Cloud netconfig #19922
Cloud netconfig #19922
Conversation
pdostal
requested review from
grisu48,
asmorodskyi,
ricardobranco777 and
m-dati
as code owners
pdostal
force-pushed
the
cloud_netconfig
branch
from
cfc69a8
to
0b0041f
Compare
pdostal
force-pushed
the
cloud_netconfig
branch
from
0b0041f
to
74dcb9f
Compare
pdostal
force-pushed
the
cloud_netconfig
branch
from
74dcb9f
to
56f1d5a
Compare
pdostal
force-pushed
the
cloud_netconfig
branch
from
56f1d5a
to
794da82
Compare
tests/publiccloud/cloud_netconfig.pm
Outdated
| cmd => 'systemctl status cloud-netconfig.timer', | ||
| fail_message => 'cloud-netconfig.timer appears not to be started.' | ||
| ); | ||
| $instance->ssh_assert_script_run('systemctl status cloud-netconfig.timer'); |
There was a problem hiding this comment.
| $instance->ssh_assert_script_run('systemctl status cloud-netconfig.timer'); | |
| $instance->ssh_assert_script_run('systemctl is-active cloud-netconfig.timer'); |
tests/publiccloud/cloud_netconfig.pm
Outdated
| chomp($local_eth0_ip); | ||
| my $metadata_eth0_ip = $provider->query_metadata($instance, ifNum => '0', addrCount => '0'); | ||
| die("Failed to get interface 0 IP from metadata server") unless length($metadata_eth0_ip); |
There was a problem hiding this comment.
| die("Failed to get interface 0 IP from metadata server") unless length($metadata_eth0_ip); | |
| die("Failed to get interface IPs from metadata server") unless length($metadata_eth0_ip); |
I would remove the interface numbers here, as they are confusing to anyone who has not the full code in their head. I think this makes a better error message, because it still explains what happens but without unnecessary (and confusing) interface indices.
There was a problem hiding this comment.
I applied your suggestion and moved the check inside $provider->query_metadata().
tests/publiccloud/cloud_netconfig.pm
Outdated
| } else { | ||
| die("Unsupported public cloud provider."); | ||
| if (is_azure) { | ||
| record_info('eth1', 'Get public IP address for eth1'); |
There was a problem hiding this comment.
I think this information would be better as a code comment instead of a information box.
tests/publiccloud/cloud_netconfig.pm
Outdated
| die("Unsupported public cloud provider."); | ||
| if (is_azure) { | ||
| record_info('eth1', 'Get public IP address for eth1'); | ||
| my $local_eth1_ip = $instance->ssh_script_output(qq(ip -4 -o a s eth1 primary | grep -Po "inet \\K[\\d.]+" | head -n1)); |
There was a problem hiding this comment.
Why is head -n1 necessary here? 🤔
tests/publiccloud/cloud_netconfig.pm
Outdated
| my $local_eth1_ip = $instance->ssh_script_output(qq(ip -4 -o a s eth1 primary | grep -Po "inet \\K[\\d.]+" | head -n1)); | ||
| chomp($local_eth1_ip); | ||
| my $metadata_eth1_ip = $provider->query_metadata($instance, ifNum => '1', addrCount => '0'); | ||
| die("Failed to get interface 1 IP from metadata server") unless length($metadata_eth1_ip); |
There was a problem hiding this comment.
| die("Failed to get interface 1 IP from metadata server") unless length($metadata_eth1_ip); | |
| die("Failed to get interface IP from metadata server") unless length($metadata_eth1_ip); |
There was a problem hiding this comment.
I applied your suggestion and moved the check inside $provider->query_metadata().
tests/publiccloud/cloud_netconfig.pm
Outdated
| die('There are no ARP neighbors on eth0') if ($instance->ssh_script_output("ip neighbor show dev eth0 | wc -l") == 0); | ||
| die('There are no ARP neighbors on eth1') if ($instance->ssh_script_output("ip neighbor show dev eth1 | wc -l") == 0); | ||
|
|
||
| record_info('Local removal', 'Remove eth0 secondary address and eth1 default route and check if it reappears.'); |
There was a problem hiding this comment.
I don't see the point of this check for cloud_netconfig. This is testing something different IMHO and could be removed. What do you think? 🤔
There was a problem hiding this comment.
From https://github.com/SUSE-Enceladus/cloud-netconfig/blob/master/README.md:
Interface configurations will be checked periodically on each DHCP lease renewal and additionally, if the systemd timer is enabled, every 60 seconds. cloud-netconfig detects changes in the metadata configuration and updates interface configurations and routing policies accordingly. This means that IP addresses and ranges that were removed from the virtual interface configuration will be removed from the interface, but only addresses and ranges that were automatically added by cloud-netconfig will be removed. Addresses added manually by the administrator or by another tool (e.g. high-availability software) will not be touched.
From my understanding cloud-netconfig periodically checks if the interfaces and addresses defined in cloud metadata are present in the system. This checks that by removing some and checking if they got reapplied.
There was a problem hiding this comment.
I see, yes then it makes sense 👍
tests/publiccloud/cloud_netconfig.pm
Outdated
| $instance->ssh_assert_script_run("sudo ip route del default dev eth1"); | ||
| record_info('debug', $instance->ssh_script_output('ip addr show; ip route show')); | ||
|
|
||
| sleep(90); |
There was a problem hiding this comment.
I replaced it with systemctl start cloud-netconfig.service so please recheck
tests/publiccloud/cloud_netconfig.pm
Outdated
| my $nic_name = script_output(qq(az network nic list --resource-group $resource_group | jq -r '.[]|select(.primary==false).name')); | ||
| my $ipConfig_name = script_output(qq(az network nic list --resource-group $resource_group | jq -r '.[]|select(.primary==false).ipConfigurations[]|select(.privateIPAddress=="$local_eth1_secondary_ip").name')); | ||
| assert_script_run("az network nic ip-config delete -g $resource_group -n $ipConfig_name --nic-name $nic_name"); | ||
| sleep(90); |
There was a problem hiding this comment.
Please add a comment explaining why the sleep is needed.
There was a problem hiding this comment.
I replaced it with systemctl start cloud-netconfig.service so please recheck
tests/publiccloud/cloud_netconfig.pm
Outdated
| assert_script_run("az network nic ip-config delete -g $resource_group -n $ipConfig_name --nic-name $nic_name"); | ||
| sleep(90); | ||
| record_info('debug', $instance->ssh_script_output('ip addr show; ip route show')); | ||
| die('There is secondary IP address in eth1 altho it has been removed in the provider') if ($instance->ssh_script_run(qq(ip -4 -o a s dev eth1 secondary | grep -Po "inet \\K[\\d.]+" | wc -l)) != 0); |
There was a problem hiding this comment.
| die('There is secondary IP address in eth1 altho it has been removed in the provider') if ($instance->ssh_script_run(qq(ip -4 -o a s dev eth1 secondary | grep -Po "inet \\K[\\d.]+" | wc -l)) != 0); | |
| die('Secondary IP address in eth1 still present after removed via provider') if ($instance->ssh_script_run(qq(ip -4 -o a s dev eth1 secondary | grep -Po "inet \\K[\\d.]+" | wc -l)) != 0); |
tests/publiccloud/cloud_netconfig.pm
Outdated
| my $instance = shift; | ||
| record_info('DEBUG'); | ||
|
|
||
| $instance->ssh_script_run("ip -j a s"); |
There was a problem hiding this comment.
Necessary if the following commands print exactly the same (just not as json)? 🤔
pdostal
force-pushed
the
cloud_netconfig
branch
2 times, most recently
from
762d973
to
0757bc7
Compare
|
Build20240820-1 of sle-15-SP6-Azure-BYOS-Updates.aarch64 publiccloud_cloud_netconfig@64bit 4 17 minutes ago |
| default = "gen2" | ||
| } | ||
|
|
||
| variable "extra-disk-size" { |
There was a problem hiding this comment.
if we creating dedicated profile we may cleaned up from things which are not needed for this certain test . we won't add extra disk here so let's drop quite some code from it
| default = false | ||
| } | ||
|
|
||
| variable "cloud_init" { |
There was a problem hiding this comment.
same here this variable is needed by another test and if it is test suite specific profile we can drop this
pdostal
force-pushed
the
cloud_netconfig
branch
from
0757bc7
to
650be00
Compare
There are 2 commits, first is just cleanup and second is improvements.
The new terraform file is just old
azure.tfwith two network interfaces each with primary public IP address and secondary private IP address.This is not yet finish. I'll add more test and I'm not happy with the Terraform part. Similar testing should be also done in EC2 and GCE and I'd like to do it in one pull request as it won't differ much - only Terraform part will differ a lot.
If you have suggestion I'd appreciate those.
Build20240812-1 of sle-15-SP6-Azure-Basic-Updates.x86_64 publiccloud_cloud_netconfig@64bit 4 45 minutes ago
Build20240812-1 of sle-15-SP6-EC2-Updates.aarch64 publiccloud_cloud_netconfig@64bit 4 about an hour ago
Build20240812-1 of sle-15-SP6-GCE-Updates.aarch64 publiccloud_cloud_netconfig@64bit 4 about an hour ago