[skip-ci] Packit/TMT: Run gating tests #1960
Conversation
|
A friendly reminder that this PR had no activity for 30 days. |
|
A friendly reminder that this PR had no activity for 30 days. |
|
A friendly reminder that this PR had no activity for 30 days. |
|
@lsm5 are you still working on this? (If so, this is not urgent from my POV, no need to push it to the front of your queue — I’d just like to close the PR if there is absolutely no chance this work will continue.) |
|
@mtrmac I do plan to work on this. But may take a while. I have bookmarked it for myself so I don't lose track. So please feel free to close it. |
|
Thanks, if it is still relevant, let’s keep it open. It might help, or inspire, other contributors. |
|
A friendly reminder that this PR had no activity for 30 days. |
|
A friendly reminder that this PR had no activity for 30 days. |
lsm5
force-pushed
the
packit-gating-tests
branch
from
7bfbd1c to
2e9afc9
Compare
|
@mtrmac @vrothberg @cevich RE: system tests in CI, is it critical to run them in a container or would we be ok with running |
|
@edsantiago is authoritative for system tests (question above). |
|
Forgive me please, I don't understand the question. It's been a while since I've looked at skopeo gating tests, but my recollection is that they run on a plain system, via |
IIRC the system tests run a registry server (container). So… running I’m not immediately sure how much custom tooling exists in the CI container, and would need to be reproduced; https://github.com/containers/automation_images/blob/main/skopeo_cidev/setup.sh is relevant to that, but IIRC almost all of that exists for integration, not system, tests. |
|
/packit test |
|
So, unfortunately, the issue we are hitting is a bug in Packit: It was not considered a bug before, as people were not hitting it and we did not know it had this consequence. |
Thanks @thrix . I'll disable the rhel tests for now. |
ack, the |
lsm5
force-pushed
the
packit-gating-tests
branch
from
2e9afc9 to
49952d4
Compare
lsm5
force-pushed
the
packit-gating-tests
branch
3 times, most recently
from
ff43fea to
85e8158
Compare
|
Tests failed. @containers/packit-build please check. |
lsm5
force-pushed
the
packit-gating-tests
branch
3 times, most recently
from
b90c04c to
cf73631
Compare
lsm5
force-pushed
the
packit-gating-tests
branch
10 times, most recently
from
5fc00d7 to
b0b9d2b
Compare
|
@mtrmac RE: your earlier questions:
Plan is to eventually get rid of cirrus and depend only on TMT assuming we'll have all functionality sooner or later via TMT. Update: I have pretty much redone the whole PR with scope limited to only triggering You'll see a bunch of new jobs in CI. The ones with suffix
In this PR, I'm no longer changing the I'll work on the integration / lint and ostree tests in followup PRs. I'll keep your other comments here in mind while I work on those later. |
|
Another advantage of TMT is convenient reverse dependency testing. See this c/common PR. That will run the tests maintained in skopeo on every PR in c/common. |
|
/packit test |
The default gobuild macro on CentOS Stream now accounts for `BUILDTAGS`, so we don't need to redefine the macro in rpm spec. The `libtrust_openssl` has been set in the spec for RHEL environments. Signed-off-by: Lokesh Mandvekar <[email protected]>
We're not running any tests in the check section. Signed-off-by: Lokesh Mandvekar <[email protected]>
This will be useful in the followup commit that enables TMT test jobs on PRs. PRs on `main` branch should be tested with bleeding-edge dependencies from the podman-next COPR while PRs on `release` branches should be tested only with the official distro packages. Packit will run/skip the relevant set of tests based on this label. Signed-off-by: Lokesh Mandvekar <[email protected]>
lsm5
force-pushed
the
packit-gating-tests
branch
from
b0b9d2b to
16655f4
Compare
|
/packit test |
This commit enables TMT jobs triggered by Packit to run system tests. 2 set of jobs `dev` and `release` have been added. `dev` jobs are meant to run on main PRs with additional package updates fetched from podman-next copr while `release` jobs are meant to run on release- branch PRs using only the dependencies present in the official distro. Packit checks PR labels (see previous commit) to filter out the jobs that get run. Signed-off-by: Lokesh Mandvekar <[email protected]>
lsm5
force-pushed
the
packit-gating-tests
branch
from
16655f4 to
327e5b0
Compare
There was a problem hiding this comment.
Thanks!
I’m not sure I’m reading that correctly, but some logs seem to suggest that the TMT tests run in ~2 minutes vs. previous 13. If that represents wall-clock time, that would be a really impressive improvement.
You'll see a bunch of new jobs in CI. … The ones with suffix
releasewill show asQueuedbut are expected to not run on main. Reverse should happen onrelease-*branches once this change lands there.
Is there any chance to correctly represent the status in GitHub (either as “skipped”, or not including the other jobs in at all)?
I expect that eventually we’ll want to make these jobs merge-blocking, and I don’t know how that would work with a “queued” never-finishing job. It’s also easier for newcomers/occasional contributors when the tool status matches the intuitive understanding.
| @@ -0,0 +1,3 @@ | |||
| # https://github.com/actions/labeler | |||
| release: | |||
| - base-branch: [^release-?(0|[1-9]\d*).(0|[1-9]\d*)$] | |||
There was a problem hiding this comment.
Non-blocking: Does the 0|… special case intend to exclude something specific? I’d expect something simpler like \d\+.
I don’t expect we would create a branch named release-0050.01, so I don’t think this matters that much, but I might be missing something important.
| @@ -127,6 +125,10 @@ export BUILDTAGS="$BASEBUILDTAGS $(hack/btrfs_tag.sh) $(hack/btrfs_installed_tag | |||
| export BUILDTAGS="$BASEBUILDTAGS btrfs_noversion exclude_graphdriver_btrfs" | |||
| %endif | |||
|
|
|||
| %if %{defined fips} | |||
| export BUILDTAGS="$BUILDTAGS libtrust_openssl" | |||
| %endif | |||
There was a problem hiding this comment.
The gobuild-related changes are happening separately in #2501, so can that be dropped here?
|
One more thing — not blocking this PR, just to possibly think about. For historical reasons, c/image’s CI, via the If we completely removed the current way of running system tests in favor of TMT testing (based on Skopeo RPMs?), we would need some way to continue to run the tests against c/image PRs. I have no idea whether that would be trivial, difficult, or how it might affect the packit/TMT test automation design. Alternatively, the testing structure could be cleaned up — instead of c/image relying on Skopeo’s tests, we could move most of the tests into the c/image codebase, and rework them them not to rely on the Skopeo repo (and codebase?). That would, conceptually, be a better design — but, also, probably quite a lot of work and so far there was never a strong enough reason to spend time on this, so we have been relying on the |
Commit 1
PR Labels: apply release label to release- branch PRs
This will be useful in the followup commit that enables TMT test jobs on PRs.
PRs on
mainbranch should be tested with bleeding-edge dependencies from the podman-next COPR while PRs onreleasebranches should be tested only with the official distro packages. Packit will run/skip the relevant set of tests based on this label.Commit 2
Packit/TMT: Run system tests
This commit enables TMT jobs triggered by Packit to run system tests.
2 set of jobs
devandreleasehave been added.devjobs are meant to run on main PRs with additional package updates fetched from podman-next copr whilereleasejobs are meant to run on release- branch PRs using only the dependencies present in the official distro.Packit checks PR labels (see previous commit) to filter out the jobs that get run.