kubernetes
/
kubectl
mirror of https://github.com/kubernetes/kubectl.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Use a temporary directory for the APIServer's certs 

While doing that we found that we needed to refactor the fakes to handle
command line arguments which are not known up front; we do this by using
regular expresseions.
This commit is contained in:
Gareth Smith 2017-11-28 15:39:39 +00:00
parent 63de385c65
commit 7df93be2ab
3 changed files with 50 additions and 30 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
pkg/framework/test/apiserver.go
View File

@ -5,6 +5,7 @@ import (
"os/exec" "os/exec"
"time" "time"
"github.com/onsi/gomega"
"github.com/onsi/gomega/gbytes" "github.com/onsi/gomega/gbytes"
"github.com/onsi/gomega/gexec" "github.com/onsi/gomega/gexec"
) )
@ -17,13 +18,25 @@ type APIServer struct {
session *gexec.Session session *gexec.Session
stdOut *gbytes.Buffer stdOut *gbytes.Buffer
stdErr *gbytes.Buffer stdErr *gbytes.Buffer
certDirManager certDirManager
}
type certDirManager interface {
Create() (string, error)
Destroy() error
} }
// Start starts the apiserver, and returns a gexec.Session. To stop it again, call Terminate and Wait on that session. // Start starts the apiserver, and returns a gexec.Session. To stop it again, call Terminate and Wait on that session.
func (s *APIServer) Start() error { func (s *APIServer) Start() error {
s.certDirManager = NewTempDirManager()
s.stdOut = gbytes.NewBuffer() s.stdOut = gbytes.NewBuffer()
s.stdErr = gbytes.NewBuffer() s.stdErr = gbytes.NewBuffer()
certDir, err := s.certDirManager.Create()
if err != nil {
return err
}
args := []string{ args := []string{
"--authorization-mode=Node,RBAC", "--authorization-mode=Node,RBAC",
"--runtime-config=admissionregistration.k8s.io/v1alpha1", "--runtime-config=admissionregistration.k8s.io/v1alpha1",
@ -35,13 +48,13 @@ func (s *APIServer) Start() error {
"--insecure-port=8080", "--insecure-port=8080",
"--storage-backend=etcd3", "--storage-backend=etcd3",
fmt.Sprintf("--etcd-servers=%s", s.EtcdURL), fmt.Sprintf("--etcd-servers=%s", s.EtcdURL),
fmt.Sprintf("--cert-dir=%s", certDir),
} }
detectedStart := s.stdErr.Detect("Serving insecurely on 127.0.0.1:8080") detectedStart := s.stdErr.Detect("Serving insecurely on 127.0.0.1:8080")
timedOut := time.After(20 * time.Second) timedOut := time.After(20 * time.Second)
command := exec.Command(s.Path, args...) command := exec.Command(s.Path, args...)
var err error
s.session, err = gexec.Start(command, s.stdOut, s.stdErr) s.session, err = gexec.Start(command, s.stdOut, s.stdErr)
if err != nil { if err != nil {
return err return err
@ -59,6 +72,8 @@ func (s *APIServer) Start() error {
func (s *APIServer) Stop() { func (s *APIServer) Stop() {
if s.session != nil { if s.session != nil {
s.session.Terminate().Wait(20 * time.Second) s.session.Terminate().Wait(20 * time.Second)
err := s.certDirManager.Destroy()
gomega.Expect(err).NotTo(gomega.HaveOccurred())
} }
} }

31
pkg/framework/test/assets/fakeapiserver/apiserver.go
View File

@ -3,21 +3,24 @@ package main
import ( import (
"fmt" "fmt"
"os" "os"
"regexp"
"time" "time"
) )
func main() { func main() {
expectedArgs := []string{ expectedArgs := []*regexp.Regexp{
"--authorization-mode=Node,RBAC", regexp.MustCompile("^--authorization-mode=Node,RBAC$"),
"--runtime-config=admissionregistration.k8s.io/v1alpha1", regexp.MustCompile("^--runtime-config=admissionregistration.k8s.io/v1alpha1$"),
"--v=3", "--vmodule=", regexp.MustCompile("^--v=3$"),
"--admission-control=Initializers,NamespaceLifecycle,LimitRanger,ServiceAccount,SecurityContextDeny,DefaultStorageClass,DefaultTolerationSeconds,GenericAdmissionWebhook,ResourceQuota", regexp.MustCompile("^--vmodule=$"),
"--admission-control-config-file=", regexp.MustCompile("^--admission-control=Initializers,NamespaceLifecycle,LimitRanger,ServiceAccount,SecurityContextDeny,DefaultStorageClass,DefaultTolerationSeconds,GenericAdmissionWebhook,ResourceQuota$"),
"--bind-address=0.0.0.0", regexp.MustCompile("^--admission-control-config-file=$"),
"--insecure-bind-address=127.0.0.1", regexp.MustCompile("^--bind-address=0.0.0.0$"),
"--insecure-port=8080", regexp.MustCompile("^--insecure-bind-address=127.0.0.1$"),
"--storage-backend=etcd3", regexp.MustCompile("^--insecure-port=8080$"),
"--etcd-servers=the etcd url", regexp.MustCompile("^--storage-backend=etcd3$"),
regexp.MustCompile("^--etcd-servers=the etcd url$"),
regexp.MustCompile("^--cert-dir=.*"),
} }
numExpectedArgs := len(expectedArgs) numExpectedArgs := len(expectedArgs)
numGivenArgs := len(os.Args) - 1 numGivenArgs := len(os.Args) - 1
@ -27,10 +30,10 @@ func main() {
os.Exit(2) os.Exit(2)
} }
for i, arg := range expectedArgs { for i, argRegexp := range expectedArgs {
givenArg := os.Args[i+1] givenArg := os.Args[i+1]
if arg != givenArg { if !argRegexp.MatchString(givenArg) {
fmt.Printf("Expected arg %s, got arg %s\n", arg, givenArg) fmt.Printf("Expected arg '%s' to match '%s'\n", givenArg, argRegexp.String())
os.Exit(1) os.Exit(1)
} }
} }

22
pkg/framework/test/assets/fakeetcd/etcd.go
View File

@ -3,17 +3,19 @@ package main
import ( import (
"fmt" "fmt"
"os" "os"
"regexp"
"time" "time"
) )
func main() { func main() {
expectedArgs := []string{ expectedArgs := []*regexp.Regexp{
"--debug", regexp.MustCompile("^--debug$"),
"--advertise-client-urls", regexp.MustCompile("^--advertise-client-urls$"),
"our etcd url", regexp.MustCompile("^our etcd url$"),
"--listen-client-urls", regexp.MustCompile("^--listen-client-urls$"),
"our etcd url", regexp.MustCompile("^our etcd url$"),
"--data-dir", regexp.MustCompile("^--data-dir$"),
regexp.MustCompile("^.+"),
} }
numExpectedArgs := len(expectedArgs) numExpectedArgs := len(expectedArgs)
numGivenArgs := len(os.Args) - 1 numGivenArgs := len(os.Args) - 1
@ -23,10 +25,10 @@ func main() {
os.Exit(2) os.Exit(2)
} }
for i, arg := range expectedArgs { for i, argRegexp := range expectedArgs {
givenArg := os.Args[i+1] givenArg := os.Args[i+1]
if arg != givenArg { if !argRegexp.MatchString(givenArg) {
fmt.Printf("Expected arg %s, got arg %s\n", arg, givenArg) fmt.Printf("Expected arg '%s' to match '%s'\n", givenArg, argRegexp.String())
os.Exit(1) os.Exit(1)
} }
} }