38/38 tests passing
Comprehensive coverage: Helm validation, pod lifecycle, networking, operations, HA, and performance benchmarks.
Kubernetes Compatibility and HA Testing
Helm charts and Kubernetes manifests are easy to write, hard to validate. We built a comprehensive test suite that runs against a live EKS cluster (K8s v1.32, 3 nodes) to verify everything from Helm lint to node drain recovery. 38 tests, all passing.
Test Infrastructure
Section titled “Test Infrastructure”The test cluster is intentionally lightweight — 3× t3.xlarge nodes at ~$0.62/hr:
nodeGroups: - name: compat-test instanceType: t3.xlarge desiredCapacity: 3 minSize: 3 maxSize: 3Test Helm values use an nginx stand-in (no hugepages, minimal resources) so the suite runs on any K8s cluster without special hardware requirements.
Compatibility Tests (27 tests)
Section titled “Compatibility Tests (27 tests)”Helm Validation
Section titled “Helm Validation”| Test | Verifies |
|---|---|
| Helm lint (default values) | Chart syntax and structure |
| Helm template (default) | Template rendering without errors |
| Helm template (cluster mode) | Cluster-specific templates render correctly |
| Helm template (Karpenter) | Karpenter node pool annotations |
Pod Lifecycle
Section titled “Pod Lifecycle”| Test | Verifies |
|---|---|
| Pod running | All pods reach Running state |
| Pod ready | Readiness probes pass |
| Probe configuration | Liveness/readiness probes configured correctly |
| Labels and selectors | Pod labels match service selectors |
| Environment variables | ConfigMap values injected correctly |
| preStop hook | Graceful shutdown hook present |
Networking
Section titled “Networking”| Test | Verifies |
|---|---|
| DNS resolution | Pod-to-pod DNS works |
| Pod-to-pod connectivity | Direct pod IP communication |
| Service routing | ClusterIP service routes to pods |
| Headless service | Returns individual pod IPs |
Operations
Section titled “Operations”| Test | Verifies |
|---|---|
| Rolling update | Zero-downtime image change |
| Rollback | helm rollback restores previous state |
| Scale up/down | Replica count changes work correctly |
| PDB eviction | PodDisruptionBudget blocks unsafe eviction |
HA + Performance Tests (11 tests)
Section titled “HA + Performance Tests (11 tests)”High Availability
Section titled “High Availability”| Test | Verifies |
|---|---|
| 3-pod/3-node spread | Anti-affinity distributes pods across nodes |
| Node drain recovery | Pod rescheduled after node drain |
| Concurrent drain PDB block | PDB prevents draining below minimum |
| Pod kill with service continuity | Service remains available during pod kill |
| Zero-downtime rolling update | No request failures during rollout |
| Scale 3→5→3 | Scale up and back down without disruption |
Performance Benchmarks
Section titled “Performance Benchmarks”| Test | Verifies |
|---|---|
| Pod startup latency | Time from creation to ready |
| Rolling update duration | Total time for 3-replica rollout |
| Network RTT | Pod-to-pod round-trip time |
| HTTP throughput | Requests per second through service |
| Service failover time | Time to route around a killed pod |
Key Performance Numbers
Section titled “Key Performance Numbers”| Metric | Value |
|---|---|
| Pod startup latency | 5.2s avg |
| Rolling update (3 replicas) | 30.4s |
| Node drain recovery | 1.1s |
| Pod kill recovery | 9.3s |
| Service failover | 7.3s |
Pod startup at 5.2s is fast for a database container. Rolling update at 30.4s for 3 replicas means ~10s per pod — dominated by readiness probe intervals. Node drain recovery at 1.1s shows the scheduler reacts quickly when a pod is evicted.
Issues Found
Section titled “Issues Found”The test suite uncovered three Helm chart issues:
-
Deployment + single PVC:
ReadWriteOncePVC shared by 3 replicas doesn’t work across nodes. Should be StatefulSet withvolumeClaimTemplates. -
HPA + spec.replicas conflict:
helm upgraderesets HPA-managed replica count. Fix: omitspec.replicaswhen HPA is enabled. -
Hugepages not cleanly overridable: Helm deep merge prevents removal of hugepages in test values. Needs explicit null handling.
Running the Suite
Section titled “Running the Suite”# One-shot: create cluster, run tests, tear down./tests/k8s/run_k8s_compat.sh
# Or manuallycd tests/k8spytest test_k8s_compat.py -v # 27 compatibility testspytest test_k8s_ha_perf.py -v # 11 HA + performance tests5.2s pod startup
Fast container startup. Rolling update completes in 30.4s for 3 replicas with zero downtime.
Real failure scenarios
Node drain, pod kill, concurrent eviction, scale up/down — tested against a live EKS cluster, not mocks.
3 issues found
PVC sharing, HPA conflict, hugepages override — caught by automated tests before reaching production.
Related: Helm Chart and Rolling Upgrades → · Cluster Integrity & Split-Brain → · Health Monitor Resilience →