Merge pull request rancher#45267 from MSpencer87/proxy-tests-2.8

[v2.8] Added proxied rancher provisioning tests
HarrisonWAffel · Oct 1, 2024 · 46b9cdf · 46b9cdf
2 parents b35702e + ea088c6
commit 46b9cdf
Show file tree

Hide file tree

Showing 14 changed files with 887 additions and 9 deletions.
diff --git a/go.mod b/go.mod
@@ -174,7 +174,7 @@ require (
 	github.com/google/gnostic-models v0.6.8
 	github.com/rancher/cis-operator v1.0.11
 	github.com/rancher/rancher/pkg/apis v0.0.0-20240613212755-3021cf92ff9f
-	github.com/rancher/shepherd v0.0.0-20240912175831-f5a38e38cf42
+	github.com/rancher/shepherd v0.0.0-20240927124804-e41d69ef115f
 	github.com/rancher/wrangler v1.1.1
 	go.qase.io/client v0.0.0-20231114201952-65195ec001fa
 )

diff --git a/go.sum b/go.sum
@@ -1547,8 +1547,8 @@ github.com/rancher/remotedialer v0.4.0 h1:T9yC5bFMsZFVQ6rK0dNrRg6rRb6Zr/4vsig8S0
 github.com/rancher/remotedialer v0.4.0/go.mod h1:Ys004RpJuTLSm+k4aYUCoFiOOad37ubYev3TkOFg/5w=
 github.com/rancher/rke v1.5.14-rc.1 h1:k+H0K8rSHm7QZFZhBIJHw89xUXjMOE6fY8cU6yQ5zl8=
 github.com/rancher/rke v1.5.14-rc.1/go.mod h1:/z9oyKqYpFwgRBV9rfLxqUdjydz/VMCTcjld4uUt7uM=
-github.com/rancher/shepherd v0.0.0-20240912175831-f5a38e38cf42 h1:zALtoACJZV4pH5/pL9qrNVmw1Aj2k1bZ3AwfPOLC9hM=
-github.com/rancher/shepherd v0.0.0-20240912175831-f5a38e38cf42/go.mod h1:1TXkmbjCxMEp8Rzzw+ToyrhJYUGDC0lw6uXLe3Ie+M4=
+github.com/rancher/shepherd v0.0.0-20240927124804-e41d69ef115f h1:wCY0Wm/UZ2lhFZ8YhKueW215JLVKBNUchUMHEQVoAoc=
+github.com/rancher/shepherd v0.0.0-20240927124804-e41d69ef115f/go.mod h1:1TXkmbjCxMEp8Rzzw+ToyrhJYUGDC0lw6uXLe3Ie+M4=
 github.com/rancher/steve v0.0.0-20240529152548-9fb3e50aa806 h1:QvB3tddPbwuloBMw/q7zSeYyLvKruQI/era5Y+t56dE=
 github.com/rancher/steve v0.0.0-20240529152548-9fb3e50aa806/go.mod h1:o4vLBzMTKbHHhIiAcbgOiaN3aK1vIjL6ZTgaGxQYpsY=
 github.com/rancher/system-upgrade-controller/pkg/apis v0.0.0-20240301001845-4eacc2dabbde h1:x5VZI/0TUx1MeZirh6e0OMAInhCmq6yRvD6897458Ng=

diff --git a/tests/v2/actions/clusters/clusterconfig.go b/tests/v2/actions/clusters/clusterconfig.go
@@ -18,8 +18,8 @@ type ClusterConfig struct {
 	NodeProviders                  *[]string                                         `json:"nodeProviders" yaml:"nodeProviders"`
 	Hardened                       bool                                              `json:"hardened" yaml:"hardened"`
 	AddOnConfig                    *provisioningInput.AddOnConfig                    `json:"addonConfig" yaml:"addonConfig"`
-	AgentEnvVars                   *[]rkev1.EnvVar                                   `json:"agentEnvVars" yaml:"agentEnvVars"`
-	AgentEnvVarsRKE1               *[]management.EnvVar                              `json:"agentEnvVarsRKE1" yaml:"agentEnvVarsRKE1"`
+	AgentEnvVars                   []rkev1.EnvVar                                    `json:"agentEnvVars" yaml:"agentEnvVars"`
+	AgentEnvVarsRKE1               []management.EnvVar                               `json:"agentEnvVarsRKE1" yaml:"agentEnvVarsRKE1"`
 	ClusterAgent                   *management.AgentDeploymentCustomization          `json:"clusterAgent" yaml:"clusterAgent"`
 	FleetAgent                     *management.AgentDeploymentCustomization          `json:"fleetAgent" yaml:"fleetAgent"`
 	ETCD                           *rkev1.ETCD                                       `json:"etcd" yaml:"etcd"`
@@ -41,6 +41,7 @@ func ConvertConfigToClusterConfig(provisioningConfig *provisioningInput.Config)
 	newConfig.MachinePools = provisioningConfig.MachinePools
 	newConfig.NodePools = provisioningConfig.NodePools
 	newConfig.AgentEnvVars = provisioningConfig.AgentEnvVars
+	newConfig.AgentEnvVarsRKE1 = provisioningConfig.AgentEnvVarsRKE1
 	newConfig.Networking = provisioningConfig.Networking
 	newConfig.Advanced = provisioningConfig.Advanced
 	newConfig.Providers = &provisioningConfig.Providers

diff --git a/tests/v2/actions/clusters/clusters.go b/tests/v2/actions/clusters/clusters.go
@@ -145,6 +145,7 @@ func NewRKE1ClusterConfig(clusterName string, client *rancher.Client, clustersCo
 	}
 	newConfig.ClusterAgentDeploymentCustomization = clustersConfig.ClusterAgent
 	newConfig.FleetAgentDeploymentCustomization = clustersConfig.FleetAgent
+	newConfig.AgentEnvVars = clustersConfig.AgentEnvVarsRKE1
 
 	if clustersConfig.Registries != nil {
 		if clustersConfig.Registries.RKE1Registries != nil {
@@ -183,6 +184,10 @@ func NewRKE1ClusterConfig(clusterName string, client *rancher.Client, clustersCo
 		newConfig.DefaultPodSecurityAdmissionConfigurationTemplateName = clustersConfig.PSACT
 	}
 
+	if clustersConfig.AgentEnvVars != nil {
+		newConfig.AgentEnvVars = clustersConfig.AgentEnvVarsRKE1
+	}
+
 	return newConfig
 }
 
@@ -200,6 +205,7 @@ func UpdateRKE1ClusterConfig(clusterName string, client *rancher.Client, cluster
 
 	newConfig.ClusterAgentDeploymentCustomization = clustersConfig.ClusterAgent
 	newConfig.FleetAgentDeploymentCustomization = clustersConfig.FleetAgent
+	newConfig.AgentEnvVars = clustersConfig.AgentEnvVarsRKE1
 
 	if clustersConfig.Registries != nil {
 		if clustersConfig.Registries.RKE1Registries != nil {
@@ -235,6 +241,10 @@ func UpdateRKE1ClusterConfig(clusterName string, client *rancher.Client, cluster
 		newConfig.RancherKubernetesEngineConfig.Services.Etcd = clustersConfig.ETCDRKE1
 	}
 
+	if clustersConfig.AgentEnvVars != nil {
+		newConfig.AgentEnvVars = clustersConfig.AgentEnvVarsRKE1
+	}
+
 	if clustersConfig.PSACT != "" {
 		newConfig.DefaultPodSecurityAdmissionConfigurationTemplateName = clustersConfig.PSACT
 	}
@@ -384,13 +394,20 @@ func NewK3SRKE2ClusterConfig(clusterName, namespace string, clustersConfig *Clus
 		MachinePools:         machinePools,
 	}
 
+	agentEnvVars := []rkev1.EnvVar{}
+
 	spec := apisV1.ClusterSpec{
 		CloudCredentialSecretName:           cloudCredentialSecretName,
 		KubernetesVersion:                   clustersConfig.KubernetesVersion,
 		LocalClusterAuthEndpoint:            localClusterAuthEndpoint,
 		RKEConfig:                           rkeConfig,
 		ClusterAgentDeploymentCustomization: clusterAgentDeploymentCustomization,
 		FleetAgentDeploymentCustomization:   fleetAgentDeploymentCustomization,
+		AgentEnvVars:                        agentEnvVars,
+	}
+
+	if clustersConfig.AgentEnvVars != nil {
+		spec.AgentEnvVars = clustersConfig.AgentEnvVars
 	}
 
 	if clustersConfig.PSACT != "" {
@@ -507,6 +524,10 @@ func UpdateK3SRKE2ClusterConfig(cluster *v1.SteveAPIObject, clustersConfig *Clus
 		)
 	}
 
+	if clustersConfig.AgentEnvVars != nil {
+		clusterSpec.AgentEnvVars = clustersConfig.AgentEnvVars
+	}
+
 	if clustersConfig.PSACT != "" {
 		clusterSpec.DefaultPodSecurityAdmissionConfigurationTemplateName = clustersConfig.PSACT
 	}

diff --git a/tests/v2/actions/provisioning/creates.go b/tests/v2/actions/provisioning/creates.go
@@ -624,7 +624,9 @@ func CreateProvisioningAirgapCustomCluster(client *rancher.Client, clustersConfi
 			return nil, err
 		}
 
-		command := fmt.Sprintf("%s %s", token.InsecureNodeCommand, roles)
+		// environment variables must be escaped inside original registration command
+		temp := strings.Replace(token.InsecureNodeCommand, "\"", "\\\"", -1)
+		command := fmt.Sprintf("%s %s", temp, roles)
 		logrus.Infof("registration command is %s", command)
 		err = corral.UpdateCorralConfig("registration_command", command)
 		if err != nil {
@@ -703,7 +705,9 @@ func CreateProvisioningRKE1AirgapCustomCluster(client *rancher.Client, clustersC
 			return nil, err
 		}
 
-		command := fmt.Sprintf("%s %s", token.NodeCommand, roles)
+		// environment variables must be escaped inside original registration command
+		temp := strings.Replace(token.NodeCommand, "\"", "\\\"", -1)
+		command := fmt.Sprintf("%s %s", temp, roles)
 		logrus.Infof("registration command is %s", command)
 		err = corral.UpdateCorralConfig("registration_command", command)
 		if err != nil {

diff --git a/tests/v2/actions/provisioninginput/config.go b/tests/v2/actions/provisioninginput/config.go
@@ -214,8 +214,8 @@ type Config struct {
 	CNIs                           []string                                 `json:"cni,omitempty" yaml:"cni,omitempty"`
 	PSACT                          string                                   `json:"psact,omitempty" yaml:"psact,omitempty"`
 	PNI                            bool                                     `json:"pni,omitempty" yaml:"pni,omitempty"`
-	AgentEnvVars                   *[]rkev1.EnvVar                          `json:"agentEnvVars,omitempty" yaml:"agentEnvVars,omitempty"`
-	AgentEnvVarsRKE1               *[]management.EnvVar                     `json:"agentEnvVarsRKE1,omitempty" yaml:"agentEnvVarsRKE1,omitempty"`
+	AgentEnvVars                   []rkev1.EnvVar                           `json:"agentEnvVars,omitempty" yaml:"agentEnvVars,omitempty"`
+	AgentEnvVarsRKE1               []management.EnvVar                      `json:"agentEnvVarsRKE1,omitempty" yaml:"agentEnvVarsRKE1,omitempty"`
 	ClusterAgent                   *management.AgentDeploymentCustomization `json:"clusterAgent,omitempty" yaml:"clusterAgent,omitempty"`
 	FleetAgent                     *management.AgentDeploymentCustomization `json:"fleetAgent,omitempty" yaml:"fleetAgent,omitempty"`
 	ETCD                           *rkev1.ETCD                              `json:"etcd,omitempty" yaml:"etcd,omitempty"`

diff --git a/tests/v2/validation/provisioning/proxy/README.md b/tests/v2/validation/provisioning/proxy/README.md
@@ -0,0 +1,65 @@
+
+# Proxy Provisioning Configs
+
+Please refer to [RKE1 Provisioning](../rke1/README.md) and [RKE2 Provisioning](../rke2/README.md) to build config file with basic `provisioningInput` parameters.
+
+Your GO test_package should be set to `provisioning/proxy`.
+Your GO suite should be set to `-run ^TestRKE2ProxyTestSuite$`.
+Please see below for more details for your proxy config. Please note that the config can be in either JSON or YAML (all examples are illustrated in YAML).
+
+For provisioning tests, include the following parameters into `agentEnvVars` and/or `agentEnvVarsRKE1` inside your `provisioningInput` 
+
+```yaml
+provisioningInput:
+  agentEnvVars:
+  - name: HTTPS_PROXY
+    value: #proxy server internal ip address:port
+  - name: HTTP_PROXY
+    value: #proxy server internal ip address:port
+  - name: NO_PROXY
+    value: localhost,127.0.0.1,0.0.0.0,10.0.0.0/8,172.16.0.0/12,cattle-system.svc
+  agentEnvVarsRKE1:
+  - name: HTTPS_PROXY
+    value: #proxy server internal ip address:port
+  - name: HTTP_PROXY
+    value: #proxy server internal ip address:port
+  - name: NO_PROXY
+    value: localhost,127.0.0.1,0.0.0.0,10.0.0.0/8,172.16.0.0/12,cattle-system.svc
+```
+
+You should have a basic understanding of Corral before running the custom cluster tests. 
+In your config file, set the following:
+```yaml
+corralPackages:
+  corralPackageImages:
+    airgapCustomCluster: "/dist/aws-rancher-custom-cluster-false-true"
+    rancherHA: "/dist/aws-aws-proxy-standalone-rke2-rancher-proxy-calico-true-2.15.1-1.11.0" # the name of the corral rancher is configurable with config entry above
+    ...
+  hasDebug: <bool, default=false>
+  hasCleanup: <bool, default=true>
+corralConfigs:
+  corralConfigUser: <string, default="jenkauto">
+  corralConfigVars:
+    <var1>: <string, "val1"> # for now only aws is supported, so use the appropriate aws vars
+    registry_ip: <addr> # if the proxied rancher instance is created beforehand (not in the same job) set this to the registry public IP, otherwise it is automatically done in the job. 
+    registry_private_ip: <addr> # if the proxied rancher instance is created beforehand (not in the same job) set this to the registry private IP, otherwise it is automatically done in the job.
+    rancher_chart_repo: <val> #  
+    rancher_version: <val> #
+    kubernetes_version: <val> #
+    corral_private_key: <val> # only set this if you have created the proxied rancher instance beforehand. By doing `corral vars <corral> corral_private_key`
+    corral_public_key: <val> # only set this if you have created the proxied rancher instance beforehand. By doing `corral vars <corral> corral_private_key`
+    ...
+  corralSSHPath: <string, optional, mostly for local testing>
+corralRancherHA:
+  name: rancherha # this is the name of your aigap corral package if it hasn't been created beforehand
+```
+
+Note: `corralConfigUser` will be the prefix for all resources created in your provider. 
+From there, your `corralConfigVars` should contain the parameters necessary to run the test. You can see what variables need to be set by navigating to your corral package folder and checking the `manifest.yaml` variables.
+
+In order to run the entire proxy package set the package to `proxy/...` Your GO suite should be set to blank. 
+
+Formatting `corral_private_key`:
+1. Output key to file `corral vars <corral> corral_private_key > temp`
+2. Copy single line version of key `awk -v ORS='\\n' '1' temp | pbcopy`
+3. Paste into config (example yaml format `corral_private_key: '"<key>"'`)
diff --git a/tests/v2/validation/provisioning/proxy/k3s_proxy_custom_cluster_test.go b/tests/v2/validation/provisioning/proxy/k3s_proxy_custom_cluster_test.go
@@ -0,0 +1,137 @@
+package proxy
+
+import (
+	"testing"
+
+	rkev1 "github.com/rancher/rancher/pkg/apis/rke.cattle.io/v1"
+	"github.com/rancher/rancher/tests/v2/actions/provisioninginput"
+	"github.com/rancher/rancher/tests/v2/validation/pipeline/rancherha/corralha"
+	"github.com/rancher/rancher/tests/v2/validation/provisioning/permutations"
+	"github.com/rancher/shepherd/clients/corral"
+	"github.com/rancher/shepherd/clients/rancher"
+	management "github.com/rancher/shepherd/clients/rancher/generated/management/v3"
+	"github.com/rancher/shepherd/extensions/clusters"
+	"github.com/rancher/shepherd/extensions/clusters/kubernetesversions"
+	"github.com/rancher/shepherd/extensions/users"
+	password "github.com/rancher/shepherd/extensions/users/passwordgenerator"
+	"github.com/rancher/shepherd/pkg/config"
+	"github.com/rancher/shepherd/pkg/environmentflag"
+	namegen "github.com/rancher/shepherd/pkg/namegenerator"
+	"github.com/rancher/shepherd/pkg/session"
+	"github.com/stretchr/testify/require"
+	"github.com/stretchr/testify/suite"
+)
+
+type ProxyK3SCustomClusterTestSuite struct {
+	suite.Suite
+	client             *rancher.Client
+	standardUserClient *rancher.Client
+	session            *session.Session
+	corralPackage      *corral.Packages
+	clustersConfig     *provisioninginput.Config
+	EnvVar             rkev1.EnvVar
+	corralImage        string
+	corralAutoCleanup  bool
+}
+
+func (k *ProxyK3SCustomClusterTestSuite) TearDownSuite() {
+	k.session.Cleanup()
+}
+
+func (k *ProxyK3SCustomClusterTestSuite) SetupSuite() {
+	testSession := session.NewSession()
+	k.session = testSession
+
+	corralRancherHA := new(corralha.CorralRancherHA)
+	config.LoadConfig(corralha.CorralRancherHAConfigConfigurationFileKey, corralRancherHA)
+
+	k.clustersConfig = new(provisioninginput.Config)
+	config.LoadConfig(provisioninginput.ConfigurationFileKey, k.clustersConfig)
+
+	client, err := rancher.NewClient("", testSession)
+	require.NoError(k.T(), err)
+
+	k.client = client
+
+	enabled := true
+	var testuser = namegen.AppendRandomString("testuser-")
+	var testpassword = password.GenerateUserPassword("testpass-")
+	user := &management.User{
+		Username: testuser,
+		Password: testpassword,
+		Name:     testuser,
+		Enabled:  &enabled,
+	}
+
+	newUser, err := users.CreateUserWithRole(client, user, "user")
+	require.NoError(k.T(), err)
+
+	newUser.Password = user.Password
+
+	standardUserClient, err := client.AsUser(newUser)
+	require.NoError(k.T(), err)
+
+	k.standardUserClient = standardUserClient
+
+	k.clustersConfig.K3SKubernetesVersions, err = kubernetesversions.Default(
+		k.client, clusters.K3SClusterType.String(), k.clustersConfig.K3SKubernetesVersions)
+	require.NoError(k.T(), err)
+
+	listOfCorrals, err := corral.ListCorral()
+	require.NoError(k.T(), err)
+
+	corralConfig := corral.Configurations()
+	err = corral.SetupCorralConfig(corralConfig.CorralConfigVars, corralConfig.CorralConfigUser, corralConfig.CorralSSHPath)
+	require.NoError(k.T(), err)
+
+	k.corralPackage = corral.PackagesConfig()
+	k.corralImage = k.corralPackage.CorralPackageImages[corralPackageAirgapCustomClusterName]
+	k.corralAutoCleanup = k.corralPackage.HasCleanup
+
+	_, corralExist := listOfCorrals[corralRancherHA.Name]
+	if corralExist {
+		bastionIP, err := corral.GetCorralEnvVar(corralRancherHA.Name, corralRegistryPrivateIP)
+		require.NoError(k.T(), err)
+
+		k.EnvVar.Name = "HTTP_PROXY"
+		k.EnvVar.Value = bastionIP + ":3219"
+		k.clustersConfig.AgentEnvVars = append(k.clustersConfig.AgentEnvVars, k.EnvVar)
+
+		k.EnvVar.Name = "HTTPS_PROXY"
+		k.EnvVar.Value = bastionIP + ":3219"
+		k.clustersConfig.AgentEnvVars = append(k.clustersConfig.AgentEnvVars, k.EnvVar)
+
+		k.EnvVar.Name = "NO_PROXY"
+		k.EnvVar.Value = "localhost,127.0.0.1,0.0.0.0,10.0.0.0/8,cattle-system.svc"
+		k.clustersConfig.AgentEnvVars = append(k.clustersConfig.AgentEnvVars, k.EnvVar)
+
+		err = corral.SetCorralSSHKeys(corralRancherHA.Name)
+		require.NoError(k.T(), err)
+
+		err = corral.SetCorralBastion(corralRancherHA.Name)
+		require.NoError(k.T(), err)
+	} else {
+		k.T().Logf("Using AgentEnvVars from config: %v", k.clustersConfig.AgentEnvVars)
+	}
+
+}
+
+func (k *ProxyK3SCustomClusterTestSuite) TestProxyK3SCustomClusterProvisioning() {
+	k.clustersConfig.MachinePools = []provisioninginput.MachinePools{provisioninginput.AllRolesMachinePool}
+
+	tests := []struct {
+		name    string
+		client  *rancher.Client
+		runFlag bool
+	}{
+		{provisioninginput.StandardClientName.String() + "-" + permutations.K3SAirgapCluster + "-", k.standardUserClient, k.standardUserClient.Flags.GetValue(environmentflag.Short)},
+	}
+	for _, tt := range tests {
+		provisioningConfig := *k.clustersConfig
+		permutations.RunTestPermutations(&k.Suite, tt.name, tt.client, &provisioningConfig, permutations.K3SAirgapCluster, nil, k.corralPackage)
+	}
+}
+
+func TestProxyK3SCustomClusterTestSuite(t *testing.T) {
+	suite.Run(t, new(ProxyK3SCustomClusterTestSuite))
+}