From d87cebcb0730fd25db230c8e69130e38e6cbb7a8 Mon Sep 17 00:00:00 2001 From: Luca Stocchi Date: Tue, 19 Nov 2024 17:09:49 +0100 Subject: [PATCH] test: add basic tests for vfkit Adds a basic implementation for testing against a vfkit VM. Tests are based on the existing qemu version. It just changes the way the VM gets created/started. Signed-off-by: Luca Stocchi --- Makefile | 4 + test-utils/port.go | 19 +++ test-vfkit/basic_test.go | 19 +++ test-vfkit/vfkit_suite_test.go | 214 +++++++++++++++++++++++++++++++++ 4 files changed, 256 insertions(+) create mode 100644 test-utils/port.go create mode 100644 test-vfkit/basic_test.go create mode 100644 test-vfkit/vfkit_suite_test.go diff --git a/Makefile b/Makefile index c4af851f..ea0ca41d 100644 --- a/Makefile +++ b/Makefile @@ -70,3 +70,7 @@ test-companion: .PHONY: test-linux test-linux: gvproxy test-companion go test -timeout 20m -v ./test-qemu + +.PHONY: test-mac +test-mac: gvproxy + go test -timeout 20m -v ./test-vfkit diff --git a/test-utils/port.go b/test-utils/port.go new file mode 100644 index 00000000..74226a55 --- /dev/null +++ b/test-utils/port.go @@ -0,0 +1,19 @@ +package e2eutils + +import ( + "fmt" + "net" +) + +func IsPortAvailable(port int) bool { + return IsHostPortAvailable("127.0.0.1", port) +} + +func IsHostPortAvailable(host string, port int) bool { + listener, err := net.Listen("tcp", fmt.Sprintf("%s:%d", host, port)) + if err != nil { + return false + } + listener.Close() + return true +} diff --git a/test-vfkit/basic_test.go b/test-vfkit/basic_test.go new file mode 100644 index 00000000..b46925b1 --- /dev/null +++ b/test-vfkit/basic_test.go @@ -0,0 +1,19 @@ +package e2evfkit + +import ( + e2e "github.com/containers/gvisor-tap-vsock/test" + "github.com/onsi/ginkgo" +) + +var _ = ginkgo.Describe("connectivity with vfkit", func() { + e2e.BasicConnectivityTests(e2e.BasicTestProps{ + SSHExec: sshExec, + }) +}) + +var _ = ginkgo.Describe("dns with vfkit", func() { + e2e.BasicDNSTests(e2e.BasicTestProps{ + SSHExec: sshExec, + Sock: sock, + }) +}) diff --git a/test-vfkit/vfkit_suite_test.go b/test-vfkit/vfkit_suite_test.go new file mode 100644 index 00000000..24c0652e --- /dev/null +++ b/test-vfkit/vfkit_suite_test.go @@ -0,0 +1,214 @@ +package e2evfkit + +import ( + "flag" + "fmt" + "os" + "os/exec" + "path/filepath" + "strconv" + "strings" + "testing" + "time" + + e2e_utils "github.com/containers/gvisor-tap-vsock/test-utils" + + "github.com/onsi/ginkgo" + "github.com/onsi/gomega" + log "github.com/sirupsen/logrus" + + "golang.org/x/mod/semver" +) + +func TestSuite(t *testing.T) { + gomega.RegisterFailHandler(ginkgo.Fail) + ginkgo.RunSpecs(t, "gvisor-tap-vsock suite") +} + +const ( + sock = "/tmp/gvproxy-api-vfkit.sock" + vfkitSock = "/tmp/vfkit.sock" + sshPort = 2223 + ignitionUser = "test" + // #nosec "test" (for manual usage) + ignitionPasswordHash = "$y$j9T$TqJWt3/mKJbH0sYi6B/LD1$QjVRuUgntjTHjAdAkqhkr4F73m.Be4jBXdAaKw98sPC" + efiStore = "efi-variable-store" + vfkitVersionNeeded = 0.6 +) + +var ( + tmpDir string + binDir string + host *exec.Cmd + client *exec.Cmd + privateKeyFile string + publicKeyFile string + ignFile string +) + +func init() { + flag.StringVar(&tmpDir, "tmpDir", "../tmp", "temporary working directory") + flag.StringVar(&binDir, "bin", "../bin", "directory with compiled binaries") + privateKeyFile = filepath.Join(tmpDir, "id_test") + publicKeyFile = privateKeyFile + ".pub" + ignFile = filepath.Join(tmpDir, "test.ign") +} + +var _ = ginkgo.BeforeSuite(func() { + // clear the environment before running the tests. It may happen the tests were abruptly stopped earlier leaving a dirty env + clear() + + // check if vfkit version is greater than v0.5 (ignition support is available starting from v0.6) + version, err := vfkitVersion() + gomega.Expect(err).ShouldNot(gomega.HaveOccurred()) + gomega.Expect(version >= vfkitVersionNeeded).Should(gomega.Equal(true)) + + // check if ssh port is free + gomega.Expect(e2e_utils.IsPortAvailable(sshPort)).Should(gomega.Equal(true)) + + gomega.Expect(os.MkdirAll(filepath.Join(tmpDir, "disks"), os.ModePerm)).Should(gomega.Succeed()) + + downloader, err := e2e_utils.NewFcosDownloader(filepath.Join(tmpDir, "disks")) + gomega.Expect(err).ShouldNot(gomega.HaveOccurred()) + fcosImage, err := downloader.DownloadImage("applehv", "raw.gz") + gomega.Expect(err).ShouldNot(gomega.HaveOccurred()) + + publicKey, err := e2e_utils.CreateSSHKeys(publicKeyFile, privateKeyFile) + gomega.Expect(err).ShouldNot(gomega.HaveOccurred()) + + err = e2e_utils.CreateIgnition(ignFile, publicKey, ignitionUser, ignitionPasswordHash) + gomega.Expect(err).ShouldNot(gomega.HaveOccurred()) + + errors := make(chan error) + +outer: + for panics := 0; ; panics++ { + _ = os.Remove(sock) + + // #nosec + host = exec.Command(filepath.Join(binDir, "gvproxy"), fmt.Sprintf("--ssh-port=%d", sshPort), fmt.Sprintf("--listen=unix://%s", sock), fmt.Sprintf("--listen-vfkit=unixgram://%s", vfkitSock)) + + host.Stderr = os.Stderr + host.Stdout = os.Stdout + gomega.Expect(host.Start()).Should(gomega.Succeed()) + go func() { + if err := host.Wait(); err != nil { + log.Error(err) + errors <- err + } + }() + + for { + _, err := os.Stat(sock) + if os.IsNotExist(err) { + log.Info("waiting for socket") + time.Sleep(100 * time.Millisecond) + continue + } + _, err = os.Stat(vfkitSock) + if os.IsNotExist(err) { + log.Info("waiting for vfkit socket") + time.Sleep(100 * time.Millisecond) + continue + } + break + } + + vfkitArgs := `--cpus 2 --memory 2048 --bootloader efi,variable-store=%s,create --device virtio-blk,path=%s --ignition %s --device virtio-net,unixSocketPath=%s,mac=5a:94:ef:e4:0c:ee` + // #nosec + client = exec.Command(vfkitExecutable(), strings.Split(fmt.Sprintf(vfkitArgs, efiStore, fcosImage, ignFile, vfkitSock), " ")...) + client.Stderr = os.Stderr + client.Stdout = os.Stdout + gomega.Expect(client.Start()).Should(gomega.Succeed()) + go func() { + if err := client.Wait(); err != nil { + log.Error(err) + errors <- err + } + }() + + for { + _, err := sshExec("whoami") + if err == nil { + break outer + } + + select { + case err := <-errors: + log.Errorf("Error %v", err) + // this expect will always fail so the tests stop + gomega.Expect(err).To(gomega.Equal(nil)) + break outer + case <-time.After(1 * time.Second): + log.Infof("waiting for client to connect: %v", err) + } + } + } + + time.Sleep(5 * time.Second) +}) + +func vfkitVersion() (float64, error) { + executable := vfkitExecutable() + if executable == "" { + return 0, fmt.Errorf("vfkit executable not found") + } + out, err := exec.Command(executable, "-v").Output() + if err != nil { + return 0, err + } + version := strings.TrimPrefix(string(out), "vfkit version:") + majorMinor := strings.TrimPrefix(semver.MajorMinor(strings.TrimSpace(version)), "v") + versionF, err := strconv.ParseFloat(majorMinor, 64) + if err != nil { + return 0, err + } + return versionF, nil +} + +func vfkitExecutable() string { + vfkitBinaries := []string{"vfkit"} + for _, binary := range vfkitBinaries { + path, err := exec.LookPath(binary) + if err == nil && path != "" { + return path + } + } + + return "" +} + +func sshExec(cmd ...string) ([]byte, error) { + return sshCommand(cmd...).Output() +} + +func sshCommand(cmd ...string) *exec.Cmd { + sshCmd := exec.Command("ssh", + "-o", "UserKnownHostsFile=/dev/null", + "-o", "StrictHostKeyChecking=no", + "-o", "IdentitiesOnly=yes", + "-i", privateKeyFile, + "-p", strconv.Itoa(sshPort), + fmt.Sprintf("%s@127.0.0.1", ignitionUser), "--", strings.Join(cmd, " ")) // #nosec G204 + return sshCmd +} + +func clear() { + _ = os.Remove(efiStore) + _ = os.Remove(sock) + _ = os.Remove(vfkitSock) +} + +var _ = ginkgo.AfterSuite(func() { + if host != nil { + if err := host.Process.Kill(); err != nil { + log.Error(err) + } + } + if client != nil { + if err := client.Process.Kill(); err != nil { + log.Error(err) + } + } + clear() +})