
- generate/clusterpolicy
|
|
- generate/policy
|
|
- generate/validation
|
|
- mutate
|
|
- policy-validation
|
|
- rangeoperators
|
|
- rbac
|
|
- reports
|
|
- validate
|
|
- verify-manifests
|
|
- verifyImages
|
|
- webhooks
|
|
needs: prepare-images
|
|
name: ${{ matrix.k8s-version.name }} - ${{ matrix.config.name }} - ${{ matrix.tests }}
|
|
steps:
|
|
- name: Checkout
|
|
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
|
|
- name: Setup build env
|
|
uses: ./.github/actions/setup-build-env
|
|
with:
|
|
build-cache-key: run-conformance
|
|
- name: Create kind cluster
|
|
run: |
|
|
export KIND_IMAGE=kindest/node:${{ matrix.k8s-version.version }}
|
|
make kind-create-cluster
|
|
- name: Download kyverno images archive
|
|
uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
|
|
with:
|
|
name: kyverno.tar
|
|
- name: Load kyverno images archive in kind cluster
|
|
run: make kind-load-image-archive
|
|
- name: Install kyverno
|
|
run: |
|
|
export USE_CONFIG=${{ join(matrix.config.values, ',') }}
|
|
make kind-install-kyverno
|
|
- name: Wait for kyverno ready
|
|
uses: ./.github/actions/kyverno-wait-ready
|
|
- name: Test with kuttl
|
|
run: |
|
|
./.tools/kubectl-kuttl test ./test/conformance/kuttl/${{ matrix.tests }} \
|
|
--config ./test/conformance/kuttl/_config/common.yaml
|
|
- name: Debug failure
|
|
if: failure()
|
|
uses: ./.github/actions/kyverno-logs
|
|
|
|
# runs conformance test suites with configuration:
|
|
force-failure-policy-ignore:
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
contents: read
|
|
strategy:
|
|
fail-fast: false
|
|
matrix:
|
|
config:
|
|
- name: force-failure-policy-ignore
|
|
values:
|
|
- standard
|
|
- force-failure-policy-ignore
|
|
k8s-version:
|
|
- name: v1.24
|
|
version: v1.24.12
|
|
- name: v1.25
|
|
version: v1.25.8
|
|
- name: v1.26
|
|
version: v1.26.3
|
|
- name: v1.27
|
|
version: v1.27.1
|
|
tests:
|
|
- force-failure-policy-ignore
|
|
- rbac
|
|
needs: prepare-images
|
|
name: ${{ matrix.k8s-version.name }} - ${{ matrix.config.name }} - ${{ matrix.tests }}
|
|
steps:
|
|
- name: Checkout
|
|
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
|
|
- name: Setup build env
|
|
uses: ./.github/actions/setup-build-env
|
|
with:
|
|
build-cache-key: run-conformance
|
|
- name: Create kind cluster
|
|
run: |
|
|
export KIND_IMAGE=kindest/node:${{ matrix.k8s-version.version }}
|
|
make kind-create-cluster
|
|
- name: Download kyverno images archive
|
|
uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
|
|
with:
|
|
name: kyverno.tar
|
|
- name: Load kyverno images archive in kind cluster
|
|
run: make kind-load-image-archive
|
|
- name: Install kyverno
|
|
run: |
|
|
export USE_CONFIG=${{ join(matrix.config.values, ',') }}
|
|
make kind-install-kyverno
|
|
- name: Wait for kyverno ready
|
|
uses: ./.github/actions/kyverno-wait-ready
|
|
- name: Test with kuttl
|
|
run: |
|
|
./.tools/kubectl-kuttl test ./test/conformance/kuttl/${{ matrix.tests }} \
|
|
--config ./test/conformance/kuttl/_config/common.yaml
|
|
- name: Debug failure
|
|
if: failure()
|
|
uses: ./.github/actions/kyverno-logs
|
|
|
|
# runs conformance test suites with configuration:
|
|
default:
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
contents: read
|
|
strategy:
|
|
fail-fast: false
|
|
matrix:
|
|
config:
|
|
- name: default
|
|
values:
|
|
- default
|
|
k8s-version:
|
|
- name: v1.24
|
|
version: v1.24.12
|
|
- name: v1.25
|
|
version: v1.25.8
|
|
- name: v1.26
|
|
version: v1.26.3
|
|
- name: v1.27
|
|
version: v1.27.1
|
|
tests:
|
|
- rbac
|
|
needs: prepare-images
|
|
name: ${{ matrix.k8s-version.name }} - ${{ matrix.config.name }} - ${{ matrix.tests }}
|
|
steps:
|
|
- name: Checkout
|
|
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
|
|
- name: Setup build env
|
|
uses: ./.github/actions/setup-build-env
|
|
with:
|
|
build-cache-key: run-conformance
|
|
- name: Create kind cluster
|
|
run: |
|
|
export KIND_IMAGE=kindest/node:${{ matrix.k8s-version.version }}
|
|
make kind-create-cluster
|
|
- name: Download kyverno images archive
|
|
uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
|
|
with:
|
|
name: kyverno.tar
|
|
- name: Load kyverno images archive in kind cluster
|
|
run: make kind-load-image-archive
|
|
- name: Install kyverno
|
|
run: |
|
|
export USE_CONFIG=${{ join(matrix.config.values, ',') }}
|
|
make kind-install-kyverno
|
|
- name: Wait for kyverno ready
|
|
uses: ./.github/actions/kyverno-wait-ready
|
|
- name: Test with kuttl
|
|
run: |
|
|
./.tools/kubectl-kuttl test ./test/conformance/kuttl/${{ matrix.tests }} \
|
|
--config ./test/conformance/kuttl/_config/common.yaml
|
|
- name: Debug failure
|
|
if: failure()
|
|
uses: ./.github/actions/kyverno-logs
|
|
|
|
# runs conformance test suites with configuration:
|
|
policy-library:
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
contents: read
|
|
strategy:
|
|
fail-fast: false
|
|
matrix:
|
|
config:
|
|
- name: policy-library
|
|
values:
|
|
- standard
|
|
k8s-version:
|
|
- name: v1.24
|
|
version: v1.24.12
|
|
- name: v1.25
|
|
version: v1.25.8
|
|
- name: v1.26
|
|
version: v1.26.3
|
|
- name: v1.27
|
|
version: v1.27.1
|
|
needs: prepare-images
|
|
name: ${{ matrix.k8s-version.name }} - ${{ matrix.config.name }}
|
|
steps:
|
|
- name: Checkout kyverno/kyverno
|
|
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
|
|
- name: Checkout kyverno/policies
|
|
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
|
|
with:
|
|
repository: kyverno/policies
|
|
path: policies
|
|
- name: Setup build env
|
|
uses: ./.github/actions/setup-build-env
|
|
with:
|
|
build-cache-key: run-conformance
|
|
- name: Create kind cluster
|
|
run: |
|
|
export KIND_IMAGE=kindest/node:${{ matrix.k8s-version.version }}
|
|
make kind-create-cluster
|
|
- name: Download kyverno images archive
|
|
uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
|
|
with:
|
|
name: kyverno.tar
|
|
- name: Load kyverno images archive in kind cluster
|
|
run: make kind-load-image-archive
|
|
- name: Install kyverno
|
|
run: |
|
|
export USE_CONFIG=${{ join(matrix.config.values, ',') }}
|
|
make kind-install-kyverno
|
|
- name: Wait for kyverno ready
|
|
uses: ./.github/actions/kyverno-wait-ready
|
|
- name: Test policy library with kuttl
|
|
run: |
|
|
cd policies
|
|
../.tools/kubectl-kuttl test . --config ./kuttl-test.yaml
|
|
- name: Debug failure
|
|
if: failure()
|
|
uses: ./.github/actions/kyverno-logs
|