Test Matrix
- Jeanne Greulich
- Liz Nemsick
- Trevor Vaughan
- Judith Johnson
Table of Contents
Puppet Versions Testing
Puppet version for GitLab and TravisCI
Puppet modules will be tested in GitLab and TravisCI with the following versions:
| Release | Puppet | Ruby | Notes |
|---|---|---|---|
| PE 2017.2 | 4.10.* | 2.1.9 | SIMP 6.1.0, SIMP 6.2.0 also tested on this version
|
| PE 2018.1.4 | 5.5.6 | 2.4.4 | |
| 5.5.7 | 2.4.4 | Version to be included in SIMP 6.3.0 ISOs |
Puppet version for simp-core (integration) and SIMP ISO testing
| Release | Puppet | Ruby | Notes |
|---|---|---|---|
| SIMP 6.3.0 | 5.5.7 | 2.4.4 | Version to be included in SIMP 6.3.0 ISOs |
OS Versions For Testing
- SIMP acceptance tests will be executed with the following OS versions:
- CentOS 7.5
- CentOS 6.10
- RedHat 7.5
- RedHat 6.10
- OracleLinux 7.5
- OracleLinux 6.10
- SIMP-6.3.0 ISOs for CentOS 7.5 and CentOS 6.10 will be built and tested.
- If licenses are available, SIMP-6.3.0 ISOs for RedHat 7.5 and RedHat 6.10 will be built and tested.
Tests - New/Changed Features
The tests in this section focus on new features or major, SIMP-wide changes.
Legend:
- Means this version needs to be tested
- This version does not need to be tested.
- Testing probably sufficient from other versions.
- Testing has failed.
- Testing completed and Passed.
blank - This test is not OS specific
| green | these test are automated |
|---|
| Component | Required Tests | Test | EL7 | EL6 | OL7 | OL6 | RH7 | RH6 | Status | Notes | |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1 | simp-core | Verify Puppet File matches release versions | | | SIMP-5539 - Getting issue details... STATUS | This must be completed before any other tests are done | |||||
| 2 | Puppet 5/hiera 5 | 1 | For all core components, including simp-core:
| | | SIMP-5529 SIMP-5585 - Getting issue details... STATUS |
| ||||
| 3 | Puppet 5/Hiera 5 | 2 | For all core components: verify full matrix acceptance tests pass. |
| | | | | | SIMP-5537 - Getting issue details... STATUS |
|
| 4 | simp-core | Verify puppetfile and dependencies.yaml by building ISO | | | | | | | SIMP-5540 - Getting issue details... STATUS |
| |
| 5 | simp-packer | 4 | Verify installation from ISO passes using simp-packer on ISO, both FIPS and no-FIPS, encrypted+FIPS | | | | | | | SIMP-5548 - Getting issue details... STATUS |
|
| 6 | Verify installation from RPM. This simp-core test also verifies
| | | | | | | SIMP-5598 - Getting issue details... STATUS | This is a normal release testing activity. In simp-core run using the tar file generated during ISO build set BEAKER_release_tarball=<location of the tarball for el7>
set BEAKER_release_tarball=<location of the tarball for el6>
| ||
| 7 | simp-core | Verify installation from RPM in FIPS This test also verifies
| | | | | | | SIMP-5598 - Getting issue details... STATUS | This is a normal release testing activity. For all tests set BEAKER_fips=yes set BEAKER_release_tarball=<location of the tarball for el7>
set BEAKER_release_tarball=<location of the tarball for el6>
| |
| 8 | installation | Verify installation from RPM for PE | | | | | | | SIMP-5535 - Getting issue details... STATUS | RedHat built on AWS? simp cli was updated make sure you test out simp cli | |
| 9 | tlog, mate, x2go, ima | 5 | Verify packages.yaml files have all dependencies for new modules by installing these from a system built by an ISO with no internet connectivity. | | | | | | | SIMP-5549 - Getting issue details... STATUS | RedHat built on AWS? |
| 10 | tpm2 | 5 | Verify packages.yaml files have all dependencies by installing these from a system built by an ISO with no internet connectivity. | | | | | | | SIMP-5550 - Getting issue details... STATUS | RedHat on AWS? These modules don't work in 6 or on OracleLinux. I think testing in CentOS 7 is good enough. |
| 11 | compliance_markup | Verify turning on compliance enforcement works. Review compliance report. | | | | | SIMP-5601 - Getting issue details... STATUS | This addresses STIG updates and Compliance Markup modules changes. Should we run an oscap scan as well? | |||
| 12 | simp-core | Create and verify Changelog.rst | | | SIMP-5578 - Getting issue details... STATUS | ||||||
| 13 | simp-doc, | 'Upgrading SIMP' has an entry for the latest version and is correct | | | SIMP-5543 - Getting issue details... STATUS | See 6.3 Planning page in Jira | |||||
| 14 | simp-doc, tpm2, ima | Review TPM documentation to make sure it is up to date | | | SIMP-5224 - Getting issue details... STATUS | TPM and IMA were separated out for this release. | |||||
| 15 | simp-doc, tlog | Review Session Auditing and links in read the docs to make sure TLOG documentation is correct. | | | SIMP-5224 - Getting issue details... STATUS | TLOG was added for this release | |||||
| 16 | simp-doc, x2go, mate | Review How to manage Workstation entry for updates for mate and x2go | | | SIMP-5224 - Getting issue details... STATUS | X2go, Mate were added for this release | |||||
| 17 | simp-doc, hiera 5 and puppet 5 upgrade | Review docs to make sure the hiera data directory has been updated to reflect changes. And that the version of puppet currently supported has been updated to puppet 5. | | | SIMP-5224 - Getting issue details... STATUS | hiera and puppet updated to version 5. | |||||
| 18 | simp-integration_test | SIMP server upgrade from RPM using the upgrade instructions. Document any steps that are needed outside the ordinary upgrade. Then, if there are additional steps, have someone else use the docs to do the upgrade to verify. |
| |
| |
| | SIMP-5383 - Getting issue details... STATUS | See simp-integration_test for automated upgrade test. this should be done for servers in both FIPS and NOFIPS mode. A straight `yum update` following the General Upgrade instructions for RPM-based SIMP installations will kill puppetserver and prevent it from restarting. (This is SIMP-5021 - Getting issue details... STATUS + 6.1.0) The fix is procedural: upgrade steps (and fixes) in "Upgrading from SIMP-6.1.0 to SIMP-6.2.0" procedure Pay attention to Auditd upgrade because it is a major version upgrade. | |
| 19 | PE | Upgrade PE SIMP server from 6.2 puppet 4 to puppet 5 (PE 2018.1) and simp 6.3 |
| | | | SIMP-5536 - Getting issue details... STATUS | Not sure what OS it is most important to test this on. | |||
| 20 | RPMs and Released Modules | | | SIMP-5577 - Getting issue details... STATUS | Or "drink your own home brew", which ever you prefer.
| ||||||
| 21 | Final RPM testing | RPMs have been uploaded to packagecloud | Run the simp-core install_from_rpm test and versify that it passes. This will pull the packages from package.io and do an install. | | | | | SIMP-5534 - Getting issue details... STATUS | in simp-core run
and then do it all again with BEAKER_fips=yes | ||
| 22 | Puppet Forge Testing | After modules have been tag with an annotated tag | run the simp-core test install_from_core_module test to test the modules pushed to Puppet Forge | | | |
| SIMP-5538 - Getting issue details... STATUS | in simp-core run
and then do it all again with BEAKER_fips=yes |
Tests - Regression/Integration Testing
The tests in this section are regression tests to ensure unmodified capabilities still function. These tests should use the packer boxes created in the New/Changed Feature tests, were applicable. Note that most of these test should eventually be automated by simp-packer, simp-integration_test, or simp-core tests.
| Test | EL6 | EL7 | Status | Notes | |
|---|---|---|---|---|---|
| 1 | Verify non-standard BIOS boot options from the ISO:
| SIMP-5551 - Getting issue details... STATUS | (SIMP, FIPS and Encryption are all tested by Packer.) | ||
| 2 | Verify all boot Options in UEFI mode from ISO:
| SIMP-5587 - Getting issue details... STATUS | |||
| 3 | PXE Boot Testing BIOS | SIMP-5579 - Getting issue details... STATUS | |||
| 4 | PXE Boot Testing UEFI | SIMP-5580 - Getting issue details... STATUS | |||
| 5 | Bootstrap simp-lite scenario | SIMP-5588 - Getting issue details... STATUS | |||
| 6 | Verify simp-lite operations:
| SIMP-5586 - Getting issue details... STATUS | |||
| 7 | Bootstrap poss scenario | SIMP-5588 - Getting issue details... STATUS | |||
| 8 | Bootstrap run-once scenario | SIMP-5588 - Getting issue details... STATUS | |||
| 9 | Verify ability to switch FIPS from on to off | SIMP-5605 - Getting issue details... STATUS | Switching from off to on is known to have problems because of ciphers. | ||
| 10 | Verify ability to turn on and off auditing and selinux | SIMP-5605 - Getting issue details... STATUS | |||
| 11 | General Review of documentation:
| ||||
| 12 | simp-utils: executables that are not tested otherwise work as advertised
| SIMP-5553 - Getting issue details... STATUS | The following have acceptance tests that simply need to be executed:
|