karmada-io
/
karmada
mirror of https://github.com/karmada-io/karmada.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #5494 from mohamedawnallah/unitTestClusterPropagationPolicy 

pkg/webhook: unit test cluster propagation policy
This commit is contained in:
karmada-bot 2024-09-13 16:36:59 +08:00 committed by GitHub
parent c3d582ba31 87958641ae
commit 2e60a6e8a5
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 402 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

222
pkg/webhook/clusterpropagationpolicy/mutating_test.go Normal file
View File

@ -0,0 +1,222 @@
/*
Copyright 2024 The Karmada Authors.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
package clusterpropagationpolicy
import (
"context"
"encoding/json"
"errors"
"net/http"
"reflect"
"testing"
admissionv1 "k8s.io/api/admission/v1"
corev1 "k8s.io/api/core/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/apimachinery/pkg/runtime"
"k8s.io/utils/ptr"
"sigs.k8s.io/controller-runtime/pkg/webhook/admission"
mcsv1alpha1 "sigs.k8s.io/mcs-api/pkg/apis/v1alpha1"
policyv1alpha1 "github.com/karmada-io/karmada/pkg/apis/policy/v1alpha1"
"github.com/karmada-io/karmada/pkg/util"
"github.com/karmada-io/karmada/pkg/util/helper"
)
var (
notReadyTolerationSeconds int64 = 300
unreachableTolerationSeconds int64 = 300
failOverGracePeriodSeconds int32 = 600
)
type fakeMutationDecoder struct {
err error
obj runtime.Object
}
// Decode mocks the Decode method of admission.Decoder.
func (f *fakeMutationDecoder) Decode(_ admission.Request, obj runtime.Object) error {
if f.err != nil {
return f.err
}
if f.obj != nil {
reflect.ValueOf(obj).Elem().Set(reflect.ValueOf(f.obj).Elem())
}
return nil
}
// DecodeRaw mocks the DecodeRaw method of admission.Decoder.
func (f *fakeMutationDecoder) DecodeRaw(_ runtime.RawExtension, obj runtime.Object) error {
if f.err != nil {
return f.err
}
if f.obj != nil {
reflect.ValueOf(obj).Elem().Set(reflect.ValueOf(f.obj).Elem())
}
return nil
}
func TestMutatingAdmission_Handle(t *testing.T) {
tests := []struct {
name string
decoder admission.Decoder
req admission.Request
want admission.Response
}{
{
name: "Handle_DecodeError_DeniesAdmission",
decoder: &fakeMutationDecoder{
err: errors.New("decode error"),
},
req: admission.Request{},
want: admission.Errored(http.StatusBadRequest, errors.New("decode error")),
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
v := NewMutatingHandler(
notReadyTolerationSeconds, unreachableTolerationSeconds, tt.decoder,
)
got := v.Handle(context.Background(), tt.req)
if !reflect.DeepEqual(got, tt.want) {
t.Errorf("Handle() = %v, want %v", got, tt.want)
}
})
}
}
func TestMutatingAdmission_Handle_FullCoverage(t *testing.T) {
// Define the cp policy name to be used in the test.
policyName := "test-cp-policy"
// Mock admission request with no specific namespace.
req := admission.Request{
AdmissionRequest: admissionv1.AdmissionRequest{
Operation: admissionv1.Create,
},
}
// Create the initial cp policy with default values for testing.
cpPolicy := &policyv1alpha1.ClusterPropagationPolicy{
ObjectMeta: metav1.ObjectMeta{
Name: policyName,
},
Spec: policyv1alpha1.PropagationSpec{
Placement: policyv1alpha1.Placement{
SpreadConstraints: []policyv1alpha1.SpreadConstraint{
{SpreadByLabel: "", SpreadByField: "", MinGroups: 0},
},
ReplicaScheduling: &policyv1alpha1.ReplicaSchedulingStrategy{
ReplicaSchedulingType: policyv1alpha1.ReplicaSchedulingTypeDivided,
},
},
PropagateDeps: false,
ResourceSelectors: []policyv1alpha1.ResourceSelector{
{
Kind: util.ServiceImportKind,
APIVersion: mcsv1alpha1.GroupVersion.String(),
},
},
Failover: &policyv1alpha1.FailoverBehavior{
Application: &policyv1alpha1.ApplicationFailoverBehavior{
PurgeMode: policyv1alpha1.Graciously,
GracePeriodSeconds: nil,
},
},
},
}
// Define the expected cp policy after mutations.
wantCPPolicy := &policyv1alpha1.ClusterPropagationPolicy{
ObjectMeta: metav1.ObjectMeta{
Name: policyName,
Labels: map[string]string{
policyv1alpha1.ClusterPropagationPolicyPermanentIDLabel: "some-unique-uuid",
},
Finalizers: []string{util.ClusterPropagationPolicyControllerFinalizer},
},
Spec: policyv1alpha1.PropagationSpec{
Placement: policyv1alpha1.Placement{
SpreadConstraints: []policyv1alpha1.SpreadConstraint{
{
SpreadByField: policyv1alpha1.SpreadByFieldCluster,
MinGroups: 1,
},
},
ReplicaScheduling: &policyv1alpha1.ReplicaSchedulingStrategy{
ReplicaSchedulingType: policyv1alpha1.ReplicaSchedulingTypeDivided,
ReplicaDivisionPreference: policyv1alpha1.ReplicaDivisionPreferenceWeighted,
},
ClusterTolerations: []corev1.Toleration{
*helper.NewNotReadyToleration(notReadyTolerationSeconds),
*helper.NewUnreachableToleration(unreachableTolerationSeconds),
},
},
PropagateDeps: true,
ResourceSelectors: []policyv1alpha1.ResourceSelector{
{
Kind: util.ServiceImportKind,
APIVersion: mcsv1alpha1.GroupVersion.String(),
},
},
Failover: &policyv1alpha1.FailoverBehavior{
Application: &policyv1alpha1.ApplicationFailoverBehavior{
PurgeMode: policyv1alpha1.Graciously,
GracePeriodSeconds: ptr.To[int32](failOverGracePeriodSeconds),
},
},
},
}
// Mock decoder that decodes the request into the cp policy object.
decoder := &fakeMutationDecoder{
obj: cpPolicy,
}
// Marshal the expected cp policy to simulate the final mutated object.
wantBytes, err := json.Marshal(wantCPPolicy)
if err != nil {
t.Fatalf("Failed to marshal expected cp policy: %v", err)
}
req.Object.Raw = wantBytes
// Instantiate the mutating handler.
mutatingHandler := NewMutatingHandler(
notReadyTolerationSeconds, unreachableTolerationSeconds, decoder,
)
// Call the Handle function.
got := mutatingHandler.Handle(context.Background(), req)
// Check if exactly one patch is applied.
if len(got.Patches) != 1 {
t.Errorf("Handle() returned an unexpected number of patches. Expected one patch, received: %v", got.Patches)
}
// Verify that the only patch applied is for the UUID label.
// If any other patches are present, it indicates that the cp policy was not handled as expected.
firstPatch := got.Patches[0]
if firstPatch.Operation != "replace" || firstPatch.Path != "/metadata/labels/clusterpropagationpolicy.karmada.io~1permanent-id" {
t.Errorf("Handle() returned unexpected patches. Only the UUID patch was expected. Received patches: %v", got.Patches)
}
// Check if the admission request was allowed.
if !got.Allowed {
t.Errorf("Handle() got.Allowed = false, want true")
}
}

180
pkg/webhook/clusterpropagationpolicy/validating_test.go Normal file
View File

@ -0,0 +1,180 @@
/*
Copyright 2024 The Karmada Authors.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
package clusterpropagationpolicy
import (
"context"
"errors"
"fmt"
"net/http"
"reflect"
"testing"
admissionv1 "k8s.io/api/admission/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/apimachinery/pkg/runtime"
"sigs.k8s.io/controller-runtime/pkg/webhook/admission"
policyv1alpha1 "github.com/karmada-io/karmada/pkg/apis/policy/v1alpha1"
"github.com/karmada-io/karmada/pkg/scheduler"
)
type fakeValidationDecoder struct {
err error
obj runtime.Object
}
// Decode mocks the Decode method of admission.Decoder.
func (f *fakeValidationDecoder) Decode(_ admission.Request, obj runtime.Object) error {
if f.err != nil {
return f.err
}
if f.obj != nil {
reflect.ValueOf(obj).Elem().Set(reflect.ValueOf(f.obj).Elem())
}
return nil
}
// DecodeRaw mocks the DecodeRaw method of admission.Decoder.
func (f *fakeValidationDecoder) DecodeRaw(rawObject runtime.RawExtension, obj runtime.Object) error {
if f.err != nil {
return f.err
}
if f.obj != nil {
reflect.ValueOf(obj).Elem().Set(reflect.ValueOf(rawObject.Object).Elem())
}
return nil
}
func TestValidatingAdmission_Handle(t *testing.T) {
tests := []struct {
name string
decoder admission.Decoder
req admission.Request
want admission.Response
}{
{
name: "Handle_DecodeError_DeniesAdmission",
decoder: &fakeValidationDecoder{
err: errors.New("decode error"),
},
req: admission.Request{},
want: admission.Errored(http.StatusBadRequest, errors.New("decode error")),
},
{
name: "Handle_SchedulerNameUpdated_DeniesAdmission",
decoder: &fakeValidationDecoder{
obj: &policyv1alpha1.ClusterPropagationPolicy{
Spec: policyv1alpha1.PropagationSpec{
SchedulerName: "new-scheduler",
},
},
},
req: admission.Request{
AdmissionRequest: admissionv1.AdmissionRequest{
Operation: admissionv1.Update,
OldObject: runtime.RawExtension{
Object: &policyv1alpha1.ClusterPropagationPolicy{
Spec: policyv1alpha1.PropagationSpec{
SchedulerName: scheduler.DefaultScheduler,
},
},
},
},
},
want: admission.Denied("the schedulerName should not be updated"),
},
{
name: "Handle_PermanentIDLabelUpdated_DeniesAdmission",
decoder: &fakeValidationDecoder{
obj: &policyv1alpha1.ClusterPropagationPolicy{
ObjectMeta: metav1.ObjectMeta{
Labels: map[string]string{
policyv1alpha1.ClusterPropagationPolicyPermanentIDLabel: "new-id",
},
},
},
},
req: admission.Request{
AdmissionRequest: admissionv1.AdmissionRequest{
Operation: admissionv1.Update,
OldObject: runtime.RawExtension{
Object: &policyv1alpha1.ClusterPropagationPolicy{
ObjectMeta: metav1.ObjectMeta{
Labels: map[string]string{
policyv1alpha1.ClusterPropagationPolicyPermanentIDLabel: "old-id",
},
},
},
},
},
},
want: admission.Denied(fmt.Sprintf("label %s is immutable, it can only be set by the system "+
"during creation", policyv1alpha1.ClusterPropagationPolicyPermanentIDLabel)),
},
{
name: "Handle_PermanentIDLabelMissing_DeniesAdmission",
decoder: &fakeValidationDecoder{
obj: &policyv1alpha1.ClusterPropagationPolicy{
ObjectMeta: metav1.ObjectMeta{
Labels: map[string]string{},
},
},
},
req: admission.Request{
AdmissionRequest: admissionv1.AdmissionRequest{
Operation: admissionv1.Create,
},
},
want: admission.Denied(fmt.Sprintf("label %s is required, it should be set by the mutating "+
"admission webhook during creation", policyv1alpha1.ClusterPropagationPolicyPermanentIDLabel)),
},
{
name: "Handle_ValidationSucceeds_AllowsAdmission",
decoder: &fakeValidationDecoder{
obj: &policyv1alpha1.ClusterPropagationPolicy{
ObjectMeta: metav1.ObjectMeta{
Labels: map[string]string{
policyv1alpha1.ClusterPropagationPolicyPermanentIDLabel: "new-id",
},
},
Spec: policyv1alpha1.PropagationSpec{
SchedulerName: scheduler.DefaultScheduler,
},
},
},
req: admission.Request{
AdmissionRequest: admissionv1.AdmissionRequest{
Operation: admissionv1.Create,
},
},
want: admission.Allowed(""),
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
v := &ValidatingAdmission{
Decoder: tt.decoder,
}
got := v.Handle(context.Background(), tt.req)
if !reflect.DeepEqual(got, tt.want) {
t.Errorf("Handle() = %v, want %v", got, tt.want)
}
})
}
}