kubenix/testing/default.nix

{ config, pkgs, lib, kubenix, ... }:

with lib;

let
  cfg = config.testing;
  parentConfig = config;

  nixosTesting = import <nixpkgs/nixos/lib/testing.nix> {
    inherit pkgs;
    system = "x86_64-linux";
  };

  mkKubernetesBaseTest =
    { name, domain ? "my.zyx", test, machines
    , extraConfiguration ? null }:
    let
      masterName = head (filter (machineName: any (role: role == "master") machines.${machineName}.roles) (attrNames machines));
      master = machines.${masterName};
      extraHosts = ''
        ${master.ip}  etcd.${domain}
        ${master.ip}  api.${domain}
        ${concatMapStringsSep "\n" (machineName: "${machines.${machineName}.ip}  ${machineName}.${domain}") (attrNames machines)}
      '';
      kubectl = with pkgs; runCommand "wrap-kubectl" { buildInputs = [ makeWrapper ]; } ''
        mkdir -p $out/bin
        makeWrapper ${pkgs.kubernetes}/bin/kubectl $out/bin/kubectl --set KUBECONFIG "/etc/kubernetes/cluster-admin.kubeconfig"
      '';
    in nixosTesting.makeTest {
      inherit name;

      nodes = mapAttrs (machineName: machine: { config, pkgs, lib, nodes, ... }: {
        imports = [<nixpkgs/nixos/modules/profiles/minimal.nix>];

        config = mkMerge [{
          boot.postBootCommands = "rm -fr /var/lib/kubernetes/secrets /tmp/shared/*";
          virtualisation.memorySize = mkDefault 2048;
          virtualisation.cores = mkDefault "all";
          virtualisation.diskSize = mkDefault 4096;
          networking = {
            inherit domain extraHosts;
            nameservers = ["10.0.0.254"];
            primaryIPAddress = mkForce machine.ip;

            firewall = {
              allowedTCPPorts = [
                10250 # kubelet
              ];
              trustedInterfaces = ["docker0"];

              extraCommands = concatMapStrings  (node: ''
                iptables -A INPUT -s ${node.config.networking.primaryIPAddress} -j ACCEPT
              '') (attrValues nodes);
            };
          };
          environment.systemPackages = [ kubectl ];
          services.flannel.iface = "eth1";
          services.kubernetes = {
            easyCerts = true;
            inherit (machine) roles;
            apiserver = {
              securePort = 443;
              advertiseAddress = master.ip;
            };
            masterAddress = "${masterName}.${config.networking.domain}";
          };
        }
        (optionalAttrs (any (role: role == "master") machine.roles) {
          networking.firewall.allowedTCPPorts = [
            443 # kubernetes apiserver
          ];
        })
        (optionalAttrs (machine ? "extraConfiguration") (machine.extraConfiguration { inherit config pkgs lib nodes; }))
        (optionalAttrs (extraConfiguration != null) (extraConfiguration { inherit config pkgs lib nodes; }))];
      }) machines;

      testScript = ''
        startAll;

        ${test}
      '';
    };

  mkKubernetesSingleNodeTest = attrs: mkKubernetesBaseTest ({
    machines = {
      kube = {
        roles = ["master" "node"];
        ip = "192.168.1.1";
      };
    };
  } // attrs // {
    name = "kubernetes-${attrs.name}-singlenode";
  });

  testOptions = {config, ...}: let
    modules = [config.module ./test.nix {
      config._module.args.test = config;
    }] ++ cfg.defaults;

    test = (kubenix.evalKubernetesModules {
      check = false;
      inherit modules;
    }).config.test;

    evaled =
      if test.enable
      then builtins.trace "testing ${test.name}" (kubenix.evalKubernetesModules {
        inherit modules;
      })
      else {success = false;};
  in {
    options = {
      name = mkOption {
        description = "test name";
        type = types.str;
        internal = true;
      };

      description = mkOption {
        description = "test description";
        type = types.str;
        internal = true;
      };

      enable = mkOption {
        description = "Whether to enable test";
        type = types.bool;
        internal = true;
      };

      module = mkOption {
        description = "Module defining submodule";
        type = types.unspecified;
      };

      evaled = mkOption {
        description = "Wheter test was evaled";
        type = types.bool;
        default =
          if cfg.throwError
          then if evaled.config.test.assertions != [] then true else true
          else (builtins.tryEval evaled.config.test.assertions).success;
        internal = true;
      };

      success = mkOption {
        description = "Whether test was success";
        type = types.bool;
        internal = true;
        default = false;
      };

      assertions = mkOption {
        description = "Test result";
        type = types.unspecified;
        internal = true;
        default = [];
      };

      script = mkOption {
        description = "Test script";
        type = types.nullOr types.package;
        default = null;
      };

      driver = mkOption {
        description = "Testing driver";
        type = types.nullOr types.package;
      };

      generated = mkOption {
        description = "Generated resources";
        type = types.nullOr types.package;
        default = null;
      };
    };

    config = mkMerge [{
      inherit (test) name description enable;
    } (mkIf config.evaled {
      inherit (evaled.config.test) assertions;
      success = all (el: el.assertion) config.assertions;
      script =
        if cfg.e2e && evaled.config.test.check != null
        then mkKubernetesSingleNodeTest {
          name = config.name;
          test = ''
            $kube->waitUntilSucceeds("kubectl get node kube.my.zyx | grep -w Ready");
            ${evaled.config.test.check}
          '';
        } else null;
      driver = mkIf (config.script != null) config.script.driver;
      generated = mkIf (hasAttr "kubernetes" evaled.config)
        pkgs.writeText "${config.name}-gen.json" (builtins.toJSON evaled.config.kubernetes.generated);
    })];
  };
in {
  options = {
    testing.throwError = mkOption {
      description = "Whether to throw error";
      type = types.bool;
      default = true;
    };

    testing.e2e = mkOption {
      description = "Whether to enable e2e tests";
      type = types.bool;
      default = true;
    };

    testing.defaults = mkOption {
      description = "Testing defaults";
      type = types.coercedTo types.unspecified (value: [value]) (types.listOf types.unspecified);
      example = literalExample ''{config, ...}: {
        kubernetes.version = config.kubernetes.version;
      }'';
      default = [];
    };

    testing.tests = mkOption {
      description = "Attribute set of test cases";
      default = [];
      type = types.listOf (types.coercedTo types.path (module: {inherit module;}) (types.submodule testOptions));
      apply = tests: filter (test: test.enable) tests;
    };

    testing.testsByName = mkOption {
      description = "Tests by name";
      type = types.attrsOf types.attrs;
      default = listToAttrs (map (test: nameValuePair test.name test) cfg.tests);
    };

    testing.success = mkOption {
      description = "Whether testing was a success";
      type = types.bool;
      default = all (test: test.success) cfg.tests;
    };

    testing.result = mkOption {
      description = "Testing result";
      type = types.package;
      default = pkgs.writeText "testing-report.json" (builtins.toJSON {
        success = cfg.success;
        tests = map (test: {
          inherit (test) name description evaled success;
          assertions = moduleToAttrs test.assertions;
          script = test.script;
        }) (filter (test: test.enable) cfg.tests);
      });
    };
  };
}
feat: initial testing support 2019-02-12 16:22:18 +01:00			`{ config, pkgs, lib, kubenix, ... }:`

			`with lib;`

			`let`
			`cfg = config.testing;`
feat: run test for all k8s versions 2019-02-16 14:02:13 +01:00			`parentConfig = config;`
feat: initial support for e2e tests 2019-02-20 09:34:15 +01:00
			`nixosTesting = import <nixpkgs/nixos/lib/testing.nix> {`
			`inherit pkgs;`
			`system = "x86_64-linux";`
			`};`

			`mkKubernetesBaseTest =`
			`{ name, domain ? "my.zyx", test, machines`
			`, extraConfiguration ? null }:`
			`let`
			`masterName = head (filter (machineName: any (role: role == "master") machines.${machineName}.roles) (attrNames machines));`
			`master = machines.${masterName};`
			`extraHosts = ''`
			`${master.ip} etcd.${domain}`
			`${master.ip} api.${domain}`
			`${concatMapStringsSep "\n" (machineName: "${machines.${machineName}.ip} ${machineName}.${domain}") (attrNames machines)}`
			`'';`
			`kubectl = with pkgs; runCommand "wrap-kubectl" { buildInputs = [ makeWrapper ]; } ''`
			`mkdir -p $out/bin`
			`makeWrapper ${pkgs.kubernetes}/bin/kubectl $out/bin/kubectl --set KUBECONFIG "/etc/kubernetes/cluster-admin.kubeconfig"`
			`'';`
			`in nixosTesting.makeTest {`
			`inherit name;`

fix(testing): e2e testing fixes 2019-02-20 15:39:26 +01:00			`nodes = mapAttrs (machineName: machine: { config, pkgs, lib, nodes, ... }: {`
			`imports = [<nixpkgs/nixos/modules/profiles/minimal.nix>];`

			`config = mkMerge [{`
			`boot.postBootCommands = "rm -fr /var/lib/kubernetes/secrets /tmp/shared/*";`
feat(testing): e2e testing improvements 2019-02-20 23:09:08 +01:00			`virtualisation.memorySize = mkDefault 2048;`
			`virtualisation.cores = mkDefault "all";`
fix(testing): e2e testing fixes 2019-02-20 15:39:26 +01:00			`virtualisation.diskSize = mkDefault 4096;`
			`networking = {`
			`inherit domain extraHosts;`
feat(testing): e2e testing improvements 2019-02-20 23:09:08 +01:00			`nameservers = ["10.0.0.254"];`
fix(testing): e2e testing fixes 2019-02-20 15:39:26 +01:00			`primaryIPAddress = mkForce machine.ip;`

			`firewall = {`
			`allowedTCPPorts = [`
			`10250 # kubelet`
feat: initial support for e2e tests 2019-02-20 09:34:15 +01:00			`];`
fix(testing): e2e testing fixes 2019-02-20 15:39:26 +01:00			`trustedInterfaces = ["docker0"];`

			`extraCommands = concatMapStrings (node: ''`
			`iptables -A INPUT -s ${node.config.networking.primaryIPAddress} -j ACCEPT`
			`'') (attrValues nodes);`
			`};`
			`};`
			`environment.systemPackages = [ kubectl ];`
			`services.flannel.iface = "eth1";`
			`services.kubernetes = {`
			`easyCerts = true;`
			`inherit (machine) roles;`
			`apiserver = {`
			`securePort = 443;`
			`advertiseAddress = master.ip;`
			`};`
			`masterAddress = "${masterName}.${config.networking.domain}";`
			`};`
			`}`
			`(optionalAttrs (any (role: role == "master") machine.roles) {`
			`networking.firewall.allowedTCPPorts = [`
			`443 # kubernetes apiserver`
			`];`
			`})`
			`(optionalAttrs (machine ? "extraConfiguration") (machine.extraConfiguration { inherit config pkgs lib nodes; }))`
			`(optionalAttrs (extraConfiguration != null) (extraConfiguration { inherit config pkgs lib nodes; }))];`
			`}) machines;`
feat: initial support for e2e tests 2019-02-20 09:34:15 +01:00
			`testScript = ''`
			`startAll;`

			`${test}`
			`'';`
			`};`

			`mkKubernetesSingleNodeTest = attrs: mkKubernetesBaseTest ({`
			`machines = {`
			`kube = {`
			`roles = ["master" "node"];`
			`ip = "192.168.1.1";`
			`};`
			`};`
			`} // attrs // {`
			`name = "kubernetes-${attrs.name}-singlenode";`
			`});`
feat(testing): e2e testing improvements 2019-02-20 23:09:08 +01:00
			`testOptions = {config, ...}: let`
			`modules = [config.module ./test.nix {`
			`config._module.args.test = config;`
			`}] ++ cfg.defaults;`

			`test = (kubenix.evalKubernetesModules {`
			`check = false;`
			`inherit modules;`
			`}).config.test;`

			`evaled =`
			`if test.enable`
			`then builtins.trace "testing ${test.name}" (kubenix.evalKubernetesModules {`
			`inherit modules;`
			`})`
			`else {success = false;};`
			`in {`
			`options = {`
			`name = mkOption {`
			`description = "test name";`
			`type = types.str;`
			`internal = true;`
			`};`

			`description = mkOption {`
			`description = "test description";`
			`type = types.str;`
			`internal = true;`
			`};`

			`enable = mkOption {`
			`description = "Whether to enable test";`
			`type = types.bool;`
			`internal = true;`
			`};`

			`module = mkOption {`
			`description = "Module defining submodule";`
			`type = types.unspecified;`
			`};`

			`evaled = mkOption {`
			`description = "Wheter test was evaled";`
			`type = types.bool;`
			`default =`
			`if cfg.throwError`
			`then if evaled.config.test.assertions != [] then true else true`
			`else (builtins.tryEval evaled.config.test.assertions).success;`
			`internal = true;`
			`};`

			`success = mkOption {`
			`description = "Whether test was success";`
			`type = types.bool;`
			`internal = true;`
			`default = false;`
			`};`

			`assertions = mkOption {`
			`description = "Test result";`
			`type = types.unspecified;`
			`internal = true;`
			`default = [];`
			`};`

			`script = mkOption {`
			`description = "Test script";`
			`type = types.nullOr types.package;`
			`default = null;`
			`};`

			`driver = mkOption {`
			`description = "Testing driver";`
			`type = types.nullOr types.package;`
			`};`

			`generated = mkOption {`
			`description = "Generated resources";`
			`type = types.nullOr types.package;`
			`default = null;`
			`};`
			`};`

			`config = mkMerge [{`
			`inherit (test) name description enable;`
			`} (mkIf config.evaled {`
			`inherit (evaled.config.test) assertions;`
			`success = all (el: el.assertion) config.assertions;`
			`script =`
			`if cfg.e2e && evaled.config.test.check != null`
			`then mkKubernetesSingleNodeTest {`
			`name = config.name;`
			`test = ''`
			`$kube->waitUntilSucceeds("kubectl get node kube.my.zyx \| grep -w Ready");`
			`${evaled.config.test.check}`
			`'';`
			`} else null;`
			`driver = mkIf (config.script != null) config.script.driver;`
			`generated = mkIf (hasAttr "kubernetes" evaled.config)`
			`pkgs.writeText "${config.name}-gen.json" (builtins.toJSON evaled.config.kubernetes.generated);`
			`})];`
			`};`
feat: initial testing support 2019-02-12 16:22:18 +01:00			`in {`
			`options = {`
			`testing.throwError = mkOption {`
			`description = "Whether to throw error";`
			`type = types.bool;`
			`default = true;`
			`};`

feat(testing): e2e testing improvements 2019-02-20 23:09:08 +01:00			`testing.e2e = mkOption {`
			`description = "Whether to enable e2e tests";`
			`type = types.bool;`
			`default = true;`
			`};`

feat: run test for all k8s versions 2019-02-16 14:02:13 +01:00			`testing.defaults = mkOption {`
			`description = "Testing defaults";`
			`type = types.coercedTo types.unspecified (value: [value]) (types.listOf types.unspecified);`
			`example = literalExample ''{config, ...}: {`
			`kubernetes.version = config.kubernetes.version;`
			`}'';`
			`default = [];`
			`};`

feat: initial testing support 2019-02-12 16:22:18 +01:00			`testing.tests = mkOption {`
			`description = "Attribute set of test cases";`
			`default = [];`
feat(testing): e2e testing improvements 2019-02-20 23:09:08 +01:00			`type = types.listOf (types.coercedTo types.path (module: {inherit module;}) (types.submodule testOptions));`
feat(test): support for enabling and disabling tests 2019-02-13 17:03:27 +01:00			`apply = tests: filter (test: test.enable) tests;`
feat: initial testing support 2019-02-12 16:22:18 +01:00			`};`

feat(testing): e2e testing improvements 2019-02-20 23:09:08 +01:00			`testing.testsByName = mkOption {`
			`description = "Tests by name";`
			`type = types.attrsOf types.attrs;`
			`default = listToAttrs (map (test: nameValuePair test.name test) cfg.tests);`
			`};`

feat: initial testing support 2019-02-12 16:22:18 +01:00			`testing.success = mkOption {`
			`description = "Whether testing was a success";`
			`type = types.bool;`
			`default = all (test: test.success) cfg.tests;`
			`};`

			`testing.result = mkOption {`
			`description = "Testing result";`
			`type = types.package;`
			`default = pkgs.writeText "testing-report.json" (builtins.toJSON {`
			`success = cfg.success;`
			`tests = map (test: {`
			`inherit (test) name description evaled success;`
			`assertions = moduleToAttrs test.assertions;`
feat: initial support for e2e tests 2019-02-20 09:34:15 +01:00			`script = test.script;`
feat(test): support for enabling and disabling tests 2019-02-13 17:03:27 +01:00			`}) (filter (test: test.enable) cfg.tests);`
feat: initial testing support 2019-02-12 16:22:18 +01:00			`});`
			`};`
			`};`
			`}`