diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 54be8ff..9c16867 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -10,6 +10,12 @@ on: jobs: lint: uses: ./.github/workflows/lint.yml - test: - uses: ./.github/workflows/test.yml + test-default: + uses: ./.github/workflows/test-default.yml needs: [lint] + test-ipv6: + uses: ./.github/workflows/test-ipv6.yml + needs: [lint, test-default] + test-single-node: + uses: ./.github/workflows/test-single-node.yml + needs: [lint, test-default, test-ipv6] diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index b43f5bb..6a92785 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -5,24 +5,24 @@ on: jobs: pre-commit-ci: name: Pre-Commit - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 env: PYTHON_VERSION: "3.11" steps: - name: Check out the codebase - uses: actions/checkout@e2f20e631ae6d7dd3b768f56a5d2af784dd54791 # v3 2.5.0 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # 4.1.1 with: ref: ${{ github.event.pull_request.head.sha }} - name: Set up Python ${{ env.PYTHON_VERSION }} - uses: actions/setup-python@75f3110429a8c05be0e1bf360334e4cced2b63fa # 2.3.3 + uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # 4.7.1 with: python-version: ${{ env.PYTHON_VERSION }} cache: 'pip' # caching pip dependencies - name: Cache pip - uses: actions/cache@9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7 # 3.0.11 + uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # 3.3.2 with: path: ~/.cache/pip key: ${{ runner.os }}-pip-${{ hashFiles('./requirements.txt') }} @@ -30,7 +30,7 @@ jobs: ${{ runner.os }}-pip- - name: Cache Ansible - uses: actions/cache@9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7 # 3.0.11 + uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # 3.3.2 with: path: ~/.ansible/collections key: ${{ runner.os }}-ansible-${{ hashFiles('collections/requirements.txt') }} @@ -59,9 +59,9 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@e2f20e631ae6d7dd3b768f56a5d2af784dd54791 # v3 2.5.0 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # 4.1.1 - name: Ensure SHA pinned actions - uses: zgosalvez/github-actions-ensure-sha-pinned-actions@af2eb3226618e2494e3d9084f515ad6dcf16e229 # 2.0.1 + uses: zgosalvez/github-actions-ensure-sha-pinned-actions@f32435541e24cd6a4700a7f52bb2ec59e80603b1 # 2.0.1 with: allowlist: | aws-actions/ diff --git a/.github/workflows/test-default.yml b/.github/workflows/test-default.yml new file mode 100644 index 0000000..cefbcd3 --- /dev/null +++ b/.github/workflows/test-default.yml @@ -0,0 +1,80 @@ +--- +name: Molecule Default +on: + workflow_call: +jobs: + molecule: + name: Molecule + runs-on: macos-13 + strategy: + matrix: + scenario: + - default + fail-fast: false + env: + PYTHON_VERSION: "3.11" + steps: + - name: Check out the codebase + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # 4.1.1 + with: + ref: ${{ github.event.pull_request.head.sha }} + + - name: Configure VirtualBox + run: |- + sudo mkdir -p /etc/vbox + cat < /dev/null + * 192.168.30.0/24 + * fdad:bad:ba55::/64 + EOF + + - name: Cache pip + uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # 3.3.2 + with: + path: ~/.cache/pip + key: ${{ runner.os }}-pip-${{ hashFiles('./requirements.txt') }} + restore-keys: | + ${{ runner.os }}-pip- + + - name: Download Vagrant boxes for all scenarios + # To save some cache space, all scenarios share the same cache key. + # On the other hand, this means that the cache contents should be + # the same across all scenarios. This step ensures that. + run: ./.github/download-boxes.sh + + - name: Set up Python ${{ env.PYTHON_VERSION }} + uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # 4.7.1 + with: + python-version: ${{ env.PYTHON_VERSION }} + cache: 'pip' # caching pip dependencies + + - name: Install dependencies + run: | + echo "::group::Upgrade pip" + python3 -m pip install --upgrade pip + echo "::endgroup::" + + echo "::group::Install Python requirements from requirements.txt" + python3 -m pip install -r requirements.txt + echo "::endgroup::" + + - name: Test with molecule + run: molecule test --scenario-name ${{ matrix.scenario }} + timeout-minutes: 90 + env: + ANSIBLE_K3S_LOG_DIR: ${{ runner.temp }}/logs/k3s-ansible/${{ matrix.scenario }} + ANSIBLE_SSH_RETRIES: 4 + ANSIBLE_TIMEOUT: 60 + PY_COLORS: 1 + ANSIBLE_FORCE_COLOR: 1 + + - name: Upload log files + if: always() # do this even if a step before has failed + uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # 3.1.3 + with: + name: logs + path: | + ${{ runner.temp }}/logs + + - name: Delete old box versions + if: always() # do this even if a step before has failed + run: vagrant box prune --force diff --git a/.github/workflows/test-ipv6.yml b/.github/workflows/test-ipv6.yml new file mode 100644 index 0000000..053b569 --- /dev/null +++ b/.github/workflows/test-ipv6.yml @@ -0,0 +1,80 @@ +--- +name: Molecule IPv6 +on: + workflow_call: +jobs: + molecule: + name: Molecule + runs-on: macos-13 + strategy: + matrix: + scenario: + - ipv6 + fail-fast: false + env: + PYTHON_VERSION: "3.11" + steps: + - name: Check out the codebase + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # 4.1.1 + with: + ref: ${{ github.event.pull_request.head.sha }} + + - name: Configure VirtualBox + run: |- + sudo mkdir -p /etc/vbox + cat < /dev/null + * 192.168.30.0/24 + * fdad:bad:ba55::/64 + EOF + + - name: Cache pip + uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # 3.3.2 + with: + path: ~/.cache/pip + key: ${{ runner.os }}-pip-${{ hashFiles('./requirements.txt') }} + restore-keys: | + ${{ runner.os }}-pip- + + - name: Download Vagrant boxes for all scenarios + # To save some cache space, all scenarios share the same cache key. + # On the other hand, this means that the cache contents should be + # the same across all scenarios. This step ensures that. + run: ./.github/download-boxes.sh + + - name: Set up Python ${{ env.PYTHON_VERSION }} + uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # 4.7.1 + with: + python-version: ${{ env.PYTHON_VERSION }} + cache: 'pip' # caching pip dependencies + + - name: Install dependencies + run: | + echo "::group::Upgrade pip" + python3 -m pip install --upgrade pip + echo "::endgroup::" + + echo "::group::Install Python requirements from requirements.txt" + python3 -m pip install -r requirements.txt + echo "::endgroup::" + + - name: Test with molecule + run: molecule test --scenario-name ${{ matrix.scenario }} + timeout-minutes: 90 + env: + ANSIBLE_K3S_LOG_DIR: ${{ runner.temp }}/logs/k3s-ansible/${{ matrix.scenario }} + ANSIBLE_SSH_RETRIES: 4 + ANSIBLE_TIMEOUT: 60 + PY_COLORS: 1 + ANSIBLE_FORCE_COLOR: 1 + + - name: Upload log files + if: always() # do this even if a step before has failed + uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # 3.1.3 + with: + name: logs + path: | + ${{ runner.temp }}/logs + + - name: Delete old box versions + if: always() # do this even if a step before has failed + run: vagrant box prune --force diff --git a/.github/workflows/test.yml b/.github/workflows/test-single-node.yml similarity index 76% rename from .github/workflows/test.yml rename to .github/workflows/test-single-node.yml index 10b6135..509ad3a 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test-single-node.yml @@ -1,24 +1,21 @@ --- -name: Test +name: Molecule Single Node on: workflow_call: jobs: molecule: name: Molecule - runs-on: macos-12 + runs-on: macos-13 strategy: matrix: scenario: - - default - - ipv6 - single_node fail-fast: false env: PYTHON_VERSION: "3.11" - steps: - name: Check out the codebase - uses: actions/checkout@e2f20e631ae6d7dd3b768f56a5d2af784dd54791 # v3 2.5.0 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # 4.1.1 with: ref: ${{ github.event.pull_request.head.sha }} @@ -31,22 +28,13 @@ jobs: EOF - name: Cache pip - uses: actions/cache@9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7 # 3.0.11 + uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # 3.3.2 with: path: ~/.cache/pip key: ${{ runner.os }}-pip-${{ hashFiles('./requirements.txt') }} restore-keys: | ${{ runner.os }}-pip- - - name: Cache Vagrant boxes - uses: actions/cache@9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7 # 3.0.11 - with: - path: | - ~/.vagrant.d/boxes - key: vagrant-boxes-${{ hashFiles('**/molecule.yml') }} - restore-keys: | - vagrant-boxes - - name: Download Vagrant boxes for all scenarios # To save some cache space, all scenarios share the same cache key. # On the other hand, this means that the cache contents should be @@ -54,7 +42,7 @@ jobs: run: ./.github/download-boxes.sh - name: Set up Python ${{ env.PYTHON_VERSION }} - uses: actions/setup-python@75f3110429a8c05be0e1bf360334e4cced2b63fa # 2.3.3 + uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # 4.7.1 with: python-version: ${{ env.PYTHON_VERSION }} cache: 'pip' # caching pip dependencies @@ -81,7 +69,7 @@ jobs: - name: Upload log files if: always() # do this even if a step before has failed - uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # 3.1.1 + uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # 3.1.3 with: name: logs path: |