mirror of
				https://github.com/k3s-io/kubernetes.git
				synced 2025-10-25 10:00:53 +00:00 
			
		
		
		
	
		
			
				
	
	
		
			309 lines
		
	
	
		
			7.0 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			309 lines
		
	
	
		
			7.0 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| /*
 | |
| Copyright 2015 The Kubernetes Authors.
 | |
| 
 | |
| Licensed under the Apache License, Version 2.0 (the "License");
 | |
| you may not use this file except in compliance with the License.
 | |
| You may obtain a copy of the License at
 | |
| 
 | |
|     http://www.apache.org/licenses/LICENSE-2.0
 | |
| 
 | |
| Unless required by applicable law or agreed to in writing, software
 | |
| distributed under the License is distributed on an "AS IS" BASIS,
 | |
| WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 | |
| See the License for the specific language governing permissions and
 | |
| limitations under the License.
 | |
| */
 | |
| 
 | |
| package container
 | |
| 
 | |
| import (
 | |
| 	"reflect"
 | |
| 	"testing"
 | |
| 
 | |
| 	"github.com/stretchr/testify/assert"
 | |
| 
 | |
| 	"k8s.io/api/core/v1"
 | |
| 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 | |
| )
 | |
| 
 | |
| func TestEnvVarsToMap(t *testing.T) {
 | |
| 	vars := []EnvVar{
 | |
| 		{
 | |
| 			Name:  "foo",
 | |
| 			Value: "bar",
 | |
| 		},
 | |
| 		{
 | |
| 			Name:  "zoo",
 | |
| 			Value: "baz",
 | |
| 		},
 | |
| 	}
 | |
| 
 | |
| 	varMap := EnvVarsToMap(vars)
 | |
| 
 | |
| 	if e, a := len(vars), len(varMap); e != a {
 | |
| 		t.Errorf("Unexpected map length; expected: %d, got %d", e, a)
 | |
| 	}
 | |
| 
 | |
| 	if a := varMap["foo"]; a != "bar" {
 | |
| 		t.Errorf("Unexpected value of key 'foo': %v", a)
 | |
| 	}
 | |
| 
 | |
| 	if a := varMap["zoo"]; a != "baz" {
 | |
| 		t.Errorf("Unexpected value of key 'zoo': %v", a)
 | |
| 	}
 | |
| }
 | |
| 
 | |
| func TestExpandCommandAndArgs(t *testing.T) {
 | |
| 	cases := []struct {
 | |
| 		name            string
 | |
| 		container       *v1.Container
 | |
| 		envs            []EnvVar
 | |
| 		expectedCommand []string
 | |
| 		expectedArgs    []string
 | |
| 	}{
 | |
| 		{
 | |
| 			name:      "none",
 | |
| 			container: &v1.Container{},
 | |
| 		},
 | |
| 		{
 | |
| 			name: "command expanded",
 | |
| 			container: &v1.Container{
 | |
| 				Command: []string{"foo", "$(VAR_TEST)", "$(VAR_TEST2)"},
 | |
| 			},
 | |
| 			envs: []EnvVar{
 | |
| 				{
 | |
| 					Name:  "VAR_TEST",
 | |
| 					Value: "zoo",
 | |
| 				},
 | |
| 				{
 | |
| 					Name:  "VAR_TEST2",
 | |
| 					Value: "boo",
 | |
| 				},
 | |
| 			},
 | |
| 			expectedCommand: []string{"foo", "zoo", "boo"},
 | |
| 		},
 | |
| 		{
 | |
| 			name: "args expanded",
 | |
| 			container: &v1.Container{
 | |
| 				Args: []string{"zap", "$(VAR_TEST)", "$(VAR_TEST2)"},
 | |
| 			},
 | |
| 			envs: []EnvVar{
 | |
| 				{
 | |
| 					Name:  "VAR_TEST",
 | |
| 					Value: "hap",
 | |
| 				},
 | |
| 				{
 | |
| 					Name:  "VAR_TEST2",
 | |
| 					Value: "trap",
 | |
| 				},
 | |
| 			},
 | |
| 			expectedArgs: []string{"zap", "hap", "trap"},
 | |
| 		},
 | |
| 		{
 | |
| 			name: "both expanded",
 | |
| 			container: &v1.Container{
 | |
| 				Command: []string{"$(VAR_TEST2)--$(VAR_TEST)", "foo", "$(VAR_TEST3)"},
 | |
| 				Args:    []string{"foo", "$(VAR_TEST)", "$(VAR_TEST2)"},
 | |
| 			},
 | |
| 			envs: []EnvVar{
 | |
| 				{
 | |
| 					Name:  "VAR_TEST",
 | |
| 					Value: "zoo",
 | |
| 				},
 | |
| 				{
 | |
| 					Name:  "VAR_TEST2",
 | |
| 					Value: "boo",
 | |
| 				},
 | |
| 				{
 | |
| 					Name:  "VAR_TEST3",
 | |
| 					Value: "roo",
 | |
| 				},
 | |
| 			},
 | |
| 			expectedCommand: []string{"boo--zoo", "foo", "roo"},
 | |
| 			expectedArgs:    []string{"foo", "zoo", "boo"},
 | |
| 		},
 | |
| 	}
 | |
| 
 | |
| 	for _, tc := range cases {
 | |
| 		actualCommand, actualArgs := ExpandContainerCommandAndArgs(tc.container, tc.envs)
 | |
| 
 | |
| 		if e, a := tc.expectedCommand, actualCommand; !reflect.DeepEqual(e, a) {
 | |
| 			t.Errorf("%v: unexpected command; expected %v, got %v", tc.name, e, a)
 | |
| 		}
 | |
| 
 | |
| 		if e, a := tc.expectedArgs, actualArgs; !reflect.DeepEqual(e, a) {
 | |
| 			t.Errorf("%v: unexpected args; expected %v, got %v", tc.name, e, a)
 | |
| 		}
 | |
| 
 | |
| 	}
 | |
| }
 | |
| 
 | |
| func TestShouldContainerBeRestarted(t *testing.T) {
 | |
| 	pod := &v1.Pod{
 | |
| 		ObjectMeta: metav1.ObjectMeta{
 | |
| 			UID:       "12345678",
 | |
| 			Name:      "foo",
 | |
| 			Namespace: "new",
 | |
| 		},
 | |
| 		Spec: v1.PodSpec{
 | |
| 			Containers: []v1.Container{
 | |
| 				{Name: "no-history"},
 | |
| 				{Name: "alive"},
 | |
| 				{Name: "succeed"},
 | |
| 				{Name: "failed"},
 | |
| 				{Name: "unknown"},
 | |
| 			},
 | |
| 		},
 | |
| 	}
 | |
| 	podStatus := &PodStatus{
 | |
| 		ID:        pod.UID,
 | |
| 		Name:      pod.Name,
 | |
| 		Namespace: pod.Namespace,
 | |
| 		ContainerStatuses: []*ContainerStatus{
 | |
| 			{
 | |
| 				Name:  "alive",
 | |
| 				State: ContainerStateRunning,
 | |
| 			},
 | |
| 			{
 | |
| 				Name:     "succeed",
 | |
| 				State:    ContainerStateExited,
 | |
| 				ExitCode: 0,
 | |
| 			},
 | |
| 			{
 | |
| 				Name:     "failed",
 | |
| 				State:    ContainerStateExited,
 | |
| 				ExitCode: 1,
 | |
| 			},
 | |
| 			{
 | |
| 				Name:     "alive",
 | |
| 				State:    ContainerStateExited,
 | |
| 				ExitCode: 2,
 | |
| 			},
 | |
| 			{
 | |
| 				Name:  "unknown",
 | |
| 				State: ContainerStateUnknown,
 | |
| 			},
 | |
| 			{
 | |
| 				Name:     "failed",
 | |
| 				State:    ContainerStateExited,
 | |
| 				ExitCode: 3,
 | |
| 			},
 | |
| 		},
 | |
| 	}
 | |
| 	policies := []v1.RestartPolicy{
 | |
| 		v1.RestartPolicyNever,
 | |
| 		v1.RestartPolicyOnFailure,
 | |
| 		v1.RestartPolicyAlways,
 | |
| 	}
 | |
| 	expected := map[string][]bool{
 | |
| 		"no-history": {true, true, true},
 | |
| 		"alive":      {false, false, false},
 | |
| 		"succeed":    {false, false, true},
 | |
| 		"failed":     {false, true, true},
 | |
| 		"unknown":    {true, true, true},
 | |
| 	}
 | |
| 	for _, c := range pod.Spec.Containers {
 | |
| 		for i, policy := range policies {
 | |
| 			pod.Spec.RestartPolicy = policy
 | |
| 			e := expected[c.Name][i]
 | |
| 			r := ShouldContainerBeRestarted(&c, pod, podStatus)
 | |
| 			if r != e {
 | |
| 				t.Errorf("Restart for container %q with restart policy %q expected %t, got %t",
 | |
| 					c.Name, policy, e, r)
 | |
| 			}
 | |
| 		}
 | |
| 	}
 | |
| }
 | |
| 
 | |
| func TestHasPrivilegedContainer(t *testing.T) {
 | |
| 	newBoolPtr := func(b bool) *bool {
 | |
| 		return &b
 | |
| 	}
 | |
| 	tests := map[string]struct {
 | |
| 		securityContext *v1.SecurityContext
 | |
| 		expected        bool
 | |
| 	}{
 | |
| 		"nil security context": {
 | |
| 			securityContext: nil,
 | |
| 			expected:        false,
 | |
| 		},
 | |
| 		"nil privileged": {
 | |
| 			securityContext: &v1.SecurityContext{},
 | |
| 			expected:        false,
 | |
| 		},
 | |
| 		"false privileged": {
 | |
| 			securityContext: &v1.SecurityContext{Privileged: newBoolPtr(false)},
 | |
| 			expected:        false,
 | |
| 		},
 | |
| 		"true privileged": {
 | |
| 			securityContext: &v1.SecurityContext{Privileged: newBoolPtr(true)},
 | |
| 			expected:        true,
 | |
| 		},
 | |
| 	}
 | |
| 
 | |
| 	for k, v := range tests {
 | |
| 		pod := &v1.Pod{
 | |
| 			Spec: v1.PodSpec{
 | |
| 				Containers: []v1.Container{
 | |
| 					{SecurityContext: v.securityContext},
 | |
| 				},
 | |
| 			},
 | |
| 		}
 | |
| 		actual := HasPrivilegedContainer(pod)
 | |
| 		if actual != v.expected {
 | |
| 			t.Errorf("%s expected %t but got %t", k, v.expected, actual)
 | |
| 		}
 | |
| 	}
 | |
| }
 | |
| 
 | |
| func TestMakePortMappings(t *testing.T) {
 | |
| 	port := func(name string, protocol v1.Protocol, containerPort, hostPort int32, ip string) v1.ContainerPort {
 | |
| 		return v1.ContainerPort{
 | |
| 			Name:          name,
 | |
| 			Protocol:      protocol,
 | |
| 			ContainerPort: containerPort,
 | |
| 			HostPort:      hostPort,
 | |
| 			HostIP:        ip,
 | |
| 		}
 | |
| 	}
 | |
| 	portMapping := func(name string, protocol v1.Protocol, containerPort, hostPort int, ip string) PortMapping {
 | |
| 		return PortMapping{
 | |
| 			Name:          name,
 | |
| 			Protocol:      protocol,
 | |
| 			ContainerPort: containerPort,
 | |
| 			HostPort:      hostPort,
 | |
| 			HostIP:        ip,
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	tests := []struct {
 | |
| 		container            *v1.Container
 | |
| 		expectedPortMappings []PortMapping
 | |
| 	}{
 | |
| 		{
 | |
| 			&v1.Container{
 | |
| 				Name: "fooContainer",
 | |
| 				Ports: []v1.ContainerPort{
 | |
| 					port("", v1.ProtocolTCP, 80, 8080, "127.0.0.1"),
 | |
| 					port("", v1.ProtocolTCP, 443, 4343, "192.168.0.1"),
 | |
| 					port("foo", v1.ProtocolUDP, 555, 5555, ""),
 | |
| 					// Duplicated, should be ignored.
 | |
| 					port("foo", v1.ProtocolUDP, 888, 8888, ""),
 | |
| 					// Duplicated, should be ignored.
 | |
| 					port("", v1.ProtocolTCP, 80, 8888, ""),
 | |
| 				},
 | |
| 			},
 | |
| 			[]PortMapping{
 | |
| 				portMapping("fooContainer-TCP:80", v1.ProtocolTCP, 80, 8080, "127.0.0.1"),
 | |
| 				portMapping("fooContainer-TCP:443", v1.ProtocolTCP, 443, 4343, "192.168.0.1"),
 | |
| 				portMapping("fooContainer-foo", v1.ProtocolUDP, 555, 5555, ""),
 | |
| 			},
 | |
| 		},
 | |
| 	}
 | |
| 
 | |
| 	for i, tt := range tests {
 | |
| 		actual := MakePortMappings(tt.container)
 | |
| 		assert.Equal(t, tt.expectedPortMappings, actual, "[%d]", i)
 | |
| 	}
 | |
| }
 |