ITQC/containernetworking-plugins
24
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 34 Wiki Activity

bridge: add test for ipMasq rules

Browse Source
This commit is contained in:
Nick Ethier 2019-05-24 23:14:31 -04:00
parent 0950a3607b
commit 7f9b1844b8
No known key found for this signature in database
GPG Key ID: 07C1A3ECED90D24A
1 changed files with 52 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

55
plugins/main/bridge/bridge_test.go
View File

@ -17,12 +17,14 @@ package main
import ( import (
"encoding/json" "encoding/json"
"fmt" "fmt"
"github.com/vishvananda/netlink/nl"
"io/ioutil" "io/ioutil"
"net" "net"
"os" "os"
"strings" "strings"
"github.com/coreos/go-iptables/iptables"
"github.com/vishvananda/netlink/nl"
"github.com/containernetworking/cni/pkg/skel" "github.com/containernetworking/cni/pkg/skel"
"github.com/containernetworking/cni/pkg/types" "github.com/containernetworking/cni/pkg/types"
"github.com/containernetworking/cni/pkg/types/020" "github.com/containernetworking/cni/pkg/types/020"
@ -70,6 +72,7 @@ type testCase struct {
isLayer2 bool isLayer2 bool
expGWCIDRs []string // Expected gateway addresses in CIDR form expGWCIDRs []string // Expected gateway addresses in CIDR form
vlan int vlan int
ipMasq bool
} }
// Range definition for each entry in the ranges list // Range definition for each entry in the ranges list
@ -105,8 +108,7 @@ const (
"vlan": %d` "vlan": %d`
netDefault = `, netDefault = `,
"isDefaultGateway": true, "isDefaultGateway": true`
"ipMasq": false`
ipamStartStr = `, ipamStartStr = `,
"ipam": { "ipam": {
@ -115,6 +117,9 @@ const (
ipamDataDirStr = `, ipamDataDirStr = `,
"dataDir": "%s"` "dataDir": "%s"`
ipMasqConfStr = `,
"ipMasq": %t`
// Single subnet configuration (legacy) // Single subnet configuration (legacy)
subnetConfStr = `, subnetConfStr = `,
"subnet": "%s"` "subnet": "%s"`
@ -147,6 +152,9 @@ func (tc testCase) netConfJSON(dataDir string) string {
if tc.vlan != 0 { if tc.vlan != 0 {
conf += fmt.Sprintf(vlan, tc.vlan) conf += fmt.Sprintf(vlan, tc.vlan)
} }
if tc.ipMasq {
conf += tc.ipMasqConfig()
}
if !tc.isLayer2 { if !tc.isLayer2 {
conf += netDefault conf += netDefault
@ -178,6 +186,11 @@ func (tc testCase) subnetConfig() string {
return conf return conf
} }
func (tc testCase) ipMasqConfig() string {
conf := fmt.Sprintf(ipMasqConfStr, tc.ipMasq)
return conf
}
func (tc testCase) rangesConfig() string { func (tc testCase) rangesConfig() string {
conf := rangesStartStr conf := rangesStartStr
for i, tcRange := range tc.ranges { for i, tcRange := range tc.ranges {
@ -1595,4 +1608,40 @@ var _ = Describe("bridge Operations", func() {
cmdAddDelCheckTest(originalNS, tc, dataDir) cmdAddDelCheckTest(originalNS, tc, dataDir)
} }
}) })
FIt("configures a bridge and ipMasq rules for 0.4.0 config", func() {
err := originalNS.Do(func(ns.NetNS) error {
defer GinkgoRecover()
tc := testCase{
ranges: []rangeInfo{{
subnet: "10.1.2.0/24",
}},
ipMasq: true,
cniVersion: "0.4.0",
}
args := tc.createCmdArgs(originalNS, dataDir)
r, _, err := testutils.CmdAddWithArgs(args, func() error {
return cmdAdd(args)
})
Expect(err).NotTo(HaveOccurred())
result, err := current.GetResult(r)
Expect(err).NotTo(HaveOccurred())
Expect(result.IPs).Should(HaveLen(1))
ipt, err := iptables.NewWithProtocol(iptables.ProtocolIPv4)
Expect(err).NotTo(HaveOccurred())
rules, err := ipt.List("nat", "POSTROUTING")
Expect(err).NotTo(HaveOccurred())
Expect(rules).Should(ContainElement(ContainSubstring(result.IPs[0].Address.IP.String())))
err = testutils.CmdDelWithArgs(args, func() error {
return cmdDel(args)
})
Expect(err).NotTo(HaveOccurred())
return nil
})
Expect(err).NotTo(HaveOccurred())
})
}) })