add docker-compose logs

fix mypy
use slightly better name
2022-10-19 19:08:43 -07:00 · 2022-10-19 19:04:09 -07:00 · 2022-10-19 18:59:39 -07:00 · 2022-10-19 18:47:44 -07:00
4 changed files with 37 additions and 15 deletions
--- a/certbot-ci/certbot_integration_tests/nginx_tests/context.py
+++ b/certbot-ci/certbot_integration_tests/nginx_tests/context.py
@@ -9,6 +9,7 @@ import pytest
 from certbot_integration_tests.certbot_tests import context as certbot_context
 from certbot_integration_tests.nginx_tests import nginx_config as config
 from certbot_integration_tests.utils import certbot_call
+from certbot_integration_tests.utils import constants
 from certbot_integration_tests.utils import misc


@@ -65,4 +66,4 @@ class IntegrationTestsContext(certbot_context.IntegrationTestsContext):
    def _stop_nginx(self) -> None:
        assert self.process.poll() is None
        self.process.terminate()
-        self.process.wait()
+        self.process.wait(constants.MAX_SUBPROCESS_WAIT)
--- a/certbot-ci/certbot_integration_tests/utils/acme_server.py
+++ b/certbot-ci/certbot_integration_tests/utils/acme_server.py
@@ -18,6 +18,7 @@ from typing import Dict
 from typing import List
 from typing import Mapping
 from typing import Optional
+from typing import Tuple
 from typing import Type

 import requests
@@ -63,6 +64,7 @@ class ACMEServer:
        self._stdout = sys.stdout if stdout else open(os.devnull, 'w') # pylint: disable=consider-using-with
        self._dns_server = dns_server
        self._http_01_port = http_01_port
+        self._cleanup_cmds_args: List[Tuple[Tuple[Any, ...], Dict[str, Any]]] = []
        if http_01_port != DEFAULT_HTTP_01_PORT:
            if self._acme_type != 'pebble' or self._proxy:
                raise ValueError('setting http_01_port is not currently supported '
@@ -94,17 +96,9 @@ class ACMEServer:
                    if e.errno != errno.ESRCH:
                        raise
            for process in self._processes:
-                process.wait()
+                process.wait(MAX_SUBPROCESS_WAIT)

-            if os.path.exists(os.path.join(self._workspace, 'boulder')):
-                # Boulder docker generates build artifacts owned by root with 0o744 permissions.
-                # If we started the acme server from a normal user that has access to the Docker
-                # daemon, this user will not be able to delete these artifacts from the host.
-                # We need to do it through a docker.
-                process = self._launch_process(['docker', 'run', '--rm', '-v',
-                                                '{0}:/workspace'.format(self._workspace),
-                                                'alpine', 'rm', '-rf', '/workspace/boulder'])
-                process.wait()
+            self._run_cleanup_cmds()
        finally:
            if os.path.exists(self._workspace):
                shutil.rmtree(self._workspace)
@@ -187,7 +181,7 @@ class ACMEServer:
        # Load Boulder from git, that includes a docker-compose.yml ready for production.
        process = self._launch_process(['git', 'clone', 'https://github.com/letsencrypt/boulder',
                                        '--single-branch', '--depth=1', instance_path])
-        process.wait()
+        process.wait(MAX_SUBPROCESS_WAIT)

        # Allow Boulder to ignore usual limit rate policies, useful for tests.
        os.rename(join(instance_path, 'test/rate-limit-policies-b.yml'),
@@ -202,9 +196,22 @@ class ACMEServer:
                with open(join(instance_path, 'test/config/va{}.json'.format(suffix)), 'w') as f:
                    f.write(json.dumps(config, indent=2, separators=(',', ': ')))

+        self._register_cleanup_cmd(['docker-compose', 'down'], cwd=instance_path)
+        # Boulder docker generates build artifacts owned by root with 0o744 permissions.
+        # If we started the acme server from a normal user that has access to the Docker
+        # daemon, this user will not be able to delete these artifacts from the host.
+        # We need to do it through a docker.
+        self._register_cleanup_cmd(['docker', 'run', '--rm', '-v',
+                                    '{0}:/workspace'.format(self._workspace), 'alpine', 'rm',
+                                    '-rf', '/workspace/boulder'])
        try:
            # Launch the Boulder server
-            self._launch_process(['docker-compose', 'up', '--force-recreate'], cwd=instance_path)
+            process = self._launch_process(['docker-compose', 'up', '--detach',
+                                            '--force-recreate'], cwd=instance_path)
+            process.wait(MAX_SUBPROCESS_WAIT)
+
+            if self._stdout == sys.stdout:
+                self._launch_process(['docker-compose', 'logs', '-f'], cwd=instance_path)

            # Wait for the ACME CA server to be up.
            print('=> Waiting for boulder instance to respond...')
@@ -224,7 +231,7 @@ class ACMEServer:
            process = self._launch_process([
                'docker-compose', 'logs'], cwd=instance_path, force_stderr=True
            )
-            process.wait()
+            process.wait(MAX_SUBPROCESS_WAIT)
            raise

        print('=> Finished boulder instance deployment.')
@@ -253,6 +260,17 @@ class ACMEServer:
        self._processes.append(process)
        return process

+    def _register_cleanup_cmd(self, *args: Any, **kwargs: Any) -> None:
+        self._cleanup_cmds_args.append((args, kwargs))
+
+    def _run_cleanup_cmds(self) -> None:
+        for args, kwargs in self._cleanup_cmds_args:
+            process = self._launch_process(*args, **kwargs)
+            process.wait(MAX_SUBPROCESS_WAIT)
+        # It's unlikely to matter, but let's clear the list of cleanup commands
+        # once they've been run.
+        self._cleanup_cmds_args.clear()
+

 def main() -> None:
    # pylint: disable=missing-function-docstring
--- a/certbot-ci/certbot_integration_tests/utils/constants.py
+++ b/certbot-ci/certbot_integration_tests/utils/constants.py
@@ -9,3 +9,4 @@ PEBBLE_MANAGEMENT_URL = 'https://localhost:15000'
 PEBBLE_CHALLTESTSRV_URL = f'http://localhost:{CHALLTESTSRV_PORT}'
 MOCK_OCSP_SERVER_PORT = 4002
 PEBBLE_ALTERNATE_ROOTS = 2
+MAX_SUBPROCESS_WAIT = 120
--- a/certbot-ci/certbot_integration_tests/utils/dns_server.py
+++ b/certbot-ci/certbot_integration_tests/utils/dns_server.py
@@ -17,6 +17,8 @@ from typing import Type

 from pkg_resources import resource_filename

+from certbot_integration_tests.utils import constants
+
 BIND_DOCKER_IMAGE = "internetsystemsconsortium/bind9:9.16"
 BIND_BIND_ADDRESS = ("127.0.0.1", 45953)

@@ -67,7 +69,7 @@ class DNSServer:
        if self.process:
            try:
                self.process.terminate()
-                self.process.wait()
+                self.process.wait(constants.MAX_SUBPROCESS_WAIT)
            except BaseException as e:
                print("BIND9 did not stop cleanly: {}".format(e), file=sys.stderr)
Author	SHA1	Message	Date
Brad Warren	fc4f907112	add docker-compose logs	2022-10-19 19:08:43 -07:00
Brad Warren	5b09327b36	fix mypy	2022-10-19 19:04:09 -07:00
Brad Warren	b55995856d	use slightly better name	2022-10-19 18:59:39 -07:00
Brad Warren	c042af22f5	refactor boulder shutdown	2022-10-19 18:47:44 -07:00