2015-03-31 02:56:34 +00:00
|
|
|
/*
|
2015-05-01 16:19:44 +00:00
|
|
|
Copyright 2014 The Kubernetes Authors All rights reserved.
|
2015-03-31 02:56:34 +00:00
|
|
|
|
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
|
you may not use this file except in compliance with the License.
|
|
|
|
|
You may obtain a copy of the License at
|
|
|
|
|
|
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
|
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
See the License for the specific language governing permissions and
|
|
|
|
|
limitations under the License.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
package dockertools
|
|
|
|
|
|
|
|
|
|
import (
|
2015-04-30 23:04:32 +00:00
|
|
|
"fmt"
|
2015-06-05 22:37:53 +00:00
|
|
|
"io/ioutil"
|
2015-05-26 23:45:38 +00:00
|
|
|
"net/http"
|
2015-06-05 22:37:53 +00:00
|
|
|
"os"
|
2015-04-29 20:09:03 +00:00
|
|
|
"reflect"
|
2015-05-26 23:45:38 +00:00
|
|
|
"regexp"
|
2015-04-29 20:09:03 +00:00
|
|
|
"sort"
|
2015-05-26 23:45:38 +00:00
|
|
|
"strconv"
|
|
|
|
|
"strings"
|
2015-03-31 02:56:34 +00:00
|
|
|
"testing"
|
2015-05-01 22:25:11 +00:00
|
|
|
"time"
|
2015-03-31 02:56:34 +00:00
|
|
|
|
2015-08-05 22:05:17 +00:00
|
|
|
docker "github.com/fsouza/go-dockerclient"
|
2015-10-16 03:00:28 +00:00
|
|
|
cadvisorapi "github.com/google/cadvisor/info/v1"
|
2015-10-02 13:45:46 +00:00
|
|
|
"github.com/stretchr/testify/assert"
|
2015-08-05 22:03:47 +00:00
|
|
|
"k8s.io/kubernetes/pkg/api"
|
|
|
|
|
"k8s.io/kubernetes/pkg/api/testapi"
|
2015-10-02 13:45:46 +00:00
|
|
|
"k8s.io/kubernetes/pkg/api/unversioned"
|
2015-09-03 21:40:58 +00:00
|
|
|
"k8s.io/kubernetes/pkg/client/record"
|
2015-08-05 22:03:47 +00:00
|
|
|
kubecontainer "k8s.io/kubernetes/pkg/kubelet/container"
|
|
|
|
|
"k8s.io/kubernetes/pkg/kubelet/network"
|
2015-10-19 22:15:59 +00:00
|
|
|
proberesults "k8s.io/kubernetes/pkg/kubelet/prober/results"
|
|
|
|
|
kubetypes "k8s.io/kubernetes/pkg/kubelet/types"
|
2016-01-22 05:06:52 +00:00
|
|
|
"k8s.io/kubernetes/pkg/runtime"
|
2015-08-05 22:03:47 +00:00
|
|
|
"k8s.io/kubernetes/pkg/types"
|
|
|
|
|
"k8s.io/kubernetes/pkg/util"
|
|
|
|
|
uexec "k8s.io/kubernetes/pkg/util/exec"
|
2015-11-10 06:28:45 +00:00
|
|
|
"k8s.io/kubernetes/pkg/util/intstr"
|
2015-09-09 17:45:01 +00:00
|
|
|
"k8s.io/kubernetes/pkg/util/sets"
|
2015-03-31 02:56:34 +00:00
|
|
|
)
|
|
|
|
|
|
2015-05-26 23:45:38 +00:00
|
|
|
type fakeHTTP struct {
|
|
|
|
|
url string
|
|
|
|
|
err error
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (f *fakeHTTP) Get(url string) (*http.Response, error) {
|
|
|
|
|
f.url = url
|
|
|
|
|
return nil, f.err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type fakeOptionGenerator struct{}
|
|
|
|
|
|
|
|
|
|
var _ kubecontainer.RunContainerOptionsGenerator = &fakeOptionGenerator{}
|
|
|
|
|
|
2015-06-05 22:37:53 +00:00
|
|
|
var testPodContainerDir string
|
|
|
|
|
|
2015-05-26 23:45:38 +00:00
|
|
|
func (*fakeOptionGenerator) GenerateRunContainerOptions(pod *api.Pod, container *api.Container) (*kubecontainer.RunContainerOptions, error) {
|
2015-06-05 22:37:53 +00:00
|
|
|
var opts kubecontainer.RunContainerOptions
|
|
|
|
|
var err error
|
|
|
|
|
if len(container.TerminationMessagePath) != 0 {
|
|
|
|
|
testPodContainerDir, err = ioutil.TempDir("", "fooPodContainerDir")
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
opts.PodContainerDir = testPodContainerDir
|
|
|
|
|
}
|
|
|
|
|
return &opts, nil
|
2015-05-26 23:45:38 +00:00
|
|
|
}
|
|
|
|
|
|
2015-06-01 19:30:51 +00:00
|
|
|
func newTestDockerManagerWithHTTPClient(fakeHTTPClient *fakeHTTP) (*DockerManager, *FakeDockerClient) {
|
2015-11-19 21:59:18 +00:00
|
|
|
fakeDocker := NewFakeDockerClient()
|
2015-04-29 20:09:03 +00:00
|
|
|
fakeRecorder := &record.FakeRecorder{}
|
|
|
|
|
containerRefManager := kubecontainer.NewRefManager()
|
|
|
|
|
networkPlugin, _ := network.InitNetworkPlugin([]network.NetworkPlugin{}, "", network.NewFakeHost(nil))
|
2015-05-26 23:45:38 +00:00
|
|
|
optionGenerator := &fakeOptionGenerator{}
|
2015-05-01 22:25:11 +00:00
|
|
|
dockerManager := NewFakeDockerManager(
|
2015-04-29 20:09:03 +00:00
|
|
|
fakeDocker,
|
|
|
|
|
fakeRecorder,
|
2015-10-19 22:15:59 +00:00
|
|
|
proberesults.NewManager(),
|
2015-04-29 20:09:03 +00:00
|
|
|
containerRefManager,
|
2015-10-16 03:00:28 +00:00
|
|
|
&cadvisorapi.MachineInfo{},
|
2015-12-24 23:46:56 +00:00
|
|
|
kubetypes.PodInfraContainerImage,
|
2015-04-29 20:09:03 +00:00
|
|
|
0, 0, "",
|
|
|
|
|
kubecontainer.FakeOS{},
|
|
|
|
|
networkPlugin,
|
2015-05-26 23:45:38 +00:00
|
|
|
optionGenerator,
|
2015-10-02 13:45:46 +00:00
|
|
|
fakeHTTPClient,
|
|
|
|
|
util.NewBackOff(time.Second, 300*time.Second))
|
2015-04-29 20:09:03 +00:00
|
|
|
|
|
|
|
|
return dockerManager, fakeDocker
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-01 19:30:51 +00:00
|
|
|
func newTestDockerManager() (*DockerManager, *FakeDockerClient) {
|
|
|
|
|
return newTestDockerManagerWithHTTPClient(&fakeHTTP{})
|
|
|
|
|
}
|
|
|
|
|
|
2015-05-26 23:45:38 +00:00
|
|
|
func matchString(t *testing.T, pattern, str string) bool {
|
|
|
|
|
match, err := regexp.MatchString(pattern, str)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Logf("unexpected error: %v", err)
|
|
|
|
|
}
|
|
|
|
|
return match
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-31 02:56:34 +00:00
|
|
|
func TestSetEntrypointAndCommand(t *testing.T) {
|
|
|
|
|
cases := []struct {
|
|
|
|
|
name string
|
|
|
|
|
container *api.Container
|
2015-05-22 22:21:03 +00:00
|
|
|
envs []kubecontainer.EnvVar
|
2015-03-31 02:56:34 +00:00
|
|
|
expected *docker.CreateContainerOptions
|
|
|
|
|
}{
|
|
|
|
|
{
|
|
|
|
|
name: "none",
|
|
|
|
|
container: &api.Container{},
|
|
|
|
|
expected: &docker.CreateContainerOptions{
|
|
|
|
|
Config: &docker.Config{},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "command",
|
|
|
|
|
container: &api.Container{
|
|
|
|
|
Command: []string{"foo", "bar"},
|
|
|
|
|
},
|
|
|
|
|
expected: &docker.CreateContainerOptions{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
Entrypoint: []string{"foo", "bar"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-05-22 22:21:03 +00:00
|
|
|
{
|
|
|
|
|
name: "command expanded",
|
|
|
|
|
container: &api.Container{
|
|
|
|
|
Command: []string{"foo", "$(VAR_TEST)", "$(VAR_TEST2)"},
|
|
|
|
|
},
|
|
|
|
|
envs: []kubecontainer.EnvVar{
|
|
|
|
|
{
|
|
|
|
|
Name: "VAR_TEST",
|
|
|
|
|
Value: "zoo",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "VAR_TEST2",
|
|
|
|
|
Value: "boo",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
expected: &docker.CreateContainerOptions{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
Entrypoint: []string{"foo", "zoo", "boo"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-03-31 02:56:34 +00:00
|
|
|
{
|
|
|
|
|
name: "args",
|
|
|
|
|
container: &api.Container{
|
|
|
|
|
Args: []string{"foo", "bar"},
|
|
|
|
|
},
|
|
|
|
|
expected: &docker.CreateContainerOptions{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
Cmd: []string{"foo", "bar"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-05-22 22:21:03 +00:00
|
|
|
{
|
|
|
|
|
name: "args expanded",
|
|
|
|
|
container: &api.Container{
|
|
|
|
|
Args: []string{"zap", "$(VAR_TEST)", "$(VAR_TEST2)"},
|
|
|
|
|
},
|
|
|
|
|
envs: []kubecontainer.EnvVar{
|
|
|
|
|
{
|
|
|
|
|
Name: "VAR_TEST",
|
|
|
|
|
Value: "hap",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "VAR_TEST2",
|
|
|
|
|
Value: "trap",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
expected: &docker.CreateContainerOptions{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
Cmd: []string{"zap", "hap", "trap"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-03-31 02:56:34 +00:00
|
|
|
{
|
|
|
|
|
name: "both",
|
|
|
|
|
container: &api.Container{
|
|
|
|
|
Command: []string{"foo"},
|
|
|
|
|
Args: []string{"bar", "baz"},
|
|
|
|
|
},
|
|
|
|
|
expected: &docker.CreateContainerOptions{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
Entrypoint: []string{"foo"},
|
|
|
|
|
Cmd: []string{"bar", "baz"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-05-22 22:21:03 +00:00
|
|
|
{
|
|
|
|
|
name: "both expanded",
|
|
|
|
|
container: &api.Container{
|
|
|
|
|
Command: []string{"$(VAR_TEST2)--$(VAR_TEST)", "foo", "$(VAR_TEST3)"},
|
|
|
|
|
Args: []string{"foo", "$(VAR_TEST)", "$(VAR_TEST2)"},
|
|
|
|
|
},
|
|
|
|
|
envs: []kubecontainer.EnvVar{
|
|
|
|
|
{
|
|
|
|
|
Name: "VAR_TEST",
|
|
|
|
|
Value: "zoo",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "VAR_TEST2",
|
|
|
|
|
Value: "boo",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "VAR_TEST3",
|
|
|
|
|
Value: "roo",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
expected: &docker.CreateContainerOptions{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
Entrypoint: []string{"boo--zoo", "foo", "roo"},
|
|
|
|
|
Cmd: []string{"foo", "zoo", "boo"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-03-31 02:56:34 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for _, tc := range cases {
|
2015-05-22 22:21:03 +00:00
|
|
|
opts := &kubecontainer.RunContainerOptions{
|
|
|
|
|
Envs: tc.envs,
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-31 02:56:34 +00:00
|
|
|
actualOpts := &docker.CreateContainerOptions{
|
|
|
|
|
Config: &docker.Config{},
|
|
|
|
|
}
|
2015-05-22 22:21:03 +00:00
|
|
|
setEntrypointAndCommand(tc.container, opts, actualOpts)
|
2015-03-31 02:56:34 +00:00
|
|
|
|
|
|
|
|
if e, a := tc.expected.Config.Entrypoint, actualOpts.Config.Entrypoint; !api.Semantic.DeepEqual(e, a) {
|
|
|
|
|
t.Errorf("%v: unexpected entrypoint: expected %v, got %v", tc.name, e, a)
|
|
|
|
|
}
|
|
|
|
|
if e, a := tc.expected.Config.Cmd, actualOpts.Config.Cmd; !api.Semantic.DeepEqual(e, a) {
|
|
|
|
|
t.Errorf("%v: unexpected command: expected %v, got %v", tc.name, e, a)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-04-29 20:09:03 +00:00
|
|
|
|
|
|
|
|
// verifyPods returns true if the two pod slices are equal.
|
|
|
|
|
func verifyPods(a, b []*kubecontainer.Pod) bool {
|
|
|
|
|
if len(a) != len(b) {
|
|
|
|
|
return false
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Sort the containers within a pod.
|
|
|
|
|
for i := range a {
|
|
|
|
|
sort.Sort(containersByID(a[i].Containers))
|
|
|
|
|
}
|
|
|
|
|
for i := range b {
|
|
|
|
|
sort.Sort(containersByID(b[i].Containers))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Sort the pods by UID.
|
|
|
|
|
sort.Sort(podsByID(a))
|
|
|
|
|
sort.Sort(podsByID(b))
|
|
|
|
|
|
|
|
|
|
return reflect.DeepEqual(a, b)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestGetPods(t *testing.T) {
|
2015-05-01 22:25:11 +00:00
|
|
|
manager, fakeDocker := newTestDockerManager()
|
2015-11-19 21:59:18 +00:00
|
|
|
dockerContainers := []*docker.Container{
|
2015-04-29 20:09:03 +00:00
|
|
|
{
|
2015-11-19 21:59:18 +00:00
|
|
|
ID: "1111",
|
|
|
|
|
Name: "/k8s_foo_qux_new_1234_42",
|
2015-04-29 20:09:03 +00:00
|
|
|
},
|
|
|
|
|
{
|
2015-11-19 21:59:18 +00:00
|
|
|
ID: "2222",
|
|
|
|
|
Name: "/k8s_bar_qux_new_1234_42",
|
2015-04-29 20:09:03 +00:00
|
|
|
},
|
|
|
|
|
{
|
2015-11-19 21:59:18 +00:00
|
|
|
ID: "3333",
|
|
|
|
|
Name: "/k8s_bar_jlk_wen_5678_42",
|
2015-04-29 20:09:03 +00:00
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Convert the docker containers. This does not affect the test coverage
|
2015-04-30 17:12:23 +00:00
|
|
|
// because the conversion is tested separately in convert_test.go
|
2015-04-29 20:09:03 +00:00
|
|
|
containers := make([]*kubecontainer.Container, len(dockerContainers))
|
|
|
|
|
for i := range containers {
|
2015-11-19 21:59:18 +00:00
|
|
|
c, err := toRuntimeContainer(&docker.APIContainers{
|
|
|
|
|
ID: dockerContainers[i].ID,
|
|
|
|
|
Names: []string{dockerContainers[i].Name},
|
|
|
|
|
})
|
2015-04-29 20:09:03 +00:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("unexpected error %v", err)
|
|
|
|
|
}
|
|
|
|
|
containers[i] = c
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
expected := []*kubecontainer.Pod{
|
|
|
|
|
{
|
|
|
|
|
ID: types.UID("1234"),
|
|
|
|
|
Name: "qux",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
Containers: []*kubecontainer.Container{containers[0], containers[1]},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
ID: types.UID("5678"),
|
|
|
|
|
Name: "jlk",
|
|
|
|
|
Namespace: "wen",
|
|
|
|
|
Containers: []*kubecontainer.Container{containers[2]},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-19 21:59:18 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers(dockerContainers)
|
2015-04-29 20:09:03 +00:00
|
|
|
actual, err := manager.GetPods(false)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("unexpected error %v", err)
|
|
|
|
|
}
|
|
|
|
|
if !verifyPods(expected, actual) {
|
|
|
|
|
t.Errorf("expected %#v, got %#v", expected, actual)
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-04-30 17:12:23 +00:00
|
|
|
|
|
|
|
|
func TestListImages(t *testing.T) {
|
2015-05-01 22:25:11 +00:00
|
|
|
manager, fakeDocker := newTestDockerManager()
|
2015-04-30 17:12:23 +00:00
|
|
|
dockerImages := []docker.APIImages{{ID: "1111"}, {ID: "2222"}, {ID: "3333"}}
|
2015-09-09 17:45:01 +00:00
|
|
|
expected := sets.NewString([]string{"1111", "2222", "3333"}...)
|
2015-04-30 17:12:23 +00:00
|
|
|
|
|
|
|
|
fakeDocker.Images = dockerImages
|
|
|
|
|
actualImages, err := manager.ListImages()
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("unexpected error %v", err)
|
|
|
|
|
}
|
2015-09-09 17:45:01 +00:00
|
|
|
actual := sets.NewString()
|
2015-04-30 17:12:23 +00:00
|
|
|
for _, i := range actualImages {
|
|
|
|
|
actual.Insert(i.ID)
|
|
|
|
|
}
|
|
|
|
|
// We can compare the two sets directly because util.StringSet.List()
|
|
|
|
|
// returns a "sorted" list.
|
|
|
|
|
if !reflect.DeepEqual(expected.List(), actual.List()) {
|
|
|
|
|
t.Errorf("expected %#v, got %#v", expected.List(), actual.List())
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-04-30 23:04:32 +00:00
|
|
|
|
|
|
|
|
func apiContainerToContainer(c docker.APIContainers) kubecontainer.Container {
|
|
|
|
|
dockerName, hash, err := ParseDockerName(c.Names[0])
|
|
|
|
|
if err != nil {
|
|
|
|
|
return kubecontainer.Container{}
|
|
|
|
|
}
|
|
|
|
|
return kubecontainer.Container{
|
2015-10-07 17:58:05 +00:00
|
|
|
ID: kubecontainer.ContainerID{"docker", c.ID},
|
2015-04-30 23:04:32 +00:00
|
|
|
Name: dockerName.ContainerName,
|
|
|
|
|
Hash: hash,
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-02 02:49:05 +00:00
|
|
|
func dockerContainersToPod(containers []*docker.APIContainers) kubecontainer.Pod {
|
2015-04-30 23:04:32 +00:00
|
|
|
var pod kubecontainer.Pod
|
|
|
|
|
for _, c := range containers {
|
|
|
|
|
dockerName, hash, err := ParseDockerName(c.Names[0])
|
|
|
|
|
if err != nil {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
pod.Containers = append(pod.Containers, &kubecontainer.Container{
|
2015-10-07 17:58:05 +00:00
|
|
|
ID: kubecontainer.ContainerID{"docker", c.ID},
|
2015-04-30 23:04:32 +00:00
|
|
|
Name: dockerName.ContainerName,
|
|
|
|
|
Hash: hash,
|
|
|
|
|
Image: c.Image,
|
|
|
|
|
})
|
|
|
|
|
// TODO(yifan): Only one evaluation is enough.
|
|
|
|
|
pod.ID = dockerName.PodUID
|
|
|
|
|
name, namespace, _ := kubecontainer.ParsePodFullName(dockerName.PodFullName)
|
|
|
|
|
pod.Name = name
|
|
|
|
|
pod.Namespace = namespace
|
|
|
|
|
}
|
|
|
|
|
return pod
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestKillContainerInPod(t *testing.T) {
|
2015-05-01 22:25:11 +00:00
|
|
|
manager, fakeDocker := newTestDockerManager()
|
2015-04-30 23:04:32 +00:00
|
|
|
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "qux",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{Containers: []api.Container{{Name: "foo"}, {Name: "bar"}}},
|
|
|
|
|
}
|
2015-11-19 21:59:18 +00:00
|
|
|
containers := []*docker.Container{
|
2015-04-30 23:04:32 +00:00
|
|
|
{
|
2015-11-19 21:59:18 +00:00
|
|
|
ID: "1111",
|
|
|
|
|
Name: "/k8s_foo_qux_new_1234_42",
|
2015-04-30 23:04:32 +00:00
|
|
|
},
|
|
|
|
|
{
|
2015-11-19 21:59:18 +00:00
|
|
|
ID: "2222",
|
|
|
|
|
Name: "/k8s_bar_qux_new_1234_42",
|
2015-04-30 23:04:32 +00:00
|
|
|
},
|
|
|
|
|
}
|
2015-11-19 21:59:18 +00:00
|
|
|
containerToKill := containers[0]
|
|
|
|
|
containerToSpare := containers[1]
|
|
|
|
|
|
|
|
|
|
fakeDocker.SetFakeRunningContainers(containers)
|
2015-04-30 23:04:32 +00:00
|
|
|
|
2015-10-10 09:12:47 +00:00
|
|
|
if err := manager.KillContainerInPod(kubecontainer.ContainerID{}, &pod.Spec.Containers[0], pod, "test kill container in pod."); err != nil {
|
2015-04-30 23:04:32 +00:00
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
|
}
|
|
|
|
|
// Assert the container has been stopped.
|
|
|
|
|
if err := fakeDocker.AssertStopped([]string{containerToKill.ID}); err != nil {
|
|
|
|
|
t.Errorf("container was not stopped correctly: %v", err)
|
|
|
|
|
}
|
2015-08-25 17:39:41 +00:00
|
|
|
// Assert the container has been spared.
|
|
|
|
|
if err := fakeDocker.AssertStopped([]string{containerToSpare.ID}); err == nil {
|
|
|
|
|
t.Errorf("container unexpectedly stopped: %v", containerToSpare.ID)
|
2015-04-30 23:04:32 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-05-06 03:50:45 +00:00
|
|
|
func TestKillContainerInPodWithPreStop(t *testing.T) {
|
|
|
|
|
manager, fakeDocker := newTestDockerManager()
|
|
|
|
|
fakeDocker.ExecInspect = &docker.ExecInspect{
|
|
|
|
|
Running: false,
|
|
|
|
|
ExitCode: 0,
|
|
|
|
|
}
|
|
|
|
|
expectedCmd := []string{"foo.sh", "bar"}
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "qux",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Lifecycle: &api.Lifecycle{
|
|
|
|
|
PreStop: &api.Handler{
|
|
|
|
|
Exec: &api.ExecAction{
|
|
|
|
|
Command: expectedCmd,
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{Name: "bar"}}},
|
|
|
|
|
}
|
2016-01-22 05:06:52 +00:00
|
|
|
podString, err := runtime.Encode(testapi.Default.Codec(), pod)
|
2015-05-06 03:50:45 +00:00
|
|
|
if err != nil {
|
2015-08-08 01:52:23 +00:00
|
|
|
t.Errorf("unexpected error: %v", err)
|
2015-05-06 03:50:45 +00:00
|
|
|
}
|
2015-11-19 21:59:18 +00:00
|
|
|
containers := []*docker.Container{
|
2015-05-06 03:50:45 +00:00
|
|
|
{
|
2015-11-19 21:59:18 +00:00
|
|
|
ID: "1111",
|
|
|
|
|
Name: "/k8s_foo_qux_new_1234_42",
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
Labels: map[string]string{
|
2015-12-30 07:46:52 +00:00
|
|
|
kubernetesPodLabel: string(podString),
|
|
|
|
|
kubernetesContainerNameLabel: "foo",
|
2015-11-19 21:59:18 +00:00
|
|
|
},
|
|
|
|
|
},
|
2015-05-06 03:50:45 +00:00
|
|
|
},
|
|
|
|
|
{
|
2015-11-19 21:59:18 +00:00
|
|
|
ID: "2222",
|
|
|
|
|
Name: "/k8s_bar_qux_new_1234_42",
|
2015-05-06 03:50:45 +00:00
|
|
|
},
|
|
|
|
|
}
|
2015-11-19 21:59:18 +00:00
|
|
|
containerToKill := containers[0]
|
|
|
|
|
fakeDocker.SetFakeRunningContainers(containers)
|
2015-05-06 03:50:45 +00:00
|
|
|
|
2015-10-10 09:12:47 +00:00
|
|
|
if err := manager.KillContainerInPod(kubecontainer.ContainerID{}, &pod.Spec.Containers[0], pod, "test kill container with preStop."); err != nil {
|
2015-05-06 03:50:45 +00:00
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
|
}
|
|
|
|
|
// Assert the container has been stopped.
|
|
|
|
|
if err := fakeDocker.AssertStopped([]string{containerToKill.ID}); err != nil {
|
|
|
|
|
t.Errorf("container was not stopped correctly: %v", err)
|
|
|
|
|
}
|
2015-08-20 01:57:58 +00:00
|
|
|
verifyCalls(t, fakeDocker, []string{"list", "create_exec", "start_exec", "stop"})
|
2015-05-06 03:50:45 +00:00
|
|
|
if !reflect.DeepEqual(expectedCmd, fakeDocker.execCmd) {
|
|
|
|
|
t.Errorf("expected: %v, got %v", expectedCmd, fakeDocker.execCmd)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-04-30 23:04:32 +00:00
|
|
|
func TestKillContainerInPodWithError(t *testing.T) {
|
2015-05-01 22:25:11 +00:00
|
|
|
manager, fakeDocker := newTestDockerManager()
|
2015-04-30 23:04:32 +00:00
|
|
|
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "qux",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{Containers: []api.Container{{Name: "foo"}, {Name: "bar"}}},
|
|
|
|
|
}
|
2015-11-19 21:59:18 +00:00
|
|
|
containers := []*docker.Container{
|
2015-04-30 23:04:32 +00:00
|
|
|
{
|
2015-11-19 21:59:18 +00:00
|
|
|
ID: "1111",
|
|
|
|
|
Name: "/k8s_foo_qux_new_1234_42",
|
2015-04-30 23:04:32 +00:00
|
|
|
},
|
|
|
|
|
{
|
2015-11-19 21:59:18 +00:00
|
|
|
ID: "2222",
|
|
|
|
|
Name: "/k8s_bar_qux_new_1234_42",
|
2015-04-30 23:04:32 +00:00
|
|
|
},
|
|
|
|
|
}
|
2015-11-19 21:59:18 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers(containers)
|
2015-04-30 23:04:32 +00:00
|
|
|
fakeDocker.Errors["stop"] = fmt.Errorf("sample error")
|
|
|
|
|
|
2015-10-10 09:12:47 +00:00
|
|
|
if err := manager.KillContainerInPod(kubecontainer.ContainerID{}, &pod.Spec.Containers[0], pod, "test kill container with error."); err == nil {
|
2015-04-30 23:04:32 +00:00
|
|
|
t.Errorf("expected error, found nil")
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-05-01 22:25:11 +00:00
|
|
|
|
2015-05-08 16:48:31 +00:00
|
|
|
func TestIsAExitError(t *testing.T) {
|
|
|
|
|
var err error
|
|
|
|
|
err = &dockerExitError{nil}
|
|
|
|
|
_, ok := err.(uexec.ExitError)
|
|
|
|
|
if !ok {
|
|
|
|
|
t.Error("couldn't cast dockerExitError to exec.ExitError")
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-05-26 23:45:38 +00:00
|
|
|
|
|
|
|
|
func generatePodInfraContainerHash(pod *api.Pod) uint64 {
|
|
|
|
|
var ports []api.ContainerPort
|
2015-09-14 21:56:51 +00:00
|
|
|
if pod.Spec.SecurityContext == nil || !pod.Spec.SecurityContext.HostNetwork {
|
2015-05-26 23:45:38 +00:00
|
|
|
for _, container := range pod.Spec.Containers {
|
|
|
|
|
ports = append(ports, container.Ports...)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
container := &api.Container{
|
2015-06-09 00:53:24 +00:00
|
|
|
Name: PodInfraContainerName,
|
2015-12-24 23:46:56 +00:00
|
|
|
Image: kubetypes.PodInfraContainerImage,
|
2015-06-09 00:53:24 +00:00
|
|
|
Ports: ports,
|
|
|
|
|
ImagePullPolicy: podInfraContainerImagePullPolicy,
|
2015-05-26 23:45:38 +00:00
|
|
|
}
|
|
|
|
|
return kubecontainer.HashContainer(container)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// runSyncPod is a helper function to retrieve the running pods from the fake
|
|
|
|
|
// docker client and runs SyncPod for the given pod.
|
2015-09-02 17:18:11 +00:00
|
|
|
func runSyncPod(t *testing.T, dm *DockerManager, fakeDocker *FakeDockerClient, pod *api.Pod, backOff *util.Backoff, expectErr bool) {
|
2016-01-18 09:31:18 +00:00
|
|
|
podStatus, err := dm.GetPodStatus(pod.UID, pod.Name, pod.Namespace)
|
2015-05-27 18:00:20 +00:00
|
|
|
if err != nil {
|
|
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
|
}
|
2016-01-18 09:31:18 +00:00
|
|
|
var apiPodStatus *api.PodStatus
|
|
|
|
|
apiPodStatus, err = dm.ConvertPodStatusToAPIPodStatus(pod, podStatus)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
|
}
|
|
|
|
|
|
2015-05-26 23:45:38 +00:00
|
|
|
fakeDocker.ClearCalls()
|
2015-08-13 12:59:15 +00:00
|
|
|
if backOff == nil {
|
|
|
|
|
backOff = util.NewBackOff(time.Second, time.Minute)
|
|
|
|
|
}
|
2016-01-12 10:19:13 +00:00
|
|
|
//TODO(random-liu): Add test for PodSyncResult
|
|
|
|
|
result := dm.SyncPod(pod, *apiPodStatus, podStatus, []api.Secret{}, backOff)
|
|
|
|
|
err = result.Error()
|
2015-09-02 17:18:11 +00:00
|
|
|
if err != nil && !expectErr {
|
2015-05-26 23:45:38 +00:00
|
|
|
t.Errorf("unexpected error: %v", err)
|
2015-09-02 17:18:11 +00:00
|
|
|
} else if err == nil && expectErr {
|
|
|
|
|
t.Errorf("expected error didn't occur")
|
2015-05-26 23:45:38 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestSyncPodCreateNetAndContainer(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
2015-06-09 00:53:24 +00:00
|
|
|
dm.podInfraContainerImage = "pod_infra_image"
|
2015-11-19 21:59:18 +00:00
|
|
|
|
2015-05-26 23:45:38 +00:00
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{Name: "bar"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-05-26 23:45:38 +00:00
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Create pod infra container.
|
2015-09-11 21:23:15 +00:00
|
|
|
"create", "start", "inspect_container", "inspect_container",
|
2015-05-26 23:45:38 +00:00
|
|
|
// Create container.
|
2015-06-15 21:38:45 +00:00
|
|
|
"create", "start", "inspect_container",
|
2015-05-26 23:45:38 +00:00
|
|
|
})
|
|
|
|
|
fakeDocker.Lock()
|
|
|
|
|
|
|
|
|
|
found := false
|
|
|
|
|
for _, c := range fakeDocker.ContainerList {
|
2015-06-09 00:53:24 +00:00
|
|
|
if c.Image == "pod_infra_image" && strings.HasPrefix(c.Names[0], "/k8s_POD") {
|
2015-05-26 23:45:38 +00:00
|
|
|
found = true
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if !found {
|
|
|
|
|
t.Errorf("Custom pod infra container not found: %v", fakeDocker.ContainerList)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if len(fakeDocker.Created) != 2 ||
|
2015-11-19 21:59:18 +00:00
|
|
|
!matchString(t, "/k8s_POD\\.[a-f0-9]+_foo_new_", fakeDocker.Created[0]) ||
|
|
|
|
|
!matchString(t, "/k8s_bar\\.[a-f0-9]+_foo_new_", fakeDocker.Created[1]) {
|
2015-05-26 23:45:38 +00:00
|
|
|
t.Errorf("Unexpected containers created %v", fakeDocker.Created)
|
|
|
|
|
}
|
|
|
|
|
fakeDocker.Unlock()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestSyncPodCreatesNetAndContainerPullsImage(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
2015-06-09 00:53:24 +00:00
|
|
|
dm.podInfraContainerImage = "pod_infra_image"
|
2015-08-10 17:28:39 +00:00
|
|
|
puller := dm.dockerPuller.(*FakeDockerPuller)
|
2015-05-26 23:45:38 +00:00
|
|
|
puller.HasImages = []string{}
|
2015-06-09 00:53:24 +00:00
|
|
|
dm.podInfraContainerImage = "pod_infra_image"
|
2015-05-26 23:45:38 +00:00
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{Name: "bar", Image: "something", ImagePullPolicy: "IfNotPresent"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-05-26 23:45:38 +00:00
|
|
|
|
|
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Create pod infra container.
|
2015-09-11 21:23:15 +00:00
|
|
|
"create", "start", "inspect_container", "inspect_container",
|
2015-05-26 23:45:38 +00:00
|
|
|
// Create container.
|
2015-06-15 21:38:45 +00:00
|
|
|
"create", "start", "inspect_container",
|
2015-05-26 23:45:38 +00:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
fakeDocker.Lock()
|
|
|
|
|
|
2015-06-09 00:53:24 +00:00
|
|
|
if !reflect.DeepEqual(puller.ImagesPulled, []string{"pod_infra_image", "something"}) {
|
2015-05-26 23:45:38 +00:00
|
|
|
t.Errorf("Unexpected pulled containers: %v", puller.ImagesPulled)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if len(fakeDocker.Created) != 2 ||
|
2015-11-19 21:59:18 +00:00
|
|
|
!matchString(t, "/k8s_POD\\.[a-f0-9]+_foo_new_", fakeDocker.Created[0]) ||
|
|
|
|
|
!matchString(t, "/k8s_bar\\.[a-f0-9]+_foo_new_", fakeDocker.Created[1]) {
|
2015-05-26 23:45:38 +00:00
|
|
|
t.Errorf("Unexpected containers created %v", fakeDocker.Created)
|
|
|
|
|
}
|
|
|
|
|
fakeDocker.Unlock()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestSyncPodWithPodInfraCreatesContainer(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{Name: "bar"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers([]*docker.Container{{
|
|
|
|
|
ID: "9876",
|
|
|
|
|
// Pod infra container.
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_foo_new_12345678_0",
|
|
|
|
|
}})
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-05-26 23:45:38 +00:00
|
|
|
|
|
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Inspect pod infra container (but does not create)"
|
|
|
|
|
"inspect_container",
|
|
|
|
|
// Create container.
|
2015-06-15 21:38:45 +00:00
|
|
|
"create", "start", "inspect_container",
|
2015-05-26 23:45:38 +00:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
fakeDocker.Lock()
|
|
|
|
|
if len(fakeDocker.Created) != 1 ||
|
2015-11-19 21:59:18 +00:00
|
|
|
!matchString(t, "/k8s_bar\\.[a-f0-9]+_foo_new_", fakeDocker.Created[0]) {
|
2015-05-26 23:45:38 +00:00
|
|
|
t.Errorf("Unexpected containers created %v", fakeDocker.Created)
|
|
|
|
|
}
|
|
|
|
|
fakeDocker.Unlock()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestSyncPodDeletesWithNoPodInfraContainer(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo1",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{Name: "bar1"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers([]*docker.Container{{
|
|
|
|
|
ID: "1234",
|
|
|
|
|
Name: "/k8s_bar1_foo1_new_12345678_0",
|
|
|
|
|
}})
|
2015-10-23 20:02:32 +00:00
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-05-26 23:45:38 +00:00
|
|
|
|
|
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Kill the container since pod infra container is not running.
|
2015-08-20 01:57:58 +00:00
|
|
|
"stop",
|
2015-05-26 23:45:38 +00:00
|
|
|
// Create pod infra container.
|
2015-09-11 21:23:15 +00:00
|
|
|
"create", "start", "inspect_container", "inspect_container",
|
2015-05-26 23:45:38 +00:00
|
|
|
// Create container.
|
2015-06-15 21:38:45 +00:00
|
|
|
"create", "start", "inspect_container",
|
2015-05-26 23:45:38 +00:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
// A map iteration is used to delete containers, so must not depend on
|
|
|
|
|
// order here.
|
|
|
|
|
expectedToStop := map[string]bool{
|
|
|
|
|
"1234": true,
|
|
|
|
|
}
|
|
|
|
|
fakeDocker.Lock()
|
|
|
|
|
if len(fakeDocker.Stopped) != 1 || !expectedToStop[fakeDocker.Stopped[0]] {
|
|
|
|
|
t.Errorf("Wrong containers were stopped: %v", fakeDocker.Stopped)
|
|
|
|
|
}
|
|
|
|
|
fakeDocker.Unlock()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestSyncPodDeletesDuplicate(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "bar",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{Name: "foo"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers([]*docker.Container{
|
2015-05-26 23:45:38 +00:00
|
|
|
{
|
2015-11-11 00:51:35 +00:00
|
|
|
ID: "1234",
|
|
|
|
|
Name: "/k8s_foo_bar_new_12345678_1111",
|
2015-05-26 23:45:38 +00:00
|
|
|
},
|
|
|
|
|
{
|
2015-11-11 00:51:35 +00:00
|
|
|
ID: "9876",
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_bar_new_12345678_2222",
|
2015-05-26 23:45:38 +00:00
|
|
|
},
|
|
|
|
|
{
|
2015-11-11 00:51:35 +00:00
|
|
|
ID: "4567",
|
|
|
|
|
Name: "/k8s_foo_bar_new_12345678_3333",
|
|
|
|
|
}})
|
2015-05-26 23:45:38 +00:00
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-05-26 23:45:38 +00:00
|
|
|
|
|
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Check the pod infra container.
|
|
|
|
|
"inspect_container",
|
|
|
|
|
// Kill the duplicated container.
|
2015-08-20 01:57:58 +00:00
|
|
|
"stop",
|
2015-05-26 23:45:38 +00:00
|
|
|
})
|
|
|
|
|
// Expect one of the duplicates to be killed.
|
|
|
|
|
if len(fakeDocker.Stopped) != 1 || (fakeDocker.Stopped[0] != "1234" && fakeDocker.Stopped[0] != "4567") {
|
|
|
|
|
t.Errorf("Wrong containers were stopped: %v", fakeDocker.Stopped)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestSyncPodBadHash(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{Name: "bar"},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers([]*docker.Container{
|
2015-05-26 23:45:38 +00:00
|
|
|
{
|
2015-11-11 00:51:35 +00:00
|
|
|
ID: "1234",
|
|
|
|
|
Name: "/k8s_bar.1234_foo_new_12345678_42",
|
2015-05-26 23:45:38 +00:00
|
|
|
},
|
|
|
|
|
{
|
2015-11-11 00:51:35 +00:00
|
|
|
ID: "9876",
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_foo_new_12345678_42",
|
|
|
|
|
}})
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-05-26 23:45:38 +00:00
|
|
|
|
|
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Check the pod infra container.
|
|
|
|
|
"inspect_container",
|
|
|
|
|
// Kill and restart the bad hash container.
|
2015-08-20 01:57:58 +00:00
|
|
|
"stop", "create", "start", "inspect_container",
|
2015-05-26 23:45:38 +00:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
if err := fakeDocker.AssertStopped([]string{"1234"}); err != nil {
|
|
|
|
|
t.Errorf("%v", err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestSyncPodsUnhealthy(t *testing.T) {
|
2015-10-19 22:15:59 +00:00
|
|
|
const (
|
|
|
|
|
unhealthyContainerID = "1234"
|
|
|
|
|
infraContainerID = "9876"
|
|
|
|
|
)
|
2015-05-26 23:45:38 +00:00
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
2015-10-19 22:15:59 +00:00
|
|
|
Containers: []api.Container{{Name: "unhealthy"}},
|
2015-05-26 23:45:38 +00:00
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers([]*docker.Container{
|
2015-05-26 23:45:38 +00:00
|
|
|
{
|
2015-11-11 00:51:35 +00:00
|
|
|
ID: unhealthyContainerID,
|
|
|
|
|
Name: "/k8s_unhealthy_foo_new_12345678_42",
|
2015-05-26 23:45:38 +00:00
|
|
|
},
|
|
|
|
|
{
|
2015-11-11 00:51:35 +00:00
|
|
|
ID: infraContainerID,
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_foo_new_12345678_42",
|
|
|
|
|
}})
|
2015-12-24 23:46:56 +00:00
|
|
|
dm.livenessManager.Set(kubecontainer.DockerID(unhealthyContainerID).ContainerID(), proberesults.Failure, nil)
|
2015-05-26 23:45:38 +00:00
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-05-26 23:45:38 +00:00
|
|
|
|
|
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Check the pod infra container.
|
|
|
|
|
"inspect_container",
|
|
|
|
|
// Kill the unhealthy container.
|
2015-08-20 01:57:58 +00:00
|
|
|
"stop",
|
2015-05-26 23:45:38 +00:00
|
|
|
// Restart the unhealthy container.
|
2015-06-15 21:38:45 +00:00
|
|
|
"create", "start", "inspect_container",
|
2015-05-26 23:45:38 +00:00
|
|
|
})
|
|
|
|
|
|
2015-10-19 22:15:59 +00:00
|
|
|
if err := fakeDocker.AssertStopped([]string{unhealthyContainerID}); err != nil {
|
2015-05-26 23:45:38 +00:00
|
|
|
t.Errorf("%v", err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestSyncPodsDoesNothing(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
container := api.Container{Name: "bar"}
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
container,
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers([]*docker.Container{
|
2015-05-26 23:45:38 +00:00
|
|
|
{
|
2015-11-11 00:51:35 +00:00
|
|
|
ID: "1234",
|
|
|
|
|
Name: "/k8s_bar." + strconv.FormatUint(kubecontainer.HashContainer(&container), 16) + "_foo_new_12345678_0",
|
2015-05-26 23:45:38 +00:00
|
|
|
},
|
|
|
|
|
{
|
2015-11-11 00:51:35 +00:00
|
|
|
ID: "9876",
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_foo_new_12345678_0",
|
|
|
|
|
}})
|
2015-05-26 23:45:38 +00:00
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-05-26 23:45:38 +00:00
|
|
|
|
|
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Check the pod infra contianer.
|
|
|
|
|
"inspect_container",
|
|
|
|
|
})
|
|
|
|
|
}
|
2015-05-27 18:00:20 +00:00
|
|
|
|
|
|
|
|
func TestSyncPodWithPullPolicy(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
2015-08-10 17:28:39 +00:00
|
|
|
puller := dm.dockerPuller.(*FakeDockerPuller)
|
2015-05-27 18:00:20 +00:00
|
|
|
puller.HasImages = []string{"existing_one", "want:latest"}
|
2015-06-09 00:53:24 +00:00
|
|
|
dm.podInfraContainerImage = "pod_infra_image"
|
2015-05-27 18:00:20 +00:00
|
|
|
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{Name: "bar", Image: "pull_always_image", ImagePullPolicy: api.PullAlways},
|
|
|
|
|
{Name: "bar2", Image: "pull_if_not_present_image", ImagePullPolicy: api.PullIfNotPresent},
|
|
|
|
|
{Name: "bar3", Image: "existing_one", ImagePullPolicy: api.PullIfNotPresent},
|
|
|
|
|
{Name: "bar4", Image: "want:latest", ImagePullPolicy: api.PullIfNotPresent},
|
2015-10-02 13:45:46 +00:00
|
|
|
{Name: "bar5", Image: "pull_never_image", ImagePullPolicy: api.PullNever},
|
2015-05-27 18:00:20 +00:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-10-02 13:45:46 +00:00
|
|
|
expectedStatusMap := map[string]api.ContainerState{
|
|
|
|
|
"bar": {Running: &api.ContainerStateRunning{unversioned.Now()}},
|
|
|
|
|
"bar2": {Running: &api.ContainerStateRunning{unversioned.Now()}},
|
|
|
|
|
"bar3": {Running: &api.ContainerStateRunning{unversioned.Now()}},
|
|
|
|
|
"bar4": {Running: &api.ContainerStateRunning{unversioned.Now()}},
|
|
|
|
|
"bar5": {Waiting: &api.ContainerStateWaiting{Reason: kubecontainer.ErrImageNeverPull.Error(),
|
|
|
|
|
Message: "Container image \"pull_never_image\" is not present with pull policy of Never"}},
|
2015-06-09 00:53:24 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, true)
|
2015-12-05 00:06:25 +00:00
|
|
|
statuses, err := dm.GetAPIPodStatus(pod)
|
2015-10-02 13:45:46 +00:00
|
|
|
if err != nil {
|
|
|
|
|
t.Errorf("unable to get pod status")
|
2015-06-09 00:53:24 +00:00
|
|
|
}
|
2015-10-02 13:45:46 +00:00
|
|
|
for _, c := range pod.Spec.Containers {
|
|
|
|
|
if containerStatus, ok := api.GetContainerStatus(statuses.ContainerStatuses, c.Name); ok {
|
|
|
|
|
// copy the StartedAt time, to make the structs match
|
|
|
|
|
if containerStatus.State.Running != nil && expectedStatusMap[c.Name].Running != nil {
|
|
|
|
|
expectedStatusMap[c.Name].Running.StartedAt = containerStatus.State.Running.StartedAt
|
|
|
|
|
}
|
2015-12-05 00:06:25 +00:00
|
|
|
assert.Equal(t, expectedStatusMap[c.Name], containerStatus.State, "for container %s", c.Name)
|
2015-10-02 13:45:46 +00:00
|
|
|
}
|
2015-06-09 00:53:24 +00:00
|
|
|
}
|
|
|
|
|
|
2015-10-02 13:45:46 +00:00
|
|
|
fakeDocker.Lock()
|
|
|
|
|
defer fakeDocker.Unlock()
|
2015-05-27 18:00:20 +00:00
|
|
|
|
2015-10-02 13:45:46 +00:00
|
|
|
pulledImageSorted := puller.ImagesPulled[:]
|
|
|
|
|
sort.Strings(pulledImageSorted)
|
|
|
|
|
assert.Equal(t, []string{"pod_infra_image", "pull_always_image", "pull_if_not_present_image"}, pulledImageSorted)
|
2015-05-27 18:00:20 +00:00
|
|
|
|
2015-10-02 13:45:46 +00:00
|
|
|
if len(fakeDocker.Created) != 5 {
|
2015-05-27 18:00:20 +00:00
|
|
|
t.Errorf("Unexpected containers created %v", fakeDocker.Created)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestSyncPodWithRestartPolicy(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
containers := []api.Container{
|
|
|
|
|
{Name: "succeeded"},
|
|
|
|
|
{Name: "failed"},
|
|
|
|
|
}
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: containers,
|
|
|
|
|
},
|
|
|
|
|
}
|
2015-11-11 00:51:35 +00:00
|
|
|
dockerContainers := []*docker.Container{
|
2015-05-27 18:00:20 +00:00
|
|
|
{
|
|
|
|
|
ID: "9876",
|
2015-11-11 00:51:35 +00:00
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_foo_new_12345678_0",
|
2015-05-27 18:00:20 +00:00
|
|
|
Config: &docker.Config{},
|
|
|
|
|
State: docker.State{
|
|
|
|
|
StartedAt: time.Now(),
|
|
|
|
|
Running: true,
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-11-11 00:51:35 +00:00
|
|
|
{
|
2015-05-27 18:00:20 +00:00
|
|
|
ID: "1234",
|
2015-11-11 00:51:35 +00:00
|
|
|
Name: "/k8s_succeeded." + strconv.FormatUint(kubecontainer.HashContainer(&containers[0]), 16) + "_foo_new_12345678_0",
|
2015-05-27 18:00:20 +00:00
|
|
|
Config: &docker.Config{},
|
|
|
|
|
State: docker.State{
|
|
|
|
|
ExitCode: 0,
|
|
|
|
|
StartedAt: time.Now(),
|
|
|
|
|
FinishedAt: time.Now(),
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-11-11 00:51:35 +00:00
|
|
|
{
|
2015-05-27 18:00:20 +00:00
|
|
|
ID: "5678",
|
2015-11-11 00:51:35 +00:00
|
|
|
Name: "/k8s_failed." + strconv.FormatUint(kubecontainer.HashContainer(&containers[1]), 16) + "_foo_new_12345678_0",
|
2015-05-27 18:00:20 +00:00
|
|
|
Config: &docker.Config{},
|
|
|
|
|
State: docker.State{
|
|
|
|
|
ExitCode: 42,
|
|
|
|
|
StartedAt: time.Now(),
|
|
|
|
|
FinishedAt: time.Now(),
|
|
|
|
|
},
|
2015-11-11 00:51:35 +00:00
|
|
|
}}
|
2015-05-27 18:00:20 +00:00
|
|
|
|
|
|
|
|
tests := []struct {
|
|
|
|
|
policy api.RestartPolicy
|
|
|
|
|
calls []string
|
|
|
|
|
created []string
|
|
|
|
|
stopped []string
|
|
|
|
|
}{
|
|
|
|
|
{
|
|
|
|
|
api.RestartPolicyAlways,
|
|
|
|
|
[]string{
|
|
|
|
|
// Check the pod infra container.
|
|
|
|
|
"inspect_container",
|
|
|
|
|
// Restart both containers.
|
2015-06-15 21:38:45 +00:00
|
|
|
"create", "start", "inspect_container", "create", "start", "inspect_container",
|
2015-05-27 18:00:20 +00:00
|
|
|
},
|
|
|
|
|
[]string{"succeeded", "failed"},
|
|
|
|
|
[]string{},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
api.RestartPolicyOnFailure,
|
|
|
|
|
[]string{
|
|
|
|
|
// Check the pod infra container.
|
|
|
|
|
"inspect_container",
|
|
|
|
|
// Restart the failed container.
|
2015-06-15 21:38:45 +00:00
|
|
|
"create", "start", "inspect_container",
|
2015-05-27 18:00:20 +00:00
|
|
|
},
|
|
|
|
|
[]string{"failed"},
|
|
|
|
|
[]string{},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
api.RestartPolicyNever,
|
|
|
|
|
[]string{
|
|
|
|
|
// Check the pod infra container.
|
2016-01-22 21:14:41 +00:00
|
|
|
"inspect_container", "inspect_container", "inspect_container",
|
2015-05-27 18:00:20 +00:00
|
|
|
// Stop the last pod infra container.
|
2015-08-20 01:57:58 +00:00
|
|
|
"stop",
|
2015-05-27 18:00:20 +00:00
|
|
|
},
|
|
|
|
|
[]string{},
|
|
|
|
|
[]string{"9876"},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for i, tt := range tests {
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeContainers(dockerContainers)
|
2015-05-27 18:00:20 +00:00
|
|
|
pod.Spec.RestartPolicy = tt.policy
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-05-27 18:00:20 +00:00
|
|
|
// 'stop' is because the pod infra container is killed when no container is running.
|
|
|
|
|
verifyCalls(t, fakeDocker, tt.calls)
|
|
|
|
|
|
|
|
|
|
if err := fakeDocker.AssertCreated(tt.created); err != nil {
|
2016-01-22 21:14:41 +00:00
|
|
|
t.Errorf("case [%d]: %v", i, err)
|
2015-05-27 18:00:20 +00:00
|
|
|
}
|
|
|
|
|
if err := fakeDocker.AssertStopped(tt.stopped); err != nil {
|
2016-01-22 21:14:41 +00:00
|
|
|
t.Errorf("case [%d]: %v", i, err)
|
2015-05-27 18:00:20 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-12-05 00:06:25 +00:00
|
|
|
func TestGetAPIPodStatusWithLastTermination(t *testing.T) {
|
2015-05-27 18:00:20 +00:00
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
containers := []api.Container{
|
|
|
|
|
{Name: "succeeded"},
|
|
|
|
|
{Name: "failed"},
|
|
|
|
|
}
|
|
|
|
|
|
2015-10-30 05:42:25 +00:00
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: containers,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-11 00:51:35 +00:00
|
|
|
dockerContainers := []*docker.Container{
|
2015-05-27 18:00:20 +00:00
|
|
|
{
|
2015-11-11 00:51:35 +00:00
|
|
|
ID: "9876",
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_foo_new_12345678_0",
|
2015-05-27 18:00:20 +00:00
|
|
|
State: docker.State{
|
|
|
|
|
StartedAt: time.Now(),
|
|
|
|
|
FinishedAt: time.Now(),
|
|
|
|
|
Running: true,
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-11-11 00:51:35 +00:00
|
|
|
{
|
|
|
|
|
ID: "1234",
|
|
|
|
|
Name: "/k8s_succeeded." + strconv.FormatUint(kubecontainer.HashContainer(&containers[0]), 16) + "_foo_new_12345678_0",
|
2015-05-27 18:00:20 +00:00
|
|
|
State: docker.State{
|
|
|
|
|
ExitCode: 0,
|
|
|
|
|
StartedAt: time.Now(),
|
|
|
|
|
FinishedAt: time.Now(),
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-11-11 00:51:35 +00:00
|
|
|
{
|
|
|
|
|
ID: "5678",
|
|
|
|
|
Name: "/k8s_failed." + strconv.FormatUint(kubecontainer.HashContainer(&containers[1]), 16) + "_foo_new_12345678_0",
|
2015-05-27 18:00:20 +00:00
|
|
|
State: docker.State{
|
|
|
|
|
ExitCode: 42,
|
|
|
|
|
StartedAt: time.Now(),
|
|
|
|
|
FinishedAt: time.Now(),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
tests := []struct {
|
|
|
|
|
policy api.RestartPolicy
|
|
|
|
|
created []string
|
|
|
|
|
stopped []string
|
|
|
|
|
lastTerminations []string
|
|
|
|
|
}{
|
|
|
|
|
{
|
|
|
|
|
api.RestartPolicyAlways,
|
|
|
|
|
[]string{"succeeded", "failed"},
|
|
|
|
|
[]string{},
|
|
|
|
|
[]string{"docker://1234", "docker://5678"},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
api.RestartPolicyOnFailure,
|
|
|
|
|
[]string{"failed"},
|
|
|
|
|
[]string{},
|
|
|
|
|
[]string{"docker://5678"},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
api.RestartPolicyNever,
|
|
|
|
|
[]string{},
|
|
|
|
|
[]string{"9876"},
|
|
|
|
|
[]string{},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for i, tt := range tests {
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeContainers(dockerContainers)
|
2015-05-27 18:00:20 +00:00
|
|
|
fakeDocker.ClearCalls()
|
2015-10-30 05:42:25 +00:00
|
|
|
pod.Spec.RestartPolicy = tt.policy
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-05-27 18:00:20 +00:00
|
|
|
|
|
|
|
|
// Check if we can retrieve the pod status.
|
2015-12-05 00:06:25 +00:00
|
|
|
status, err := dm.GetAPIPodStatus(pod)
|
2015-05-27 18:00:20 +00:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("unexpected error %v", err)
|
|
|
|
|
}
|
|
|
|
|
terminatedContainers := []string{}
|
|
|
|
|
for _, cs := range status.ContainerStatuses {
|
2015-05-27 22:02:11 +00:00
|
|
|
if cs.LastTerminationState.Terminated != nil {
|
|
|
|
|
terminatedContainers = append(terminatedContainers, cs.LastTerminationState.Terminated.ContainerID)
|
2015-05-27 18:00:20 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
sort.StringSlice(terminatedContainers).Sort()
|
|
|
|
|
sort.StringSlice(tt.lastTerminations).Sort()
|
|
|
|
|
if !reflect.DeepEqual(terminatedContainers, tt.lastTerminations) {
|
|
|
|
|
t.Errorf("Expected(sorted): %#v, Actual(sorted): %#v", tt.lastTerminations, terminatedContainers)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if err := fakeDocker.AssertCreated(tt.created); err != nil {
|
|
|
|
|
t.Errorf("%d: %v", i, err)
|
|
|
|
|
}
|
|
|
|
|
if err := fakeDocker.AssertStopped(tt.stopped); err != nil {
|
|
|
|
|
t.Errorf("%d: %v", i, err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-08-13 12:59:15 +00:00
|
|
|
func TestSyncPodBackoff(t *testing.T) {
|
2016-02-01 18:50:05 +00:00
|
|
|
var fakeClock = util.NewFakeClock(time.Now())
|
2015-08-13 12:59:15 +00:00
|
|
|
startTime := fakeClock.Now()
|
|
|
|
|
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
containers := []api.Container{
|
|
|
|
|
{Name: "good"},
|
|
|
|
|
{Name: "bad"},
|
|
|
|
|
}
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "podfoo",
|
|
|
|
|
Namespace: "nsnew",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: containers,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
stableId := "k8s_bad." + strconv.FormatUint(kubecontainer.HashContainer(&containers[1]), 16) + "_podfoo_nsnew_12345678"
|
2015-11-11 00:51:35 +00:00
|
|
|
dockerContainers := []*docker.Container{
|
|
|
|
|
{
|
|
|
|
|
ID: "9876",
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_podfoo_nsnew_12345678_0",
|
2015-08-13 12:59:15 +00:00
|
|
|
State: docker.State{
|
|
|
|
|
StartedAt: startTime,
|
|
|
|
|
Running: true,
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-11-11 00:51:35 +00:00
|
|
|
{
|
|
|
|
|
ID: "1234",
|
|
|
|
|
Name: "/k8s_good." + strconv.FormatUint(kubecontainer.HashContainer(&containers[0]), 16) + "_podfoo_nsnew_12345678_0",
|
2015-08-13 12:59:15 +00:00
|
|
|
State: docker.State{
|
|
|
|
|
StartedAt: startTime,
|
|
|
|
|
Running: true,
|
|
|
|
|
},
|
|
|
|
|
},
|
2015-11-11 00:51:35 +00:00
|
|
|
{
|
|
|
|
|
ID: "5678",
|
|
|
|
|
Name: "/k8s_bad." + strconv.FormatUint(kubecontainer.HashContainer(&containers[1]), 16) + "_podfoo_nsnew_12345678_0",
|
2015-08-13 12:59:15 +00:00
|
|
|
State: docker.State{
|
|
|
|
|
ExitCode: 42,
|
|
|
|
|
StartedAt: startTime,
|
|
|
|
|
FinishedAt: fakeClock.Now(),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
startCalls := []string{"inspect_container", "create", "start", "inspect_container"}
|
|
|
|
|
backOffCalls := []string{"inspect_container"}
|
|
|
|
|
tests := []struct {
|
|
|
|
|
tick int
|
|
|
|
|
backoff int
|
|
|
|
|
killDelay int
|
|
|
|
|
result []string
|
2015-09-02 17:18:11 +00:00
|
|
|
expectErr bool
|
2015-08-13 12:59:15 +00:00
|
|
|
}{
|
2015-09-02 17:18:11 +00:00
|
|
|
{1, 1, 1, startCalls, false},
|
|
|
|
|
{2, 2, 2, startCalls, false},
|
|
|
|
|
{3, 2, 3, backOffCalls, true},
|
|
|
|
|
{4, 4, 4, startCalls, false},
|
|
|
|
|
{5, 4, 5, backOffCalls, true},
|
|
|
|
|
{6, 4, 6, backOffCalls, true},
|
|
|
|
|
{7, 4, 7, backOffCalls, true},
|
|
|
|
|
{8, 8, 129, startCalls, false},
|
|
|
|
|
{130, 1, 0, startCalls, false},
|
2015-08-13 12:59:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
backOff := util.NewBackOff(time.Second, time.Minute)
|
|
|
|
|
backOff.Clock = fakeClock
|
|
|
|
|
for _, c := range tests {
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeContainers(dockerContainers)
|
2016-02-01 18:50:05 +00:00
|
|
|
fakeClock.SetTime(startTime.Add(time.Duration(c.tick) * time.Second))
|
2015-08-13 12:59:15 +00:00
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, backOff, c.expectErr)
|
2015-08-13 12:59:15 +00:00
|
|
|
verifyCalls(t, fakeDocker, c.result)
|
|
|
|
|
|
|
|
|
|
if backOff.Get(stableId) != time.Duration(c.backoff)*time.Second {
|
|
|
|
|
t.Errorf("At tick %s expected backoff=%s got=%s", time.Duration(c.tick)*time.Second, time.Duration(c.backoff)*time.Second, backOff.Get(stableId))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if len(fakeDocker.Created) > 0 {
|
|
|
|
|
// pretend kill the container
|
|
|
|
|
fakeDocker.Created = nil
|
2015-11-11 00:51:35 +00:00
|
|
|
dockerContainers[2].State.FinishedAt = startTime.Add(time.Duration(c.killDelay) * time.Second)
|
2015-08-13 12:59:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-05-27 18:00:20 +00:00
|
|
|
func TestGetPodCreationFailureReason(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
// Inject the creation failure error to docker.
|
2015-09-16 14:07:25 +00:00
|
|
|
failureReason := "RunContainerError"
|
2015-05-27 18:00:20 +00:00
|
|
|
fakeDocker.Errors = map[string]error{
|
|
|
|
|
"create": fmt.Errorf("%s", failureReason),
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{{Name: "bar"}},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Pretend that the pod infra container has already been created, so that
|
|
|
|
|
// we can run the user containers.
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers([]*docker.Container{{
|
|
|
|
|
ID: "9876",
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_foo_new_12345678_0",
|
|
|
|
|
}})
|
2015-05-27 18:00:20 +00:00
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, true)
|
2015-05-27 18:00:20 +00:00
|
|
|
// Check if we can retrieve the pod status.
|
2015-12-05 00:06:25 +00:00
|
|
|
status, err := dm.GetAPIPodStatus(pod)
|
2015-05-27 18:00:20 +00:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("unexpected error %v", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if len(status.ContainerStatuses) < 1 {
|
|
|
|
|
t.Errorf("expected 1 container status, got %d", len(status.ContainerStatuses))
|
|
|
|
|
} else {
|
|
|
|
|
state := status.ContainerStatuses[0].State
|
|
|
|
|
if state.Waiting == nil {
|
|
|
|
|
t.Errorf("expected waiting state, got %#v", state)
|
|
|
|
|
} else if state.Waiting.Reason != failureReason {
|
|
|
|
|
t.Errorf("expected reason %q, got %q", failureReason, state.Waiting.Reason)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestGetPodPullImageFailureReason(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
// Initialize the FakeDockerPuller so that it'd try to pull non-existent
|
|
|
|
|
// images.
|
2015-08-10 17:28:39 +00:00
|
|
|
puller := dm.dockerPuller.(*FakeDockerPuller)
|
2015-05-27 18:00:20 +00:00
|
|
|
puller.HasImages = []string{}
|
|
|
|
|
// Inject the pull image failure error.
|
2015-10-02 13:45:46 +00:00
|
|
|
failureReason := kubecontainer.ErrImagePull.Error()
|
2015-05-27 18:00:20 +00:00
|
|
|
puller.ErrorsToInject = []error{fmt.Errorf("%s", failureReason)}
|
|
|
|
|
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{{Name: "bar", Image: "realImage", ImagePullPolicy: api.PullAlways}},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
// Pretend that the pod infra container has already been created, so that
|
|
|
|
|
// we can run the user containers.
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers([]*docker.Container{{
|
|
|
|
|
ID: "9876",
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_foo_new_12345678_0",
|
|
|
|
|
}})
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, true)
|
2015-05-27 18:00:20 +00:00
|
|
|
// Check if we can retrieve the pod status.
|
2015-12-05 00:06:25 +00:00
|
|
|
status, err := dm.GetAPIPodStatus(pod)
|
2015-05-27 18:00:20 +00:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("unexpected error %v", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if len(status.ContainerStatuses) < 1 {
|
|
|
|
|
t.Errorf("expected 1 container status, got %d", len(status.ContainerStatuses))
|
|
|
|
|
} else {
|
|
|
|
|
state := status.ContainerStatuses[0].State
|
|
|
|
|
if state.Waiting == nil {
|
|
|
|
|
t.Errorf("expected waiting state, got %#v", state)
|
|
|
|
|
} else if state.Waiting.Reason != failureReason {
|
|
|
|
|
t.Errorf("expected reason %q, got %q", failureReason, state.Waiting.Reason)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestGetRestartCount(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
containers := []api.Container{
|
|
|
|
|
{Name: "bar"},
|
|
|
|
|
}
|
|
|
|
|
pod := api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
2015-10-23 20:02:32 +00:00
|
|
|
Containers: containers,
|
|
|
|
|
RestartPolicy: "Always",
|
2015-05-27 18:00:20 +00:00
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Helper function for verifying the restart count.
|
|
|
|
|
verifyRestartCount := func(pod *api.Pod, expectedCount int) api.PodStatus {
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-12-05 00:06:25 +00:00
|
|
|
status, err := dm.GetAPIPodStatus(pod)
|
2015-05-27 18:00:20 +00:00
|
|
|
if err != nil {
|
2015-11-13 19:37:33 +00:00
|
|
|
t.Fatalf("Unexpected error %v", err)
|
2015-05-27 18:00:20 +00:00
|
|
|
}
|
|
|
|
|
restartCount := status.ContainerStatuses[0].RestartCount
|
|
|
|
|
if restartCount != expectedCount {
|
|
|
|
|
t.Errorf("expected %d restart count, got %d", expectedCount, restartCount)
|
|
|
|
|
}
|
|
|
|
|
return *status
|
|
|
|
|
}
|
|
|
|
|
|
2015-10-23 20:02:32 +00:00
|
|
|
killOneContainer := func(pod *api.Pod) {
|
2015-12-05 00:06:25 +00:00
|
|
|
status, err := dm.GetAPIPodStatus(pod)
|
2015-10-23 20:02:32 +00:00
|
|
|
if err != nil {
|
2015-11-13 19:37:33 +00:00
|
|
|
t.Fatalf("Unexpected error %v", err)
|
2015-10-23 20:02:32 +00:00
|
|
|
}
|
|
|
|
|
containerID := kubecontainer.ParseContainerID(status.ContainerStatuses[0].ContainerID)
|
2015-10-10 09:12:47 +00:00
|
|
|
dm.KillContainerInPod(containerID, &pod.Spec.Containers[0], pod, "test container restart count.")
|
2015-10-23 20:02:32 +00:00
|
|
|
}
|
|
|
|
|
// Container "bar" starts the first time.
|
2015-05-27 18:00:20 +00:00
|
|
|
// TODO: container lists are expected to be sorted reversely by time.
|
|
|
|
|
// We should fix FakeDockerClient to sort the list before returning.
|
2015-10-23 20:02:32 +00:00
|
|
|
// (randome-liu) Just partially sorted now.
|
|
|
|
|
pod.Status = verifyRestartCount(&pod, 0)
|
|
|
|
|
killOneContainer(&pod)
|
|
|
|
|
|
|
|
|
|
// Poor container "bar" has been killed, and should be restarted with restart count 1
|
2015-05-27 18:00:20 +00:00
|
|
|
pod.Status = verifyRestartCount(&pod, 1)
|
2015-10-23 20:02:32 +00:00
|
|
|
killOneContainer(&pod)
|
2015-05-27 18:00:20 +00:00
|
|
|
|
2015-10-23 20:02:32 +00:00
|
|
|
// Poor container "bar" has been killed again, and should be restarted with restart count 2
|
2015-05-27 18:00:20 +00:00
|
|
|
pod.Status = verifyRestartCount(&pod, 2)
|
2015-10-23 20:02:32 +00:00
|
|
|
killOneContainer(&pod)
|
|
|
|
|
|
|
|
|
|
// Poor container "bar" has been killed again ang again, and should be restarted with restart count 3
|
|
|
|
|
pod.Status = verifyRestartCount(&pod, 3)
|
|
|
|
|
|
|
|
|
|
// The oldest container has been garbage collected
|
|
|
|
|
exitedContainers := fakeDocker.ExitedContainerList
|
|
|
|
|
fakeDocker.ExitedContainerList = exitedContainers[:len(exitedContainers)-1]
|
|
|
|
|
pod.Status = verifyRestartCount(&pod, 3)
|
2015-05-27 18:00:20 +00:00
|
|
|
|
2015-10-23 20:02:32 +00:00
|
|
|
// The last two oldest containers have been garbage collected
|
|
|
|
|
fakeDocker.ExitedContainerList = exitedContainers[:len(exitedContainers)-2]
|
|
|
|
|
pod.Status = verifyRestartCount(&pod, 3)
|
|
|
|
|
|
|
|
|
|
// All exited containers have been garbage collected
|
2015-05-27 18:00:20 +00:00
|
|
|
fakeDocker.ExitedContainerList = []docker.APIContainers{}
|
2015-10-23 20:02:32 +00:00
|
|
|
pod.Status = verifyRestartCount(&pod, 3)
|
|
|
|
|
killOneContainer(&pod)
|
|
|
|
|
|
|
|
|
|
// Poor container "bar" has been killed again ang again and again, and should be restarted with restart count 4
|
|
|
|
|
pod.Status = verifyRestartCount(&pod, 4)
|
2015-05-27 18:00:20 +00:00
|
|
|
}
|
2015-06-01 19:30:51 +00:00
|
|
|
|
2015-11-02 22:32:58 +00:00
|
|
|
func TestGetTerminationMessagePath(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
containers := []api.Container{
|
|
|
|
|
{
|
|
|
|
|
Name: "bar",
|
|
|
|
|
TerminationMessagePath: "/dev/somepath",
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: containers,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-11-02 22:32:58 +00:00
|
|
|
|
|
|
|
|
containerList := fakeDocker.ContainerList
|
|
|
|
|
if len(containerList) != 2 {
|
|
|
|
|
// One for infra container, one for container "bar"
|
2015-11-13 19:37:33 +00:00
|
|
|
t.Fatalf("Unexpected container list length %d", len(containerList))
|
2015-11-02 22:32:58 +00:00
|
|
|
}
|
|
|
|
|
inspectResult, err := dm.client.InspectContainer(containerList[0].ID)
|
|
|
|
|
if err != nil {
|
2015-11-13 19:37:33 +00:00
|
|
|
t.Fatalf("Unexpected inspect error: %v", err)
|
|
|
|
|
}
|
2015-12-30 07:46:52 +00:00
|
|
|
containerInfo := getContainerInfoFromLabel(inspectResult.Config.Labels)
|
2015-11-13 19:37:33 +00:00
|
|
|
terminationMessagePath := containerInfo.TerminationMessagePath
|
2015-11-02 22:32:58 +00:00
|
|
|
if terminationMessagePath != containers[0].TerminationMessagePath {
|
|
|
|
|
t.Errorf("expected termination message path %s, got %s", containers[0].TerminationMessagePath, terminationMessagePath)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-01 19:30:51 +00:00
|
|
|
func TestSyncPodWithPodInfraCreatesContainerCallsHandler(t *testing.T) {
|
|
|
|
|
fakeHTTPClient := &fakeHTTP{}
|
|
|
|
|
dm, fakeDocker := newTestDockerManagerWithHTTPClient(fakeHTTPClient)
|
|
|
|
|
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{
|
|
|
|
|
Name: "bar",
|
|
|
|
|
Lifecycle: &api.Lifecycle{
|
|
|
|
|
PostStart: &api.Handler{
|
|
|
|
|
HTTPGet: &api.HTTPGetAction{
|
|
|
|
|
Host: "foo",
|
2015-11-10 06:28:45 +00:00
|
|
|
Port: intstr.FromInt(8080),
|
2015-06-01 19:30:51 +00:00
|
|
|
Path: "bar",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers([]*docker.Container{{
|
|
|
|
|
ID: "9876",
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_foo_new_12345678_0",
|
|
|
|
|
}})
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-06-01 19:30:51 +00:00
|
|
|
|
|
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Check the pod infra container.
|
|
|
|
|
"inspect_container",
|
|
|
|
|
// Create container.
|
2015-06-15 21:38:45 +00:00
|
|
|
"create", "start", "inspect_container",
|
2015-06-01 19:30:51 +00:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
fakeDocker.Lock()
|
|
|
|
|
if len(fakeDocker.Created) != 1 ||
|
2015-11-19 21:59:18 +00:00
|
|
|
!matchString(t, "/k8s_bar\\.[a-f0-9]+_foo_new_", fakeDocker.Created[0]) {
|
2015-06-01 19:30:51 +00:00
|
|
|
t.Errorf("Unexpected containers created %v", fakeDocker.Created)
|
|
|
|
|
}
|
|
|
|
|
fakeDocker.Unlock()
|
|
|
|
|
if fakeHTTPClient.url != "http://foo:8080/bar" {
|
|
|
|
|
t.Errorf("Unexpected handler: %q", fakeHTTPClient.url)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestSyncPodEventHandlerFails(t *testing.T) {
|
|
|
|
|
// Simulate HTTP failure.
|
|
|
|
|
fakeHTTPClient := &fakeHTTP{err: fmt.Errorf("test error")}
|
|
|
|
|
dm, fakeDocker := newTestDockerManagerWithHTTPClient(fakeHTTPClient)
|
|
|
|
|
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{Name: "bar",
|
|
|
|
|
Lifecycle: &api.Lifecycle{
|
|
|
|
|
PostStart: &api.Handler{
|
|
|
|
|
HTTPGet: &api.HTTPGetAction{
|
|
|
|
|
Host: "does.no.exist",
|
2015-11-10 06:28:45 +00:00
|
|
|
Port: intstr.FromInt(8080),
|
2015-06-01 19:30:51 +00:00
|
|
|
Path: "bar",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers([]*docker.Container{{
|
|
|
|
|
ID: "9876",
|
|
|
|
|
Name: "/k8s_POD." + strconv.FormatUint(generatePodInfraContainerHash(pod), 16) + "_foo_new_12345678_0",
|
|
|
|
|
}})
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, true)
|
2015-06-01 19:30:51 +00:00
|
|
|
|
|
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Check the pod infra container.
|
|
|
|
|
"inspect_container",
|
|
|
|
|
// Create the container.
|
|
|
|
|
"create", "start",
|
|
|
|
|
// Kill the container since event handler fails.
|
2015-08-20 01:57:58 +00:00
|
|
|
"stop",
|
2015-06-01 19:30:51 +00:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
// TODO(yifan): Check the stopped container's name.
|
|
|
|
|
if len(fakeDocker.Stopped) != 1 {
|
|
|
|
|
t.Fatalf("Wrong containers were stopped: %v", fakeDocker.Stopped)
|
|
|
|
|
}
|
|
|
|
|
dockerName, _, err := ParseDockerName(fakeDocker.Stopped[0])
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Errorf("Unexpected error: %v", err)
|
|
|
|
|
}
|
|
|
|
|
if dockerName.ContainerName != "bar" {
|
|
|
|
|
t.Errorf("Wrong stopped container, expected: bar, get: %q", dockerName.ContainerName)
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-06-05 21:10:45 +00:00
|
|
|
|
2015-09-22 20:29:51 +00:00
|
|
|
type fakeReadWriteCloser struct{}
|
|
|
|
|
|
|
|
|
|
func (*fakeReadWriteCloser) Read([]byte) (int, error) { return 0, nil }
|
|
|
|
|
func (*fakeReadWriteCloser) Write([]byte) (int, error) { return 0, nil }
|
|
|
|
|
func (*fakeReadWriteCloser) Close() error { return nil }
|
|
|
|
|
|
2015-06-05 21:10:45 +00:00
|
|
|
func TestPortForwardNoSuchContainer(t *testing.T) {
|
|
|
|
|
dm, _ := newTestDockerManager()
|
|
|
|
|
|
|
|
|
|
podName, podNamespace := "podName", "podNamespace"
|
|
|
|
|
err := dm.PortForward(
|
|
|
|
|
&kubecontainer.Pod{
|
|
|
|
|
ID: "podID",
|
|
|
|
|
Name: podName,
|
|
|
|
|
Namespace: podNamespace,
|
|
|
|
|
Containers: nil,
|
|
|
|
|
},
|
|
|
|
|
5000,
|
2015-09-22 20:29:51 +00:00
|
|
|
// need a valid io.ReadWriteCloser here
|
|
|
|
|
&fakeReadWriteCloser{},
|
2015-06-05 21:10:45 +00:00
|
|
|
)
|
|
|
|
|
if err == nil {
|
|
|
|
|
t.Fatal("unexpected non-error")
|
|
|
|
|
}
|
|
|
|
|
expectedErr := noPodInfraContainerError(podName, podNamespace)
|
|
|
|
|
if !reflect.DeepEqual(err, expectedErr) {
|
|
|
|
|
t.Fatalf("expected %v, but saw %v", expectedErr, err)
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-06-05 22:37:53 +00:00
|
|
|
|
|
|
|
|
func TestSyncPodWithTerminationLog(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
container := api.Container{
|
|
|
|
|
Name: "bar",
|
|
|
|
|
TerminationMessagePath: "/dev/somepath",
|
|
|
|
|
}
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
container,
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-06-05 22:37:53 +00:00
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Create pod infra container.
|
2015-09-11 21:23:15 +00:00
|
|
|
"create", "start", "inspect_container", "inspect_container",
|
2015-06-05 22:37:53 +00:00
|
|
|
// Create container.
|
|
|
|
|
"create", "start", "inspect_container",
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
defer os.Remove(testPodContainerDir)
|
|
|
|
|
|
|
|
|
|
fakeDocker.Lock()
|
2015-11-19 21:59:18 +00:00
|
|
|
if len(fakeDocker.Created) != 2 ||
|
|
|
|
|
!matchString(t, "/k8s_POD\\.[a-f0-9]+_foo_new_", fakeDocker.Created[0]) ||
|
|
|
|
|
!matchString(t, "/k8s_bar\\.[a-f0-9]+_foo_new_", fakeDocker.Created[1]) {
|
|
|
|
|
t.Errorf("Unexpected containers created %v", fakeDocker.Created)
|
|
|
|
|
}
|
|
|
|
|
fakeDocker.Unlock()
|
|
|
|
|
newContainer, err := fakeDocker.InspectContainer(fakeDocker.Created[1])
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("unexpected error %v", err)
|
|
|
|
|
}
|
|
|
|
|
parts := strings.Split(newContainer.HostConfig.Binds[0], ":")
|
2015-06-05 22:37:53 +00:00
|
|
|
if !matchString(t, testPodContainerDir+"/k8s_bar\\.[a-f0-9]", parts[0]) {
|
|
|
|
|
t.Errorf("Unexpected host path: %s", parts[0])
|
|
|
|
|
}
|
|
|
|
|
if parts[1] != "/dev/somepath" {
|
|
|
|
|
t.Errorf("Unexpected container path: %s", parts[1])
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-06-21 03:57:22 +00:00
|
|
|
|
2015-08-19 08:56:19 +00:00
|
|
|
func TestSyncPodWithHostNetwork(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: "12345678",
|
|
|
|
|
Name: "foo",
|
|
|
|
|
Namespace: "new",
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: []api.Container{
|
|
|
|
|
{Name: "bar"},
|
|
|
|
|
},
|
2015-09-14 21:56:51 +00:00
|
|
|
SecurityContext: &api.PodSecurityContext{
|
|
|
|
|
HostNetwork: true,
|
|
|
|
|
},
|
2015-08-19 08:56:19 +00:00
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-02 17:18:11 +00:00
|
|
|
runSyncPod(t, dm, fakeDocker, pod, nil, false)
|
2015-08-19 08:56:19 +00:00
|
|
|
|
|
|
|
|
verifyCalls(t, fakeDocker, []string{
|
|
|
|
|
// Create pod infra container.
|
2015-09-11 21:23:15 +00:00
|
|
|
"create", "start", "inspect_container", "inspect_container",
|
2015-08-19 08:56:19 +00:00
|
|
|
// Create container.
|
|
|
|
|
"create", "start", "inspect_container",
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
fakeDocker.Lock()
|
|
|
|
|
if len(fakeDocker.Created) != 2 ||
|
2015-11-19 21:59:18 +00:00
|
|
|
!matchString(t, "/k8s_POD\\.[a-f0-9]+_foo_new_", fakeDocker.Created[0]) ||
|
|
|
|
|
!matchString(t, "/k8s_bar\\.[a-f0-9]+_foo_new_", fakeDocker.Created[1]) {
|
2015-08-19 08:56:19 +00:00
|
|
|
t.Errorf("Unexpected containers created %v", fakeDocker.Created)
|
|
|
|
|
}
|
2015-11-19 21:59:18 +00:00
|
|
|
fakeDocker.Unlock()
|
2015-08-19 08:56:19 +00:00
|
|
|
|
2015-11-19 21:59:18 +00:00
|
|
|
newContainer, err := fakeDocker.InspectContainer(fakeDocker.Created[1])
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("unexpected error %v", err)
|
|
|
|
|
}
|
|
|
|
|
utsMode := newContainer.HostConfig.UTSMode
|
2015-08-19 08:56:19 +00:00
|
|
|
if utsMode != "host" {
|
|
|
|
|
t.Errorf("Pod with host network must have \"host\" utsMode, actual: \"%v\"", utsMode)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-12-05 00:06:25 +00:00
|
|
|
func TestGetAPIPodStatusSortedContainers(t *testing.T) {
|
2015-06-21 03:57:22 +00:00
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
specContainerList := []api.Container{}
|
|
|
|
|
expectedOrder := []string{}
|
|
|
|
|
|
|
|
|
|
numContainers := 10
|
|
|
|
|
podName := "foo"
|
|
|
|
|
podNs := "test"
|
|
|
|
|
podUID := "uid1"
|
|
|
|
|
fakeConfig := &docker.Config{
|
|
|
|
|
Image: "some:latest",
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-11 00:51:35 +00:00
|
|
|
dockerContainers := []*docker.Container{}
|
2015-06-21 03:57:22 +00:00
|
|
|
for i := 0; i < numContainers; i++ {
|
|
|
|
|
id := fmt.Sprintf("%v", i)
|
|
|
|
|
containerName := fmt.Sprintf("%vcontainer", id)
|
|
|
|
|
expectedOrder = append(expectedOrder, containerName)
|
2015-11-11 00:51:35 +00:00
|
|
|
dockerContainers = append(dockerContainers, &docker.Container{
|
2015-06-21 03:57:22 +00:00
|
|
|
ID: id,
|
2015-11-11 00:51:35 +00:00
|
|
|
Name: fmt.Sprintf("/k8s_%v_%v_%v_%v_42", containerName, podName, podNs, podUID),
|
2015-06-21 03:57:22 +00:00
|
|
|
Config: fakeConfig,
|
|
|
|
|
Image: fmt.Sprintf("%vimageid", id),
|
|
|
|
|
})
|
|
|
|
|
specContainerList = append(specContainerList, api.Container{Name: containerName})
|
|
|
|
|
}
|
2015-11-11 00:51:35 +00:00
|
|
|
fakeDocker.SetFakeRunningContainers(dockerContainers)
|
2015-06-21 03:57:22 +00:00
|
|
|
fakeDocker.ClearCalls()
|
|
|
|
|
pod := &api.Pod{
|
|
|
|
|
ObjectMeta: api.ObjectMeta{
|
|
|
|
|
UID: types.UID(podUID),
|
|
|
|
|
Name: podName,
|
|
|
|
|
Namespace: podNs,
|
|
|
|
|
},
|
|
|
|
|
Spec: api.PodSpec{
|
|
|
|
|
Containers: specContainerList,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
for i := 0; i < 5; i++ {
|
2015-12-05 00:06:25 +00:00
|
|
|
status, err := dm.GetAPIPodStatus(pod)
|
2015-06-21 03:57:22 +00:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("unexpected error %v", err)
|
|
|
|
|
}
|
|
|
|
|
for i, c := range status.ContainerStatuses {
|
|
|
|
|
if expectedOrder[i] != c.Name {
|
|
|
|
|
t.Fatalf("Container status not sorted, expected %v at index %d, but found %v", expectedOrder[i], i, c.Name)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-08-10 17:30:34 +00:00
|
|
|
|
|
|
|
|
func TestVerifyNonRoot(t *testing.T) {
|
|
|
|
|
dm, fakeDocker := newTestDockerManager()
|
|
|
|
|
|
|
|
|
|
// setup test cases.
|
|
|
|
|
var rootUid int64 = 0
|
|
|
|
|
var nonRootUid int64 = 1
|
|
|
|
|
|
|
|
|
|
tests := map[string]struct {
|
|
|
|
|
container *api.Container
|
|
|
|
|
inspectImage *docker.Image
|
|
|
|
|
expectedError string
|
|
|
|
|
}{
|
|
|
|
|
// success cases
|
|
|
|
|
"non-root runAsUser": {
|
|
|
|
|
container: &api.Container{
|
|
|
|
|
SecurityContext: &api.SecurityContext{
|
|
|
|
|
RunAsUser: &nonRootUid,
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
"numeric non-root image user": {
|
|
|
|
|
container: &api.Container{},
|
|
|
|
|
inspectImage: &docker.Image{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
User: "1",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
"numeric non-root image user with gid": {
|
|
|
|
|
container: &api.Container{},
|
|
|
|
|
inspectImage: &docker.Image{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
User: "1:2",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
// failure cases
|
|
|
|
|
"root runAsUser": {
|
|
|
|
|
container: &api.Container{
|
|
|
|
|
SecurityContext: &api.SecurityContext{
|
|
|
|
|
RunAsUser: &rootUid,
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
expectedError: "container's runAsUser breaks non-root policy",
|
|
|
|
|
},
|
|
|
|
|
"non-numeric image user": {
|
|
|
|
|
container: &api.Container{},
|
|
|
|
|
inspectImage: &docker.Image{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
User: "foo",
|
|
|
|
|
},
|
|
|
|
|
},
|
2016-01-26 00:31:32 +00:00
|
|
|
expectedError: "non-numeric user",
|
2015-08-10 17:30:34 +00:00
|
|
|
},
|
|
|
|
|
"numeric root image user": {
|
|
|
|
|
container: &api.Container{},
|
|
|
|
|
inspectImage: &docker.Image{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
User: "0",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
expectedError: "container has no runAsUser and image will run as root",
|
|
|
|
|
},
|
|
|
|
|
"numeric root image user with gid": {
|
|
|
|
|
container: &api.Container{},
|
|
|
|
|
inspectImage: &docker.Image{
|
|
|
|
|
Config: &docker.Config{
|
|
|
|
|
User: "0:1",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
expectedError: "container has no runAsUser and image will run as root",
|
|
|
|
|
},
|
|
|
|
|
"nil image in inspect": {
|
|
|
|
|
container: &api.Container{},
|
|
|
|
|
expectedError: "unable to inspect image",
|
|
|
|
|
},
|
|
|
|
|
"nil config in image inspect": {
|
|
|
|
|
container: &api.Container{},
|
|
|
|
|
inspectImage: &docker.Image{},
|
|
|
|
|
expectedError: "unable to inspect image",
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for k, v := range tests {
|
|
|
|
|
fakeDocker.Image = v.inspectImage
|
|
|
|
|
err := dm.verifyNonRoot(v.container)
|
|
|
|
|
if v.expectedError == "" && err != nil {
|
2016-01-26 00:31:32 +00:00
|
|
|
t.Errorf("case[%q]: unexpected error: %v", k, err)
|
2015-08-10 17:30:34 +00:00
|
|
|
}
|
|
|
|
|
if v.expectedError != "" && !strings.Contains(err.Error(), v.expectedError) {
|
2016-01-26 00:31:32 +00:00
|
|
|
t.Errorf("case[%q]: expected: %q, got: %q", k, v.expectedError, err.Error())
|
2015-08-10 17:30:34 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestGetUidFromUser(t *testing.T) {
|
|
|
|
|
tests := map[string]struct {
|
|
|
|
|
input string
|
|
|
|
|
expect string
|
|
|
|
|
}{
|
|
|
|
|
"no gid": {
|
|
|
|
|
input: "0",
|
|
|
|
|
expect: "0",
|
|
|
|
|
},
|
|
|
|
|
"uid/gid": {
|
|
|
|
|
input: "0:1",
|
|
|
|
|
expect: "0",
|
|
|
|
|
},
|
|
|
|
|
"empty input": {
|
|
|
|
|
input: "",
|
|
|
|
|
expect: "",
|
|
|
|
|
},
|
|
|
|
|
"multiple spearators": {
|
|
|
|
|
input: "1:2:3",
|
|
|
|
|
expect: "1",
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
for k, v := range tests {
|
|
|
|
|
actual := getUidFromUser(v.input)
|
|
|
|
|
if actual != v.expect {
|
|
|
|
|
t.Errorf("%s failed. Expected %s but got %s", k, v.expect, actual)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-09-15 16:43:59 +00:00
|
|
|
|
|
|
|
|
func TestGetPidMode(t *testing.T) {
|
|
|
|
|
// test false
|
|
|
|
|
pod := &api.Pod{}
|
|
|
|
|
pidMode := getPidMode(pod)
|
|
|
|
|
|
|
|
|
|
if pidMode != "" {
|
|
|
|
|
t.Errorf("expected empty pid mode for pod but got %v", pidMode)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// test true
|
2015-09-14 21:56:51 +00:00
|
|
|
pod.Spec.SecurityContext = &api.PodSecurityContext{}
|
|
|
|
|
pod.Spec.SecurityContext.HostPID = true
|
2015-09-15 16:43:59 +00:00
|
|
|
pidMode = getPidMode(pod)
|
|
|
|
|
if pidMode != "host" {
|
|
|
|
|
t.Errorf("expected host pid mode for pod but got %v", pidMode)
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-08-10 08:14:01 +00:00
|
|
|
|
|
|
|
|
func TestGetIPCMode(t *testing.T) {
|
|
|
|
|
// test false
|
|
|
|
|
pod := &api.Pod{}
|
2015-09-21 15:34:02 +00:00
|
|
|
ipcMode := getIPCMode(pod)
|
2015-08-10 08:14:01 +00:00
|
|
|
|
|
|
|
|
if ipcMode != "" {
|
|
|
|
|
t.Errorf("expected empty ipc mode for pod but got %v", ipcMode)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// test true
|
2015-09-14 21:56:51 +00:00
|
|
|
pod.Spec.SecurityContext = &api.PodSecurityContext{}
|
|
|
|
|
pod.Spec.SecurityContext.HostIPC = true
|
2015-09-21 15:34:02 +00:00
|
|
|
ipcMode = getIPCMode(pod)
|
2015-08-10 08:14:01 +00:00
|
|
|
if ipcMode != "host" {
|
|
|
|
|
t.Errorf("expected host ipc mode for pod but got %v", ipcMode)
|
|
|
|
|
}
|
|
|
|
|
}
|
