We use cookies to ensure you get the best experience on our website
Halaman utama Jelajahi Bantuan
Daftar Masuk
0ct0pu5
/
moby
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Pohon: 4a3dea5e13
Ranting Tag
moby
/
integration
/
plugin
/
common
/
plugin_test.go

plugin_test.go 8.0 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289 
  1. package common // import "github.com/docker/docker/integration/plugin/common"
    2. 

  2. 

  3. import (
    4. 

  4. 	"context"
    5. 

  5. 	"encoding/base64"
    6. 

  6. 	"encoding/json"
    7. 

  7. 	"fmt"
    8. 

  8. 	"io"
    9. 

  9. 	"io/ioutil"
    10. 

  10. 	"net"
    11. 

  11. 	"net/http"
    12. 

  12. 	"os"
    13. 

  13. 	"path"
    14. 

  14. 	"path/filepath"
    15. 

  15. 	"strings"
    16. 

  16. 	"testing"
    17. 

  17. 

  18. 	"github.com/containerd/containerd/images"
    19. 

  19. 	"github.com/containerd/containerd/remotes/docker"
    20. 

  20. 	"github.com/docker/docker/api/types"
    21. 

  21. 	"github.com/docker/docker/pkg/jsonmessage"
    22. 

  22. 	"github.com/docker/docker/testutil/daemon"
    23. 

  23. 	"github.com/docker/docker/testutil/fixtures/plugin"
    24. 

  24. 	"github.com/docker/docker/testutil/registry"
    25. 

  25. 	"github.com/docker/docker/testutil/request"
    26. 

  26. 	v1 "github.com/opencontainers/image-spec/specs-go/v1"
    27. 

  27. 	"gotest.tools/v3/assert"
    28. 

  28. 	"gotest.tools/v3/assert/cmp"
    29. 

  29. 	is "gotest.tools/v3/assert/cmp"
    30. 

  30. 	"gotest.tools/v3/skip"
    31. 

  31. )
    32. 

  32. 

  33. func TestPluginInvalidJSON(t *testing.T) {
    34. 

  34. 	defer setupTest(t)()
    35. 

  35. 

  36. 	endpoints := []string{"/plugins/foobar/set"}
    37. 

  37. 

  38. 	for _, ep := range endpoints {
    39. 

  39. 		ep := ep
    40. 

  40. 		t.Run(ep, func(t *testing.T) {
    41. 

  41. 			t.Parallel()
    42. 

  42. 

  43. 			res, body, err := request.Post(ep, request.RawString("{invalid json"), request.JSON)
    44. 

  44. 			assert.NilError(t, err)
    45. 

  45. 			assert.Equal(t, res.StatusCode, http.StatusBadRequest)
    46. 

  46. 

  47. 			buf, err := request.ReadBody(body)
    48. 

  48. 			assert.NilError(t, err)
    49. 

  49. 			assert.Check(t, is.Contains(string(buf), "invalid character 'i' looking for beginning of object key string"))
    50. 

  50. 

  51. 			res, body, err = request.Post(ep, request.JSON)
    52. 

  52. 			assert.NilError(t, err)
    53. 

  53. 			assert.Equal(t, res.StatusCode, http.StatusBadRequest)
    54. 

  54. 

  55. 			buf, err = request.ReadBody(body)
    56. 

  56. 			assert.NilError(t, err)
    57. 

  57. 			assert.Check(t, is.Contains(string(buf), "got EOF while reading request body"))
    58. 

  58. 		})
    59. 

  59. 	}
    60. 

  60. }
    61. 

  61. 

  62. func TestPluginInstall(t *testing.T) {
    63. 

  63. 	skip.If(t, testEnv.IsRemoteDaemon, "cannot run daemon when remote daemon")
    64. 

  64. 	skip.If(t, testEnv.OSType == "windows")
    65. 

  65. 	skip.If(t, testEnv.IsRootless, "rootless mode has different view of localhost")
    66. 

  66. 

  67. 	ctx := context.Background()
    68. 

  68. 	client := testEnv.APIClient()
    69. 

  69. 

  70. 	t.Run("no auth", func(t *testing.T) {
    71. 

  71. 		defer setupTest(t)()
    72. 

  72. 

  73. 		reg := registry.NewV2(t)
    74. 

  74. 		defer reg.Close()
    75. 

  75. 

  76. 		name := "test-" + strings.ToLower(t.Name())
    77. 

  77. 		repo := path.Join(registry.DefaultURL, name+":latest")
    78. 

  78. 		assert.NilError(t, plugin.CreateInRegistry(ctx, repo, nil))
    79. 

  79. 

  80. 		rdr, err := client.PluginInstall(ctx, repo, types.PluginInstallOptions{Disabled: true, RemoteRef: repo})
    81. 

  81. 		assert.NilError(t, err)
    82. 

  82. 		defer rdr.Close()
    83. 

  83. 

  84. 		_, err = io.Copy(ioutil.Discard, rdr)
    85. 

  85. 		assert.NilError(t, err)
    86. 

  86. 

  87. 		_, _, err = client.PluginInspectWithRaw(ctx, repo)
    88. 

  88. 		assert.NilError(t, err)
    89. 

  89. 	})
    90. 

  90. 

  91. 	t.Run("with htpasswd", func(t *testing.T) {
    92. 

  92. 		defer setupTest(t)()
    93. 

  93. 

  94. 		reg := registry.NewV2(t, registry.Htpasswd)
    95. 

  95. 		defer reg.Close()
    96. 

  96. 

  97. 		name := "test-" + strings.ToLower(t.Name())
    98. 

  98. 		repo := path.Join(registry.DefaultURL, name+":latest")
    99. 

  99. 		auth := &types.AuthConfig{ServerAddress: registry.DefaultURL, Username: "testuser", Password: "testpassword"}
    100. 

  100. 		assert.NilError(t, plugin.CreateInRegistry(ctx, repo, auth))
    101. 

  101. 

  102. 		authEncoded, err := json.Marshal(auth)
    103. 

  103. 		assert.NilError(t, err)
    104. 

  104. 

  105. 		rdr, err := client.PluginInstall(ctx, repo, types.PluginInstallOptions{
    106. 

  106. 			RegistryAuth: base64.URLEncoding.EncodeToString(authEncoded),
    107. 

  107. 			Disabled:     true,
    108. 

  108. 			RemoteRef:    repo,
    109. 

  109. 		})
    110. 

  110. 		assert.NilError(t, err)
    111. 

  111. 		defer rdr.Close()
    112. 

  112. 

  113. 		_, err = io.Copy(ioutil.Discard, rdr)
    114. 

  114. 		assert.NilError(t, err)
    115. 

  115. 

  116. 		_, _, err = client.PluginInspectWithRaw(ctx, repo)
    117. 

  117. 		assert.NilError(t, err)
    118. 

  118. 	})
    119. 

  119. 	t.Run("with insecure", func(t *testing.T) {
    120. 

  120. 		skip.If(t, !testEnv.IsLocalDaemon())
    121. 

  121. 

  122. 		addrs, err := net.InterfaceAddrs()
    123. 

  123. 		assert.NilError(t, err)
    124. 

  124. 

  125. 		var bindTo string
    126. 

  126. 		for _, addr := range addrs {
    127. 

  127. 			ip, ok := addr.(*net.IPNet)
    128. 

  128. 			if !ok {
    129. 

  129. 				continue
    130. 

  130. 			}
    131. 

  131. 			if ip.IP.IsLoopback() || ip.IP.To4() == nil {
    132. 

  132. 				continue
    133. 

  133. 			}
    134. 

  134. 			bindTo = ip.IP.String()
    135. 

  135. 		}
    136. 

  136. 

  137. 		if bindTo == "" {
    138. 

  138. 			t.Skip("No suitable interface to bind registry to")
    139. 

  139. 		}
    140. 

  140. 

  141. 		regURL := bindTo + ":5000"
    142. 

  142. 

  143. 		d := daemon.New(t)
    144. 

  144. 		defer d.Stop(t)
    145. 

  145. 

  146. 		d.Start(t, "--insecure-registry="+regURL)
    147. 

  147. 		defer d.Stop(t)
    148. 

  148. 

  149. 		reg := registry.NewV2(t, registry.URL(regURL))
    150. 

  150. 		defer reg.Close()
    151. 

  151. 

  152. 		name := "test-" + strings.ToLower(t.Name())
    153. 

  153. 		repo := path.Join(regURL, name+":latest")
    154. 

  154. 		assert.NilError(t, plugin.CreateInRegistry(ctx, repo, nil, plugin.WithInsecureRegistry(regURL)))
    155. 

  155. 

  156. 		client := d.NewClientT(t)
    157. 

  157. 		rdr, err := client.PluginInstall(ctx, repo, types.PluginInstallOptions{Disabled: true, RemoteRef: repo})
    158. 

  158. 		assert.NilError(t, err)
    159. 

  159. 		defer rdr.Close()
    160. 

  160. 

  161. 		_, err = io.Copy(ioutil.Discard, rdr)
    162. 

  162. 		assert.NilError(t, err)
    163. 

  163. 

  164. 		_, _, err = client.PluginInspectWithRaw(ctx, repo)
    165. 

  165. 		assert.NilError(t, err)
    166. 

  166. 	})
    167. 

  167. 	// TODO: test insecure registry with https
    168. 

  168. }
    169. 

  169. 

  170. func TestPluginsWithRuntimes(t *testing.T) {
    171. 

  171. 	skip.If(t, testEnv.IsRemoteDaemon, "cannot run daemon when remote daemon")
    172. 

  172. 	skip.If(t, testEnv.IsRootless, "Test not supported on rootless due to buggy daemon setup in rootless mode due to daemon restart")
    173. 

  173. 	skip.If(t, testEnv.OSType == "windows")
    174. 

  174. 

  175. 	dir, err := ioutil.TempDir("", t.Name())
    176. 

  176. 	assert.NilError(t, err)
    177. 

  177. 	defer os.RemoveAll(dir)
    178. 

  178. 

  179. 	d := daemon.New(t)
    180. 

  180. 	defer d.Cleanup(t)
    181. 

  181. 

  182. 	d.Start(t)
    183. 

  183. 	defer d.Stop(t)
    184. 

  184. 

  185. 	ctx := context.Background()
    186. 

  186. 	client := d.NewClientT(t)
    187. 

  187. 

  188. 	assert.NilError(t, plugin.Create(ctx, client, "test:latest"))
    189. 

  189. 	defer client.PluginRemove(ctx, "test:latest", types.PluginRemoveOptions{Force: true})
    190. 

  190. 

  191. 	assert.NilError(t, client.PluginEnable(ctx, "test:latest", types.PluginEnableOptions{Timeout: 30}))
    192. 

  192. 

  193. 	p := filepath.Join(dir, "myrt")
    194. 

  194. 	script := fmt.Sprintf(`#!/bin/sh
    195. 

  195. 	file="%s/success"
    196. 

  196. 	if [ "$1" = "someArg" ]; then
    197. 

  197. 		shift
    198. 

  198. 		file="${file}_someArg"
    199. 

  199. 	fi
    200. 

  200. 

  201. 	touch $file
    202. 

  202. 	exec runc $@
    203. 

  203. 	`, dir)
    204. 

  204. 

  205. 	assert.NilError(t, ioutil.WriteFile(p, []byte(script), 0777))
    206. 

  206. 

  207. 	type config struct {
    208. 

  208. 		Runtimes map[string]types.Runtime `json:"runtimes"`
    209. 

  209. 	}
    210. 

  210. 

  211. 	cfg, err := json.Marshal(config{
    212. 

  212. 		Runtimes: map[string]types.Runtime{
    213. 

  213. 			"myrt":     {Path: p},
    214. 

  214. 			"myrtArgs": {Path: p, Args: []string{"someArg"}},
    215. 

  215. 		},
    216. 

  216. 	})
    217. 

  217. 	configPath := filepath.Join(dir, "config.json")
    218. 

  218. 	ioutil.WriteFile(configPath, cfg, 0644)
    219. 

  219. 

  220. 	t.Run("No Args", func(t *testing.T) {
    221. 

  221. 		d.Restart(t, "--default-runtime=myrt", "--config-file="+configPath)
    222. 

  222. 		_, err = os.Stat(filepath.Join(dir, "success"))
    223. 

  223. 		assert.NilError(t, err)
    224. 

  224. 	})
    225. 

  225. 

  226. 	t.Run("With Args", func(t *testing.T) {
    227. 

  227. 		d.Restart(t, "--default-runtime=myrtArgs", "--config-file="+configPath)
    228. 

  228. 		_, err = os.Stat(filepath.Join(dir, "success_someArg"))
    229. 

  229. 		assert.NilError(t, err)
    230. 

  230. 	})
    231. 

  231. }
    232. 

  232. 

  233. func TestPluginBackCompatMediaTypes(t *testing.T) {
    234. 

  234. 	skip.If(t, testEnv.IsRemoteDaemon, "cannot run daemon when remote daemon")
    235. 

  235. 	skip.If(t, testEnv.OSType == "windows")
    236. 

  236. 	skip.If(t, testEnv.IsRootless, "Rootless has a different view of localhost (needed for test registry access)")
    237. 

  237. 

  238. 	defer setupTest(t)()
    239. 

  239. 

  240. 	reg := registry.NewV2(t)
    241. 

  241. 	defer reg.Close()
    242. 

  242. 	reg.WaitReady(t)
    243. 

  243. 

  244. 	repo := path.Join(registry.DefaultURL, strings.ToLower(t.Name())+":latest")
    245. 

  245. 

  246. 	client := testEnv.APIClient()
    247. 

  247. 

  248. 	ctx := context.Background()
    249. 

  249. 	assert.NilError(t, plugin.Create(ctx, client, repo))
    250. 

  250. 

  251. 	rdr, err := client.PluginPush(ctx, repo, "")
    252. 

  252. 	assert.NilError(t, err)
    253. 

  253. 	defer rdr.Close()
    254. 

  254. 

  255. 	buf := &strings.Builder{}
    256. 

  256. 	assert.NilError(t, jsonmessage.DisplayJSONMessagesStream(rdr, buf, 0, false, nil), buf)
    257. 

  257. 

  258. 	// Use custom header here because older versions of the registry do not
    259. 

  259. 	// parse the accept header correctly and does not like the accept header
    260. 

  260. 	// that the default resolver code uses. "Older registries" here would be
    261. 

  261. 	// like the one currently included in the test suite.
    262. 

  262. 	headers := http.Header{}
    263. 

  263. 	headers.Add("Accept", images.MediaTypeDockerSchema2Manifest)
    264. 

  264. 

  265. 	resolver := docker.NewResolver(docker.ResolverOptions{
    266. 

  266. 		Headers: headers,
    267. 

  267. 	})
    268. 

  268. 	assert.NilError(t, err)
    269. 

  269. 

  270. 	n, desc, err := resolver.Resolve(ctx, repo)
    271. 

  271. 	assert.NilError(t, err, repo)
    272. 

  272. 

  273. 	fetcher, err := resolver.Fetcher(ctx, n)
    274. 

  274. 	assert.NilError(t, err)
    275. 

  275. 

  276. 	rdr, err = fetcher.Fetch(ctx, desc)
    277. 

  277. 	assert.NilError(t, err)
    278. 

  278. 	defer rdr.Close()
    279. 

  279. 

  280. 	type manifest struct {
    281. 

  281. 		MediaType string
    282. 

  282. 		v1.Manifest
    283. 

  283. 	}
    284. 

  284. 	var m manifest
    285. 

  285. 	assert.NilError(t, json.NewDecoder(rdr).Decode(&m))
    286. 

  286. 	assert.Check(t, cmp.Equal(m.MediaType, images.MediaTypeDockerSchema2Manifest))
    287. 

  287. 	assert.Check(t, cmp.Len(m.Layers, 1))
    288. 

  288. 	assert.Check(t, cmp.Equal(m.Layers[0].MediaType, images.MediaTypeDockerSchema2LayerGzip))
    289. 

  289. }
    290.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5