policylibrary: consolidate privileges raising operations into privileges-raise.yaml single policy #5916
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Tetragon e2e Test | |
on: | |
pull_request: | |
paths-ignore: | |
- 'docs/**' | |
push: | |
branches: | |
- main | |
paths-ignore: | |
- 'docs/**' | |
concurrency: | |
group: ${{ github.ref }} | |
cancel-in-progress: true | |
env: | |
clusterName: tetragon-ci | |
ciliumCliVersion: v0.15.0 | |
jobs: | |
e2e-test: | |
runs-on: ${{ matrix.os }} | |
timeout-minutes: 40 | |
strategy: | |
fail-fast: false | |
matrix: | |
os: [ ubuntu-22.04, actuated-arm64-4cpu-16gb ] | |
steps: | |
- name: Checkout Code | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
with: | |
path: go/src/github.com/cilium/tetragon/ | |
- name: Install Go | |
uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0 | |
with: | |
# renovate: datasource=golang-version depName=go | |
go-version: '1.21.6' | |
- name: Set Up Job Variables | |
id: vars | |
run: | | |
if [ ${{ github.event.issue.pull_request || github.event.pull_request }} ]; then | |
PR_API_JSON=$(curl \ | |
-H "Accept: application/vnd.github.v3+json" \ | |
-H "Authorization: Bearer ${{ secrets.GITHUB_TOKEN }}" \ | |
${{ github.event.issue.pull_request.url || github.event.pull_request.url }}) | |
SHA=$(echo "$PR_API_JSON" | jq -r ".head.sha") | |
else | |
SHA=${{ github.sha }} | |
fi | |
echo "sha=${SHA}" >> $GITHUB_OUTPUT | |
echo "agentImage=quay.io/cilium/tetragon-ci:${SHA}" >> $GITHUB_OUTPUT | |
echo "operatorImage=quay.io/cilium/tetragon-operator-ci:${SHA}" >> $GITHUB_OUTPUT | |
- name: Install kubectl, kind and cilium CLI | |
uses: alexellis/arkade-get@master | |
with: | |
kubectl: latest | |
helm: v3.12.1 | |
kind: v0.20.0 | |
cilium: ${{ env.ciliumCliVersion }} | |
print-summary: false | |
- name: Pull Tetragon Images | |
uses: nick-fields/retry@14672906e672a08bd6eeb15720e9ed3ce869cdd4 # v2.9.0 | |
with: | |
timeout_minutes: 2 | |
max_attempts: 30 | |
retry_wait_seconds: 30 | |
warning_on_retry: false | |
command: | | |
set -e | |
docker pull ${{ steps.vars.outputs.agentImage }} | |
docker pull ${{ steps.vars.outputs.operatorImage }} | |
- name: Run e2e Tests | |
run: | | |
cd go/src/github.com/cilium/tetragon | |
make e2e-test E2E_BUILD_IMAGES=0 E2E_AGENT=${{ steps.vars.outputs.agentImage }} E2E_OPERATOR=${{ steps.vars.outputs.operatorImage }} EXTRA_TESTFLAGS="-cluster-name=${{ env.clusterName }} -args -v=4" | |
- name: Upload Tetragon Logs | |
if: failure() || cancelled() | |
uses: actions/upload-artifact@1eb3cb2b3e0f29609092a73eb033bb759a334595 # v4.1.0 | |
with: | |
name: tetragon-logs | |
path: /tmp/tetragon.e2e.* | |
retention-days: 5 |