github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-23 11:50:44 +00:00
Code Issues Projects Releases Wiki Activity

Merge pull request #103472 from andrewsykim/deflake-quota-service-test

Browse Source 
test/integration/quota: deflake TestQuotaLimitService
This commit is contained in:
Kubernetes Prow Robot 2021-07-06 12:08:19 -07:00 committed by GitHub
commit cbba6e41cc
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 120 additions and 50 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

170
test/integration/quota/quota_test.go
View File

@ -18,6 +18,7 @@ package quota
import ( import (
"context" "context"
"errors"
"fmt" "fmt"
"net/http" "net/http"
"net/http/httptest" "net/http/httptest"
@ -25,6 +26,7 @@ import (
"time" "time"
v1 "k8s.io/api/core/v1" v1 "k8s.io/api/core/v1"
apierrors "k8s.io/apimachinery/pkg/api/errors"
"k8s.io/apimachinery/pkg/api/resource" "k8s.io/apimachinery/pkg/api/resource"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/apimachinery/pkg/fields" "k8s.io/apimachinery/pkg/fields"
@ -51,6 +53,10 @@ import (
"k8s.io/kubernetes/test/integration/framework" "k8s.io/kubernetes/test/integration/framework"
) )
const (
resourceQuotaTimeout = 10 * time.Second
)
// 1.2 code gets: // 1.2 code gets:
// quota_test.go:95: Took 4.218619579s to scale up without quota // quota_test.go:95: Took 4.218619579s to scale up without quota
// quota_test.go:199: unexpected error: timed out waiting for the condition, ended with 342 pods (1 minute) // quota_test.go:199: unexpected error: timed out waiting for the condition, ended with 342 pods (1 minute)
@ -186,6 +192,39 @@ func waitForQuota(t *testing.T, quota *v1.ResourceQuota, clientset *clientset.Cl
} }
} }
// waitForUsedResourceQuota polls a ResourceQuota status for an expected used value
func waitForUsedResourceQuota(t *testing.T, c clientset.Interface, ns, quotaName string, used v1.ResourceList) {
err := wait.Poll(1*time.Second, resourceQuotaTimeout, func() (bool, error) {
resourceQuota, err := c.CoreV1().ResourceQuotas(ns).Get(context.TODO(), quotaName, metav1.GetOptions{})
if err != nil {
return false, err
}
// used may not yet be calculated
if resourceQuota.Status.Used == nil {
return false, nil
}
// verify that the quota shows the expected used resource values
for k, v := range used {
actualValue, found := resourceQuota.Status.Used[k]
if !found {
t.Logf("resource %s was not found in ResourceQuota status", k)
return false, nil
}
if !actualValue.Equal(v) {
t.Logf("resource %s, expected %s, actual %s", k, v.String(), actualValue.String())
return false, nil
}
}
return true, nil
})
if err != nil {
t.Errorf("error waiting or ResourceQuota status: %v", err)
}
}
func scale(t *testing.T, namespace string, clientset *clientset.Clientset) { func scale(t *testing.T, namespace string, clientset *clientset.Clientset) {
target := int32(100) target := int32(100)
rc := &v1.ReplicationController{ rc := &v1.ReplicationController{
@ -378,11 +417,7 @@ func TestQuotaLimitedResourceDenial(t *testing.T) {
func TestQuotaLimitService(t *testing.T) { func TestQuotaLimitService(t *testing.T) {
defer featuregatetesting.SetFeatureGateDuringTest(t, utilfeature.DefaultFeatureGate, features.ServiceLBNodePortControl, true)() defer featuregatetesting.SetFeatureGateDuringTest(t, utilfeature.DefaultFeatureGate, features.ServiceLBNodePortControl, true)()
type testCase struct {
description string
svc *v1.Service
success bool
}
// Set up an API server // Set up an API server
h := &framework.APIServerHolder{Initialized: make(chan struct{})} h := &framework.APIServerHolder{Initialized: make(chan struct{})}
s := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) { s := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
@ -477,56 +512,91 @@ func TestQuotaLimitService(t *testing.T) {
}, },
}, },
} }
waitForQuota(t, quota, clientset) waitForQuota(t, quota, clientset)
tests := []testCase{ // Creating the first node port service should succeed
{ nodePortService := newService("np-svc", v1.ServiceTypeNodePort, true)
description: "node port service should be created successfully", _, err = clientset.CoreV1().Services(ns.Name).Create(context.TODO(), nodePortService, metav1.CreateOptions{})
svc: newService("np-svc", v1.ServiceTypeNodePort, true), if err != nil {
success: true, t.Errorf("creating first node port Service should not have returned error: %v", err)
},
{
description: "first LB type service that allocates node port should be created successfully",
svc: newService("lb-svc-withnp1", v1.ServiceTypeLoadBalancer, true),
success: true,
},
{
description: "second LB type service that allocates node port creation should fail as node port quota is exceeded",
svc: newService("lb-svc-withnp2", v1.ServiceTypeLoadBalancer, true),
success: false,
},
{
description: "first LB type service that doesn't allocates node port should be created successfully",
svc: newService("lb-svc-wonp1", v1.ServiceTypeLoadBalancer, false),
success: true,
},
{
description: "second LB type service that doesn't allocates node port creation should fail as loadbalancer quota is exceeded",
svc: newService("lb-svc-wonp2", v1.ServiceTypeLoadBalancer, false),
success: false,
},
{
description: "forth service creation should be successful",
svc: newService("clusterip-svc1", v1.ServiceTypeClusterIP, false),
success: true,
},
{
description: "fifth service creation should fail as service quota is exceeded",
svc: newService("clusterip-svc2", v1.ServiceTypeClusterIP, false),
success: false,
},
} }
for _, test := range tests { // Creating the first loadbalancer service should succeed
t.Log(test.description) lbServiceWithNodePort1 := newService("lb-svc-withnp1", v1.ServiceTypeLoadBalancer, true)
_, err := clientset.CoreV1().Services(ns.Name).Create(context.TODO(), test.svc, metav1.CreateOptions{}) _, err = clientset.CoreV1().Services(ns.Name).Create(context.TODO(), lbServiceWithNodePort1, metav1.CreateOptions{})
if (err == nil) != test.success { if err != nil {
if err != nil { t.Errorf("creating first loadbalancer Service should not have returned error: %v", err)
t.Fatalf("Error creating test service: %v, svc: %+v", err, test.svc) }
} else {
t.Fatalf("Expect service creation to fail, but service %s is created", test.svc.Name) // wait for ResourceQuota status to be updated before proceeding, otherwise the test will race with resource quota controller
} expectedQuotaUsed := v1.ResourceList{
v1.ResourceServices: resource.MustParse("2"),
v1.ResourceServicesNodePorts: resource.MustParse("2"),
v1.ResourceServicesLoadBalancers: resource.MustParse("1"),
}
waitForUsedResourceQuota(t, clientset, quota.Namespace, quota.Name, expectedQuotaUsed)
// Creating another loadbalancer Service using node ports should fail because node prot quota is exceeded
lbServiceWithNodePort2 := newService("lb-svc-withnp2", v1.ServiceTypeLoadBalancer, true)
testServiceForbidden(clientset, ns.Name, lbServiceWithNodePort2, t)
// Creating a loadbalancer Service without node ports should succeed
lbServiceWithoutNodePort1 := newService("lb-svc-wonp1", v1.ServiceTypeLoadBalancer, false)
_, err = clientset.CoreV1().Services(ns.Name).Create(context.TODO(), lbServiceWithoutNodePort1, metav1.CreateOptions{})
if err != nil {
t.Errorf("creating another loadbalancer Service without node ports should not have returned error: %v", err)
}
// wait for ResourceQuota status to be updated before proceeding, otherwise the test will race with resource quota controller
expectedQuotaUsed = v1.ResourceList{
v1.ResourceServices: resource.MustParse("3"),
v1.ResourceServicesNodePorts: resource.MustParse("2"),
v1.ResourceServicesLoadBalancers: resource.MustParse("2"),
}
waitForUsedResourceQuota(t, clientset, quota.Namespace, quota.Name, expectedQuotaUsed)
// Creating another loadbalancer Service without node ports should fail because loadbalancer quota is exceeded
lbServiceWithoutNodePort2 := newService("lb-svc-wonp2", v1.ServiceTypeLoadBalancer, false)
testServiceForbidden(clientset, ns.Name, lbServiceWithoutNodePort2, t)
// Creating a ClusterIP Service should succeed
clusterIPService1 := newService("clusterip-svc1", v1.ServiceTypeClusterIP, false)
_, err = clientset.CoreV1().Services(ns.Name).Create(context.TODO(), clusterIPService1, metav1.CreateOptions{})
if err != nil {
t.Errorf("creating a cluster IP Service should not have returned error: %v", err)
}
// wait for ResourceQuota status to be updated before proceeding, otherwise the test will race with resource quota controller
expectedQuotaUsed = v1.ResourceList{
v1.ResourceServices: resource.MustParse("4"),
v1.ResourceServicesNodePorts: resource.MustParse("2"),
v1.ResourceServicesLoadBalancers: resource.MustParse("2"),
}
waitForUsedResourceQuota(t, clientset, quota.Namespace, quota.Name, expectedQuotaUsed)
// Creating a ClusterIP Service should fail because Service quota has been exceeded.
clusterIPService2 := newService("clusterip-svc2", v1.ServiceTypeClusterIP, false)
testServiceForbidden(clientset, ns.Name, clusterIPService2, t)
}
// testServiceForbidden attempts to create a Service expecting 403 Forbidden due to resource quota limits being exceeded.
func testServiceForbidden(clientset clientset.Interface, namespace string, service *v1.Service, t *testing.T) {
pollErr := wait.PollImmediate(2*time.Second, 30*time.Second, func() (bool, error) {
_, err := clientset.CoreV1().Services(namespace).Create(context.TODO(), service, metav1.CreateOptions{})
if apierrors.IsForbidden(err) {
return true, nil
} }
if err == nil {
return false, errors.New("creating Service should have returned error but got nil")
}
return false, nil
})
if pollErr != nil {
t.Errorf("creating Service should return Forbidden due to resource quota limits but got: %v", pollErr)
} }
} }