github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-25 04:33:26 +00:00
Code Issues Projects Releases Wiki Activity

Merge pull request #100859 from lack/relax_mount_propagation_e2e_test

Browse Source 
Position e2e Mount Propagation test to be kubelet-specific
This commit is contained in:
Kubernetes Prow Robot 2021-05-18 09:44:49 -07:00 committed by GitHub
commit 1bd66f0301
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 25 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

35
test/e2e/node/mount_propagation.go
View File

@ -18,6 +18,7 @@ package node
import (
"fmt"
"strings"
v1 "k8s.io/api/core/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@ -79,7 +80,7 @@ func preparePod(name string, node *v1.Node, propagation *v1.MountPropagationMode
var _ = SIGDescribe("Mount propagation", func() {
f := framework.NewDefaultFramework("mount-propagation")
ginkgo.It("should propagate mounts to the host", func() {
ginkgo.It("should propagate mounts within defined scopes", func() {
// This test runs two pods: master and slave with respective mount
// propagation on common /var/lib/kubelet/XXXX directory. Both mount a
// tmpfs to a subdirectory there. We check that these mounts are
@ -180,15 +181,29 @@ var _ = SIGDescribe("Mount propagation", func() {
}
}
}
// Check that the mounts are/are not propagated to the host.
// Host can see mount from master
cmd = fmt.Sprintf("test `cat %q/master/file` = master", hostDir)
err = hostExec.IssueCommand(cmd, node)
framework.ExpectNoError(err, "host should see mount from master")
// Host can't see mount from slave
cmd = fmt.Sprintf("test ! -e %q/slave/file", hostDir)
err = hostExec.IssueCommand(cmd, node)
framework.ExpectNoError(err, "host shouldn't see mount from slave")
// Find the kubelet PID to ensure we're working with the kubelet's mount namespace
cmd = "pidof kubelet"
kubeletPid, err := hostExec.IssueCommandWithResult(cmd, node)
framework.ExpectNoError(err, "Checking kubelet pid")
kubeletPid = strings.TrimSuffix(kubeletPid, "\n")
framework.ExpectEqual(strings.Count(kubeletPid, " "), 0, "kubelet should only have a single PID in the system (pidof returned %q)", kubeletPid)
enterKubeletMountNS := fmt.Sprintf("nsenter -t %s -m", kubeletPid)
// Check that the master and host mounts are propagated to the container runtime's mount namespace
for _, mountName := range []string{"host", master.Name} {
cmd := fmt.Sprintf("%s cat \"%s/%s/file\"", enterKubeletMountNS, hostDir, mountName)
output, err := hostExec.IssueCommandWithResult(cmd, node)
framework.ExpectNoError(err, "host container namespace should see mount from %s: %s", mountName, output)
output = strings.TrimSuffix(output, "\n")
framework.ExpectEqual(output, mountName, "host container namespace should see mount contents from %s", mountName)
}
// Check that the slave, private, and default mounts are not propagated to the container runtime's mount namespace
for _, podName := range []string{slave.Name, private.Name, defaultPropagation.Name} {
cmd := fmt.Sprintf("%s test ! -e \"%s/%s/file\"", enterKubeletMountNS, hostDir, podName)
output, err := hostExec.IssueCommandWithResult(cmd, node)
framework.ExpectNoError(err, "host container namespace shouldn't see mount from %s: %s", podName, output)
}
})
})