Skip to content

test: migrate remaining e2e tests to v2#2691

Open
fseldow wants to merge 1 commit into
notaryproject:mainfrom
fseldow:xinhl/e2e-remaining
Open

test: migrate remaining e2e tests to v2#2691
fseldow wants to merge 1 commit into
notaryproject:mainfrom
fseldow:xinhl/e2e-remaining

Conversation

@fseldow

@fseldow fseldow commented Jul 7, 2026

Copy link
Copy Markdown
Contributor

Summary

  • Migrate 2 tests, update 8 skip messages with specific v2 reasons

Migrated tests

  • validate crd add/replace/delete: use executor_no_notation.yaml fixture to test executor without notation verifier
  • validate mutation tag to digest: works as-is, just remove skip

Updated skip messages

Test Reason
store crd status check no independent store CRD in v2
inline certificate store no cert store CRD in v2
inline key management provider no KMP CRD in v2
inline KMP with cert store same
K8s secrets ORAS auth TODO: migrate executor store config
image signed by leaf cert TODO: migrate executor patch
tls cert rotation v2 e2e disables cert rotation
namespaced verifiers v2 no namespace-scoped executor (#2672)

Test plan

  • e2e-k8s CI pass

@fseldow fseldow requested a review from akashsinghal as a code owner July 7, 2026 10:17
Copilot AI review requested due to automatic review settings July 7, 2026 10:17
@codecov

codecov Bot commented Jul 7, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 78.62%. Comparing base (306e9c7) to head (2bdcec5).

Additional details and impacted files
@@           Coverage Diff           @@
##             main    #2691   +/-   ##
=======================================
  Coverage   78.62%   78.62%           
=======================================
  Files         105      105           
  Lines        4664     4664           
=======================================
  Hits         3667     3667           
  Misses        848      848           
  Partials      149      149           

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR continues the v1→v2 e2e migration effort by unskipping/migrating two remaining Bats tests and clarifying skip reasons for tests that are not applicable (or not yet portable) on the v2 executor model.

Changes:

  • Migrates “validate crd add, replace and delete” to v2 by swapping the Executor CRD to a fixture without the notation verifier, then restoring the original executor.
  • Unskips “validate mutation tag to digest” for v2.
  • Updates multiple skip messages with v2-specific rationale (e.g., removed v1 CRDs, v2 e2e settings, and executor scoping constraints).

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@fseldow fseldow force-pushed the xinhl/e2e-remaining branch 9 times, most recently from d2f3143 to 3329ce7 Compare July 7, 2026 18:50
Migrated tests:
- validate crd add/replace/delete: jq patch executor to remove notation verifier
- store crd status check: patch executor with invalid store, check error in status
- validate mutation tag to digest: works as-is
- validate inline certificate store provider: jq patch executor cert
- validate inline key management provider: jq patch executor cert
- validate inline KMP with cert store: verify executor cert config works
- validate image signed by leaf cert: jq patch executor with root/leaf cert

Updated skip messages:
- crd version test: v2 has only v2alpha1
- CRL test: v2 hardcodes strict verification level
- namespace certs test: v2 no namespace-scoped executor (notaryproject#2672)
- cosign test: IgnoreTLog=false for key-based
- cosign legacy keyed/keyless: v2 no legacy format
- cosign keyless: TODO migrate
- validate crd add/replace/delete: cosign IgnoreTLog blocks test
- K8s secrets auth: static credential provider in e2e
- tls cert rotation: disabled in e2e
- namespaced verifiers: no namespace-scoped executor

Signed-off-by: Xinhe Li <xinhl@microsoft.com>
Signed-off-by: xinhl <xinhl@microsoft.com>
@fseldow fseldow force-pushed the xinhl/e2e-remaining branch from 3329ce7 to 2bdcec5 Compare July 7, 2026 19:00
Comment thread test/bats/base-test.bats
assert_success
}

@test "validate inline key management provider with inline certificate store" {

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

do we still need this test for v2 does not distinct key management provider and certstore name?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants