Clean up temp dir after app tests #9119
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
There is an intermittent issue where test will fail due to a non-empty test directory at the end of a test. Temp dirs created by the `testing` package are _not required to be empty_ at cleanup time, so something has gone awry. After looking at the code, it seems that an some Auth server instances created as fixtures for several tests are never explicitly closed and cleaned up when the test finishes. This leads to a hypothesis that something in the audit writer is writing to the temp dir _while it is in the process of being cleaned up_. This patch add automatic cleanup to the Auth server test fixture, which executes before the temp directory cleanup. The intention is to stop any writes to the temp dir at the end of the test, so that it can be cleaned up without error. Also marks some not-implemented tests _skipped_ rather than _passed_, to increase visibility.
codingllama
approved these changes
Nov 24, 2021
russjones
approved these changes
Nov 24, 2021
tcsc
added a commit
that referenced
this pull request
Dec 1, 2021
There is an intermittent issue where test will fail due to a non-empty test directory at the end of a test. Temp dirs created by the `testing` package are _not required to be empty_ at cleanup time, so something has gone awry. After looking at the code, it seems that an some Auth server instances created as fixtures for several tests are never explicitly closed and cleaned up when the test finishes. This leads to a hypothesis that something in the audit writer is writing to the temp dir _while it is in the process of being cleaned up_. This patch add automatic cleanup to the Auth server test fixture, which executes before the temp directory cleanup. The intention is to stop any writes to the temp dir at the end of the test, so that it can be cleaned up without error. Also marks some not-implemented tests _skipped_ rather than _passed_, to increase visibility.
tcsc
added a commit
that referenced
this pull request
Dec 1, 2021
There is an intermittent issue where test will fail due to a non-empty test directory at the end of a test. Temp dirs created by the `testing` package are _not required to be empty_ at cleanup time, so something has gone awry. After looking at the code, it seems that an some Auth server instances created as fixtures for several tests are never explicitly closed and cleaned up when the test finishes. This leads to a hypothesis that something in the audit writer is writing to the temp dir _while it is in the process of being cleaned up_. This patch add automatic cleanup to the Auth server test fixture, which executes before the temp directory cleanup. The intention is to stop any writes to the temp dir at the end of the test, so that it can be cleaned up without error.
tcsc
added a commit
that referenced
this pull request
Dec 1, 2021
Part of this change is implementing a "no secrets" policy for CI. Given that 1. we have to support CI for arbitrary external contributors, and 2. it is easy to craft a malicious PR that exfiltrates secrets during a CI build any test that runs under CI must be able to do so without any injected secrets. This means that several of the test we currently run under Drone will not be run on GCB, at least as part of the regular CI. The plan is to create a separate task that periodically runs tests that require external credentials (e.g. Kube tests, various backend data stores, etc.) in a more secure way and report failures asynchronously. And while these tests will not run under CI, the should still be built under CI so that required changes are caught during review. Note: this backport includes various data race fixes added separately in the master branch: See-Also: #8643 See-Also: #8888 See-Also: #9117 See-Also: #9119
tcsc
added a commit
that referenced
this pull request
Dec 16, 2021
Part of this change is implementing a "no secrets" policy for CI. Given that
we have to support CI for arbitrary external contributors, and
it is easy to craft a malicious PR that exfiltrates secrets during a CI build
any test that runs under CI must be able to do so without any injected secrets.
This means that several of the test we currently run under Drone will not be run
on GCB, at least as part of the regular CI. The plan is to create a separate task
that periodically runs tests that require external credentials (e.g. Kube tests,
various backend data stores, etc.) in a more secure way and report failures
asynchronously. And while these tests will not run under CI, the should still be
built under CI so that required changes are caught during review.
See-Also: #8608
See-Also: #8643
See-Also: #8888
See-Also: #9117
See-Also: #9119
Closed
|
I may still see this fails, or is this a different failure @tcsc ? (after some digging. i think just v8 missing this fix: 5e0c8c9) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There is an intermittent issue where test will fail due to a non-empty
test directory at the end of a test. Temp dirs created by the
testingpackage are not required to be empty at cleanup time, so something has
gone awry.
After looking at the code, it seems that an some Auth server instances
created as fixtures for several tests are never explicitly closed and
cleaned up when the test finishes. This leads to a hypothesis that
something in the audit writer is writing to the temp dir while it is in
the process of being cleaned up.
This patch add automatic cleanup to the Auth server test fixture, which
executes before the temp directory cleanup. The intention is to stop
any writes to the temp dir at the end of the test, so that it can be
cleaned up without error.
Also marks some not-implemented tests skipped rather than passed, to
increase visibility.