Versions Compared

Old Version 1

changes.mady.by.user Oleg Berzin

Saved on

compared with

New Version Current

changes.mady.by.user Oleg Berzin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents
Introduction

This document describes tests that were performed for PCEI R4:

  1. PCEI Deployment Tests
  2. PCEI End-to-End Validation Tests
  3. BluVal Tests

Overall Test Architecture

Describe  the components of Test set up

Test Bed

Image RemovedImage Added

Test Framework

  1. PCEI Deployment Tests

Described in the PCEI R5 R6 Installation Guide

  1. PCEI End-to-End Validation Tests

Described in the PCEI R4 R6 End-to-End Validation Guide

  1. BluVal Tests

Described in the BluVal Test section of this document.

Traffic Generator

Not used.

For end-to-end functional verification, a simulated IoT Client was provided. Please refer to PCEI R5 R6 End-to-End Validation Guide.

Test API description

Test APIs NOT USED (except BluVal Robot)

Akraino common tests

NOT PERFORMED

The Test inputs

Test Procedure

Expected output

Test Results

Blueprint extension tests

The Test inputs

PCEI R5 End-to-End Validation Guide.
TestDescriptionResultReference
EMCO Deployment, CDS, CBAInstall EMCO OrchestratorPass

PCEI R5 R6 Installation Guide

Edge Cluster DeploymentDeploy Edge K8S ClustersPassPCEI R5 Installation Guide
EMCO UI AccessAccess EMCO UIPassPCEI R5 Installation Guide
Register Edge ClusterRegister Edge K8S Cluster with EMCOPass

PCEI R5 End-to-End Validation Guide.

Create Service/AppCreate Service/App in EMCO for Azure IoT Edge, AWS GGC and PCEI Location API AppAll PASS

PCEI R5 End-to-End Validation Guide.

Deploy Apps onto Edge ClustersDeploy Azure IoT Edge, AWS GGC and PCEI Location API Apps onto Edge K8S ClustersAll PASS

PCEI R5 End-to-End Validation Guide.

Verify Azure IoT Edge with IoT ClientStart IoT Client, send messages to Azure IoT Edge. Monitor IoT Edge receive and decode messagesPASS

PCEI R5 End-to-End Validation Guide.

Verify AWS GGC AppConfirm AWS GGC App registers with AWS IoT CoirePASS

PCEI R5 End-to-End Validation Guide.

Verify PCEI Location API AppConfirm PCEI Location API App is running and responding to requestsPASSPassPCEI R6 Installation Guide
EMCO UI AccessAccess EMCO UIPassPCEI R6 Installation Guide

Test Procedure

PCEI R5 R6 Installation Guide

PCEI R5 End-to-End Validation Guide.

Expected output

All tests pass

Test Results

Refer to sections of the following documents for detailed test results:

PCEI R5 R6 Installation Guide

PCEI R5 R6 End-to-End Validation Guide.

Feature Project Tests

NOT PERFORMED

The Test inputs

Test Procedure

Expected output

Test Results


BluVal Tests

The Test inputs

BluVal Test Environment setup according to:

Bluval User Guide

Test Procedure

  1. Deploy a Test VM
  2. Install Docker: https://docs.docker.com/engine/install/ubuntu/
  3. Clone BluVal Validation Framework into the Test VM:
  4. Copy SUT's .kube/config file and SSH key to the Test VM
  5. Configure validation environment:

...

Code Block
languagebash
# Create .netrc file
vi .netrc
machine nexus.akraino.org
login <LF ID>
password <Password>

# Archive log files
zip -r results.zip ./results

# Push logs to Nexus
NEXUS_PATH="/pcei/job/v2"
NEXUS_URL="https://nexus.akraino.org/"
/home/onaplab/.local/bin/lftools deploy nexus-zip $NEXUS_URL logs $NEXUS_PATH results.zip


Expected output

Test Results

https://nexus.akraino.org/content/sites/logs/pcei/job/v2/results/

Vuls

Image RemovedImage Added

CVEs Found:

CVECVSSURLException
CVE-2016-15859.8https://nvd.nist.gov/vuln/detail/CVE-2016-1585Requested by another BP
CVE-2017-183429.8https://nvd.nist.gov/vuln/detail/CVE-2017-18342Requested by another BP
CVE-2017-82839.8https://nvd.nist.gov/vuln/detail/CVE-2017-8283Requested by PCEI. Approved
CVE-2018-208399.8https://nvd.nist.gov/vuln/detail/CVE-2018-20839Requested by another BP
CVE-2019-170419.8https://nvd.nist.gov/vuln/detail/CVE-2019-17041Requested by another BP
CVE-2019-170429.8https://nvd.nist.gov/vuln/detail/CVE-2019-17042Requested by another BP
CVE-2019-198149.3https://nvd.nist.gov/vuln/detail/CVE-2019-19814Requested by PCEI. Approved
Lynis

Image RemovedImage Added

Fixes for Lynis:

...

sysctl -w net.ipv4.conf.all.accept_source_route=0

K8S Conformance

Image RemovedImage Added

Exception Requested:

Image RemovedImage Added

Kube-Hunter

Image RemovedImage Added

Vulnerabilities found

...

Code Block
languagebash
kubectl replace -f - <<EOF
apiVersion: v1
kind: ServiceAccount
metadata:
  name: default
  namespace: default
automountServiceAccountToken: false
EOF


Test Dashboards

Single pane view of how the test score looks like for the Blue print.

Test GroupTotal TestsPassFail
Blueprint Extension Tests990
Vuls110
Lynis110
K8S Conformance101
Kube-Hunter110



Additional Testing

None

Bottlenecks/Errata

Please refer to PCEI R5 R6 Release Notes