mirrors/omni
1
0
Fork 0
mirror of https://github.com/siderolabs/omni.git synced 2025-08-06 17:46:59 +02:00
Code Issues Actions 9 Packages Projects Releases Wiki Activity
0e76483bab
omni/internal/backend/grpc/router/talos_backend_test.go
Utku Ozdemir 0e76483bab
Some checks failed
default / default (push) Has been cancelled
Details
default / e2e-backups (push) Has been cancelled
Details
default / e2e-forced-removal (push) Has been cancelled
Details
default / e2e-omni-upgrade (push) Has been cancelled
Details
default / e2e-scaling (push) Has been cancelled
Details
default / e2e-short (push) Has been cancelled
Details
default / e2e-short-secureboot (push) Has been cancelled
Details
default / e2e-templates (push) Has been cancelled
Details
default / e2e-upgrades (push) Has been cancelled
Details
default / e2e-workload-proxy (push) Has been cancelled
Details
chore: rekres, bump deps, Go, Talos and k8s versions, satisfy linters 
- Bump some deps, namely cosi-runtime and Talos machinery.
- Update `auditState` to implement the new methods in COSI's `state.State`.
- Bump default Talos and Kubernetes versions to their latest.
- Rekres, which brings Go 1.24.5. Also update it in go.mod files.
- Fix linter errors coming from new linters.

Signed-off-by: Utku Ozdemir <utku.ozdemir@siderolabs.com>
2025-07-11 18:23:48 +02:00

297 lines
8.2 KiB
Go
Raw Blame History

// Copyright (c) 2025 Sidero Labs, Inc.
//
// Use of this software is governed by the Business Source License
// included in the LICENSE file.
package router_test
import (
"context"
"errors"
"fmt"
"net"
"testing"
"time"
"github.com/siderolabs/gen/xtesting/must"
"github.com/siderolabs/grpc-proxy/proxy"
"github.com/siderolabs/talos/pkg/machinery/api/machine"
"github.com/siderolabs/talos/pkg/machinery/role"
"github.com/stretchr/testify/require"
"golang.org/x/sync/errgroup"
"google.golang.org/grpc"
"google.golang.org/grpc/backoff"
"google.golang.org/grpc/credentials/insecure"
"google.golang.org/grpc/metadata"
"google.golang.org/protobuf/types/known/emptypb"
"github.com/siderolabs/omni/internal/backend/dns"
"github.com/siderolabs/omni/internal/backend/grpc/router"
)
type testNodeResolver struct{}
func (t *testNodeResolver) Resolve(_, node string) dns.Info {
return dns.NewInfo("", "", "", node)
}
func TestTalosBackendRoles(t *testing.T) {
// Start mock server.
const serverEndpoint = "127.0.0.1:10501"
serverCloser := startTestServer(must.Value(net.Listen("tcp", serverEndpoint))(t))
t.Cleanup(func() { require.NoError(t, serverCloser()) })
// Start mock proxy.
const proxyEndpoint = "127.0.0.1:10500"
ctx, cancel := context.WithTimeout(t.Context(), 500*time.Second)
defer cancel()
g, ctx := errgroup.WithContext(ctx)
grpcProxy, err := makeGRPCProxy(ctx, proxyEndpoint, serverEndpoint)
require.NoError(t, err)
g.Go(grpcProxy)
t.Cleanup(func() { require.NoError(t, g.Wait()) })
conn := must.Value(grpc.NewClient(proxyEndpoint, grpc.WithTransportCredentials(insecure.NewCredentials())))(t)
rebootResult := must.Value(machine.NewMachineServiceClient(conn).Reboot(ctx, &machine.RebootRequest{Mode: 0}))(t)
require.NotNil(t, rebootResult)
hostnameResult := must.Value(machine.NewMachineServiceClient(conn).Hostname(ctx, &emptypb.Empty{}))(t)
require.Equal(t, "talos-machine", hostnameResult.Messages[0].Hostname)
}
func TestNodeResolution(t *testing.T) {
resolver := &mockResolver{
db: map[string]map[string]dns.Info{
"cluster-1": {
"node-1": dns.NewInfo("", "", "", "1.1.1.1"),
"node-2": dns.NewInfo("", "", "", "2.2.2.2"),
},
},
}
noOpVerifier := func(ctx context.Context, req any, _ *grpc.UnaryServerInfo, handler grpc.UnaryHandler) (resp interface{}, err error) {
return handler(ctx, req)
}
talosBackend := router.NewTalosBackend("test-backend", "test-backend", resolver, nil, false, noOpVerifier)
testCtx, cancel := context.WithTimeout(t.Context(), 3*time.Second)
t.Cleanup(cancel)
t.Run(`resolvable "node"`, func(t *testing.T) {
ctx := metadata.NewIncomingContext(testCtx, metadata.Pairs("cluster", "cluster-1", "node", "node-1"))
newCtx, _, err := talosBackend.GetConnection(ctx, "some-method")
require.NoError(t, err)
incomingContext, ok := metadata.FromOutgoingContext(newCtx)
require.True(t, ok, "metadata not found")
require.Len(t, incomingContext["node"], 1)
require.Equal(t, "1.1.1.1", incomingContext["node"][0])
})
t.Run(`resolvable "nodes"`, func(t *testing.T) {
ctx := metadata.NewIncomingContext(testCtx, metadata.Pairs("cluster", "cluster-1", "nodes", "node-1,node-2"))
newCtx, _, err := talosBackend.GetConnection(ctx, "some-method")
require.NoError(t, err)
incomingContext, ok := metadata.FromOutgoingContext(newCtx)
require.True(t, ok, "metadata not found")
require.Equal(t, []string{"1.1.1.1", "2.2.2.2"}, incomingContext["nodes"])
})
t.Run(`both "node" and "nodes" set`, func(t *testing.T) {
ctx := metadata.NewIncomingContext(testCtx, metadata.Pairs("cluster", "cluster-1", "node", "node-1", "nodes", "node-1,node-2"))
newCtx, _, err := talosBackend.GetConnection(ctx, "some-method")
require.NoError(t, err)
incomingContext, ok := metadata.FromOutgoingContext(newCtx)
require.True(t, ok, "metadata not found")
require.Len(t, incomingContext["node"], 1)
require.Equal(t, "1.1.1.1", incomingContext["node"][0])
require.Equal(t, []string{"1.1.1.1", "2.2.2.2"}, incomingContext["nodes"])
})
t.Run(`fallback when unresolved`, func(t *testing.T) {
ctx := metadata.NewIncomingContext(testCtx, metadata.Pairs("cluster", "cluster-1", "node", "node-3", "nodes", "node-0,node-1,node-2,node-3"))
newCtx, _, err := talosBackend.GetConnection(ctx, "some-method")
require.NoError(t, err)
incomingContext, ok := metadata.FromOutgoingContext(newCtx)
require.True(t, ok, "metadata not found")
require.Len(t, incomingContext["node"], 1)
// "node" is unresolved, so it should be kept as-is
require.Equal(t, "node-3", incomingContext["node"][0])
// some of the "nodes" are unresolved, so only they should be kept as-is
require.Equal(t, []string{"node-0", "1.1.1.1", "2.2.2.2", "node-3"}, incomingContext["nodes"])
})
}
func makeGRPCProxy(ctx context.Context, endpoint, serverEndpoint string) (func() error, error) {
grpcProxyServer := router.NewServer(&testDirector{serverEndpoint: serverEndpoint})
lis, err := net.Listen("tcp", endpoint)
if err != nil {
return nil, fmt.Errorf("failed to listen on %s: %w", endpoint, err)
}
return func() error {
errCh := make(chan error, 1)
go func() { errCh <- grpcProxyServer.Serve(lis) }()
if err, ok := recvContext(ctx, errCh); ok {
return fmt.Errorf("error running grpc proxy: %w", err)
}
grpcProxyServer.Stop()
if srvErr := <-errCh; srvErr != nil && !errors.Is(srvErr, grpc.ErrServerStopped) {
return fmt.Errorf("error stopping grpc proxy: %w", srvErr)
}
return nil
}, nil
}
type testDirector struct {
serverEndpoint string
}
func (t *testDirector) Director(context.Context, string) (proxy.Mode, []proxy.Backend, error) {
conn, err := dial(t.serverEndpoint)
if err != nil {
return 0, nil, err
}
backend := router.NewTalosBackend(
"test-backend",
"test-backend",
&testNodeResolver{},
conn,
false,
func(ctx context.Context, req any, _ *grpc.UnaryServerInfo, handler grpc.UnaryHandler) (resp interface{}, err error) {
return handler(ctx, req)
},
)
return proxy.One2One, []proxy.Backend{backend}, nil
}
func dial(serverEndpoint string) (*grpc.ClientConn, error) {
backoffConfig := backoff.DefaultConfig
backoffConfig.MaxDelay = 15 * time.Second
creds := insecure.NewCredentials()
opts := []grpc.DialOption{
grpc.WithInitialWindowSize(65535 * 32),
grpc.WithInitialConnWindowSize(65535 * 16),
grpc.WithConnectParams(grpc.ConnectParams{
Backoff: backoffConfig,
MinConnectTimeout: 20 * time.Second,
}),
grpc.WithTransportCredentials(creds),
grpc.WithDefaultCallOptions(grpc.ForceCodecV2(proxy.Codec())),
}
return grpc.NewClient(serverEndpoint, opts...)
}
func startTestServer(lis net.Listener) (closer func() error) {
server := grpc.NewServer()
machine.RegisterMachineServiceServer(server, &testServer{})
errCh := make(chan error, 1)
go func() { errCh <- server.Serve(lis) }()
return func() error {
if err, ok := tryRecv(errCh); ok {
return err
}
server.Stop()
return <-errCh
}
}
type testServer struct {
machine.UnimplementedMachineServiceServer
}
func (ts *testServer) Reboot(ctx context.Context, _ *machine.RebootRequest) (*machine.RebootResponse, error) {
md, ok := metadata.FromIncomingContext(ctx)
if !ok {
return nil, errors.New("no metadata")
}
if got := md.Get("talos-role")[0]; got != string(role.Admin) {
return nil, fmt.Errorf("unexpected role: %s", got)
}
return &machine.RebootResponse{}, nil
}
func (ts *testServer) Hostname(ctx context.Context, _ *emptypb.Empty) (*machine.HostnameResponse, error) {
md, ok := metadata.FromIncomingContext(ctx)
if !ok {
return nil, errors.New("no metadata")
}
if got := md.Get("talos-role")[0]; got != string(role.Reader) {
return nil, fmt.Errorf("unexpected role: %s", got)
}
return &machine.HostnameResponse{
Messages: []*machine.Hostname{
{
Hostname: "talos-machine",
},
},
}, nil
}
func tryRecv[T any](ch <-chan T) (T, bool) {
select {
case v := <-ch:
return v, true
default:
var zero T
return zero, false
}
}
func recvContext[T any](ctx context.Context, ch <-chan T) (T, bool) {
select {
case <-ctx.Done():
return *new(T), false
case v := <-ch:
return v, true
}
}
type mockResolver struct {
db map[string]map[string]dns.Info
}
func (m *mockResolver) Resolve(cluster, node string) dns.Info {
return m.db[cluster][node]
}
Reference in New Issue View Git Blame Copy Permalink