Skip to content

fix(image-builder): use google keychain for Artifact Registry domains #1973

fix(image-builder): use google keychain for Artifact Registry domains

fix(image-builder): use google keychain for Artifact Registry domains #1973

Workflow file for this run

name: Turing CI
on:
# Automatically run CI on Release and Pre-Release tags and main branch
# (except changes to non-relevant paths)
push:
tags:
- "v[0-9]+.[0-9]+.[0-9]+*"
branches:
- main
paths-ignore:
- "docs/**"
- "engines/pyfunc-ensembler-job/**"
- "engines/pyfunc-ensembler-service/**"
- "scripts/fluentd-bigquery/**"
- "sdk/**"
- ".github/workflows/pyfunc-ensembler-job.yaml"
- ".github/workflows/pyfunc-ensembler-service.yaml"
- ".github/workflows/sdk.yaml"
- ".github/workflows/helm-chart.yaml"
- ".github/workflows/cluster-init.yaml"
# Automatically run CI on branches, that have active PR opened
pull_request:
branches:
- main
paths-ignore:
- "docs/**"
- "engines/pyfunc-ensembler-job/**"
- "engines/pyfunc-ensembler-service/**"
- "scripts/fluentd-bigquery/**"
- ".github/workflows/pyfunc-ensembler-job.yaml"
- ".github/workflows/pyfunc-ensembler-service.yaml"
- ".github/workflows/sdk.yaml"
- ".github/workflows/helm-chart.yaml"
# To make it possible to trigger e2e CI workflow for any arbitrary git ref
workflow_dispatch:
env:
ARTIFACT_RETENTION_DAYS: 7
GO_VERSION: "1.20"
GO_LINT_VERSION: v1.51.2
CLUSTER_NAME: turing-e2e
ISTIO_VERSION: 1.9.9
KNATIVE_VERSION: 1.7.4
KNATIVE_ISTIO_VERSION: 1.7.1
LOCAL_REGISTRY: registry.localhost:5000
jobs:
build-api:
runs-on: ubuntu-latest
outputs:
api-version: ${{ steps.build-image.outputs.api-version }}
steps:
- name: Check out code
uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Build Docker image
id: build-image
working-directory: api
run: |
set -o pipefail
make build-image | tee output.log
echo "::set-output name=api-version::$(sed -n 's%turing-api version: \(.*\)%\1%p' output.log)"
- name: Save Docker image
run: |
docker image save \
--output turing-api.${{ steps.build-image.outputs.api-version }}.tar \
turing-api:${{ steps.build-image.outputs.api-version }}
- name: Publish Artifact
uses: actions/upload-artifact@v2
with:
name: turing-api.${{ steps.build-image.outputs.api-version }}.tar
path: turing-api.${{ steps.build-image.outputs.api-version }}.tar
retention-days: ${{ env.ARTIFACT_RETENTION_DAYS }}
build-router:
runs-on: ubuntu-latest
outputs:
router-version: ${{ steps.build-image.outputs.router-version }}
steps:
- name: Check out code
uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Build Docker image
id: build-image
working-directory: engines/router
run: |
set -o pipefail
make build-image | tee output.log
echo "::set-output name=router-version::$(sed -n 's%turing-router version: \(.*\)%\1%p' output.log)"
- name: Save Docker image
run: |
docker image save \
--output turing-router.${{ steps.build-image.outputs.router-version }}.tar \
turing-router:${{ steps.build-image.outputs.router-version }}
- name: Publish Artifact
uses: actions/upload-artifact@v2
with:
name: turing-router.${{ steps.build-image.outputs.router-version }}.tar
path: turing-router.${{ steps.build-image.outputs.router-version }}.tar
retention-days: ${{ env.ARTIFACT_RETENTION_DAYS }}
build-test-experiment-engine-plugin:
runs-on: ubuntu-latest
env:
VERSION: latest
outputs:
test-experiment-engine-plugin-version: ${{ env.VERSION }}
steps:
- name: Check out code
uses: actions/checkout@v3
- name: Build Docker image
working-directory: engines/experiment/examples/plugins/hardcoded
run: |
set -o pipefail
make build-image
- name: Save Docker image
run: |
docker image save \
--output test-experiment-engine-plugin.${{ env.VERSION }}.tar \
plugin-example-engine-plugin:${{ env.VERSION }}
- name: Publish Artifact
uses: actions/upload-artifact@v2
with:
name: test-experiment-engine-plugin.${{ env.VERSION }}.tar
path: test-experiment-engine-plugin.${{ env.VERSION }}.tar
retention-days: ${{ env.ARTIFACT_RETENTION_DAYS }}
build-ui:
runs-on: ubuntu-latest
defaults:
run:
working-directory: ui
steps:
- name: Check out code
uses: actions/checkout@v3
- name: Install system dependencies
run: sudo apt-get install --no-install-recommends gcc make libpng-dev
- name: Set up Node 16.x
uses: actions/setup-node@v1
with:
node-version: "16.x"
- name: Cache Dependencies
uses: actions/cache@v2
with:
path: ui/node_modules
key: |
${{ runner.os }}-modules-${{ hashFiles('ui/yarn.lock') }}
restore-keys: ${{ runner.os }}-modules-
- name: Install
run: yarn install --network-concurrency 1
- name: Lint code
run: yarn lint
- name: Build UI
env:
NODE_OPTIONS: "--max_old_space_size=4096"
run: yarn build
- name: Publish Artifact
uses: actions/upload-artifact@v2
with:
name: turing-ui-dist
path: ui/build/
retention-days: ${{ env.ARTIFACT_RETENTION_DAYS }}
build-cluster-init:
runs-on: ubuntu-latest
outputs:
cluster-init-version: ${{ steps.build-cluster-init.outputs.cluster-init-version }}
steps:
- name: Check out code
uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Run action build-cluster-init
id: build-cluster-init
uses: ./.github/actions/build-cluster-init
with:
artifact_retention_days: ${{ env.ARTIFACT_RETENTION_DAYS }}
test-api:
runs-on: ubuntu-latest
env:
GOPATH: ${{ github.workspace }}/api/.go
needs:
- build-api
services:
postgres:
image: postgres:13-alpine
env:
POSTGRES_DB: turing
POSTGRES_USER: turing-admin
POSTGRES_PASSWORD: secret
options: >-
--health-cmd pg_isready
--health-interval 10s
--health-timeout 5s
--health-retries 5
ports:
- 5432:5432
steps:
- name: Check out code
uses: actions/checkout@v3
- name: Set up Go
uses: actions/setup-go@v4
with:
go-version: ${{ env.GO_VERSION }}
- name: Cache Dependencies
uses: actions/cache@v2
with:
path: api/.go/pkg/mod/
key: |
gomod-${{ hashFiles('api/go.mod') }}
restore-keys: gomod-
- name: Setup
working-directory: api
run: make setup
- name: Run test
working-directory: api
env:
DATABASE_HOST: localhost
DATABASE_NAME: turing
DATABASE_USER: turing-admin
DATABASE_PASSWORD: secret
run: make test
- name: Lint code
uses: golangci/golangci-lint-action@v3
with:
version: ${{ env.GO_LINT_VERSION }}
working-directory: api
args: --timeout 3m --verbose
test-engines-router:
runs-on: ubuntu-latest
defaults:
run:
working-directory: engines/router
env:
GOPATH: ${{ github.workspace }}/engines/router/.go
needs:
- build-router
steps:
- name: Check out code
uses: actions/checkout@v3
- name: Set up Go
uses: actions/setup-go@v4
with:
go-version: ${{ env.GO_VERSION }}
- name: Cache Dependencies
uses: actions/cache@v2
with:
path: engines/router/.go/pkg/mod/
key: |
gomod-${{ hashFiles('engines/router/go.mod') }}
restore-keys: gomod-
- name: Setup
run: make setup
- name: Run test
run: make test
- name: Run Benchmark
run: make benchmark
- name: Lint code
uses: golangci/golangci-lint-action@v3
with:
version: ${{ env.GO_LINT_VERSION }}
working-directory: engines/router
skip-go-installation: true
args: --verbose
test-engines-experiment:
runs-on: ubuntu-latest
env:
GOPATH: ${{ github.workspace }}/engines/experiment/.go
steps:
- name: Check out code
uses: actions/checkout@v3
- name: Set up Go
uses: actions/setup-go@v4
with:
go-version: ${{ env.GO_VERSION }}
- name: Cache Dependencies
uses: actions/cache@v2
with:
path: engines/experiment/.go/pkg/mod/
key: |
gomod-${{ hashFiles('engines/experiment/go.mod') }}
restore-keys: gomod-
- name: Run test
working-directory: engines/experiment
run: make test
- name: Lint code
uses: golangci/golangci-lint-action@v2
with:
version: ${{ env.GO_LINT_VERSION }}
working-directory: engines/experiment
skip-go-installation: true
args: --verbose
test-e2e:
runs-on: ubuntu-latest
env:
CLUSTER_INIT_VERSION: ${{ needs.build-cluster-init.outputs.cluster-init-version }}
TURING_API_VERSION: ${{ needs.build-api.outputs.api-version }}
TURING_ROUTER_VERSION: ${{ needs.build-router.outputs.router-version }}
TEST_EXPERIMENT_ENGINE_PLUGIN_VERSION: ${{ needs.build-test-experiment-engine-plugin.outputs.test-experiment-engine-plugin-version }}
needs:
- build-api
- build-router
- build-test-experiment-engine-plugin
- build-cluster-init
strategy:
fail-fast: false
matrix:
name:
[
"In-cluster credentials; API e2e",
"Remote cluster credentials; SDK e2e",
]
include:
- name: "In-cluster credentials; API e2e"
useInClusterConfig: true
valuesFile: "turing.values.in-cluster.yaml"
useSDK: false
- name: "Remote cluster credentials; SDK e2e"
useInClusterConfig: false
valuesFile: "turing.values.remote.yaml"
useSDK: true
steps:
- name: Check out code
uses: actions/checkout@v3
- name: Set Up Test Cluster
uses: ./.github/actions/setup-test-cluster
with:
go-version: ${{ env.GO_VERSION }}
turing_api_tar_archive_name: turing-api.${{ env.TURING_API_VERSION }}.tar
turing_router_tar_archive_name: turing-router.${{ env.TURING_ROUTER_VERSION }}.tar
experiment_engine_plugin_archive_name: test-experiment-engine-plugin.${{ env.TEST_EXPERIMENT_ENGINE_PLUGIN_VERSION }}.tar
cluster_init_tar_archive_name: cluster-init.${{ env.CLUSTER_INIT_VERSION }}.tar
use_in_cluster_config: ${{ matrix.useInClusterConfig }}
values_file: ${{ matrix.valuesFile }}
cluster_name: ${{ env.CLUSTER_NAME }}
istio_version: ${{ env.ISTIO_VERSION }}
knative_version: ${{ env.KNATIVE_VERSION }}
knative_istio_version: ${{ env.KNATIVE_ISTIO_VERSION }}
local_registry: ${{ env.LOCAL_REGISTRY }}
cluster_init_version: ${{ env.CLUSTER_INIT_VERSION }}
- name: Set up Go
uses: actions/setup-go@v4
with:
go-version: ${{ env.GO_VERSION }}
- name: Setup Python
if: ${{ matrix.useSDK }}
uses: actions/setup-python@v2
with:
python-version: 3.9
- name: Install Python dependencies
if: ${{ matrix.useSDK }}
working-directory: sdk
run: make setup
- name: Run End-to-End Test Suite with Turing API
if: ${{ !matrix.useSDK }}
id: run-e2e-test
working-directory: api
env:
GOPATH: ${{ github.workspace }}/api/.go
run: |
make setup-e2e
make test-e2e
- name: Run End-to-End Test Suite with Turing SDK
if: ${{ matrix.useSDK }}
id: run-e2e-test-sdk
working-directory: sdk
env:
GOPATH: ${{ github.workspace }}/api/.go
TEST_ID: ${{ github.run_id }}
MOCKSERVER_HTTP_ENDPOINT: http://mockserver
MOCKSERVER_UPI_CONTROL_ENDPOINT: mockserver-upi-control:80
MOCKSERVER_UPI_A_ENDPOINT: mockserver-upi-a:80
API_BASE_PATH: http://turing-gateway.127.0.0.1.nip.io/api/turing/
MODEL_CLUSTER_NAME: "dev"
PROJECT_ID: "1"
PROJECT_NAME: default
KUBECONFIG_USE_LOCAL: true
TEST_ECHO_IMAGE: eexit/mirror-http-server:1.1.3
KSERVICE_DOMAIN: 127.0.0.1.nip.io
run: make e2e-sdk
- if: (steps.run-e2e-test.outcome == 'failure' || steps.run-e2e-test-sdk.outcome == 'failure') && always()
name: "Debug Deployment Failure"
run: |
echo "::group::describe deployment/turing-mlp"
kubectl describe deployment/turing-mlp
echo "::endgroup::"
echo "::group::describe deployment/turing-merlin"
kubectl describe deployment/turing-merlin
echo "::endgroup::"
echo "::group::describe deployment/turing"
kubectl describe deployment/turing
echo "::endgroup::"
echo "::group::secret/turing-api-config"
kubectl get secret/turing-api-config -o jsonpath='{.data.config\.yaml}' | base64 --decode
echo "::endgroup::"
echo "::group::logs deployment/turing-mlp"
kubectl logs deployment/turing-mlp
echo "::endgroup::"
echo "::group::logs deployment/turing-merlin"
kubectl logs deployment/turing-merlin
echo "::endgroup::"
echo "::group::logs deployment/turing"
kubectl logs deployment/turing
echo "::endgroup::"
echo "::group::kubernetes events"
kubectl get events
echo "::endgroup::"
echo "::group::kubernetes deployment"
kubectl get deploy
echo "::endgroup::"
echo "::group::knative serving deployment"
kubectl get ksvc
echo "::endgroup::"
echo "::group::kubernetes pod describe"
kubectl describe pod
echo "::endgroup::"
echo "::group::kubernetes config map"
kubectl get cm -o yaml
echo "::endgroup::"
echo "::group::kubernetes pod logs"
kubectl get pod | awk '{print $1}' | grep -v "NAME" | while read p; echo "POD LOGS $p"; do kubectl logs "$p" --all-containers; done;
echo "::endgroup::"
release-rules:
runs-on: ubuntu-latest
outputs:
release-type: ${{ steps.release-rules.outputs.release-type }}
steps:
- uses: actions/checkout@v3
- id: release-rules
uses: ./.github/actions/release-rules
publish:
# Automatically publish release and pre-release artifacts.
#
# As for dev releases, make it possible to publish artifacts
# manually by approving 'deployment' in the 'manual' environment.
#
# Dev build can be released either from the 'main' branch or
# by running this workflow manually with `workflow_dispatch` event.
if: >-
contains('release,pre-release', needs.release-rules.outputs.release-type)
|| ( github.event_name != 'pull_request' )
|| ( github.event.pull_request.head.repo.full_name == github.repository )
needs:
- build-router
- build-api
- build-ui
- release-rules
- test-e2e
- test-api
- test-engines-router
- test-engines-experiment
uses: caraml-dev/turing/.github/workflows/turing-publish.yaml@main
with:
api_version: ${{ needs.build-api.outputs.api-version }}
router_version: ${{ needs.build-router.outputs.router-version }}
environment: ${{ needs.release-rules.outputs.release-type == 'dev' && 'manual' || '' }}
secrets:
ghcr_token: ${{ secrets.GITHUB_TOKEN }}