The SecureDrop project includes Molecule scenarios for developing and testing against multi-server configurations, including a scenario to simulate the process of upgrading an existing system. This document explains how to work with this scenario to test features that make potentially release-breaking changes such as database schema updates.
The Molecule upgrade scenario sets up a predefined staging Securedrop virtual environment using Vagrant boxes built with the latest application release. It also creates a virtualized APT repository, and modifies the SecureDrop environment to use this APT repository instead of the FPF main repo at https://apt.freedom.press/.
You can use this scenario to test the upgrade process, using using either locally-built .debs or packages from the FPF test repo at https://apt-test.freedom.press/. Both options are described below.
Note
The upgrade scenario uses QEMU/KVM via Vagrant's libvirt provider. If you haven't already done so, you'll need to set up the libvirt provider before proceeding. For more information, see libvirt_provider.
First, build the app code packages and create the environment:
make build-debs
make upgrade-startThe playbook will return the source interface Onion address. You can use this to check the application version displayed in the source interface footer. Alternatively, you can log into the Application Server VM and check the deployed package version directly:
molecule login -s upgrade -h app-stagingFrom the Application Server:
apt-cache-policy securedrop-configThe installed package version should match the latest release version.
To perform an upgrade using the virtualized APT repository, log out of the Application Server and run the Molecule side-effect action:
make upgrade-test-localThis will upgrade the SecureDrop packages on the Application and Monitor Servers, using your locally-built packages and apt VM instead of the FPF production apt repository.
You can verify that the application version has changed either by checking the source interface's footer or directly on the Application Server as described above.
You can use the upgrade scenario to test upgrades using official release candidate packages from the FPF test APT repository. First, create the environment:
make upgrade-start-qaThen, log into the Application Server:
molecule login -s upgrade -h app-stagingFrom the Application Server:
sudo apt-get update
apt-cache policy securedrop-configThe installed package version should match the current release version. To install the latest packages from the apt-test proxy:
make upgrade-test-qaLog back into the Application Server, and repeat the previous commands:
sudo apt-get update
apt-cache policy securedrop-configNavigate to the Source Interface URL again, and confirm you see the upgraded version in the footer. Then proceed with testing the new version.
When a new version of SecureDrop is released, we must create and upload new VM images, to enable testing against that base version in future upgrade testing. The procedure is as follows:
make cleanto remove any previous artifacts (which would also be pushed)git checkout <version>make vagrant-packagecd molecule/vagrant-packager && ./push.ymlto upload to S3- Commit the local changes to JSON files and open a PR.
Subsequent invocations of make upgrade-start will pull the latest version of the box.