Various tmt + testing improvements

[cgwalters]

See individual patches.

[gemini-code-assist]

Code Review

This pull request introduces two valuable cleanups. First, it refactors the tmt test execution to directly discover and run tests instead of plans, which simplifies the configuration and removes duplication. This is a great improvement for maintainability. Second, it adds a command to show the tmt report on failure, which will significantly aid in debugging failing tests. I've noted a few minor inconsistencies in the updated logging and error messages where 'plan' was not fully replaced with 'test'. Please see my specific comments for details.

[henrywang]

The failure comes from test-26-examples-build in aarch64. This test has not been included into tmt plan before, so it only runs on github runner, but not on packit. I'm working on it to fix the issue.

[jeckersb]

xtask: Run tmt report on failure

Why tmt doesn't do this by default, I have no idea. It's also baffling that it takes three levels of verbose i.e. -vvv to get the actual test error.

This tmt behavior also drives me crazy. Glad to see this change 👍

[cgwalters]

Right though we're going to need the same fix in Dockerfile.cfsuki. Which I think again is a driving use case for having a higher level wrapper for this.

[cgwalters]

Strange, I don't understand why the soft reboot test is failing with testing-farm here but works in previous runs.

[henrywang]

Strange, I don't understand why the soft reboot test is failing with testing-farm here but works in previous runs.

Already worked on it. Not figure out the root cause in TF. Will debug it in pure TF to see what happens.

[cgwalters]

Wait a minute...does testing-farm+tmt run all tests from a single plan on the same provisioned environment? It's sure looking like that's the case, see e.g. this log from the run here.

It's quite impressive actually that it's just that test that fails because some of these tests are going to leak state.

Yeah this seems to be the case. OK so this PR needs a rework.

[cgwalters]

because some of these tests are going to leak state.

(Of course, we could optimize this if we relied on a factory reset; I'm sure we could do that for most tests)

[cgwalters]

I've come to the reluctant conclusion there's no sane option to fix the "triple test definition" problem we have other than going to generating the tmt stuff. Working on that.

[cgwalters]

One thing I will say is I am so glad that AI exists to learn things like fmf for me

[cgwalters]

/gemini review

[gemini-code-assist]

Code Review

This pull request introduces significant improvements to the testing infrastructure, primarily by refactoring the tmt test execution into a dedicated xtask module. The changes make the test setup more robust and extensible, for example by adding support for synthetic upgrade tests.

My review focuses on a few key areas:

• A critical issue in the newly added tmt.rs file where an outdated rand crate API is used, which will prevent compilation.
• A couple of medium-severity suggestions to improve maintainability and clarity in the new test scripts and xtask code. One is about an inconsistency in a Dockerfile, and the other suggests refactoring a large loop for better readability and error handling.

Overall, the changes are a great step forward for the project's testing capabilities. Addressing the identified issues will make the new testing code even better.

[gemini-code-assist]

The rand::rng() function and random_range method are from an older version of the rand crate. With rand version 0.9+, you should use rand::thread_rng() to get a thread-local random number generator, and the gen_range() method to generate a value in a given range. This change is necessary for the code to compile and aligns with current best practices for the rand crate.

Suggested change

	fn generate_random_suffix() -> String {
	let mut rng = rand::rng();
	const CHARSET: &[u8] = b"abcdefghijklmnopqrstuvwxyz0123456789";
	(0..8)
	.map(|_| {
	let idx = rng.random_range(0..CHARSET.len());
	CHARSET[idx] as char
	})
	.collect()
	}
	fn generate_random_suffix() -> String {
	let mut rng = rand::thread_rng();
	const CHARSET: &[u8] = b"abcdefghijklmnopqrstuvwxyz0123456789";
	(0..8)
	.map(|_| {
	let idx = rng.gen_range(0..CHARSET.len());
	CHARSET[idx] as char
	})
	.collect()
	}

[gemini-code-assist]

The logic inside this for loop is quite long and contains repetitive error handling boilerplate. This makes it hard to follow the main flow of setting up and running a test plan.

Consider refactoring the body of this loop into a separate function, for example run_plan_in_vm(sh: &Shell, plan: &str, ...) -> Result<String>.

This would allow you to:

1. Use the ? operator for cleaner error propagation within the new function.
2. Manage VM cleanup automatically using a guard struct that calls cleanup_vm() on Drop. This is a common pattern in Rust for resource management (RAII).

An example of a guard struct:

struct VmGuard<'a, 'b> {
    sh: &'a Shell,
    vm_name: &'b str,
    preserve: bool,
}

impl<'a, 'b> Drop for VmGuard<'a, 'b> {
    fn drop(&mut self) {
        if self.preserve {
            return;
        }
        if let Err(e) = cmd!(self.sh, "bcvk libvirt rm --stop --force {vm_name}", vm_name = self.vm_name)
            .ignore_stderr()
            .ignore_status()
            .run()
        {
            eprintln!("Warning: Failed to cleanup VM {}: {}", self.vm_name, e);
        }
    }
}

The main loop would then become much simpler, focusing on iterating through plans and reporting results.

[gemini-code-assist]

The Justfile's _build-upgrade-image rule overrides this FROM instruction with localhost/bootc-integration-bin using podman build --from. For clarity and to avoid confusion, this FROM instruction should match what is used in the Justfile, or use a generic placeholder like scratch to indicate it's always overridden.

FROM localhost/bootc-integration-bin

[cgwalters]

    content: /bin/sh: error while loading shared libraries: /lib64/libc.so.6: cannot apply additional memory protection after relocation: Permission denied

Hmm, I saw that once locally but it went away and I didn't debug. Dang it...I think this is a complicated side effect of us exporting the host container storage via virtiofs - basically the host selinux policy is tripping over the virtiofs_t type. Hum...I have an idea

[cgwalters]

Hum...I have an idea

➡️ bootc-dev/bcvk#159

Haven't reproduced the bug yet locally though but it at least doesn't hurt

[henrywang]

One failure comes from is_composefs. It should be $is_composefs.

[henrywang]

Another failure comes from podman build and podman run in image-pushpull-upgrade, logically-bound-switch, soft-reboot and custom-selinux-policy. I can reproduce this issue locally and the fix works in my local env.

diff --git i/tmt/tests/booted/test-image-pushpull-upgrade.nu w/tmt/tests/booted/test-image-pushpull-upgrade.nu
index 5367dcc8..eca7e9dd 100644
--- i/tmt/tests/booted/test-image-pushpull-upgrade.nu
+++ w/tmt/tests/booted/test-image-pushpull-upgrade.nu
@@ -49,9 +49,9 @@ COPY usr/ /usr/
 RUN echo test content > /usr/share/blah.txt
 " | save Dockerfile
     # Build it
-    podman build -t localhost/bootc-derived .
+    podman build --security-opt label=disable -t localhost/bootc-derived .
     # Just sanity check it
-    let v = podman run --rm localhost/bootc-derived cat /usr/share/blah.txt | str trim
+    let v = podman run --rm --security-opt label=disable localhost/bootc-derived cat /usr/share/blah.txt | str trim
     assert equal $v "test content"

     let orig_root_mtime = ls -Dl /ostree/bootc | get modified
@@ -158,7 +158,7 @@ COPY usr/ /usr/
 RUN echo test content2 > /usr/share/blah.txt
 " | save Dockerfile
     # Build it
-    podman build -t localhost/bootc-derived .
+    podman build --security-opt label=disable -t localhost/bootc-derived .
     let booted_digest = $booted.imageDigest
     print $"booted_digest = ($booted_digest)"
     # We should already be fetching updates from container storage

[cgwalters]

Thanks for picking this up! I hope that bootc-dev/bcvk#159 fixes the selinux issue. That said, I haven't yet reproduced the failure locally, and I'm not understanding why.

[henrywang]

cs10 flaky issue appears again. So my workaround sync and sleep does not work. Investigate this issue now, have to fix it.

[henrywang]

github test failures:

1. test-24-image-upgrade-reboot failed on CS9 only:

content: local image push + pull + upgrade
content: Applying localhost/bootc-integration-upgrade
content: error: Switching: Switching (ostree): Preparing import: Fetching manifest: failed to invoke method OpenImage: reference "[overlay@/var/lib/containers/storage+/run/containers/storage:overlay.mountopt=nodev,metacopy=on]localhost/bootc-integration-upgrade:latest" does not resolve to an image ID

2. test-26-examples-build failed on Fedora 42 only:

content: + ./bootc internals cfs --repo tmp/sysroot/composefs --insecure oci pull containers-storage:17c41e1c378b4616c1f17ccbffa0ec55ebed6a6e9ff384ad99f81c0b5dda1d0a
content: error: Unable to pull container image containers-storage:17c41e1c378b4616c1f17ccbffa0ec55ebed6a6e9ff384ad99f81c0b5dda1d0a: Failed to pull config Descriptor { media_type: ImageConfig, digest: Digest { algorithm: Sha256, value: "sha256:17c41e1c378b4616c1f17ccbffa0ec55ebed6a6e9ff384ad99f81c0b5dda1d0a", split: 6 }, size: 11833, urls: None, annotations: None, platform: None, artifact_type: None, data: None }: failed to invoke method GetBlob: open /run/host-container-storage/overlay/7f7c23aa7156afa1e272fdfa3506ba2f1947fc7224e6f3d377c99365d678c47e/diff/sysroot/ostree/repo/objects/68/7b65d1fc247722ad67c6fb16bbef684d45e1ec46c4d535ff0ba430a26bffda.file-xattrs-link: too many open files

Testing farm/Packit test failure:

1. test-23-usroverlay failed on CS10 only:

err: Call to Reboot failed: Access denied

[cgwalters]

localhost/bootc-integration-upgrade:latest" does not resolve to an image ID

Hmmm...it might be older podman doesn't handle additional image stores in the same way? I'll take a look.

Nah it's really simple, --bind-storage-ro doesn't work with C9S because it's missing https://www.freedesktop.org/software/systemd/man/latest/systemd-debug-generator.html#systemd.extra-unit.*

It's pretty tempting to try to "backfill" this...

too many open files

I think this one is a flake...but if it keeps happening we'll have to debug.

[cgwalters]

Nah it's really simple, --bind-storage-ro doesn't work with C9S because it's missing https://www.freedesktop.org/software/systemd/man/latest/systemd-debug-generator.html#systemd.extra-unit.*

I mean, the problem was simple to understand...the fix is definitely uglier and more involved as it requires knowledge about the target environment capabilities "up front" in our tests. Anyways, done now and tested both cases locally.