Currently the applications are programiatically defined in golang. This takes a learning curve for someone to add a new application.

End users are more familiar with yaml config files for describing k8s primitives. So we need a stub module that takes yaml files and auto-genrates golang objects which subsequently get used by the torpedo framework.

Requires updating the sched-ops vendor which has this fix.

The current scheduler configs have hard coded portworx related specs. We need to make it generic, probably by using some templating library.

If a scheduler is specified use it for all the app specs. Use the default kube-scheduler otherwise.

Currently DCOS takes a name for an app which is hardcoded.
Before deploying every instance of the app, just append a UUID to the name to make it unique.

In terms of application, support only exists for Deployment. We need support for StatefulSet and Service.

Support will mainly be in k8s driver implementation and k8sutils package.

Add an scheduler interface and the k8s implementation that gathers all details about current state of the system and dumps it in a file. File name should be use torpedo instance ID.

Primarily

• AWS get instances
• AWS SSM calls

Scheduler driver should have an interface that upgrades the application.

In the k8s implementation,

• Handle OnDelete and RollingUpgrades (OnDelete will require explicit delete of pods)
• Simulate a spec update by changing env variables.

• Add interface in volume driver to give disks used on a given node
• Add interface in node driver and implementations in ssh and aws driver to offline the disk

For deploy_aws and deploy_ssh we use some environment variables. We should add some documentation for that so everyone can leverage it.

Current implementation handler volumes only for docker containers. For UCR, the volume parameters are passed differently. We need to extract them correctly and perform volume operations like inspect and delete.

Use a command line arg parser that has flags to take in scheduler, volume driver, testname, version, help etc.

For e.g

import "k8s.io/client-go/pkg/apis/apps/v1beta1"

should be

import app_apis "k8s.io/client-go/pkg/apis/apps/v1beta1"

Currently torpedo uses k8s labels to stop and start portworx.

These k8s labels are consumed by the oci-mon Portworx pod that runs in the cluster. At times, docker can hung on the system and the oci-mon pod may not be running.

In this state, there is none to consume the start Portworx label and one needs to wait for docker to be back.

We should just use systemctl commands directly to control portworx.

• Install kube
• Install PX
• Run torpedo

make vendor is not doing what it's supposed to.

It is complaining about packages already present in the vendor directory. It is also pulling additional packages.

Needs to be done after adding yank out disk support in node driver

• start test with IO, yank out disk
• yank out disk, start test with IO on that node

Add a scheduler interface to scale up and scale down a particular application context.

Applicable only to multi replica applications that use shared volumes and statefulsets.

With oci, portworx uses different labels to enable the actual portworx service. In the tests we are using the px/enabled label, which will only remove the oci monitor and not the actual portworx service.
Need to change the behavior according to https://docs.portworx.com/scheduler/kubernetes/install.html#uninstall

Mainly following things should be configurable in the storage elements (StorageClass, PVC) in the k8s specs.

1. Volume provisioner (currently hardcoded in the storage class). This needs to take in the volume provisioner that the torpedo instance is being run on.
2. Volume size (currently hardcoded in the PVC)
3. Volume options (currently hardcoded in the storage class)

This will allow the same spec to be used for different flavors of storage.

When parsing the yaml spec files, if we encounter a file like below, it doesn't work since it has a yaml file separator. We need to handle that.

##### Portworx storage class
kind: StorageClass
apiVersion: storage.k8s.io/v1beta1
metadata:
    name: px-nginx-shared-sc
provisioner: kubernetes.io/portworx-volume
parameters:
   repl: "2"
   shared: "true"
---
##### Portworx persistent volume claim
kind: PersistentVolumeClaim
apiVersion: v1
metadata:
   name: px-nginx-shared-pvc
   annotations:
     volume.beta.kubernetes.io/storage-class: px-nginx-shared-sc
spec:
   accessModes:
     - ReadWriteOnce
   resources:
     requests:
       storage: 1Gi

If a file is not gofmt'ed, the build should fail. Just like how k8s does it.

Breakdown into individual sub-issues and delete this issue once done.

At a high level, we need to test creation of volume snapshots and restore of snapshots into volumes.

Use https://github.com/portworx/talisman/tree/master/cmd/talisman to upgrade Portworx

When a PVC gets created for portworx volume driver, labels are applied on nodes. This verification needs to be added in portworx sched ops during the volume validation phase.

Add a scale test that can exercise the current application specs but scaled by the given scale factor

Based on below logs, 1 second after portworx was started on a node, the test proceeded to stopping portworx on the node. There is a WaitForNode call between a start and stop. This call must have returned back with an incorrect status and hence px was stopped before it could start completely.

13:23:37 time="2018-01-12 21:17:57" level=info msg="[mysql] Destroyed Namespace: mysql-voldriverappdown-01-12-21h12m18s" 

13:23:37 STEP: wait for few seconds for app destroy to trigger

13:23:37 STEP: restarting volume driver

13:23:37 STEP: start volume driver on nodes: [{b503a941-8f19-4e80-b854-6d8fd9a50ccd minion2 minion2 [192.168.121.132]  Worker} {4881ca81-381e-4d4a-a73a-f04d0449f747 minion3 minion3 [192.168.121.243]  Worker}]

13:23:37 STEP: wait for volume driver to start on nodes: [{b503a941-8f19-4e80-b854-6d8fd9a50ccd minion2 minion2 [192.168.121.132]  Worker} {4881ca81-381e-4d4a-a73a-f04d0449f747 minion3 minion3 [192.168.121.243]  Worker}]

13:23:37 STEP: get nodes for nginx app

13:23:37 STEP: stop volume driver pxd on app nginx's nodes: [{4881ca81-381e-4d4a-a73a-f04d0449f747 minion3 minion3 [192.168.121.243]  Worker} {0a005856-6693-4e55-a83e-5fa2e64b8af9 minion1 minion1 [192.168.121.174]  Worker} {b503a941-8f19-4e80-b854-6d8fd9a50ccd minion2 minion2 [192.168.121.132]  Worker}]

Jan 12 21:18:07 minion2 dockerd-current[3881]: time="2018-01-12T21:18:07Z" level=info msg="Doing systemctl portworx START"
Jan 12 21:18:07 minion2 dockerd-current[3881]: time="2018-01-12T21:18:07Z" level=info msg="> run: /bin/sh -c systemctl start portworx"
Jan 12 21:18:07 minion2 systemd[1]: Starting Portworx OCI Container...
Jan 12 21:18:07 minion2 sh[16172]: container "portworx" does not exist
Jan 12 21:18:07 minion2 systemd[1]: Started Portworx OCI Container.
Jan 12 21:18:07 minion2 kubelet[5429]: E0112 21:18:07.973807    5429 kubelet_volumes.go:128] Orphaned pod "abbf8767-f7dd-11e7-974d-5254004f47e1" found, but volume paths are still present on disk. : There were a total of 1 errors similar to this.  Turn up verbosity to see them.
Jan 12 21:18:07 minion2 px-runc[16177]: time="2018-01-12T21:18:07Z" level=info msg="Rootfs found at /opt/pwx/oci/rootfs"
Jan 12 21:18:07 minion2 px-runc[16177]: time="2018-01-12T21:18:07Z" level=info msg="SPEC READ [21ab28d954598d512faca66748c9261c  /opt/pwx/oci/config.json]"
Jan 12 21:18:07 minion2 px-runc[16177]: time="2018-01-12T21:18:07Z" level=info msg="PX-RunC arguments: -a -c b91ffc94-2ca1-4736-88d3-d88599a5c036 -f -k etcd://70.0.5.211:2379,etcd://70.0.5.212:2379,etcd://70.0.5.213:2379 -x kubernetes"
Jan 12 21:18:07 minion2 px-runc[16177]: time="2018-01-12T21:18:07Z" level=info msg="PX-RunC mounts: /dev:/dev /var/lib/docker/containers/47d548f25173a549452a2f20afbc977dae8c6b4aefb733763b9f62c9c2056e7c/hosts:/etc/hosts:ro /etc/pwx:/etc/pwx /var/lib/docker/containers/47d548f25173a549452a2f20afbc977dae8c6b4aefb733763b9f62c9c2056e7c/resolv.conf:/etc/resolv.conf:ro /opt/pwx/bin:/export_bin /lib/modules:/lib/modules proc:/proc:nosuid,noexec,nodev /run/docker:/run/docker sysfs:/sys:nosuid,noexec,nodev cgroup:/sys/fs/cgroup:nosuid,noexec,nodev /var/lib/kubelet/pods/2c016f57-f7dc-11e7-974d-5254004f47e1/containers/portworx/24be706d:/tmp/px-termination-log /usr/src:/usr/src /var/cores:/var/cores /var/run:/var/host_run /var/lib/kubelet:/var/lib/kubelet:shared /var/lib/osd:/var/lib/osd:shared /var/lib/kubelet/pods/2c016f57-f7dc-11e7-974d-5254004f47e1/volumes/kubernetes.io~secret/px-account-token-fd52v:/var/run/secrets/kubernetes.io/serviceaccount:ro"
Jan 12 21:18:07 minion2 px-runc[16177]: time="2018-01-12T21:18:07Z" level=info msg="PX-RunC env: BTRFS_SOURCE=/home/px_btrfs GOMAXPROCS=64 GOTRACEBACK=crash KUBERNETES_PORT=tcp://10.96.0.1:443 KUBERNETES_PORT_443_TCP=tcp://10.96.0.1:443 KUBERNETES_PORT_443_TCP_ADDR=10.96.0.1 KUBERNETES_PORT_443_TCP_PORT=443 KUBERNETES_PORT_443_TCP_PROTO=tcp KUBERNETES_SERVICE_HOST=10.96.0.1 KUBERNETES_SERVICE_PORT=443 KUBERNETES_SERVICE_PORT_HTTPS=443 KUBE_DNS_PORT=udp://10.96.0.10:53 KUBE_DNS_PORT_53_TCP=tcp://10.96.0.10:53 KUBE_DNS_PORT_53_TCP_ADDR=10.96.0.10 KUBE_DNS_PORT_53_TCP_PORT=53 KUBE_DNS_PORT_53_TCP_PROTO=tcp KUBE_DNS_PORT_53_UDP=udp://10.96.0.10:53 KUBE_DNS_PORT_53_UDP_ADDR=10.96.0.10 KUBE_DNS_PORT_53_UDP_PORT=53 KUBE_DNS_PORT_53_UDP_PROTO=udp KUBE_DNS_SERVICE_HOST=10.96.0.10 KUBE_DNS_SERVICE_PORT=53 KUBE_DNS_SERVICE_PORT_DNS=53 KUBE_DNS_SERVICE_PORT_DNS_TCP=53 PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin PORTWORX_SERVICE_PORT=tcp://10.108.87.160:9001 PORTWORX_SERVICE_PORT_9001_TCP=tcp://10.108.87.160:9001 PORTWORX_SERVICE_PORT_9001_TCP_ADDR=10.108.87.160 PORTWORX_SERVICE_PORT_9001_TCP_PORT=9001 PORTWORX_SERVICE_PORT_9001_TCP_PROTO=tcp PORTWORX_SERVICE_SERVICE_HOST=10.108.87.160 PORTWORX_SERVICE_SERVICE_PORT=9001 PXMOD_SOURCE=/home/px-fuse PXMOD_VERSION=5 PX_IMAGE=harshpx/px:master PX_IMAGE_ID=sha256:23c641ae8971add0639efbb145d0350ec09906718a58c95e7518affc65d83c3f PX_RUNC=true PX_TEMPLATE_VERSION=v2 TERM=xterm"
Jan 12 21:18:07 minion2 px-runc[16177]: time="2018-01-12T21:18:07Z" level=info msg="portworx-reboot.service content unchanged [1dc97b965f3c6ad99aa3a92a02b2e8b1 /etc/systemd/system/portworx-reboot.service]"
Jan 12 21:18:07 minion2 px-runc[16177]: time="2018-01-12T21:18:07Z" level=info msg="Linking /var/host_run/docker.sock to /opt/pwx/oci/rootfs/run/docker.sock"
Jan 12 21:18:08 minion2 px-runc[16177]: Executing with arguments: -a -c b91ffc94-2ca1-4736-88d3-d88599a5c036 -f -k etcd://70.0.5.211:2379,etcd://70.0.5.212:2379,etcd://70.0.5.213:2379 -x kubernetes

There are multiple places where we are using time to retry a task. We need to have a global or a task level constant file to store the constants.

Instead of shutting down a volume driver graceful, we should also be testing how a volume driver behaves when it is shutdown ungracefully. For e.g kill one of it's processes directly using kill command.

Also add Portworx implementation for this.

The current destroy impl for k8s driver deletes the namespace. This causes all the pvcs in that namespace to get deleted which was not the intention of the caller. Only the application pods and services should get deleted.

If a volume driver doesn't clean up pod volume paths, there are errors in kubelet journal logs that complain about it. We need to parse to fail validate of app termination if we see that.

There is an unnecessary dependency on the order of the scheduler driver and volume driver to be init'd right now in order to have the node registry set up correctly

The scheduler driver needs to be Init'd before the volume driver otherwise the node registry doesn't get populated correctly. There is no need for such a dependency.

Replace current format where all tests for basically functions in a single file.

GetNodesForApp() also returns pods that are in terminating state. It either needs to filter out those pods or return the status of pods so that the caller can do the correct checks.

Add a node driver interface which, given a node, isolates it from the network.

In the aws implementation, security groups should be used to implement this.

When creating a volume in k8s, end user can specify rack labels.

Portworx volume driver validation logic needs to check if the volume's actually end up on those racks.

and not a fixed node

Apart from mysql, none of the existing k8s application specs perform IO.

Update existing specs to have a sidecar container that performs I/O

Add a PerformIO() interface in scheduler driver which will get invoked from torpedo.

Applications in the app spec factory also need their own implementations since only an application knows what it means to perform IO on it (e.g postgres will run pgbench or write a bunch of database tables).

This ticket won't have any torpedo changes but rather work on creating specs and a deployment workflow for fluentd + EFK logging framework on a k8s cluster which is capable for pushing all pod logs to the EFK instance.

For kubernetes, wordpress + Mysql is a popular application. Replace existing nginx with a single wordpress deployment.

Currently we only have an ssh implementation for the node driver. This has limitations in the node operations we can do. For example, we cannot shutdown node since with ssh, we have no way to restarting the node.