containers/netavark
1
0
Fork 0
mirror of https://github.com/containers/netavark.git synced 2026-02-05 06:45:56 +01:00
Code Issues Activity

import netavark-proxy-dhcp tests

Browse Source 
For now keep them in a separate directory so we can import one to one.
Only change is the rename of the binaries.
In the future we should merge them with the main nv tests.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
This commit is contained in:
Paul Holzinger
2023-03-03 16:34:52 +01:00
parent c599b2e384
commit 31b4bb477d
14 changed files with 858 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
Makefile
View File

@@ -49,7 +49,7 @@ $(CARGO_TARGET_DIR):
mkdir -p $@
.PHONY: build
build: build_netavark build_proxy
build: build_netavark build_proxy build_proxy_client
.PHONY: build_netavark
build_netavark: bin $(CARGO_TARGET_DIR)
@@ -109,6 +109,7 @@ unit: $(CARGO_TARGET_DIR)
integration: $(CARGO_TARGET_DIR)
# needs to be run as root or with podman unshare --rootless-netns
bats test/
bats test-dhcp/
.PHONY: validate
validate: $(CARGO_TARGET_DIR)

11
test-dhcp/001-basic.bats Normal file
View File

@@ -0,0 +1,11 @@
#!/usr/bin/env bats -*- bats -*-
#
# basic netavark tests
#
load helpers
@test "simple example" {
}

102
test-dhcp/002-setup.bats Normal file
View File

@@ -0,0 +1,102 @@
#!/usr/bin/env bats -*- bats -*-
#
# basic netavark tests
#
load helpers
@test "basic setup" {
read -r -d '\0' input_config <<EOF
{
"host_iface": "veth1",
"container_iface": "veth0",
"container_mac_addr": "$CONTAINER_MAC",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0,
"ns_path": "$NS_PATH"
}
\0
EOF
run_setup "$input_config"
# Check that gateway provided is the first IP in the subnet
assert `echo "$output" | jq -r .siaddr` == $(gateway_from_subnet "$SUBNET_CIDR")
container_ip=$(echo "$output" | jq -r .yiaddr)
has_ip "$container_ip"
}
@test "empty interface should fail 155" {
read -r -d '\0' input_config <<EOF
{
"container_iface": "",
"host_iface": "veth1",
"container_mac_addr": "$CONTAINER_MAC",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0,
"ns_path": "$NS_PATH"
}
\0
EOF
# Not providing an interface in the config should result
# in an error and a return code of 156
expected_rc=155 run_setup "$input_config"
}
@test "empty mac address should fail 156" {
read -r -d '\0' input_config <<EOF
{
"container_iface": "veth0",
"container_mac_addr": "",
"host_iface": "veth1",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0,
"ns_path": "$NS_PATH"
}
\0
EOF
# Not mac address should result in an error
# and return code of 156
expected_rc=156 run_setup "$input_config"
}
@test "invalid interface should fail 156" {
read -r -d '\0' input_config <<EOF
{
"container_iface": "veth990",
"host_iface": "veth1",
"container_mac_addr": "",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0,
"ns_path": "$NS_PATH"
}
\0
EOF
# A non-existent interface should result in an
# error and return code of 156
expected_rc=156 run_setup "$input_config"
}
@test "invalid mac address should fail 156" {
read -r -d '\0' input_config <<EOF
{
"container_iface": "veth0",
"host_iface": "veth1",
"container_mac_addr": "123",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0,
"ns_path": "$NS_PATH"
}
\0
EOF
# An invalid mac address should result in an
# error and a return code of 156
expected_rc=156 run_setup "$input_config"
}

37
test-dhcp/003-teardown.bats Normal file
View File

@@ -0,0 +1,37 @@
#!/usr/bin/env bats -*- bats -*-
#
# basic netavark tests
#
load helpers
@test "basic teardown" {
read -r -d '\0' input_config <<EOF
{
"host_iface": "veth1",
"container_iface": "veth0",
"container_mac_addr": "${CONTAINER_MAC}",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0,
"ns_path": "$NS_PATH"
}
\0
EOF
run_setup "$input_config"
# Read the lease file
run_helper cat "$TMP_TESTDIR/nv-proxy.lease"
before=$output
# Check that our mac address is in the lease file which
# ensures that it was added
run_helper jq "has(\"$CONTAINER_MAC\")" <<<"$before"
assert "$output" == "true"
# Run teardown
run_teardown "$input_config"
run_helper cat "$TMP_TESTDIR/nv-proxy.lease"
# Check that the length of the lease file is now zero
run_helper jq ". | length" <<<"$output"
assert "$output" == 0
}

41
test-dhcp/004-server.bats Normal file
View File

@@ -0,0 +1,41 @@
#!/usr/bin/env bats -*- bats -*-
#
# basic netavark tests
#
load helpers
@test "SIGINT Clean up" {
read -r -d '\0' input_config <<EOF
{
"host_iface": "veth1",
"container_iface": "veth0",
"container_mac_addr": "${CONTAINER_MAC}",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0
}
\0
EOF
# Make sure that nv-uds socket does not exist after SIGINT
run_in_container_netns kill -s SIGINT "$PROXY_PID"
expected_rc=2 run_helper ls -l "$TMP_TESTDIR/socket"
}
@test "SIGTERM Clean up" {
read -r -d '\0' input_config <<EOF
{
"iface": "veth0",
"mac_addr": "${CONTAINER_MAC}",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0
}
\0
EOF
# Make sure that nv-uds socket does not exist after SIGINT
run_in_container_netns kill -s SIGTERM "$PROXY_PID"
expected_rc=2 run_helper ls -l "$TMP_TESTDIR/socket"
}

82
test-dhcp/README-manual_test.md Normal file
View File

@@ -0,0 +1,82 @@
# How to test the proxy and client manually
The following instructions can help you manually test the proxy server and client. You will need dnsmasq which
is used for DHCP services only.
## Setup network and namespace
The first step is to set up an example virtual network with a bridge. Then one of the virtual ethernet devices
needs to be put into a netns. The following should suffice:
```
$ ip netns add new
$ ip link add dev outside type veth peer name outsidebr
$ ip link add dev inside type veth peer name insidebr
$ ip link add brtest type bridge
$ ip addr add 172.172.1.1/24 dev brtest
$ ip link set outsidebr master brtest
$ ip link set insidebr master brtest
$ ip link set brtest up
$ ip link set inside netns new
$ ip link set outsidebr up
$ ip link set insidebr up
$ ip addr add 172.172.1.2/24 dev outside
$ ip link set outside up
$ ip netns exec new ip link set lo up
$ ip netns exec new ip link set inside up
```
Verify that all the interfaces are status of UP using `ip a` and `ip netns exec new ip a`.
## Start DNSMasq
Open a terminal and from the git repository, edit *test/dnsmasqfiles/sample.conf*. Make sure the interface
matches the interface of the bridge (brtest) in this case.
```
# Set the interface on which dnsmasq operates.
# If not set, all the interfaces is used.
interface=brtest
# To disable dnsmasq's DNS server functionality.
port=0
...
```
```
$ sudo dnsmasq -d --log-debug --log-queries --conf-dir test/dnsmasqfiles
```
## Start the nv-proxy server
Open another terminal and build the server and client
```
$ make all
```
Then run the server with debug enabled:
```
$ sudo RUST_LOG=debug ./bin/netavark-dhcp-proxy
```
Note: When doing debug of the client or server, it can be very nice to run the server in your IDE. This allows
you to set breakpoints and see variable values. Here is an example of doing this with CLion.
![CLION setup](IDE.png)
## Run the client
In another terminal, you can then run the client. You need to generate a config file first. A script is provided
that will generate a basic config file for you. The script needs the interface name of the bridge, the name of the
netns, and the name of the interface inside the netns respectively. Simply pipe the output to a file.
```
$ sudo sh ./contrib/script/basic.sh brtest new inside
```
Then run the client with debug enabled:
```
$ sudo RUST_LOG=debug ./bin/client -f <path_to_config> setup|teardown foo
```

11
test-dhcp/README.md Normal file
View File

@@ -0,0 +1,11 @@
# netavark-dhcp-proxy integration test with bats
## Running tests
To run the tests locally in your sandbox, you can use one of these methods:
* bats ./test/001-basic.bats # runs just the specified test
* bats ./test/ # runs all
## Requirements
- bats
- jq

7
test-dhcp/configfiles/bad_interface.json Normal file
View File

@@ -0,0 +1,7 @@
{
"host_iface": "badinterfacename",
"mac_addr": "3c:e1:a1:c1:7a:3f",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0
}

7
test-dhcp/configfiles/bad_mac.json Normal file
View File

@@ -0,0 +1,7 @@
{
"host_iface": "veth0",
"mac_addr": "3c:e1:a1a:3f",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0
}

9
test-dhcp/configfiles/basic.json Normal file
View File

@@ -0,0 +1,9 @@
{
"host_iface": "veth1",
"container_iface": "veth0",
"container_mac_addr": "66:c0:05:74:df:d0",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0,
"ns_path": "/run/netns/foobar"
}

7
test-dhcp/configfiles/no_mac.json Normal file
View File

@@ -0,0 +1,7 @@
{
"host_iface": "veth0",
"mac_addr": "",
"domain_name": "example.com",
"host_name": "foobar",
"version": 0
}

28
test-dhcp/dnsmasqfiles/sample.conf Normal file
View File

@@ -0,0 +1,28 @@
# Set the interface on which dnsmasq operates.
# If not set, all the interfaces is used.
interface=brtest
# To disable dnsmasq's DNS server functionality.
port=0
# To enable dnsmasq's DHCP server functionality.
dhcp-range=172.172.1.50,172.172.1.150,255.255.255.0,12h
#dhcp-range=192.168.0.50,192.168.0.150,12h
# Set static IPs of other PCs and the Router.
dhcp-host=90:9f:44:d8:16:fc,iptime,192.168.0.1,infinite # Router
dhcp-host=31:25:99:36:c2:bb,server-right,192.168.0.3,infinite # PC1
dhcp-host=ac:97:0e:f2:6f:ab,yul-x230,192.168.0.13,infinite # PC2
# Set gateway as Router. Following two lines are identical.
#dhcp-option=option:router,192.168.0.1
dhcp-option=3,172.172.1.1
# Set DNS server as Router.
dhcp-option=6,172.172.1.1
# Logging.
log-facility=/var/log/dnsmasq.log # logfile path.
log-async
log-queries # log queries.
log-dhcp # log dhcp related messages.

499
test-dhcp/helpers.bash Normal file
View File

@@ -0,0 +1,499 @@
# -*- bash -*-
CONTAINER_MAC=
DNSMASQ_PIDFILE=
NS_NAME=
NS_PATH=
PROXY_PID=
SUBNET_CIDR=
TMP_TESTDIR=
# Netavark binary to run
NV_PROXY=${NV_PROXY:-./bin/nv-dhcp-proxy}
TESTSDIR=${TESTSDIR:-$(dirname ${BASH_SOURCE})}
# export RUST_BACKTRACE so that we get a helpful stack trace
export RUST_BACKTRACE=full
#### Functions below are taken from podman and buildah and adapted to netavark.
################
# run_helper # Invoke args, with timeout, using BATS 'run'
################
#
# Second, we use 'timeout' to abort (with a diagnostic) if something
# takes too long; this is preferable to a CI hang.
#
# Third, we log the command run and its output. This doesn't normally
# appear in BATS output, but it will if there's an error.
#
# Next, we check exit status. Since the normal desired code is 0,
# that's the default; but the expected_rc var can override:
#
# expected_rc=125 run_helper nonexistent-subcommand
# expected_rc=? run_helper some-other-command # let our caller check status
#
# Since we use the BATS 'run' mechanism, $output and $status will be
# defined for our caller.
#
function run_helper() {
# expected_rc if unset set default to 0
expected_rc="${expected_rc-0}"
if [ "$expected_rc" == "?" ]; then
expected_rc=
fi
# Remember command args, for possible use in later diagnostic messages
MOST_RECENT_COMMAND="$*"
# stdout is only emitted upon error; this echo is to help a debugger
echo "$_LOG_PROMPT $*"
# BATS hangs if a subprocess remains and keeps FD 3 open; this happens
# if a process crashes unexpectedly without cleaning up subprocesses.
run timeout --foreground -v --kill=10 10 "$@" 3>/dev/null
# without "quotes", multiple lines are glommed together into one
if [ -n "$output" ]; then
echo "$output"
fi
if [ "$status" -ne 0 ]; then
echo -n "[ rc=$status "
if [ -n "$expected_rc" ]; then
if [ "$status" -eq "$expected_rc" ]; then
echo -n "(expected) "
else
echo -n "(** EXPECTED $expected_rc **) "
fi
fi
echo "]"
fi
if [ "$status" -eq 124 ]; then
if expr "$output" : ".*timeout: sending" >/dev/null; then
# It's possible for a subtest to _want_ a timeout
if [[ "$expected_rc" != "124" ]]; then
echo "*** TIMED OUT ***"
false
fi
fi
fi
if [ -n "$expected_rc" ]; then
if [ "$status" -ne "$expected_rc" ]; then
die "exit code is $status; expected $expected_rc"
fi
fi
# unset
unset expected_rc
}
################
# run_in_container_netns # Run args in container netns
################
#
function run_in_container_netns() {
run_helper ip netns exec "${NS_NAME}" "$@"
}
#########
# die # Abort with helpful message
#########
function die() {
# FIXME: handle multi-line output
echo "#/vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv" >&2
echo "#| FAIL: $*" >&2
echo "#\\^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^" >&2
false
}
############
# assert # Compare actual vs expected string; fail if mismatch
############
#
# Compares string (default: $output) against the given string argument.
# By default we do an exact-match comparison against $output, but there
# are two different ways to invoke us, each with an optional description:
#
# xpect "EXPECT" [DESCRIPTION]
# xpect "RESULT" "OP" "EXPECT" [DESCRIPTION]
#
# The first form (one or two arguments) does an exact-match comparison
# of "$output" against "EXPECT". The second (three or four args) compares
# the first parameter against EXPECT, using the given OPerator. If present,
# DESCRIPTION will be displayed on test failure.
#
# Examples:
#
# xpect "this is exactly what we expect"
# xpect "${lines[0]}" =~ "^abc" "first line begins with abc"
#
function assert() {
local actual_string="$output"
local operator='=='
local expect_string="$1"
local testname="$2"
case "${#*}" in
0) die "Internal error: 'assert' requires one or more arguments" ;;
1 | 2) ;;
3 | 4)
actual_string="$1"
operator="$2"
expect_string="$3"
testname="$4"
;;
*) die "Internal error: too many arguments to 'assert'" ;;
esac
# Comparisons.
# Special case: there is no !~ operator, so fake it via '! x =~ y'
local not=
local actual_op="$operator"
if [[ $operator == '!~' ]]; then
not='!'
actual_op='=~'
fi
if [[ $operator == '=' || $operator == '==' ]]; then
# Special case: we can't use '=' or '==' inside [[ ... ]] because
# the right-hand side is treated as a pattern... and '[xy]' will
# not compare literally. There seems to be no way to turn that off.
if [ "$actual_string" = "$expect_string" ]; then
return
fi
elif [[ $operator == '!=' ]]; then
# Same special case as above
if [ "$actual_string" != "$expect_string" ]; then
return
fi
else
if eval "[[ $not \$actual_string $actual_op \$expect_string ]]"; then
return
elif [ $? -gt 1 ]; then
die "Internal error: could not process 'actual' $operator 'expect'"
fi
fi
# Test has failed. Get a descriptive test name.
if [ -z "$testname" ]; then
testname="${MOST_RECENT_BUILDAH_COMMAND:-[no test name given]}"
fi
# Display optimization: the typical case for 'expect' is an
# exact match ('='), but there are also '=~' or '!~' or '-ge'
# and the like. Omit the '=' but show the others; and always
# align subsequent output lines for ease of comparison.
local op=''
local ws=''
if [ "$operator" != '==' ]; then
op="$operator "
ws=$(printf "%*s" ${#op} "")
fi
# This is a multi-line message, which may in turn contain multi-line
# output, so let's format it ourself, readably
local actual_split
IFS=$'\n' read -rd '' -a actual_split <<<"$actual_string" || true
printf "#/vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv\n" >&2
printf "#| FAIL: %s\n" "$testname" >&2
printf "#| expected: %s'%s'\n" "$op" "$expect_string" >&2
printf "#| actual: %s'%s'\n" "$ws" "${actual_split[0]}" >&2
local line
for line in "${actual_split[@]:1}"; do
printf "#| > %s'%s'\n" "$ws" "$line" >&2
done
printf "#\\^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n" >&2
false
}
#################
# assert_json # Compare actual json vs expected string; fail if mismatch
#################
# assert_json works like assert except that it accepts one extra parameter,
# the jq query string.
# There are two different ways to invoke us, each with an optional description:
#
# xpect "JQ_QUERY" "EXPECT" [DESCRIPTION]
# xpect "JSON_STRING" "JQ_QUERY" "OP" "EXPECT" [DESCRIPTION]
# Important this function will overwrite $output, so if you need to use the value
# more than once you need to safe it in another variable.
function assert_json() {
local actual_json="$output"
local operator='=='
local jq_query="$1"
local expect_string="$2"
local testname="$3"
case "${#*}" in
0 | 1) die "Internal error: 'assert_json' requires two or more arguments" ;;
2 | 3) ;;
4 | 5)
actual_json="$1"
jq_query="$2"
operator="$3"
expect_string="$4"
testname="$5"
;;
*) die "Internal error: too many arguments to 'assert_json'" ;;
esac
run_helper jq -r "$jq_query" <<<"$actual_json"
assert "$output" "$operator" "$expect_string" "$testname"
}
function setup() {
echo "### Setup ###"
NS_PATH="/var/run/netns/$(random_string)"
NS_NAME=$(basename "$NS_PATH")
ip netns add "${NS_NAME}"
basic_setup
}
function teardown() {
echo "### Teardown ###"
basic_teardown
ip netns delete "${NS_NAME}"
}
function basic_teardown(){
# TODO
# Make dynamic
stop_proxy
remove_veth "veth0" "br0"
remove_bridge "br0"
stop_dhcp "$DNSMASQ_PID"
run_in_container_netns ip link set lo down
}
function basic_setup() {
SUBNET_CIDR=$(random_subnet)
set_tmpdir
add_bridge "br0"
add_veth "veth0" "br0"
run_in_container_netns ip -j link show veth0
CONTAINER_MAC=$(echo "$output" | jq -r .[0].address)
add_veth "veth1" "br0"
run_in_container_netns ip link set lo up
run_dhcp "$TESTSDIR/dnsmasqfiles"
DNSMASQ_PID="$output"
start_proxy
}
#
# add_bridge br0
#
function add_bridge() {
local bridge_name="$1"
br_cidr=$(gateway_from_subnet "$SUBNET_CIDR")
run_in_container_netns brctl addbr $bridge_name
run_in_container_netns ifconfig $bridge_name $br_cidr up
run_in_container_netns firewall-cmd --add-interface=$bridge_name --zone=trusted
}
#
# remove_bridge br0
#
function remove_bridge() {
local bridge_name="$1"
run_in_container_netns firewall-cmd --remove-interface="$bridge_name" --zone=trusted
run_in_container_netns ip link set "$bridge_name" down
# shellcheck disable=SC2086
run_in_container_netns brctl delbr $bridge_name
}
#
# remove_veth veth0 br0
#
function remove_veth() {
local veth_name="$1"
local bridge_name="$2"
local veth_br_name="${veth_name}br"
run_in_container_netns ip link set "$veth_br_name" down
run_in_container_netns ip link set "$veth_name" down
run_in_container_netns brctl delif "$bridge_name" "$veth_br_name"
run_in_container_netns ip link del "$veth_br_name" type veth peer name "$veth_name"
}
#
# add_veth veth0 br0
#
function add_veth() {
local veth_name="$1"
local bridge_name="$2"
local veth_br_name="${veth_name}br"
run_in_container_netns ip link add "$veth_br_name" type veth peer name "$veth_name"
run_in_container_netns brctl addif "$bridge_name" "$veth_br_name"
run_in_container_netns ip link set "$veth_br_name" up
run_in_container_netns ip link set "$veth_name" up
}
#
# run_dhcp /var/tmp/conf
#
function run_dhcp() {
gw=$(gateway_from_subnet "$SUBNET_CIDR")
stripped_subnet=$(strip_last_octet_from_subnet)
read -r -d '\0' dnsmasq_config <<EOF
interface=br0
# To disable dnsmasq's DNS server functionality.
port=0
# To enable dnsmasq's DHCP server functionality.
dhcp-range=${stripped_subnet}50,${stripped_subnet}59,255.255.255.0,12h
# Set gateway as Router. Following two lines are identical.
dhcp-option=3,$gw
# Set DNS server as Router.
dhcp-option=6,$gw
# Logging.
log-facility=/var/log/dnsmasq.log # logfile path.
log-async
log-queries # log queries.
log-dhcp # log dhcp related messages.
\0
EOF
dnsmasq_testdir="${TMP_TESTDIR}/dnsmasq"
DNSMASQ_PIDFILE="${TMP_TESTDIR}/dns.PID"
mkdir $dnsmasq_testdir
echo "$dnsmasq_config" > "$dnsmasq_testdir/test.conf"
run_in_container_netns dnsmasq --log-debug --log-queries --conf-dir "${dnsmasq_testdir}" -x "${DNSMASQ_PIDFILE}" &
}
#
# stop_dhcp 27231
#
function stop_dhcp() {
run_helper cat "$DNSMASQ_PIDFILE"
kill -9 "$output"
}
function start_proxy() {
ip netns exec "$NS_NAME" ./bin/netavark-dhcp-proxy --dir "$TMP_TESTDIR" --uds "$TMP_TESTDIR" &
PROXY_PID=$!
}
function stop_proxy(){
kill -9 $PROXY_PID
}
function run_setup(){
local conf=$1
NS_PATH=$(echo "${conf}" | jq -r .ns_path)
NS_NAME=$(basename "$NS_PATH")
echo "$conf" > "$TMP_TESTDIR/setup.json"
run_client "setup" "${TMP_TESTDIR}/setup.json"
}
function run_teardown(){
local conf=$1
echo "$conf" > "$TMP_TESTDIR/teardown.json"
run_client "teardown" "${TMP_TESTDIR}/teardown.json"
}
# The first arg is the incoming config from "netavark"
###################
# run_client # use test client
###################
function run_client(){
local verb=$1
local conf=$2
run_in_container_netns "./bin/netavark-dhcp-proxy-client" --uds "$TMP_TESTDIR/nv-proxy.sock" -f "${conf}" "${verb}" "foo"
}
###################
# random_subnet # generate a random private subnet
###################
#
# by default it will return a 10.x.x.0/24 ipv4 subnet
# if "6" is given as first argument it will return a "fdx:x:x:x::/64" ipv6 subnet
function random_subnet() {
if [[ "$1" == "6" ]]; then
printf "fd%x:%x:%x:%x::/64" $((RANDOM % 256)) $((RANDOM % 65535)) $((RANDOM % 65535)) $((RANDOM % 65535))
else
printf "10.%d.%d.0/24" $((RANDOM % 256)) $((RANDOM % 256))
fi
}
#########################
# random_ip_in_subnet # get a random from a given subnet
#########################
# the first arg must be an subnet created by random_subnet
# otherwise this function might return an invalid ip
function random_ip_in_subnet() {
# first trim subnet
local net_ip=${1%/*}
local num=
# if ip has colon it is ipv6
if [[ "$net_ip" == *":"* ]]; then
# make sure to not get 0 or 1
num=$(printf "%x" $((RANDOM % 65533 + 2)))
else
# if ipv4 we have to trim the final 0
net_ip=${net_ip%0}
# make sure to not get 0, 1 or 255
num=$(printf "%d" $((RANDOM % 252 + 2)))
fi
printf "$net_ip%s" $num
}
#########################
# gateway_from_subnet # get the first ip from a given subnet
#########################
# the first arg must be an subnet created by random_subnet
# otherwise this function might return an invalid ip
function gateway_from_subnet() {
local num=1
net_ip=$(strip_last_octet_from_subnet "$SUBNET_CIDR")
printf "$net_ip%s" $num
}
function strip_last_octet_from_subnet() {
# first trim subnet
local net_ip=${SUBNET_CIDR%/*}
# set first ip in network as gateway
# if ip has dor it is ipv4
if [[ "$net_ip" == *"."* ]]; then
# if ipv4 we have to trim the final 0
net_ip=${net_ip%0}
fi
printf "$net_ip"
}
#########################
# generate_mac # random generated mac address
#########################
# No args required
function generate_mac(){
openssl rand -hex 6 | sed 's/\(..\)/\1:/g; s/.$//'
}
function set_tmpdir(){
TMP_TESTDIR=$(mktemp -d /tmp/nv-proxyXXX)
}
###################
# random_string # Pseudorandom alphanumeric string of given length
###################
function random_string() {
local length=${1:-10}
head /dev/urandom | tr -dc a-zA-Z0-9 | head -c$length
}
function has_ip() {
local container_ip=$1
run_in_container_netns ip -j address show tun0 | jq .[0].addr_info | jq -c 'map(select(.local | contains("$container_ip")))'
}

15
test-dhcp/setup.sh Executable file
View File

@@ -0,0 +1,15 @@
ip netns add new
ip link add dev outside type veth peer name outsidebr
ip link add dev inside type veth peer name insidebr
ip link add brtest type bridge
ip addr add 172.172.1.1/24 dev brtest
ip link set outsidebr master brtest
ip link set insidebr master brtest
ip link set brtest up
ip link set inside netns new
ip link set outsidebr up
ip link set insidebr up
ip addr add 172.172.1.2/24 dev outside
ip link set outside up
ip netns exec new ip link set lo up
ip netns exec new ip link set inside up