There are a set of YAML files, named after .e2e-tests*.yaml, that drive the execution of the different test scenarios and suites in the CI. These files are read by Jenkins at build time creating as many Jenkins parallel branches as items declared in the files. Ideally, each parallel branch should run a set of tests in a specific platform, i.e. the "apm-server scenarios on Centos 8".
To support multiple test suite descriptors, we are defining the available platforms in one single file: .e2e-platforms.yaml. The structure of the file is the following:
- PLATFORMS: this entry will hold a YAML object with all the available platforms where the tests could be run. Each available platform will be defined as a key in the YAML object, where each object will have a key identifying the platform with a very descriptive name (i.e.
stackordebian_arm64) and the following attributes:- description: Description of the purpose and/or characteristics of the platform machine. Required.
- image: the AWS AMI identifier, i.e.
ami-0d90bed76900e679a. Required. - instance_type: the AWS instance type, representing the size of the machine, i.e.
c5.4xlarge. Required. - username: the default user name when connecting to the machine using SSH, used by Ansible to execute commands on the remote machine. I.e.
centos,adminorec2-user. Required.
In order to configure each platform, there is an Ansible script that installs the runtime dependencies for the machine, such as specific OS packages or libraries. Any available platform must declare its own block in the ./ansible/tasks/install_deps.yml file in order to be considered as supported.
It's possible that a consumer of the e2e tests would need to define a specific layout for the test execution, adding or removing suites and/or scenarios. That's the case for Beats or the Elastic Agent, which triggers the E2E tests with a different layout than for the own development of the test framework: while in Beats or the Elastic Agent we are more interested in running the test for Fleet only, when developing the project we want to verify all the test suites at a time. The structure of these files is the following:
- SUITES: this entry will hold a YAML object containing a list of suite. Each suite in the list will be represented by a YAML object with the following attributes:
- suite: the name of the suite. Will be used to look up the root directory of the test suite, located under the
e2e/_suitesdirectory. Therefore, onlyfleet,helmandkubernetes-autodiscoverare valid values. Required. - provider: declares the provider type for the test suite. Valid values are
docker,elastic-packageandremote. If not present, it will useremoteas fallback. Optional. - scenarios: a list of YAML objects representing the test scenarios, where the tests are executed. A test scenario will basically declare how to run a set of test, using the following attributes:
- name: name of the test scenario. It will be used by Jenkins to name the parallel stage representing this scenario. Required.
- provider: declares the provider type for the test scenario. Valid values are
docker,elastic-packageandremote. If not present, it will use its parent test suite's provider. Optional. - tags: a Gherkin expression to filter scenarios by tag. It will drive the real execution of the tests, selecting which feature files and/or Cucumber tags will be added to the current test execution. An example could be
linux_integrationorrunning_on_beats. For reference, see https://github.com/cucumber/godog#tags. Required. - platforms: a list of platforms where the tests will be executed. Valid values are already declared under the
PLATFORMSobject, using the key of the platform as elements in the list. I.e.["centos8_arm64", "centos8_amd64", "debian_arm64", "debian_amd64", "sles15"]. Required.
- suite: the name of the suite. Will be used to look up the root directory of the test suite, located under the
The following variables need to be exported:
- AWS_SECRET_ACCESS_KEY: AWS secret access key
- AWS_ACCESS_KEY_ID: AWS access key id
Install python deps:
make -C .ci setup-envIt will create a .runID under the .ci directory. It will contain an unique identifier for your machines, which will be added as a VM tag.
We are able to run the Elastic Stack and all the test suites in AWS instances, so whenever a build failed we will be able to recreate the same machine and access it to inspect its state: logs, files, containers... For that, we are enabling SSH access to those ephemeral machines, which can be created following this guide.
But you must first understand that there are two types of Cloud machines:
- the VM running the stack, and
- the VMs running the actual tests, where the Elastic Agent will be installed and enrolled into the stack.
This specialised VM starts Elasticsearch, Kibana and Fleet Server using Docker Compose, but instead of invoking the compose file directly, it uses the test framework to do it. Why? Because we need to wait for Elasticsearch to be ready and request an API Token to be passed to the Fleet Server container. And we do this with code.
The VM is a Debian AMD64 machine, as described here.
export SSH_KEY="PATH_TO_YOUR_SSH_KEY_WITH_ACCESS_TO_AWS" # optional, defaults to $(HOME)/.ssh/id_rsa
make -C .ci create-stackA .stack-host-ip file will be created in the .ci directory of the project including the IP address of the stack instance. Check it out from that file, or make a note of the IP address displayed in the ansible summary, as you'll probably need it to connect your browser to open Kibana, or to SSH into it for troubleshooting.
The IP address of the stack in the
.stack-host-ipfile will be used by the automation.
Please remember to destroy the stack once you finished your testing.
There are different VM flavours that you can use to run the Elastic Agent and enroll it into the Stack: Debian, CentOS, SLES15, Oracle Linux... using AMD and ARM as architecture. You can find the full reference of the platform support here.
In these VMs, the test framework will download a binary to install the Elastic Agent (TAR files, DEB/RPM packages...), and will execute the different agent commands to install, enroll, uninstall, etc.
It's possible to configure the test node (OS, architecture), using the values that are already present in the platforms descriptor:
# example for Centos 8 ARM 64
export NODE_IMAGE="ami-01cdc9e8306344fe0"
export NODE_INSTANCE_TYPE="a1.large"
export NODE_LABEL="centos8_arm64"
export NODE_USER="centos"Besides that, it's possible to configure the test node for the different test suites that are present in the test framework: fleet, helm and kubernetes-autodiscover. Please configure the test node setting the suite, being fleet the default:
# all possible suites
export SUITE="fleet"
export SUITE="helm"
export SUITE="kubernetes-autodiscover"Finally, please create the test node:
export SSH_KEY="PATH_TO_YOUR_SSH_KEY_WITH_ACCESS_TO_AWS"
export SUITE="fleet"
make -C .ci create-nodeA .node-host-ip file will be created in the .ci directory of the project including the IP address of the node instance. Check it out from that file, or make a note of the IP address displayed in the ansible summary, as you'll probably need it to SSH into it for troubleshooting.
The IP address of the node in that file will be used by the automation.
Please remember to destroy the node once you have finished your testing.
You can select the specific tags that you want to include in the test execution. Please look for the different tags in the existing feature files for the suite you are interested in running. For that, please check out the tags/annotations that are present in those feature files (*.feature), which live in the features directory under your test suite. In example, for fleet test suite, you can find them here.
# example tags
export TAGS="fleet_mode"
export TAGS="system_integration"
export TAGS="apm-server"
export TAGS="kubernetes-autodiscover && elastic-agent"It's important that you consider reading about the environment variables affecting the build, as you could pass them to Make to run the tests with different options, such as a Github commit sha and repo (for testing a PR), the elastic-agent version, for testing a previous version of the agent, to name a few.
Finally, run the tests:
export SSH_KEY="PATH_TO_YOUR_SSH_KEY_WITH_ACCESS_TO_AWS"
make -C .ci run-tests TAGS="fleet_mode && install"If you want to check the current IP address, instance types, SSH user of the nodes you are working with, please run the following commands:
make -C .ci show-stack
make -C .ci show-nodeOnce you have created and set up the remote machines with the above instructions, you can SSH into both the stack and the test node machines. In order to do so, you must be allowed to do so first, and for that, please add your Github username in alphabetical order to this file, keeping a blank line as file ending. For the CI to work, the file including your user must be merged into the project, but for local development you can keep the file in the local state.
When submitting the pull request with your user to enable the SSH access, please remember to add the right backport labels (ex.
backport-v8.2.0) so that you will be able to SSH into the CI machines for all supported maintenance branches.
To SSH into the machines, please use the following commads:
export SSH_KEY="PATH_TO_YOUR_SSH_KEY_WITH_ACCESS_TO_AWS"
make -C .ci ssh-stack
make -C .ci ssh-nodeSometimes you need to tear down the Elastic Stack, or recreate the fleet-server, mostly in the case the API Token used for Fleet Server expired after 1 hour.
export SSH_KEY="PATH_TO_YOUR_SSH_KEY_WITH_ACCESS_TO_AWS"
make -C .ci destroy-elastic-stack
make -C .ci recreate-fleet-serverDo not forget to destroy the stack and nodes once you're done with your tests!
export SSH_KEY="PATH_TO_YOUR_SSH_KEY_WITH_ACCESS_TO_AWS"
make -C .ci destroy-stack
make -C .ci destroy-node