Post 1.1.0 release updates to main #23
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: e2e test baremetal | |
on: | |
workflow_dispatch: | |
inputs: | |
skip-undeploy: | |
description: "Skip undeploy" | |
required: false | |
type: boolean | |
default: false | |
pull_request: | |
paths-ignore: | |
- dev-docs/** | |
- docs/** | |
- rfc/** | |
env: | |
container_registry: ghcr.io/edgelesssys | |
DO_NOT_TRACK: 1 | |
jobs: | |
test: | |
strategy: | |
matrix: | |
tee: [SNP, TDX] | |
test_name: [servicemesh, openssl, workloadsecret] | |
fail-fast: false | |
name: "${{ matrix.tee }} / ${{ matrix.test_name }}" | |
runs-on: | |
labels: ${{ matrix.tee }} | |
permissions: | |
contents: read | |
packages: write | |
steps: | |
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 | |
- name: Log in to ghcr.io Container registry | |
uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0 | |
with: | |
registry: ghcr.io | |
username: ${{ github.actor }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
- uses: nicknovitski/nix-develop@a2060d116a50b36dfab02280af558e73ab52427d # v1.1.0 | |
- name: Create justfile.env | |
run: | | |
cat <<EOF > justfile.env | |
container_registry=${{ env.container_registry }} | |
EOF | |
- name: Build and prepare deployments | |
run: | | |
just coordinator initializer openssl port-forwarder service-mesh-proxy node-installer K3s-QEMU-${{ matrix.tee }} | |
- name: E2E Test | |
run: | | |
nix run .#scripts.get-logs workspace/e2e.namespace & | |
nix shell .#contrast.e2e --command ${{ matrix.test_name }}.test -test.v \ | |
--image-replacements workspace/just.containerlookup \ | |
--namespace-file workspace/e2e.namespace \ | |
--platform K3s-QEMU-${{ matrix.tee }} \ | |
--skip-undeploy="${{ inputs.skip-undeploy && 'true' || 'false' }}" | |
- name: Upload logs | |
if: always() | |
uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a | |
with: | |
name: e2e_pod_logs-${{ matrix.tee }}-${{ matrix.test_name }} | |
path: workspace/namespace-logs | |
- name: Cleanup | |
if: cancelled() && !inputs.skip-undeploy | |
run: | | |
kubectl delete ns "$(cat workspace/e2e.namespace)" --timeout 5m |