feat: install recipe sketch (#2029)

Author: danielorihuela

.github/workflows/component_onhost_e2e.yaml

@@ -53,7 +53,8 @@ jobs:
       - name: "Linux e2e ${{ matrix.group }}"
         run: |
           echo "${{ secrets.NR_SYSTEM_IDENTITY_PRIVATE_KEY }}" > /tmp/newrelic-agent-control-priv.key
-          sudo ${{ github.workspace }}/target/debug/e2e-runner ${{ matrix.group }} --deb-package-dir ./dist \
+          sudo ${{ github.workspace }}/target/debug/e2e-runner ${{ matrix.group }} \
+            --deb-package-dir ./dist \
             --nr-api-key "${{ secrets.E2E_API_KEY }}" \
             --nr-license-key "${{ secrets.E2E_LICENSE_KEY }}" \
             --nr-account-id "${{ secrets.E2E_ACCOUNT_ID }}" \
@@ -63,23 +64,34 @@ jobs:
             --agent-control-version "0.900.${{ github.run_id }}" \
             --recipes-repo-branch "main"
 
-
   on-host-windows-e2e:
-    name: "OnHost Windows E2E tests"
+    name: OnHost Windows E2E tests
     needs: [build-packages]
+    runs-on: windows-latest
     strategy:
       fail-fast: false
       matrix:
-        group: ["install"]
-
-    runs-on: windows-latest
+        group: [install]
     steps:
       - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
       - uses: ./.github/actions/install-rust-toolchain
       - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
         with:
           name: built-binaries-0.900.${{ github.run_id }}
           path: ./
-      - name: Windows e2e ${{ matrix.group }}
+      - name: Build e2e-runner binary
+        run: cargo build -p e2e-runner
+      - name: "Windows e2e ${{ matrix.group }}"
         shell: powershell
-        run: cargo run -p e2e-runner -- ${{ matrix.group }} --zip-package .\dist\newrelic-agent-control_0.900.${{ github.run_id }}_windows_amd64.zip
+        run: |
+          "${{ secrets.NR_SYSTEM_IDENTITY_PRIVATE_KEY }}" | Out-File -FilePath $env:TEMP\newrelic-agent-control-priv.key
+          & "${{ github.workspace }}\target\debug\e2e-runner.exe" ${{ matrix.group }} `
+            --artifacts-package-dir .\dist `
+            --nr-api-key "${{ secrets.E2E_API_KEY }}" `
+            --nr-license-key "${{ secrets.E2E_LICENSE_KEY }}" `
+            --nr-account-id "${{ secrets.E2E_ACCOUNT_ID }}" `
+            --nr-region "us" `
+            --system-identity-client-id "${{ secrets.NR_SYSTEM_IDENTITY_CLIENT_ID }}" `
+            --agent-control-private-key "$env:TEMP\newrelic-agent-control-priv.key" `
+            --agent-control-version "0.900.${{ github.run_id }}" `
+            --recipes-repo-branch "main"

test/e2e-runner/src/main.rs

@@ -39,7 +39,7 @@ enum LinuxScenarios {
 #[derive(Debug, clap::Subcommand)]
 enum WindowsScenarios {
     /// Simple installation of Agent Control on Windows
-    Install(windows::scenarios::installation::Args),
+    Install(windows::install::Args),
 }
 
 #[derive(Parser)]

test/e2e-runner/src/tools/logs.rs

@@ -1,5 +1,5 @@
 use std::fs;
-use tracing::{error, info};
+use tracing::{debug, error, info};
 
 use crate::tools::test::TestResult;
 
@@ -23,10 +23,15 @@ impl<'a> Drop for ShowLogsOnDrop<'a> {
 /// Shows logs from the specified path (supports glob patterns).
 pub fn show_logs(logs_path: &str) -> TestResult<()> {
     info!("Showing Agent Control logs");
+
     let pattern = format!("{}*", logs_path);
+    debug!("Listing log files with pattern: {}", pattern);
+
     let paths = glob::glob(&pattern).map_err(|e| format!("failed to list log files: {}", e))?;
+    debug!("Found log file entries: {:?}", paths);
 
     for entry in paths {
+        debug!("Processing log file entry {entry:?}");
         match entry {
             Ok(path) => {
                 let content = fs::read_to_string(&path)

test/e2e-runner/src/windows.rs

@@ -1,13 +1,13 @@
+pub mod install;
 pub mod scenarios;
 
-pub mod cleanup;
-pub mod health;
-pub mod install;
-pub mod powershell;
-pub mod service;
+mod cleanup;
+mod health;
+mod powershell;
+mod service;
 
-pub const DEFAULT_CONFIG_PATH: &str =
+const DEFAULT_CONFIG_PATH: &str =
     r"C:\Program Files\New Relic\newrelic-agent-control\local-data\agent-control\local_config.yaml";
 
-pub const DEFAULT_LOG_PATH: &str =
+const DEFAULT_LOG_PATH: &str =
     r"C:\ProgramData\New Relic\newrelic-agent-control\logs\newrelic-agent-control.log";

test/e2e-runner/src/windows/cleanup.rs

@@ -1,14 +1,25 @@
-use crate::tools::remove_dirs;
-
-use super::service;
+use crate::{tools::remove_dirs, windows::service};
 
 const AGENT_CONTROL_DIRS: &[&str] = &[
     r"C:\Program Files\New Relic\newrelic-agent-control\",
     r"C:\ProgramData\New Relic\newrelic-agent-control\",
 ];
 
-/// Cleans up the agent-control installation by stopping the service and removing directories.
-pub fn cleanup(service_name: &str) {
-    service::stop_service(service_name);
-    remove_dirs(AGENT_CONTROL_DIRS).expect("expected directories to be removed");
+pub struct CleanAcOnDrop<'a> {
+    service_name: &'a str,
+}
+
+impl<'a> From<&'a str> for CleanAcOnDrop<'a> {
+    fn from(value: &'a str) -> Self {
+        Self {
+            service_name: value,
+        }
+    }
+}
+
+impl<'a> Drop for CleanAcOnDrop<'a> {
+    fn drop(&mut self) {
+        service::stop_service(self.service_name);
+        remove_dirs(AGENT_CONTROL_DIRS).expect("expected directories to be removed");
+    }
 }

test/e2e-runner/src/windows/install.rs

@@ -1,63 +1,200 @@
-use crate::windows::powershell::exec_powershell_cmd;
-
-use super::powershell::exec_powershell_command;
-use std::path::Path;
-use std::process::Command;
-use tempfile::TempDir;
-use tracing::info;
-
-const INSTALL_SCRIPT_NAME: &str = "install.ps1";
-
-/// Extracts a zip file to a temporary directory using PowerShell's Expand-Archive, panics on failure.
-fn unzip_to_temp(zip_path: &str) -> TempDir {
-    // Create a temporary directory
-    let temp_dir =
-        TempDir::with_prefix("agent-control-install-").expect("could not create temp dir");
-
-    // Use PowerShell's Expand-Archive to extract the zip
-    let cmd = format!(
-        "Expand-Archive -Path '{}' -DestinationPath '{}' -Force",
-        zip_path,
-        temp_dir.path().display()
-    );
+use std::{fs, path::PathBuf, process::Command, time::Duration};
+
+use tempfile::tempdir;
+use tracing::{debug, info};
+
+use crate::{
+    tools::test::retry,
+    windows::powershell::{exec_powershell_cmd, exec_powershell_command},
+};
+
+/// Arguments to be set for every test that needs Agent Control installation
+#[derive(Default, Debug, clap::Parser)]
+pub struct Args {
+    /// Folder where zips are stored
+    #[arg(long)]
+    pub artifacts_package_dir: Option<PathBuf>,
+
+    /// Recipes repository
+    #[arg(
+        long,
+        default_value = "https://github.com/newrelic/open-install-library.git"
+    )]
+    pub recipes_repo: String,
+
+    /// Recipes repository branch
+    #[arg(long, default_value = "main")]
+    pub recipes_repo_branch: String,
+
+    /// New Relic license key for agent authentication
+    #[arg(long)]
+    pub nr_license_key: String,
+
+    /// New Relic API key for programmatic access to New Relic services
+    #[arg(long)]
+    pub nr_api_key: String,
+
+    /// New Relic account identifier for associating the agent
+    #[arg(long)]
+    pub nr_account_id: String,
+
+    /// System Identity client id
+    #[arg(long)]
+    pub system_identity_client_id: String,
+
+    /// System Identity private key
+    #[arg(long)]
+    pub agent_control_private_key: String,
 
-    exec_powershell_command(&cmd).unwrap_or_else(|err| panic!("could not unzip to temp: {err}"));
+    /// Specific version of agent control to install
+    #[arg(long)]
+    pub agent_control_version: String,
 
-    temp_dir
+    /// New Relic region
+    #[arg(long, default_value = "US")]
+    pub nr_region: String,
 }
 
-/// Installs agent-control using the install.ps1 PowerShell script, panics on failure
-pub fn install_agent_control(package_path: &str, service_overwrite: bool) {
-    info!("Installing Agent Control");
-    // Check if the package file exists
-    if !Path::new(package_path).exists() {
-        panic!("package file not found at {:?}", package_path);
+/// Data to set up installation
+pub struct RecipeData {
+    pub args: Args,
+    pub fleet_id: String,
+    pub fleet_enabled: String,
+    pub recipe_list: String,
+    pub proxy_url: String,
+}
+
+impl Default for RecipeData {
+    fn default() -> Self {
+        Self {
+            args: Default::default(),
+            fleet_id: Default::default(),
+            proxy_url: Default::default(),
+            fleet_enabled: "false".to_string(),
+            recipe_list: "agent-control".to_string(),
+        }
     }
+}
+
+/// Installs Agent Control using the recipe as configured in the provided [RecipeData].
+///
+///
+pub fn install_agent_control_from_recipe(data: &RecipeData) {
+    info!("Installing Agent Control from recipe");
+
+    // Obtain recipes repository
+    let recipes_dir = tempdir().expect("failure creating temp dir");
+    let recipes_dir_path = recipes_dir.path().display();
+    let recipes_repo = data.args.recipes_repo.clone();
+    let recipes_branch = data.args.recipes_repo_branch.clone();
+    let git_command = format!(
+        r"git clone {recipes_repo} --single-branch --branch {recipes_branch} {recipes_dir_path}"
+    );
+    info!(%recipes_repo, %recipes_branch, "Checking out recipes repo");
+    debug!("Running command: \n{git_command}");
+    let _ = exec_powershell_command(&git_command)
+        .unwrap_or_else(|err| panic!("could not checkout recipes repository: {err}"));
+
+    let install_newrelic_cli_command = r#"
+(New-Object System.Net.WebClient).DownloadFile("https://github.com/newrelic/newrelic-cli/releases/latest/download/NewRelicCLIInstaller.msi", "$env:TEMP\NewRelicCLIInstaller.msi"); `
+msiexec.exe /qn /i "$env:TEMP\NewRelicCLIInstaller.msi" | Out-Null;
+"#;
+    info!("Installing newrelic cli",);
+    debug!("Running command: \n{install_newrelic_cli_command}");
+    let _ = exec_powershell_command(install_newrelic_cli_command)
+        .unwrap_or_else(|err| panic!("could not install New Relic CLI: {err}"));
 
-    // Extract the zip file to a temporary directory
-    let temp_dir = unzip_to_temp(package_path);
+    // By default, the windows recipe will download the zip file from https://download.newrelic.com and put it
+    // in "$env:TEMP\newrelic-agent-control-{version}.zip". If the zip file already exists, the recipe will skip the
+    // download. We can take advantage of this behavior by placing our zip file in the expected location.
+    // That way we avoid trying to download the artifact from the wrong place.
+    if let Some(path) = &data.args.artifacts_package_dir {
+        info!(
+            "Using local artifacts package directory: {}",
+            path.display()
+        );
 
-    let install_script = temp_dir.path().join(INSTALL_SCRIPT_NAME);
+        let zip_name = PathBuf::from(path).join(format!(
+            "newrelic-agent-control_{}_windows_amd64.zip",
+            data.args.agent_control_version
+        ));
+        let extract_path = format!(
+            "$env:TEMP/newrelic-agent-control-{}.zip",
+            data.args.agent_control_version
+        );
 
-    // Build PowerShell command arguments
-    let mut args = vec![
-        "-ExecutionPolicy".to_string(),
-        "Bypass".to_string(),
-        "-File".to_string(),
-        install_script.to_string_lossy().to_string(),
-    ];
-    if service_overwrite {
-        args.push("-ServiceOverwrite".to_string());
+        let copy_zip_command = format!("cp {} {}", zip_name.display(), extract_path);
+        info!("Copying zip file");
+        debug!("Running command: \n{copy_zip_command}");
+        let _ = exec_powershell_command(&copy_zip_command)
+            .unwrap_or_else(|err| panic!("could not copy zip: {err}"));
     }
 
-    // Execute PowerShell command
-    let mut cmd = Command::new("powershell.exe");
-    let cmd = cmd.args(&args).current_dir(temp_dir.path());
+    // Install agent control through recipe
+    // We need to use 2>&1 to redirect stderr to stdout for debugging.
+    // Otherwise, newrelic cli won't show any error messages.
+    let install_command = format!(
+        r#"
+$env:NEW_RELIC_CLI_SKIP_CORE='1'; `
+$env:NEW_RELIC_LICENSE_KEY='{}'; `
+$env:NEW_RELIC_API_KEY='{}'; `
+$env:NEW_RELIC_ACCOUNT_ID='{}'; `
+$env:NEW_RELIC_AUTH_PROVISIONED_CLIENT_ID='{}'; `
+$env:NEW_RELIC_AUTH_PRIVATE_KEY_PATH='{}'; `
+$env:NEW_RELIC_AGENT_VERSION='{}'; `
+$env:NEW_RELIC_REGION='{}'; `
+$env:NR_CLI_FLEET_ID='{}'; `
+$env:NEW_RELIC_AGENT_CONTROL_FLEET_ENABLED='{}'; `
+$env:NEW_RELIC_AGENT_CONTROL='true'; `
+$env:NEW_RELIC_AGENT_CONTROL_PROXY_URL='{}'; `
+$env:HTTPS_PROXY='{}'; `
+$env:NEW_RELIC_AGENT_CONTROL_SKIP_BINARY_SIGNATURE_VALIDATION='true'; `
+& "C:\Program Files\New Relic\New Relic CLI\newrelic.exe" install `
+-y `
+--localRecipes {} `
+-n {} `
+--debug
+"#,
+        data.args.nr_license_key,
+        data.args.nr_api_key,
+        data.args.nr_account_id,
+        data.args.system_identity_client_id,
+        data.args.agent_control_private_key,
+        data.args.agent_control_version,
+        data.args.nr_region,
+        data.fleet_id,
+        data.fleet_enabled,
+        data.proxy_url,
+        data.proxy_url,
+        recipes_dir_path,
+        data.recipe_list,
+    );
+
+    // Create a temporary .ps1 file for the installation command
+    //
+    // There's an option that allows running commands directly. That is "-Command". The
+    // issue with that is that "-ExecutionPolicy" won't bypass all the checks. It seems
+    // to only work properly using a ps1 script. We are forced to create a temporary script file.
+    info!("Creating install script");
+    debug!("Install script content: \n{install_command}");
+    let script_dir = tempdir().expect("failed to create temp dir for script");
+    let script_path = script_dir.path().join("install_command.ps1");
+    fs::write(&script_path, &install_command)
+        .unwrap_or_else(|err| panic!("failed to write install script: {err}"));
+
+    info!("Executing install script to install Agent Control through the recipe");
+    let output = retry(3, Duration::from_secs(30), "recipe installation", || {
+        let mut cmd = Command::new("powershell.exe");
+        let cmd = cmd
+            .current_dir(script_dir.path())
+            .arg("-ExecutionPolicy")
+            .arg("Bypass")
+            .arg("-File")
+            .arg(&script_path);
 
-    let output = exec_powershell_cmd(cmd).unwrap_or_else(|err| {
-        panic!("Failure executing ps1 installation script: {err}");
-    });
+        exec_powershell_cmd(cmd)
+    })
+    .unwrap_or_else(|err| panic!("failure executing recipe after retries: {err}"));
 
-    info!("Installation completed successfully");
-    info!("---\n{output}\n---");
+    debug!("Output:\n{output}");
 }

test/e2e-runner/src/windows/powershell.rs

@@ -21,5 +21,7 @@ pub fn exec_powershell_cmd(cmd: &mut Command) -> TestResult<String> {
         return Err(format!("command failed\nStdout: {stdout}\nStderr: {stderr}").into());
     }
 
-    Ok(stdout)
+    Ok(format!(
+        "command\n{cmd:?}\nsuccess\nStdout: {stdout}\nStderr: {stderr}"
+    ))
 }