moby--moby/libnetwork/sandbox/sandbox_linux_test.go

package sandbox

import (
	"net"
	"os"
	"path/filepath"
	"runtime"
	"testing"

	"github.com/docker/libnetwork/netutils"
	"github.com/vishvananda/netlink"
	"github.com/vishvananda/netns"
)

const (
	vethName1     = "wierdlongname1"
	vethName2     = "wierdlongname2"
	vethName3     = "wierdlongname3"
	vethName4     = "wierdlongname4"
	sboxIfaceName = "containername"
)

func newKey(t *testing.T) (string, error) {
	name, err := netutils.GenerateRandomName("netns", 12)
	if err != nil {
		return "", err
	}

	name = filepath.Join("/tmp", name)
	if _, err := os.Create(name); err != nil {
		return "", err
	}

	return name, nil
}

func newInfo(t *testing.T) (*Info, error) {
	veth := &netlink.Veth{
		LinkAttrs: netlink.LinkAttrs{Name: vethName1, TxQLen: 0},
		PeerName:  vethName2}
	if err := netlink.LinkAdd(veth); err != nil {
		return nil, err
	}

	// Store the sandbox side pipe interface
	// This is needed for cleanup on DeleteEndpoint()
	intf1 := &Interface{}
	intf1.SrcName = vethName2
	intf1.DstName = sboxIfaceName

	ip4, addr, err := net.ParseCIDR("192.168.1.100/24")
	if err != nil {
		return nil, err
	}
	intf1.Address = addr
	intf1.Address.IP = ip4

	// ip6, addrv6, err := net.ParseCIDR("2001:DB8::ABCD/48")
	ip6, addrv6, err := net.ParseCIDR("fe80::2/64")
	if err != nil {
		return nil, err
	}
	intf1.AddressIPv6 = addrv6
	intf1.AddressIPv6.IP = ip6

	_, route, err := net.ParseCIDR("192.168.2.1/32")
	if err != nil {
		return nil, err
	}

	intf1.Routes = []*net.IPNet{route}

	veth = &netlink.Veth{
		LinkAttrs: netlink.LinkAttrs{Name: vethName3, TxQLen: 0},
		PeerName:  vethName4}

	if err := netlink.LinkAdd(veth); err != nil {
		return nil, err
	}

	intf2 := &Interface{}
	intf2.SrcName = vethName4
	intf2.DstName = sboxIfaceName

	ip4, addr, err = net.ParseCIDR("192.168.2.100/24")
	if err != nil {
		return nil, err
	}
	intf2.Address = addr
	intf2.Address.IP = ip4

	// ip6, addrv6, err := net.ParseCIDR("2001:DB8::ABCD/48")
	ip6, addrv6, err = net.ParseCIDR("fe80::3/64")

	if err != nil {
		return nil, err
	}
	intf2.AddressIPv6 = addrv6
	intf2.AddressIPv6.IP = ip6

	sinfo := &Info{Interfaces: []*Interface{intf1, intf2}}

	sinfo.Gateway = net.ParseIP("192.168.1.1")
	// sinfo.GatewayIPv6 = net.ParseIP("2001:DB8::1")
	sinfo.GatewayIPv6 = net.ParseIP("fe80::1")

	return sinfo, nil
}

func verifySandbox(t *testing.T, s Sandbox) {
	_, ok := s.(*networkNamespace)
	if !ok {
		t.Fatalf("The sandox interface returned is not of type networkNamespace")
	}

	origns, err := netns.Get()
	if err != nil {
		t.Fatalf("Could not get the current netns: %v", err)
	}
	defer origns.Close()

	f, err := os.OpenFile(s.Key(), os.O_RDONLY, 0)
	if err != nil {
		t.Fatalf("Failed top open network namespace path %q: %v", s.Key(), err)
	}
	defer f.Close()

	runtime.LockOSThread()
	defer runtime.UnlockOSThread()

	nsFD := f.Fd()
	if err = netns.Set(netns.NsHandle(nsFD)); err != nil {
		t.Fatalf("Setting to the namespace pointed to by the sandbox %s failed: %v", s.Key(), err)
	}
	defer netns.Set(origns)

	_, err = netlink.LinkByName(sboxIfaceName + "0")
	if err != nil {
		t.Fatalf("Could not find the interface %s inside the sandbox: %v", sboxIfaceName+"0",
			err)
	}

	_, err = netlink.LinkByName(sboxIfaceName + "1")
	if err != nil {
		t.Fatalf("Could not find the interface %s inside the sandbox: %v", sboxIfaceName+"1",
			err)
	}
}
Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-13 14:40:42 -04:00			`package sandbox`

			`import (`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`"net"`
Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-13 14:40:42 -04:00			`"os"`
			`"path/filepath"`
			`"runtime"`
			`"testing"`

Update Godeps docker/pkg/common => /stringid - pkg/common was renamed to pkg/stringid - removed stale dep on libcontainer/utils Signed-off-by: Alessandro Boch <aboch@docker.com> 2015-04-18 00:37:54 -04:00			`"github.com/docker/libnetwork/netutils"`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`"github.com/vishvananda/netlink"`
Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-13 14:40:42 -04:00			`"github.com/vishvananda/netns"`
			`)`

- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`const (`
			`vethName1 = "wierdlongname1"`
			`vethName2 = "wierdlongname2"`
Modify driver Join api to only allow dst prefix Currently the driver api allows the driver to specify the full interface name for the interface inside the container. This is not appropriate since the driver does not have the full view of the sandbox to correcly allocate an unambiguous interface name. Instead with this PR the driver will be allowed to specify a prefix for the name and libnetwork and sandbox layers will disambiguate it with an appropriate suffix. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-05-21 14:04:49 -04:00			`vethName3 = "wierdlongname3"`
			`vethName4 = "wierdlongname4"`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`sboxIfaceName = "containername"`
			`)`

Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-13 14:40:42 -04:00			`func newKey(t *testing.T) (string, error) {`
Update Godeps docker/pkg/common => /stringid - pkg/common was renamed to pkg/stringid - removed stale dep on libcontainer/utils Signed-off-by: Alessandro Boch <aboch@docker.com> 2015-04-18 00:37:54 -04:00			`name, err := netutils.GenerateRandomName("netns", 12)`
Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-13 14:40:42 -04:00			`if err != nil {`
			`return "", err`
			`}`

			`name = filepath.Join("/tmp", name)`
			`if _, err := os.Create(name); err != nil {`
			`return "", err`
			`}`

			`return name, nil`
			`}`

- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`func newInfo(t testing.T) (Info, error) {`
			`veth := &netlink.Veth{`
			`LinkAttrs: netlink.LinkAttrs{Name: vethName1, TxQLen: 0},`
			`PeerName: vethName2}`
Modify driver Join api to only allow dst prefix Currently the driver api allows the driver to specify the full interface name for the interface inside the container. This is not appropriate since the driver does not have the full view of the sandbox to correcly allocate an unambiguous interface name. Instead with this PR the driver will be allowed to specify a prefix for the name and libnetwork and sandbox layers will disambiguate it with an appropriate suffix. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-05-21 14:04:49 -04:00			`if err := netlink.LinkAdd(veth); err != nil {`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`return nil, err`
			`}`

			`// Store the sandbox side pipe interface`
			`// This is needed for cleanup on DeleteEndpoint()`
Modify driver Join api to only allow dst prefix Currently the driver api allows the driver to specify the full interface name for the interface inside the container. This is not appropriate since the driver does not have the full view of the sandbox to correcly allocate an unambiguous interface name. Instead with this PR the driver will be allowed to specify a prefix for the name and libnetwork and sandbox layers will disambiguate it with an appropriate suffix. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-05-21 14:04:49 -04:00			`intf1 := &Interface{}`
			`intf1.SrcName = vethName2`
			`intf1.DstName = sboxIfaceName`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00
			`ip4, addr, err := net.ParseCIDR("192.168.1.100/24")`
			`if err != nil {`
			`return nil, err`
			`}`
Modify driver Join api to only allow dst prefix Currently the driver api allows the driver to specify the full interface name for the interface inside the container. This is not appropriate since the driver does not have the full view of the sandbox to correcly allocate an unambiguous interface name. Instead with this PR the driver will be allowed to specify a prefix for the name and libnetwork and sandbox layers will disambiguate it with an appropriate suffix. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-05-21 14:04:49 -04:00			`intf1.Address = addr`
			`intf1.Address.IP = ip4`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00
- Added support for Join/Leave methods to Endpoint. - Removed sandbox key argument for CreateEndpoint. - Refactored bridge driver code to remove sandbox key. - Fixed bridge driver code for gaps in ipv6 behavior observed during docker integration. - Updated test code, readme code, README.md according api change. - Fixed some sandbox issues while testing docker ipv6 integration. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-28 01:57:36 -04:00			`// ip6, addrv6, err := net.ParseCIDR("2001:DB8::ABCD/48")`
			`ip6, addrv6, err := net.ParseCIDR("fe80::2/64")`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`if err != nil {`
			`return nil, err`
			`}`
Modify driver Join api to only allow dst prefix Currently the driver api allows the driver to specify the full interface name for the interface inside the container. This is not appropriate since the driver does not have the full view of the sandbox to correcly allocate an unambiguous interface name. Instead with this PR the driver will be allowed to specify a prefix for the name and libnetwork and sandbox layers will disambiguate it with an appropriate suffix. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-05-21 14:04:49 -04:00			`intf1.AddressIPv6 = addrv6`
			`intf1.AddressIPv6.IP = ip6`

Allow drivers to supply static routes for interfaces Signed-off-by: Tom Denham <tom.denham@metaswitch.com> 2015-05-19 20:08:56 -04:00			`_, route, err := net.ParseCIDR("192.168.2.1/32")`
			`if err != nil {`
			`return nil, err`
			`}`

			`intf1.Routes = []*net.IPNet{route}`

Modify driver Join api to only allow dst prefix Currently the driver api allows the driver to specify the full interface name for the interface inside the container. This is not appropriate since the driver does not have the full view of the sandbox to correcly allocate an unambiguous interface name. Instead with this PR the driver will be allowed to specify a prefix for the name and libnetwork and sandbox layers will disambiguate it with an appropriate suffix. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-05-21 14:04:49 -04:00			`veth = &netlink.Veth{`
			`LinkAttrs: netlink.LinkAttrs{Name: vethName3, TxQLen: 0},`
			`PeerName: vethName4}`

			`if err := netlink.LinkAdd(veth); err != nil {`
			`return nil, err`
			`}`

			`intf2 := &Interface{}`
			`intf2.SrcName = vethName4`
			`intf2.DstName = sboxIfaceName`

			`ip4, addr, err = net.ParseCIDR("192.168.2.100/24")`
			`if err != nil {`
			`return nil, err`
			`}`
			`intf2.Address = addr`
			`intf2.Address.IP = ip4`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00
Modify driver Join api to only allow dst prefix Currently the driver api allows the driver to specify the full interface name for the interface inside the container. This is not appropriate since the driver does not have the full view of the sandbox to correcly allocate an unambiguous interface name. Instead with this PR the driver will be allowed to specify a prefix for the name and libnetwork and sandbox layers will disambiguate it with an appropriate suffix. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-05-21 14:04:49 -04:00			`// ip6, addrv6, err := net.ParseCIDR("2001:DB8::ABCD/48")`
			`ip6, addrv6, err = net.ParseCIDR("fe80::3/64")`
Fix RemoveInterface in sandbox The networkNamespace will record all interfaces joined into this sandbox. While RremoveInterface func does't remove the leaved interfaces. Signed-off-by: junxu <xujun@cmss.chinamobile.com> 2015-05-18 23:02:57 -04:00
Modify driver Join api to only allow dst prefix Currently the driver api allows the driver to specify the full interface name for the interface inside the container. This is not appropriate since the driver does not have the full view of the sandbox to correcly allocate an unambiguous interface name. Instead with this PR the driver will be allowed to specify a prefix for the name and libnetwork and sandbox layers will disambiguate it with an appropriate suffix. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-05-21 14:04:49 -04:00			`if err != nil {`
			`return nil, err`
			`}`
			`intf2.AddressIPv6 = addrv6`
			`intf2.AddressIPv6.IP = ip6`

			`sinfo := &Info{Interfaces: []*Interface{intf1, intf2}}`
Allow drivers to supply static routes for interfaces Signed-off-by: Tom Denham <tom.denham@metaswitch.com> 2015-05-19 20:08:56 -04:00
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`sinfo.Gateway = net.ParseIP("192.168.1.1")`
- Added support for Join/Leave methods to Endpoint. - Removed sandbox key argument for CreateEndpoint. - Refactored bridge driver code to remove sandbox key. - Fixed bridge driver code for gaps in ipv6 behavior observed during docker integration. - Updated test code, readme code, README.md according api change. - Fixed some sandbox issues while testing docker ipv6 integration. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-28 01:57:36 -04:00			`// sinfo.GatewayIPv6 = net.ParseIP("2001:DB8::1")`
			`sinfo.GatewayIPv6 = net.ParseIP("fe80::1")`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00
			`return sinfo, nil`
			`}`

Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-13 14:40:42 -04:00			`func verifySandbox(t *testing.T, s Sandbox) {`
			`_, ok := s.(*networkNamespace)`
			`if !ok {`
			`t.Fatalf("The sandox interface returned is not of type networkNamespace")`
			`}`

			`origns, err := netns.Get()`
			`if err != nil {`
			`t.Fatalf("Could not get the current netns: %v", err)`
			`}`
			`defer origns.Close()`

			`f, err := os.OpenFile(s.Key(), os.O_RDONLY, 0)`
			`if err != nil {`
			`t.Fatalf("Failed top open network namespace path %q: %v", s.Key(), err)`
			`}`
			`defer f.Close()`

			`runtime.LockOSThread()`
			`defer runtime.UnlockOSThread()`

			`nsFD := f.Fd()`
			`if err = netns.Set(netns.NsHandle(nsFD)); err != nil {`
			`t.Fatalf("Setting to the namespace pointed to by the sandbox %s failed: %v", s.Key(), err)`
			`}`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`defer netns.Set(origns)`
Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-13 14:40:42 -04:00
Modify driver Join api to only allow dst prefix Currently the driver api allows the driver to specify the full interface name for the interface inside the container. This is not appropriate since the driver does not have the full view of the sandbox to correcly allocate an unambiguous interface name. Instead with this PR the driver will be allowed to specify a prefix for the name and libnetwork and sandbox layers will disambiguate it with an appropriate suffix. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-05-21 14:04:49 -04:00			`_, err = netlink.LinkByName(sboxIfaceName + "0")`
			`if err != nil {`
Fix RemoveInterface in sandbox The networkNamespace will record all interfaces joined into this sandbox. While RremoveInterface func does't remove the leaved interfaces. Signed-off-by: junxu <xujun@cmss.chinamobile.com> 2015-05-18 23:02:57 -04:00			`t.Fatalf("Could not find the interface %s inside the sandbox: %v", sboxIfaceName+"0",`
Modify driver Join api to only allow dst prefix Currently the driver api allows the driver to specify the full interface name for the interface inside the container. This is not appropriate since the driver does not have the full view of the sandbox to correcly allocate an unambiguous interface name. Instead with this PR the driver will be allowed to specify a prefix for the name and libnetwork and sandbox layers will disambiguate it with an appropriate suffix. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-05-21 14:04:49 -04:00			`err)`
			`}`

			`_, err = netlink.LinkByName(sboxIfaceName + "1")`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`if err != nil {`
Fix RemoveInterface in sandbox The networkNamespace will record all interfaces joined into this sandbox. While RremoveInterface func does't remove the leaved interfaces. Signed-off-by: junxu <xujun@cmss.chinamobile.com> 2015-05-18 23:02:57 -04:00			`t.Fatalf("Could not find the interface %s inside the sandbox: %v", sboxIfaceName+"1",`
- Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-23 20:37:19 -04:00			`err)`
			`}`
Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md Signed-off-by: Jana Radhakrishnan <mrjana@docker.com> 2015-04-13 14:40:42 -04:00			`}`