To test a new controller using Sieve, please first run python3 start_porting.py your-controller.
It will create a folder like this
examples/
|- your-controller/
|- config.json
|- build/
|- build.sh
|- deploy/
|- deploy.sh
|- oracle/
|- test/
It takes four steps to get started with testing the controller:
- provide the Dockerfile and necessary steps to build the controller in
build.sh - provide the necessary files to deploy the controller and the steps to deploy in
deploy.sh - provide test workloads
- fill in the
config.json
The first step is to make Sieve able to instrument and build the controller image.
Sieve's instrumentation is automatic. It will download the controller-runtime and client-go libraries required by the controller, instrument the libraries and modify the go.mod file of the controller to point to the instrumented libraries. The instrumented libraries are stored in the sieve-dependency/ folder. To make sure the controller can be successfully built, please copy the Dockerfile used for building the controller image to the your-controller/build/Dockerfile and modify the Dockerfile, typically by adding COPY sieve-dependency/ sieve-dependency/. As an example, see the Dockerfile we prepared for the zookeeper-operator.
Besides, the user also needs to fill the your-controller/build/build.sh with the commands to build the controller images. The script is supposed to be run by Sieve in the controller project directory to build the image with the modified Dockerfile. As an example, please refer to the build.sh we prepared for the zookeeper-operator.
After that, please specify following entries in your-controller/config.json:
github_link: the link to git clone the controller projectcommit: the commit to build and testkubernetes_version: the version of Kubernetes to test the controller with (e.g., v1.23.1)controller_runtime_version: the version of thecontroller-runtimeused by the controllerclient_go_version: the version of theclient-goused by the controllerdockerfile_path: the relative path from the cloned controller project to the Dockerfile in the projectcontroller_image_name: the name of the image built byyour-controller/build/build.sh(e.g., your-controller/latest)
Now run python3 build.py -c your-controller -m learn. This command will do the following:
- download the controller project to
app/your-controller - download and instrument the
controller-runtimeandclient-golibraries used by the controller - copy the instrumented libraries to
app/your-controller/sieve-dependency - modify the
app/your-controller/go.modto add the instrumented libraries as dependency - copy the (modified) Dockerfile provided by the user to
dockerfile_pathinsideapp/your-controller - copy the
build.shprovided by the user toapp/your-controller - run the
build.shto build the image
The second step is to make Sieve able to deploy the controller in a kind cluster.
The user needs to copy the necessary files (e.g., YAML files for installing the controller deployment, CRDs and other resources) to your-controller/deploy. The user also needs to modify the controller deployment by doing the following:
- Add a label:
sievetag: your-controller. So sieve can find the pod during testing. See this example. - Set the controller image repo name to
${SIEVE-DR}, and set the image tag to${SIEVE-DT}. So sieve can switch to different images when testing different bug patterns. See this example. - Import configmap
sieve-testing-global-configas Sieve needs to pass some some configurations to the instrumented controller. See this example. - Specify env variables
KUBERNETES_SERVICE_HOSTandKUBERNETES_SERVICE_PORT. This is used for testing stale-stateing bugs. See this example. - Set
imagePullPolicytoIfNotPresentso that the user does not need to push the image to a remote registry. See this example - Set all the namespace to
defaultas for now Sieve can only work with the default namespace
After that, please fill the your-controller/deploy/deploy.sh with the steps to deploy the controller to a Kubernetes cluster. As an example, please refer to the deploy.sh we prepared for the zookeeper-operator.
please specify following entries in your-controller/config.json:
custom_resource_definitions: the list of the custom resource definitions managed by the controller in lower casecontroller_pod_label: thesievetaglabel set to the controller podcontroller_deployment_file_path: the relative path fromsieveto the YAML file that is modified by the user
The last step is to prepare the end-to-end test workloads. The user needs to provide a command for Sieve to run the test workload by filling test_command in your-controller/config.json. The command should accept an argument to specify which test case to run. As an example, please refer to the test command we used for the zookeeper-operator which calls a Python script. The Python script implements two test cases.
One common challenge to implement end-to-end test workloads is to know when the cluster becomes stable after each test command. For example, a single kubectl command that creates/updates/deletes the custom resource object might trigger a lot of controller actions that create/update//delete secondary objects that are owned by the custom resource object. The best practice is to wait until the cluster is stable before issuing the next command or ending the test workload, since this generates a stable cluster state sequence. Sieve detects bugs by checking cluster state sequence, and unstable sequence can lead to false alarms. Sieve provides APIs (e.g., wait_for_pod_status) for users to specify the waiting condition like waiting for certain status (terminated, running) of certain resource (pod, statefulset).
As an example, imagine that if the last command in the workload deletes the custom resource object, which will trigger a series of pod/statefulset deletions. If we do not end the test workload before all the objects are deleted, the end state might or might not contain the pod/statefulset objects depending on how fast Kubernetes GC is so in that particular run. And the inconsistency between the end states could make Sieve report many false alarms.
Of course, if a bug gets triggered and prevents the controller's action forever, it is not a false alarm bug an exciting true alarm. The wait_for_pod_status has a default timeout (i.e., 10min) which should be more than enough for most controller actions. If the timeout is reached, Sieve will report it as an alarm.
Now you are all set. To test your controllers, just build the images:
python3 build.py -m all
python3 build.py -c your-controller -m all
First run Sieve learning stage
python3 sieve.py -c your-controller -w your-test-workload-name -m learn --build-oracle
Sieve will generate the test plans for intermediate-states, unobserved-states and stale-states testing patterns in sieve_learn_results/your-controller/your-test-workload-name/learn/{intermediate-state, unobserved-states, stale-state}.
If you want to run one of the test plans:
python3 sieve.py -c your-controller -m test -p path-to-the-test-plan
Sieve will report any bugs it find after the test case is finished.
If you want to run all the test plans in a folder:
python3 sieve.py -c your-controller -m test -p path-to-the-folder --batch
All the test results will appear in sieve_test_results as json files.
You can focus on the test results that indicate potential bugs by
python3 report_bugs.py
and it will report
Please refer to the following test results for potential bugs found by Sieve
test-result-1
test-result-2
test-result-3
...
Each test result file contains information for debugging:
{
"your-controller": {
"your-test-workload": {
"test": {
"path-to-the-test-plan": {
"duration": xxx,
"injection_completed": xxx,
"workload_completed": xxx,
"number_errors": xxx,
"detected_errors": xxx,
"no_exception": xxx,
"exception_message": xxx,
"test_config_content": xxx,
"host": xxx
}
}
}
}
}
and you might need to look into the controller to figure out the bug.
To help diagnosis, you can reproduce the test failure by
python3 sieve.py -c your-controller -m test -p path-to-the-test-plan