first commit

Author: Leonid Podolinskiy

.dockerignore

@@ -0,0 +1,4 @@
+# More info: https://docs.docker.com/engine/reference/builder/#dockerignore-file
+# Ignore build and test binaries.
+bin/
+testbin/

.github/workflows/e2e.yaml

@@ -0,0 +1,197 @@
+name: "Tests"
+
+on:
+  pull_request: 
+    branches:
+      - main
+    paths-ignore:
+      - 'lightrun-init-agent/**'
+      - '.github/**'
+      - 'docs/**'
+      - 'grafana/**'
+
+jobs:  
+  e2e_test:
+    name: Build controller and install helm chart
+    runs-on: ubuntu-latest
+    services:
+      registry:
+        image: registry:2
+        ports:
+          - 5000:5000
+    steps:
+    - uses: actions/checkout@v3
+
+    - name: Spin up k3s cluster
+      shell: bash
+      run: |
+
+        # Add local registry to /etc/hosts
+        echo '127.0.0.1 localreg.com' | sudo tee -a /etc/hosts
+
+        # Install kubectl
+        curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
+
+        # Install helm
+        curl -fsSL -o get_helm.sh https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3
+        chmod 700 get_helm.sh
+        ./get_helm.sh
+
+        #Install k3s
+        curl -sfL https://get.k3s.io | K3S_KUBECONFIG_MODE="644" sh -s - --docker
+
+        mkdir ~/.kube || echo "~/.kube already existed"
+        sudo chmod 777 /etc/rancher/k3s/k3s.yaml
+        sudo cp /etc/rancher/k3s/k3s.yaml ~/.kube/config
+        sudo chmod 777 ~/.kube/config
+
+        cat <<EOF >> /tmp/registries.yaml
+        mirrors:
+          "localreg.com:5000":
+            endpoint:
+            - "http://localreg.com:5000"
+        EOF
+
+        sudo cp /tmp/registries.yaml /etc/rancher/k3s/
+        sudo chmod 777 /etc/rancher/k3s/registries.yaml
+        
+        #printf "\nRegistry file\n"
+        #cat /etc/rancher/k3s/registries.yaml
+
+        #printf "\nkube config\n"
+        #cat ~/.kube/config
+
+        # ensure that node is created
+        timeout 2m bash -c 'until kubectl get node $HOSTNAME; do sleep 1; done'
+
+        # test for 120 to see if node will go ready
+        kubectl wait --timeout=120s --for=condition=Ready node/$(echo $HOSTNAME| awk '{print tolower($0)}')
+        
+        # Restart need to update local registry config
+        printf "Restart k3s service\n"
+        sudo systemctl restart k3s
+        kubectl wait --timeout=120s --for=condition=Ready node/$(echo $HOSTNAME| awk '{print tolower($0)}')
+
+    - name: Build and push to local repo
+      uses: docker/build-push-action@v3
+      with:
+        context: .
+        push: true
+        tags: localreg.com:5000/lightrun-k8s-operator:0.0.0-${{ github.run_number }}
+
+
+    - name: Install chart and test controller
+      shell: bash
+      run: |
+        #printf "Check local registry image\n"
+        #curl http://localreg.com:5000/v2/lightrun-k8s-operator/manifests/0.0.0-${{ github.run_number }}
+
+
+        yq -i '.controllerManager.manager.image.repository = "localreg.com:5000/lightrun-k8s-operator"' .github/workflows/tests_data/chart_values.yaml
+        yq -i '.controllerManager.manager.image.tag = "0.0.0-${{ github.run_number }}"' .github/workflows/tests_data/chart_values.yaml
+        yq -i '.spec.agentName = "ci-k3s-controller-chart-test-${{ github.run_number }}"' .github/workflows/tests_data/lightrunjavaagent.yaml
+        yq -i '.managerConfig.operatorScope.namespacedScope = true' .github/workflows/tests_data/chart_values.yaml
+
+        kubectl create ns lightrun-k8s-operator
+        kubectl create ns app-ns
+        kubectl config set-context --current --namespace=app-ns
+
+        printf "Deploy Java app\n"
+        kubectl apply -f examples/deployment.yaml 
+
+
+        printf "Add agent secret\n"
+        cat <<EOF | kubectl create -f -
+        apiVersion: v1
+        metadata: 
+          name: lightrun-secrets
+        stringData:
+          lightrun_key: ${{ secrets.DOGFOOD_KEY }}
+          pinned_cert_hash: ${{ secrets.DOGFOOD_CERT }}
+        kind: Secret
+        type: Opaque
+        EOF
+
+        
+        printf "Update generated parts of helm chart\n"
+        make before-push
+        printf "Install helm chart\n"
+        helm install -n lightrun-k8s-operator lightrun-k8s-operator ./helm-chart -f .github/workflows/tests_data/chart_values.yaml
+
+        kubectl wait deployment  app --for condition=Available=True --timeout=90s
+        
+        kubectl get deployments -n lightrun-k8s-operator
+        kubectl get pods -n lightrun-k8s-operator
+        kubectl wait deployment -n lightrun-k8s-operator lightrun-k8s-operator-controller-manager --for condition=Available=True --timeout=200s
+        kubectl get pods -n lightrun-k8s-operator
+        
+        
+        kubectl apply -f .github/workflows/tests_data/lightrunjavaagent.yaml 
+        kubectl wait deployment  app --for condition=Available=True --timeout=90s
+
+        
+        printf "Wait 1 minute\n"
+        sleep 60
+        printf "\nController logs\n\n"
+        kubectl logs --tail=500 -l control-plane=controller-manager -n lightrun-k8s-operator
+
+
+
+
+        printf "\n\nAgent INFO log\n"
+        kubectl exec -t deploy/app -c app -- cat /tmp/lightrun_java_agent.INFO
+        printf "\n\nAgent ERROR log\n"
+        kubectl exec -t deploy/app -c app -- cat /tmp/lightrun_java_agent.ERROR || true
+
+
+        printf "\nSearching for "registered" in INFO log\n"
+        if kubectl exec -t deploy/app -c app -- cat /tmp/lightrun_java_agent.INFO | grep Debuggee |grep registered > /dev/null; then
+          printf "\n----------------\nAgent registered succesfully!\n----------------\n"
+        else
+          printf "\n----------------\nAgent failed to register!\n----------------\n"
+          export AGENT_REGISTERED=false
+        fi
+
+
+
+
+        printf "Add resources in restricted namespace\n"
+        kubectl create ns restricted
+        kubectl config set-context --current --namespace=restricted
+        printf "Deploy Java app\n"
+        kubectl apply -f examples/deployment.yaml 
+
+        printf "Add agent secret\n"
+        cat <<EOF | kubectl create -f -
+        apiVersion: v1
+        metadata: 
+          name: lightrun-secrets
+        stringData:
+          lightrun_key: ${{ secrets.DOGFOOD_KEY }}
+          pinned_cert_hash: ${{ secrets.DOGFOOD_CERT }}
+        kind: Secret
+        type: Opaque
+        EOF
+
+        kubectl apply -f .github/workflows/tests_data/lightrunjavaagent.yaml 
+
+        sleep 5 
+        kubectl describe deployment app
+
+        printf "Controller logs\n\n\n"
+        kubectl logs --tail=500 -l control-plane=controller-manager -n lightrun-k8s-operator
+
+        printf "LightrunJavaAgents status\n\n\n"
+        kubectl get lrja --all-namespaces
+
+        printf "\nCleanup\n\n"
+        bash /usr/local/bin/k3s-uninstall.sh
+        rm -rf ~/.kube
+
+        if [[ $AGENT_REGISTERED == "false" ]]; then
+          exit 1
+        fi
+        
+    
+
+

.github/workflows/init_container.yaml

@@ -0,0 +1,60 @@
+name: "Init container for k8s operator"
+
+on:
+  workflow_dispatch:
+    inputs:
+      release_tag:
+        description: 'Release tag of the agent'     
+        required: true
+      init_image_tag:
+        description: 'Image tag'  
+        required: true
+        default: "0"
+
+
+
+jobs:  
+  set_image_tag_variable:
+    runs-on: ubuntu-latest
+    name: Build and push Docker image
+    steps:
+    - name: Set release tag
+      shell: bash
+      run: |
+          echo "::set-output name=TAG_NAME::$(echo ${{ inputs.release_tag }} | sed -E 's/^([0-9]*\.[0-9]*\.[0-9]*).*/\1/')-init.${{ inputs.init_image_tag }}"
+      id: set_tag
+
+    - uses: actions/checkout@v3
+
+
+    - name: Login to DockerHub
+      if: ${{ success() }}
+      uses: docker/login-action@v2
+      with:
+        username: ${{ secrets.DOCKERHUB_USER }}
+        password: ${{ secrets.DOCKERHUB_PASS }}
+
+    - name: Build and push linux container
+      uses: docker/build-push-action@v3
+      with:
+        context: .
+        file: ./lightrun-init-agent/Dockerfile
+        push: true
+        tags: "lightruncom/k8s-operator-init-java-agent-linux:${{steps.set_tag.outputs.TAG_NAME}}"
+        build-args: |
+          GITHUB_TOKEN=${{ secrets.PRETTY_GITHUB_READ_TOKEN }}
+          VERSION=${{ inputs.release_tag }}
+          FILE=agent.zip
+
+    - name: Build and push alpine container
+      uses: docker/build-push-action@v3
+      with:
+        context: .
+        file: ./lightrun-init-agent/Dockerfile
+        push: true
+        tags: "lightruncom/k8s-operator-init-java-agent-alpine:${{steps.set_tag.outputs.TAG_NAME}}"
+        build-args: |
+          GITHUB_TOKEN=${{ secrets.PRETTY_GITHUB_READ_TOKEN }}
+          VERSION=${{ inputs.release_tag }}
+          FILE=agent-alpine.zip
+          

.github/workflows/release.yaml

@@ -0,0 +1,102 @@
+name: "Release"
+
+on:
+  push: 
+    branches:
+      - main
+    paths-ignore:
+      - lightrun-init-agent/*
+      - .github/**
+      - helm-chart/*
+      - grafana/*
+      - config/*
+      - examples/*
+      - docs/*
+      - Makefile
+
+
+jobs:  
+  build:
+    name: Build and push Docker image
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout
+      uses: actions/checkout@v2
+      with:
+        fetch-depth: 0
+
+    - name: Checkout
+      uses: actions/checkout@v2
+      with:
+        path: 'helm-repo'
+        ref: 'helm-repo'
+        fetch-depth: 0
+
+    - name: Bump version and push tag
+      uses: anothrNick/github-tag-action@1.40.0
+      id: release_tag
+      env:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        DEFAULT_BUMP: patch
+        VERBOSE: true
+        WITH_V: false
+        INITIAL_VERSION: 0.1.0
+
+    - name: Setup Go environment
+      uses: actions/setup-go@v3.3.0
+      with:
+        go-version: '1.18.0'
+
+    - name: Run tests and prepare reports
+      shell: bash
+      run: |
+        make test
+
+    - name: Install Helm
+      uses: azure/setup-helm@v1
+
+    - name: Pack Helm chart
+      shell: bash
+      run: |
+        yq -i '.version = "${{steps.release_tag.outputs.new_tag}}"' helm-chart/Chart.yaml
+        yq -i '.controllerManager.manager.image.tag = "${{steps.release_tag.outputs.new_tag}}"' helm-chart/values.yaml
+        helm package ./helm-chart -u -d ./helm-repo/
+    
+    - name: Login to DockerHub
+      if: ${{ success() }}
+      uses: docker/login-action@v2
+      with:
+        username: ${{ secrets.DOCKERHUB_USER }}
+        password: ${{ secrets.DOCKERHUB_PASS }}
+
+    - name: Build and push
+      uses: docker/build-push-action@v3
+      with:
+        context: .
+        push: true
+        tags: |
+            lightruncom/lightrun-k8s-operator:${{steps.release_tag.outputs.new_tag}}
+            lightruncom/lightrun-k8s-operator:latest
+
+    - name: Create Release
+      if: ${{ success() }}
+      uses: ncipollo/release-action@v1.10.0
+      with:
+        artifacts: helm-repo/lightrun-k8s-operator-${{steps.release_tag.outputs.new_tag}}.tgz
+        tag: ${{steps.release_tag.outputs.new_tag}}
+        generateReleaseNotes: true
+
+
+    - name: Publish new chart version
+      shell: bash
+      working-directory: helm-repo
+      run: |
+        git switch helm-repo
+        helm repo index . --url https://lightrun-platform.github.io/lightrun-k8s-operator
+        git config user.name "Helm Updater"
+        git config user.email "actions@users.noreply.github.com"
+        git add $(git ls-files -o --exclude-standard)
+        git add index.yaml
+        git commit -m "Updated from ref: $GITHUB_SHA"
+        git push
+      

.github/workflows/tests_data/chart_values.yaml

@@ -0,0 +1,14 @@
+controllerManager:
+  namespace: lightrun-k8s-operator
+  manager:
+    image:
+      repository: lightruncom/lightrun-k8s-operator
+      tag: latest
+      
+managerConfig:
+  logLevel: 2 # higher number - mor logs
+  operatorScope:
+    namespaces:
+      - default
+      - app-ns
+    namespacedScope: false