mirror of
https://github.com/siderolabs/omni.git
synced 2025-08-07 18:17:00 +02:00
b47acf2e0f
Any insecure `talosctl` commands now work with Omni per-instance `talosconfig`. User should have at least `Operator` Omni role to be able to use the insecure `talosctl` mode. DNS resolver was updated to react on the `MachineStatus` resource creation, not only the `ClusterMachineConfigStatus` resource. That makes the DNS record for UUID appear as soon as machine joins Omni, not when the machine gets allocated into a cluster. Machines list now has maintenance Talos version update button. The UI will issue `talosctl upgrade` when another Talos version is picked. `MachineStatus` controller was updated a bit: version poller wasn't marked as dirty after maintenance upgrades. Now we mark it as dirty every time we get Talos `MachineStatus` resource update. Also fixed UI issues here and there. Signed-off-by: Artem Chernyshev <artem.chernyshev@talos-systems.com>
163 lines
5.1 KiB
Go
163 lines
5.1 KiB
Go
// Copyright (c) 2024 Sidero Labs, Inc.
|
|
//
|
|
// Use of this software is governed by the Business Source License
|
|
// included in the LICENSE file.
|
|
|
|
package dns_test
|
|
|
|
import (
|
|
"context"
|
|
"reflect"
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/cosi-project/runtime/pkg/state"
|
|
"github.com/cosi-project/runtime/pkg/state/impl/inmem"
|
|
"github.com/cosi-project/runtime/pkg/state/impl/namespaced"
|
|
"github.com/siderolabs/go-retry/retry"
|
|
"github.com/stretchr/testify/suite"
|
|
"go.uber.org/zap"
|
|
"go.uber.org/zap/zaptest"
|
|
"golang.org/x/sync/errgroup"
|
|
|
|
"github.com/siderolabs/omni/client/pkg/omni/resources"
|
|
"github.com/siderolabs/omni/client/pkg/omni/resources/omni"
|
|
"github.com/siderolabs/omni/internal/backend/dns"
|
|
)
|
|
|
|
const cluster = "test-cluster-1"
|
|
|
|
type ServiceSuite struct {
|
|
suite.Suite
|
|
state state.State
|
|
|
|
dnsService *dns.Service
|
|
logger *zap.Logger
|
|
|
|
ctx context.Context //nolint:containedctx
|
|
ctxCancel context.CancelFunc
|
|
|
|
eg errgroup.Group
|
|
}
|
|
|
|
func (suite *ServiceSuite) SetupTest() {
|
|
suite.ctx, suite.ctxCancel = context.WithTimeout(context.Background(), 3*time.Minute)
|
|
|
|
suite.state = state.WrapCore(namespaced.NewState(inmem.Build))
|
|
|
|
suite.logger = zaptest.NewLogger(suite.T(), zaptest.WrapOptions(zap.AddCaller()))
|
|
|
|
suite.dnsService = dns.NewService(suite.state, suite.logger)
|
|
|
|
// create a ClusterMachineIdentity before starting the DNS service to make sure it picks the existing records
|
|
bootstrapIdentity := omni.NewClusterMachineIdentity(resources.DefaultNamespace, "test-bootstrap-1")
|
|
bootstrapIdentity.Metadata().Labels().Set(omni.LabelCluster, "test-bootstrap-cluster-1")
|
|
|
|
bootstrapIdentity.TypedSpec().Value.Nodename = "test-bootstrap-1-node"
|
|
bootstrapIdentity.TypedSpec().Value.NodeIps = []string{"10.0.0.84"}
|
|
|
|
suite.Require().NoError(suite.state.Create(suite.ctx, bootstrapIdentity))
|
|
|
|
suite.eg.Go(func() error {
|
|
return suite.dnsService.Start(suite.ctx)
|
|
})
|
|
}
|
|
|
|
func (suite *ServiceSuite) TearDownTest() {
|
|
suite.logger.Info("tear down")
|
|
|
|
suite.ctxCancel()
|
|
|
|
suite.Require().NoError(suite.eg.Wait())
|
|
}
|
|
|
|
func (suite *ServiceSuite) TestResolve() {
|
|
suite.assertResolveAddress("test-bootstrap-cluster-1", "test-bootstrap-1-node", "10.0.0.84")
|
|
|
|
identity := omni.NewClusterMachineIdentity(resources.DefaultNamespace, "test-1")
|
|
identity.Metadata().Labels().Set(omni.LabelCluster, "test-cluster-1")
|
|
|
|
identity.TypedSpec().Value.Nodename = "test-1-node"
|
|
identity.TypedSpec().Value.NodeIps = []string{"10.0.0.42"}
|
|
|
|
// create and assert that it resolves by machine ID, address and node name
|
|
suite.Require().NoError(suite.state.Create(suite.ctx, identity))
|
|
|
|
expected := dns.NewInfo(cluster, "test-1", "test-1-node", "10.0.0.42")
|
|
suite.assertResolve("test-1", expected)
|
|
suite.assertResolve("test-1-node", expected)
|
|
suite.assertResolve("10.0.0.42", expected)
|
|
|
|
// update address, assert that it resolves with new address and old address doesn't resolve anymore
|
|
identity.TypedSpec().Value.NodeIps = []string{"10.0.0.43"}
|
|
|
|
suite.Require().NoError(suite.state.Update(suite.ctx, identity))
|
|
|
|
expected = dns.NewInfo(cluster, "test-1", "test-1-node", "10.0.0.43")
|
|
suite.assertResolve("test-1", expected)
|
|
suite.assertResolve("test-1-node", expected)
|
|
suite.assertResolve("10.0.0.43", expected)
|
|
|
|
var zeroInfo dns.Info
|
|
|
|
suite.assertResolve("10.0.0.42", zeroInfo)
|
|
|
|
// update Talos version, assert that it resolves
|
|
machineStatus := omni.NewMachineStatus(resources.DefaultNamespace, "test-1")
|
|
machineStatus.TypedSpec().Value.TalosVersion = "1.4.1"
|
|
|
|
suite.Require().NoError(suite.state.Create(suite.ctx, machineStatus))
|
|
|
|
expected.TalosVersion = "1.4.1"
|
|
|
|
suite.assertResolve("test-1", expected)
|
|
|
|
// destroy the identity, assert that it doesn't resolve anymore
|
|
suite.Require().NoError(suite.state.Destroy(suite.ctx, identity.Metadata()))
|
|
|
|
expected = dns.NewInfo(cluster, "test-1", "test-1-node", "")
|
|
expected.TalosVersion = machineStatus.TypedSpec().Value.TalosVersion
|
|
|
|
// still resolves by the node id, but has an empty address
|
|
suite.assertResolve("test-1", expected)
|
|
suite.assertResolve("test-1-node", zeroInfo)
|
|
suite.assertResolve("10.0.0.43", zeroInfo)
|
|
|
|
// destroy the machine status, assert that it doesn't resolve by the node id anymore
|
|
suite.Require().NoError(suite.state.Destroy(suite.ctx, machineStatus.Metadata()))
|
|
|
|
suite.assertResolve("test-1", zeroInfo)
|
|
}
|
|
|
|
func (suite *ServiceSuite) assertResolveAddress(cluster, node, expected string) {
|
|
err := retry.Constant(3*time.Second, retry.WithUnits(100*time.Millisecond)).RetryWithContext(suite.ctx, func(context.Context) error {
|
|
resolved := suite.dnsService.Resolve(cluster, node)
|
|
|
|
if resolved.GetAddress() != expected {
|
|
return retry.ExpectedErrorf("expected %s, got %s", expected, resolved)
|
|
}
|
|
|
|
return nil
|
|
})
|
|
suite.Assert().NoError(err)
|
|
}
|
|
|
|
func (suite *ServiceSuite) assertResolve(node string, expected dns.Info) {
|
|
err := retry.Constant(3*time.Second, retry.WithUnits(100*time.Millisecond)).RetryWithContext(suite.ctx, func(context.Context) error {
|
|
resolved := suite.dnsService.Resolve(cluster, node)
|
|
|
|
if !reflect.DeepEqual(resolved, expected) {
|
|
return retry.ExpectedErrorf("expected %#v, got %#v", expected, resolved)
|
|
}
|
|
|
|
return nil
|
|
})
|
|
suite.Assert().NoError(err)
|
|
}
|
|
|
|
func TestServiceSuite(t *testing.T) {
|
|
t.Parallel()
|
|
|
|
suite.Run(t, new(ServiceSuite))
|
|
}
|