Skip to content

Commit

Permalink
Merge branch 'master' into chore/fence_deploy_azlinux
Browse files Browse the repository at this point in the history
  • Loading branch information
nss10 authored Jan 17, 2025
2 parents e87e92b + 75a94c7 commit 83a44a1
Show file tree
Hide file tree
Showing 9 changed files with 21 additions and 62 deletions.
18 changes: 1 addition & 17 deletions .secrets.baseline
Original file line number Diff line number Diff line change
Expand Up @@ -158,22 +158,6 @@
"line_number": 5
}
],
"Jenkinsfile": [
{
"type": "Secret Keyword",
"filename": "Jenkinsfile",
"hashed_secret": "c937b6fbb346a51ef679dd02ac5c4863e02bfdbf",
"is_verified": false,
"line_number": 144
},
{
"type": "Secret Keyword",
"filename": "Jenkinsfile",
"hashed_secret": "9ce05cf6168d15dfe02aac9ca9e0712c19c9436d",
"is_verified": false,
"line_number": 147
}
],
"ansible/roles/slurm/README.md": [
{
"type": "Base64 High Entropy String",
Expand Down Expand Up @@ -1978,5 +1962,5 @@
}
]
},
"generated_at": "2025-01-13T14:11:15Z"
"generated_at": "2025-01-16T15:40:00Z"
}
26 changes: 0 additions & 26 deletions Jenkinsfile
Original file line number Diff line number Diff line change
Expand Up @@ -433,39 +433,13 @@ spec:
}
}

stage('authzTest') {
steps {
script {
try {
if(!doNotRunTests) {
// test revproxy+arborist /gen3-authz stuff
kubeHelper.kube(kubectlNamespace, {
sh('bash cloud-automation/gen3/bin/testsuite.sh --filter authz');
});
} else {
Utils.markStageSkippedForConditional(STAGE_NAME)
}
} catch (ex) {
metricsHelper.writeMetricWithResult(STAGE_NAME, false)
pipelineHelper.handleError(ex)
}
metricsHelper.writeMetricWithResult(STAGE_NAME, true)
}
}
}
}
post {
always {
script {
kubeHelper.teardown(kubeLocks)
testHelper.teardown(doNotRunTests)
pipelineHelper.teardown(currentBuild.result)
if(!skipUnitTests) {
// tear down network policies deployed by the tests
kubeHelper.kube(kubectlNamespace, {
sh(script: 'kubectl --namespace="' + kubectlNamespace + '" delete networkpolicies --all', returnStatus: true);
});
}
}
}
}
Expand Down
12 changes: 6 additions & 6 deletions gen3/bin/db.sh
Original file line number Diff line number Diff line change
Expand Up @@ -394,7 +394,7 @@ gen3_db_namespace() {
#
# Given a gen3 server name, determine the RDS instance id
#
gen3_db_server_rds_id() {
gen3_db_server_aurora_cluster() {
local address
local serverInfo

Expand All @@ -406,7 +406,7 @@ gen3_db_server_rds_id() {
gen3_log_err "unable to determine address for $@"
return 1
fi
aws rds describe-db-instances | jq -e -r --arg address "$address" '.DBInstances[] | select(.Endpoint.Address==$address) | .DBInstanceIdentifier'
aws rds describe-db-instances | jq -e -r --arg address "$address" '.DBInstances[] | select(.Endpoint.Address==$address) | .DBClusterIdentifier'
}

#
Expand All @@ -431,15 +431,15 @@ gen3_db_snapshot_take() {
dryRun=true
fi
local instanceId
if ! instanceId="$(gen3_db_server_rds_id "$serverName")"; then
if ! instanceId="$(gen3_db_server_aurora_cluster "$serverName")"; then
gen3_log_err "failed to find rds instance id for server: $serverName"
return 1
fi
snapshotId="gen3-snapshot-${serverName}-$(date -u +%Y%m%d-%H%M%S)"
if [[ "$dryRun" == true ]]; then
gen3_log_info "dryrun mode - not taking snapshot"
else
aws rds create-db-snapshot --db-snapshot-identifier "$snapshotId" --db-instance-identifier "$instanceId"
aws rds create-db-cluster-snapshot --db-cluster-snapshot-identifier "$snapshotId" --db-cluster-identifier "$instanceId"
fi
}

Expand All @@ -457,11 +457,11 @@ gen3_db_snapshot_list() {
return 1
fi
local instanceId
if ! instanceId="$(gen3_db_server_rds_id "$serverName")"; then
if ! instanceId="$(gen3_db_server_aurora_cluster "$serverName")"; then
gen3_log_err "failed to find rds instance id for server: $serverName"
return 1
fi
aws rds describe-db-snapshots --db-instance-identifier "$instanceId"
aws rds describe-db-cluster-snapshots --db-cluster-identifier "$instanceId"
}


Expand Down
10 changes: 5 additions & 5 deletions gen3/bin/kube-setup-aws-es-proxy.sh
Original file line number Diff line number Diff line change
Expand Up @@ -74,17 +74,17 @@ else
if [ "$esDomain" != "null" ] && [ -n "$esDomain" ]; then
ES_ENDPOINT="$(aws es describe-elasticsearch-domains --domain-names "${esDomain}" --query "DomainStatusList[*].Endpoints" --output text)"
ES_ARN="$(aws es describe-elasticsearch-domains --domain-names "${esDomain}" --query "DomainStatusList[*].ARN" --output text)"
elif [ "$es7" = true ]; then
elif [ "$es7" = false ]; then
if [ -n "$envname" ]; then
ES_ENDPOINT="$(aws es describe-elasticsearch-domains --domain-names "${envname}"-gen3-metadata-2 --query "DomainStatusList[*].Endpoints" --output text)"
ES_ARN="$(aws es describe-elasticsearch-domains --domain-names "${envname}"-gen3-metadata-2 --query "DomainStatusList[*].ARN" --output text)"
ES_ENDPOINT="$(aws es describe-elasticsearch-domains --domain-names "${envname}"-gen3-metadata --query "DomainStatusList[*].Endpoints" --output text)"
ES_ARN="$(aws es describe-elasticsearch-domains --domain-names "${envname}"-gen3-metadata --query "DomainStatusList[*].ARN" --output text)"
else
deploy=false
fi
else
if [ -n "$envname" ]; then
ES_ENDPOINT="$(aws es describe-elasticsearch-domains --domain-names "${envname}"-gen3-metadata --query "DomainStatusList[*].Endpoints" --output text)"
ES_ARN="$(aws es describe-elasticsearch-domains --domain-names "${envname}"-gen3-metadata --query "DomainStatusList[*].ARN" --output text)"
ES_ENDPOINT="$(aws es describe-elasticsearch-domains --domain-names "${envname}"-gen3-metadata-2 --query "DomainStatusList[*].Endpoints" --output text)"
ES_ARN="$(aws es describe-elasticsearch-domains --domain-names "${envname}"-gen3-metadata-2 --query "DomainStatusList[*].ARN" --output text)"
else
deploy=false
fi
Expand Down
1 change: 1 addition & 0 deletions gen3/bin/s3.sh
Original file line number Diff line number Diff line change
Expand Up @@ -169,6 +169,7 @@ gen3_s3_info() {
local writerName="bucket_writer_$1"
local readerName="bucket_reader_$1"
local AWS_ACCOUNT_ID=$(gen3_aws_run aws sts get-caller-identity | jq -r .Account)
local bucketName=$1

if [[ -z "$AWS_ACCOUNT_ID" ]]; then
gen3_log_err "Unable to fetch AWS account ID."
Expand Down
4 changes: 2 additions & 2 deletions gen3/lib/testData/test1.manifest.g3k/expectedFenceResult.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -29,8 +29,8 @@ spec:
netnolimit: "yes"
public: "yes"
userhelper: "yes"
service: "fence"
env: null
hostname: null
version: 'master'
date: "1579711361"
spec:
Expand Down Expand Up @@ -273,4 +273,4 @@ spec:
fi
else
echo "Db migration not available in this version of fence"
fi
fi
Original file line number Diff line number Diff line change
Expand Up @@ -23,10 +23,10 @@ spec:
public: "yes"
# to download dictionary
s3: "yes"
service: "sheepdog"
env: null
version: 'master'
date: "1522344212"
hostname: null
spec:
affinity:
podAntiAffinity:
Expand Down Expand Up @@ -173,4 +173,4 @@ spec:
cpu: 100m
memory: 200Mi
limits:
memory: 800Mi
memory: 800Mi
6 changes: 3 additions & 3 deletions gen3/test/dbTest.sh
Original file line number Diff line number Diff line change
Expand Up @@ -87,15 +87,15 @@ test_db_services() {

test_db_snapshot_list() {
local snapshotJson
snapshotJson="$(gen3 db snapshot list server1)"; because $? "gen3 db snapshot list server1 should work"
snapshotJson="$(gen3 db snapshot list server2)"; because $? "gen3 db snapshot list server2 should work"
local snapCount
snapCount="$(jq -e -r '.DBSnapshots | length' <<<"$snapshotJson")";
snapCount="$(jq -e -r '.DBClusterSnapshots | length' <<<"$snapshotJson")";
because $? "snap list json has expected structure"
[[ "$snapCount" =~ ^[0-9]+$ && "$snapCount" -gt 0 ]]; because $? "server1 has at least 1 snapshot"
}

test_db_snapshot_take() {
gen3 db snapshot take server1 --dryrun; because $? "gen3 db snapshot take server1 should work"
gen3 db snapshot take server2 --dryrun; because $? "gen3 db snapshot take server2 should work"
}

test_db_backup_restore() {
Expand Down
2 changes: 1 addition & 1 deletion gen3/test/s3Test.sh
Original file line number Diff line number Diff line change
Expand Up @@ -59,7 +59,7 @@ test_s3_info() {
}

! gen3_s3_info bogus-bucket; because $? "when bucket doesn't exist it should fail"
policies=$(gen3_s3_info real-bucket); because $? "when bucket and policies exist it should succeed"
policies=$(gen3_s3_info real-bucket-ci); because $? "when bucket and policies exist it should succeed"
readOnly="$(echo $policies | jq '."read-only"')"
readWrite="$(echo $policies | jq '."read-write"')"
[[ "$readOnly" != "{}" && "$readOnly" != "null" && "$readOnly" != "" ]]; because $? "when bucket and policies exist the result should include read-only policy"
Expand Down

0 comments on commit 83a44a1

Please sign in to comment.