2022-10-12 07:40:38 -04:00
|
|
|
/*
|
|
|
|
|
Copyright (c) Edgeless Systems GmbH
|
|
|
|
|
|
|
|
|
|
SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
package aws
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
|
|
|
|
"errors"
|
|
|
|
|
"io"
|
|
|
|
|
"strings"
|
|
|
|
|
"testing"
|
|
|
|
|
|
|
|
|
|
"github.com/aws/aws-sdk-go-v2/aws"
|
|
|
|
|
"github.com/aws/aws-sdk-go-v2/feature/ec2/imds"
|
|
|
|
|
"github.com/aws/aws-sdk-go-v2/service/ec2"
|
2022-10-24 18:51:24 -04:00
|
|
|
ec2Types "github.com/aws/aws-sdk-go-v2/service/ec2/types"
|
|
|
|
|
"github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2"
|
|
|
|
|
elbTypes "github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2/types"
|
|
|
|
|
tagTypes "github.com/aws/aws-sdk-go-v2/service/resourcegroupstaggingapi/types"
|
|
|
|
|
|
|
|
|
|
"github.com/aws/aws-sdk-go-v2/service/resourcegroupstaggingapi"
|
2022-10-24 10:58:21 -04:00
|
|
|
"github.com/edgelesssys/constellation/v2/internal/cloud"
|
2022-10-12 07:40:38 -04:00
|
|
|
"github.com/edgelesssys/constellation/v2/internal/cloud/metadata"
|
|
|
|
|
"github.com/edgelesssys/constellation/v2/internal/role"
|
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
func TestSelf(t *testing.T) {
|
|
|
|
|
someErr := errors.New("failed")
|
|
|
|
|
|
|
|
|
|
testCases := map[string]struct {
|
|
|
|
|
imds *stubIMDS
|
|
|
|
|
ec2 *stubEC2
|
|
|
|
|
wantSelf metadata.InstanceMetadata
|
|
|
|
|
wantErr bool
|
|
|
|
|
}{
|
|
|
|
|
"success control-plane": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
instanceDocumentResp: &imds.GetInstanceIdentityDocumentOutput{
|
|
|
|
|
InstanceIdentityDocument: imds.InstanceIdentityDocument{
|
|
|
|
|
InstanceID: "test-instance-id",
|
|
|
|
|
AvailabilityZone: "test-zone",
|
|
|
|
|
PrivateIP: "192.0.2.1",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
tags: map[string]string{
|
2022-10-24 10:58:21 -04:00
|
|
|
cloud.TagRole: "controlplane",
|
2022-10-12 07:40:38 -04:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantSelf: metadata.InstanceMetadata{
|
2022-11-02 08:00:22 -04:00
|
|
|
Name: "test-instance-id",
|
2022-10-12 07:40:38 -04:00
|
|
|
ProviderID: "aws:///test-zone/test-instance-id",
|
|
|
|
|
Role: role.ControlPlane,
|
|
|
|
|
VPCIP: "192.0.2.1",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
"success worker": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
instanceDocumentResp: &imds.GetInstanceIdentityDocumentOutput{
|
|
|
|
|
InstanceIdentityDocument: imds.InstanceIdentityDocument{
|
|
|
|
|
InstanceID: "test-instance-id",
|
|
|
|
|
AvailabilityZone: "test-zone",
|
|
|
|
|
PrivateIP: "192.0.2.1",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
tags: map[string]string{
|
2022-11-26 13:44:34 -05:00
|
|
|
cloud.TagRole: "worker",
|
|
|
|
|
cloud.TagInitSecretHash: "initSecretHash",
|
2022-10-12 07:40:38 -04:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantSelf: metadata.InstanceMetadata{
|
2022-11-02 08:00:22 -04:00
|
|
|
Name: "test-instance-id",
|
2022-10-12 07:40:38 -04:00
|
|
|
ProviderID: "aws:///test-zone/test-instance-id",
|
|
|
|
|
Role: role.Worker,
|
|
|
|
|
VPCIP: "192.0.2.1",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
"get instance document error": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
getInstanceIdentityDocumentErr: someErr,
|
|
|
|
|
tags: map[string]string{
|
2022-10-24 10:58:21 -04:00
|
|
|
tagName: "test-instance",
|
|
|
|
|
cloud.TagRole: "controlplane",
|
2022-10-12 07:40:38 -04:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
"get metadata error": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
instanceDocumentResp: &imds.GetInstanceIdentityDocumentOutput{
|
|
|
|
|
InstanceIdentityDocument: imds.InstanceIdentityDocument{
|
|
|
|
|
InstanceID: "test-instance-id",
|
|
|
|
|
AvailabilityZone: "test-zone",
|
|
|
|
|
PrivateIP: "192.0.2.1",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
getMetadataErr: someErr,
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
"role not set": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
instanceDocumentResp: &imds.GetInstanceIdentityDocumentOutput{
|
|
|
|
|
InstanceIdentityDocument: imds.InstanceIdentityDocument{
|
|
|
|
|
InstanceID: "test-instance-id",
|
|
|
|
|
AvailabilityZone: "test-zone",
|
|
|
|
|
PrivateIP: "192.0.2.1",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
tags: map[string]string{
|
|
|
|
|
tagName: "test-instance",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for name, tc := range testCases {
|
|
|
|
|
t.Run(name, func(t *testing.T) {
|
|
|
|
|
assert := assert.New(t)
|
2022-11-15 04:31:55 -05:00
|
|
|
m := &Cloud{imds: tc.imds, ec2: &stubEC2{}}
|
2022-10-12 07:40:38 -04:00
|
|
|
|
|
|
|
|
self, err := m.Self(context.Background())
|
|
|
|
|
if tc.wantErr {
|
|
|
|
|
assert.Error(err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
assert.NoError(err)
|
|
|
|
|
assert.Equal(tc.wantSelf, self)
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestList(t *testing.T) {
|
|
|
|
|
someErr := errors.New("failed")
|
|
|
|
|
|
|
|
|
|
successfulResp := &ec2.DescribeInstancesOutput{
|
2022-10-24 18:51:24 -04:00
|
|
|
Reservations: []ec2Types.Reservation{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
Instances: []ec2Types.Instance{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameRunning},
|
2022-10-12 07:40:38 -04:00
|
|
|
InstanceId: aws.String("id-1"),
|
|
|
|
|
PrivateIpAddress: aws.String("192.0.2.1"),
|
2022-10-24 18:51:24 -04:00
|
|
|
Placement: &ec2Types.Placement{
|
2022-10-12 07:40:38 -04:00
|
|
|
AvailabilityZone: aws.String("test-zone"),
|
|
|
|
|
},
|
2022-10-24 18:51:24 -04:00
|
|
|
Tags: []ec2Types.Tag{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
|
|
|
|
Key: aws.String(tagName),
|
|
|
|
|
Value: aws.String("name-1"),
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagRole),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("controlplane"),
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagUID),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("uid"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameRunning},
|
2022-10-12 07:40:38 -04:00
|
|
|
InstanceId: aws.String("id-2"),
|
|
|
|
|
PrivateIpAddress: aws.String("192.0.2.2"),
|
2022-10-24 18:51:24 -04:00
|
|
|
Placement: &ec2Types.Placement{
|
2022-10-12 07:40:38 -04:00
|
|
|
AvailabilityZone: aws.String("test-zone"),
|
|
|
|
|
},
|
2022-10-24 18:51:24 -04:00
|
|
|
Tags: []ec2Types.Tag{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
|
|
|
|
Key: aws.String(tagName),
|
|
|
|
|
Value: aws.String("name-2"),
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagRole),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("worker"),
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagUID),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("uid"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
testCases := map[string]struct {
|
|
|
|
|
imds *stubIMDS
|
|
|
|
|
ec2 *stubEC2
|
|
|
|
|
wantList []metadata.InstanceMetadata
|
|
|
|
|
wantErr bool
|
|
|
|
|
}{
|
|
|
|
|
"success single page": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
tags: map[string]string{
|
2022-10-24 10:58:21 -04:00
|
|
|
cloud.TagUID: "uid",
|
2022-10-12 07:40:38 -04:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
ec2: &stubEC2{
|
|
|
|
|
describeInstancesResp1: successfulResp,
|
|
|
|
|
},
|
|
|
|
|
wantList: []metadata.InstanceMetadata{
|
|
|
|
|
{
|
|
|
|
|
Name: "name-1",
|
|
|
|
|
Role: role.ControlPlane,
|
|
|
|
|
ProviderID: "aws:///test-zone/id-1",
|
|
|
|
|
VPCIP: "192.0.2.1",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "name-2",
|
|
|
|
|
Role: role.Worker,
|
|
|
|
|
ProviderID: "aws:///test-zone/id-2",
|
|
|
|
|
VPCIP: "192.0.2.2",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
"success multiple pages": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
tags: map[string]string{
|
2022-10-24 10:58:21 -04:00
|
|
|
cloud.TagUID: "uid",
|
2022-10-12 07:40:38 -04:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
ec2: &stubEC2{
|
|
|
|
|
describeInstancesResp1: &ec2.DescribeInstancesOutput{
|
2022-10-24 18:51:24 -04:00
|
|
|
Reservations: []ec2Types.Reservation{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
Instances: []ec2Types.Instance{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameRunning},
|
2022-10-12 07:40:38 -04:00
|
|
|
InstanceId: aws.String("id-3"),
|
|
|
|
|
PrivateIpAddress: aws.String("192.0.2.3"),
|
2022-10-24 18:51:24 -04:00
|
|
|
Placement: &ec2Types.Placement{
|
2022-10-12 07:40:38 -04:00
|
|
|
AvailabilityZone: aws.String("test-zone-2"),
|
|
|
|
|
},
|
2022-10-24 18:51:24 -04:00
|
|
|
Tags: []ec2Types.Tag{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
|
|
|
|
Key: aws.String(tagName),
|
|
|
|
|
Value: aws.String("name-3"),
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagRole),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("worker"),
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagUID),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("uid"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
NextToken: aws.String("next-token"),
|
|
|
|
|
},
|
|
|
|
|
describeInstancesResp2: successfulResp,
|
|
|
|
|
},
|
|
|
|
|
wantList: []metadata.InstanceMetadata{
|
|
|
|
|
{
|
|
|
|
|
Name: "name-3",
|
|
|
|
|
Role: role.Worker,
|
|
|
|
|
ProviderID: "aws:///test-zone-2/id-3",
|
|
|
|
|
VPCIP: "192.0.2.3",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "name-1",
|
|
|
|
|
Role: role.ControlPlane,
|
|
|
|
|
ProviderID: "aws:///test-zone/id-1",
|
|
|
|
|
VPCIP: "192.0.2.1",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "name-2",
|
|
|
|
|
Role: role.Worker,
|
|
|
|
|
ProviderID: "aws:///test-zone/id-2",
|
|
|
|
|
VPCIP: "192.0.2.2",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
"fail to get UID": {
|
|
|
|
|
imds: &stubIMDS{},
|
|
|
|
|
ec2: &stubEC2{
|
|
|
|
|
describeInstancesResp1: successfulResp,
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
"describe instances fails": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
tags: map[string]string{
|
2022-10-24 10:58:21 -04:00
|
|
|
cloud.TagUID: "uid",
|
2022-10-12 07:40:38 -04:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
ec2: &stubEC2{
|
|
|
|
|
describeInstancesErr: someErr,
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for name, tc := range testCases {
|
|
|
|
|
t.Run(name, func(t *testing.T) {
|
|
|
|
|
assert := assert.New(t)
|
2022-11-15 04:31:55 -05:00
|
|
|
m := &Cloud{ec2: tc.ec2, imds: tc.imds}
|
2022-10-12 07:40:38 -04:00
|
|
|
|
|
|
|
|
list, err := m.List(context.Background())
|
|
|
|
|
if tc.wantErr {
|
|
|
|
|
assert.Error(err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
assert.NoError(err)
|
|
|
|
|
assert.Equal(tc.wantList, list)
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-10-24 18:51:24 -04:00
|
|
|
func TestGetLoadBalancerEndpoint(t *testing.T) {
|
|
|
|
|
lbAddr := "192.0.2.1"
|
|
|
|
|
someErr := errors.New("some error")
|
|
|
|
|
|
|
|
|
|
testCases := map[string]struct {
|
|
|
|
|
imds *stubIMDS
|
|
|
|
|
loadbalancer *stubLoadbalancer
|
|
|
|
|
resourceapi *stubResourceGroupTagging
|
|
|
|
|
wantAddr string
|
|
|
|
|
wantErr bool
|
|
|
|
|
}{
|
|
|
|
|
"success retrieving loadbalancer endpoint": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
tags: map[string]string{
|
|
|
|
|
cloud.TagUID: "uid",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
loadbalancer: &stubLoadbalancer{
|
|
|
|
|
describeLoadBalancersOut: &elasticloadbalancingv2.DescribeLoadBalancersOutput{
|
|
|
|
|
LoadBalancers: []elbTypes.LoadBalancer{
|
|
|
|
|
{
|
|
|
|
|
AvailabilityZones: []elbTypes.AvailabilityZone{
|
|
|
|
|
{
|
|
|
|
|
LoadBalancerAddresses: []elbTypes.LoadBalancerAddress{
|
|
|
|
|
{
|
|
|
|
|
IpAddress: aws.String(lbAddr),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
resourceapi: &stubResourceGroupTagging{
|
|
|
|
|
getResourcesOut1: &resourcegroupstaggingapi.GetResourcesOutput{
|
|
|
|
|
ResourceTagMappingList: []tagTypes.ResourceTagMapping{
|
|
|
|
|
{
|
|
|
|
|
ResourceARN: aws.String("arn:aws:elasticloadbalancing:us-east-1:123456789012:loadbalancer/app/test-loadbalancer/50dc6c495c0c9188"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantAddr: lbAddr,
|
|
|
|
|
},
|
|
|
|
|
"too many ARNs": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
tags: map[string]string{
|
|
|
|
|
cloud.TagUID: "uid",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
loadbalancer: &stubLoadbalancer{
|
|
|
|
|
describeLoadBalancersOut: &elasticloadbalancingv2.DescribeLoadBalancersOutput{
|
|
|
|
|
LoadBalancers: []elbTypes.LoadBalancer{
|
|
|
|
|
{
|
|
|
|
|
AvailabilityZones: []elbTypes.AvailabilityZone{
|
|
|
|
|
{
|
|
|
|
|
LoadBalancerAddresses: []elbTypes.LoadBalancerAddress{
|
|
|
|
|
{
|
|
|
|
|
IpAddress: aws.String(lbAddr),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
resourceapi: &stubResourceGroupTagging{
|
|
|
|
|
getResourcesOut1: &resourcegroupstaggingapi.GetResourcesOutput{
|
|
|
|
|
ResourceTagMappingList: []tagTypes.ResourceTagMapping{
|
|
|
|
|
{
|
|
|
|
|
ResourceARN: aws.String("arn:aws:elasticloadbalancing:us-east-1:123456789012:loadbalancer/app/test-loadbalancer/50dc6c495c0c9188"),
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
ResourceARN: aws.String("arn:aws:elasticloadbalancing:us-east-1:123456789012:loadbalancer/app/test-loadbalancer/50dc6c495c0c9188"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
"too many ARNs (paged)": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
tags: map[string]string{
|
|
|
|
|
cloud.TagUID: "uid",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
loadbalancer: &stubLoadbalancer{
|
|
|
|
|
describeLoadBalancersOut: &elasticloadbalancingv2.DescribeLoadBalancersOutput{
|
|
|
|
|
LoadBalancers: []elbTypes.LoadBalancer{
|
|
|
|
|
{
|
|
|
|
|
AvailabilityZones: []elbTypes.AvailabilityZone{
|
|
|
|
|
{
|
|
|
|
|
LoadBalancerAddresses: []elbTypes.LoadBalancerAddress{
|
|
|
|
|
{
|
|
|
|
|
IpAddress: aws.String(lbAddr),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
resourceapi: &stubResourceGroupTagging{
|
|
|
|
|
getResourcesOut1: &resourcegroupstaggingapi.GetResourcesOutput{
|
|
|
|
|
ResourceTagMappingList: []tagTypes.ResourceTagMapping{
|
|
|
|
|
{
|
|
|
|
|
ResourceARN: aws.String("arn:aws:elasticloadbalancing:us-east-1:123456789012:loadbalancer/app/test-loadbalancer/50dc6c495c0c9188"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
PaginationToken: aws.String("token"),
|
|
|
|
|
},
|
|
|
|
|
getResourcesOut2: &resourcegroupstaggingapi.GetResourcesOutput{
|
|
|
|
|
ResourceTagMappingList: []tagTypes.ResourceTagMapping{
|
|
|
|
|
{
|
|
|
|
|
ResourceARN: aws.String("arn:aws:elasticloadbalancing:us-east-1:123456789012:loadbalancer/app/test-loadbalancer/50dc6c495c0c9188"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
"loadbalancer has no availability zones": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
tags: map[string]string{
|
|
|
|
|
cloud.TagUID: "uid",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
loadbalancer: &stubLoadbalancer{
|
|
|
|
|
describeLoadBalancersOut: &elasticloadbalancingv2.DescribeLoadBalancersOutput{
|
|
|
|
|
LoadBalancers: []elbTypes.LoadBalancer{
|
|
|
|
|
{
|
|
|
|
|
AvailabilityZones: []elbTypes.AvailabilityZone{},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
resourceapi: &stubResourceGroupTagging{
|
|
|
|
|
getResourcesOut1: &resourcegroupstaggingapi.GetResourcesOutput{
|
|
|
|
|
ResourceTagMappingList: []tagTypes.ResourceTagMapping{
|
|
|
|
|
{
|
|
|
|
|
ResourceARN: aws.String("arn:aws:elasticloadbalancing:us-east-1:123456789012:loadbalancer/app/test-loadbalancer/50dc6c495c0c9188"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
"failure to get resources by tag": {
|
|
|
|
|
imds: &stubIMDS{
|
|
|
|
|
tags: map[string]string{
|
|
|
|
|
cloud.TagUID: "uid",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
loadbalancer: &stubLoadbalancer{
|
|
|
|
|
describeLoadBalancersOut: &elasticloadbalancingv2.DescribeLoadBalancersOutput{
|
|
|
|
|
LoadBalancers: []elbTypes.LoadBalancer{
|
|
|
|
|
{
|
|
|
|
|
AvailabilityZones: []elbTypes.AvailabilityZone{
|
|
|
|
|
{
|
|
|
|
|
LoadBalancerAddresses: []elbTypes.LoadBalancerAddress{
|
|
|
|
|
{
|
|
|
|
|
IpAddress: aws.String(lbAddr),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
resourceapi: &stubResourceGroupTagging{
|
|
|
|
|
getResourcesErr: someErr,
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for name, tc := range testCases {
|
|
|
|
|
t.Run(name, func(t *testing.T) {
|
|
|
|
|
assert := assert.New(t)
|
2022-11-15 04:31:55 -05:00
|
|
|
m := &Cloud{
|
2022-10-24 18:51:24 -04:00
|
|
|
imds: tc.imds,
|
|
|
|
|
loadbalancer: tc.loadbalancer,
|
|
|
|
|
resourceapiClient: tc.resourceapi,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
endpoint, err := m.GetLoadBalancerEndpoint(context.Background())
|
|
|
|
|
if tc.wantErr {
|
|
|
|
|
assert.Error(err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
assert.NoError(err)
|
|
|
|
|
assert.Equal(tc.wantAddr, endpoint)
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-10-12 07:40:38 -04:00
|
|
|
func TestConvertToMetadataInstance(t *testing.T) {
|
|
|
|
|
testCases := map[string]struct {
|
2022-10-24 18:51:24 -04:00
|
|
|
in []ec2Types.Instance
|
2022-10-12 07:40:38 -04:00
|
|
|
wantInstances []metadata.InstanceMetadata
|
|
|
|
|
wantErr bool
|
|
|
|
|
}{
|
|
|
|
|
"success": {
|
2022-10-24 18:51:24 -04:00
|
|
|
in: []ec2Types.Instance{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameRunning},
|
2022-10-12 07:40:38 -04:00
|
|
|
InstanceId: aws.String("id-1"),
|
|
|
|
|
PrivateIpAddress: aws.String("192.0.2.1"),
|
2022-10-24 18:51:24 -04:00
|
|
|
Placement: &ec2Types.Placement{
|
2022-10-12 07:40:38 -04:00
|
|
|
AvailabilityZone: aws.String("test-zone"),
|
|
|
|
|
},
|
2022-10-24 18:51:24 -04:00
|
|
|
Tags: []ec2Types.Tag{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
|
|
|
|
Key: aws.String(tagName),
|
|
|
|
|
Value: aws.String("name-1"),
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagRole),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("controlplane"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantInstances: []metadata.InstanceMetadata{
|
|
|
|
|
{
|
|
|
|
|
Name: "name-1",
|
|
|
|
|
Role: role.ControlPlane,
|
|
|
|
|
ProviderID: "aws:///test-zone/id-1",
|
|
|
|
|
VPCIP: "192.0.2.1",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
"fallback to instance ID": {
|
2022-10-24 18:51:24 -04:00
|
|
|
in: []ec2Types.Instance{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameRunning},
|
2022-10-12 07:40:38 -04:00
|
|
|
InstanceId: aws.String("id-1"),
|
|
|
|
|
PrivateIpAddress: aws.String("192.0.2.1"),
|
2022-10-24 18:51:24 -04:00
|
|
|
Tags: []ec2Types.Tag{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
|
|
|
|
Key: aws.String(tagName),
|
|
|
|
|
Value: aws.String("name-1"),
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagRole),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("controlplane"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
wantInstances: []metadata.InstanceMetadata{
|
|
|
|
|
{
|
|
|
|
|
Name: "name-1",
|
|
|
|
|
Role: role.ControlPlane,
|
|
|
|
|
ProviderID: "aws:///id-1",
|
|
|
|
|
VPCIP: "192.0.2.1",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
"non running instances are ignored": {
|
2022-10-24 18:51:24 -04:00
|
|
|
in: []ec2Types.Instance{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameStopped},
|
2022-10-12 07:40:38 -04:00
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameTerminated},
|
2022-10-12 07:40:38 -04:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
"no instance ID": {
|
2022-10-24 18:51:24 -04:00
|
|
|
in: []ec2Types.Instance{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameRunning},
|
2022-10-12 07:40:38 -04:00
|
|
|
PrivateIpAddress: aws.String("192.0.2.1"),
|
2022-10-24 18:51:24 -04:00
|
|
|
Placement: &ec2Types.Placement{
|
2022-10-12 07:40:38 -04:00
|
|
|
AvailabilityZone: aws.String("test-zone"),
|
|
|
|
|
},
|
2022-10-24 18:51:24 -04:00
|
|
|
Tags: []ec2Types.Tag{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
|
|
|
|
Key: aws.String(tagName),
|
|
|
|
|
Value: aws.String("name-1"),
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagRole),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("controlplane"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
"no private IP": {
|
2022-10-24 18:51:24 -04:00
|
|
|
in: []ec2Types.Instance{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameRunning},
|
2022-10-12 07:40:38 -04:00
|
|
|
InstanceId: aws.String("id-1"),
|
2022-10-24 18:51:24 -04:00
|
|
|
Placement: &ec2Types.Placement{
|
2022-10-12 07:40:38 -04:00
|
|
|
AvailabilityZone: aws.String("test-zone"),
|
|
|
|
|
},
|
2022-10-24 18:51:24 -04:00
|
|
|
Tags: []ec2Types.Tag{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
|
|
|
|
Key: aws.String(tagName),
|
|
|
|
|
Value: aws.String("name-1"),
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagRole),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("controlplane"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
"missing name tag": {
|
2022-10-24 18:51:24 -04:00
|
|
|
in: []ec2Types.Instance{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameRunning},
|
2022-10-12 07:40:38 -04:00
|
|
|
InstanceId: aws.String("id-1"),
|
|
|
|
|
PrivateIpAddress: aws.String("192.0.2.1"),
|
2022-10-24 18:51:24 -04:00
|
|
|
Placement: &ec2Types.Placement{
|
2022-10-12 07:40:38 -04:00
|
|
|
AvailabilityZone: aws.String("test-zone"),
|
|
|
|
|
},
|
2022-10-24 18:51:24 -04:00
|
|
|
Tags: []ec2Types.Tag{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 10:58:21 -04:00
|
|
|
Key: aws.String(cloud.TagRole),
|
2022-10-12 07:40:38 -04:00
|
|
|
Value: aws.String("controlplane"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
"missing role tag": {
|
2022-10-24 18:51:24 -04:00
|
|
|
in: []ec2Types.Instance{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
2022-10-24 18:51:24 -04:00
|
|
|
State: &ec2Types.InstanceState{Name: ec2Types.InstanceStateNameRunning},
|
2022-10-12 07:40:38 -04:00
|
|
|
InstanceId: aws.String("id-1"),
|
|
|
|
|
PrivateIpAddress: aws.String("192.0.2.1"),
|
2022-10-24 18:51:24 -04:00
|
|
|
Placement: &ec2Types.Placement{
|
2022-10-12 07:40:38 -04:00
|
|
|
AvailabilityZone: aws.String("test-zone"),
|
|
|
|
|
},
|
2022-10-24 18:51:24 -04:00
|
|
|
Tags: []ec2Types.Tag{
|
2022-10-12 07:40:38 -04:00
|
|
|
{
|
|
|
|
|
Key: aws.String(tagName),
|
|
|
|
|
Value: aws.String("name-1"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
wantErr: true,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for name, tc := range testCases {
|
|
|
|
|
t.Run(name, func(t *testing.T) {
|
|
|
|
|
assert := assert.New(t)
|
2022-11-15 04:31:55 -05:00
|
|
|
m := &Cloud{}
|
2022-10-12 07:40:38 -04:00
|
|
|
|
|
|
|
|
instances, err := m.convertToMetadataInstance(tc.in)
|
|
|
|
|
if tc.wantErr {
|
|
|
|
|
assert.Error(err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
assert.NoError(err)
|
|
|
|
|
assert.Equal(tc.wantInstances, instances)
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type stubIMDS struct {
|
|
|
|
|
getInstanceIdentityDocumentErr error
|
|
|
|
|
getMetadataErr error
|
|
|
|
|
instanceDocumentResp *imds.GetInstanceIdentityDocumentOutput
|
|
|
|
|
tags map[string]string
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *stubIMDS) GetInstanceIdentityDocument(context.Context, *imds.GetInstanceIdentityDocumentInput, ...func(*imds.Options)) (*imds.GetInstanceIdentityDocumentOutput, error) {
|
|
|
|
|
return s.instanceDocumentResp, s.getInstanceIdentityDocumentErr
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *stubIMDS) GetMetadata(_ context.Context, in *imds.GetMetadataInput, _ ...func(*imds.Options)) (*imds.GetMetadataOutput, error) {
|
|
|
|
|
tag, ok := s.tags[strings.TrimPrefix(in.Path, "/tags/instance/")]
|
|
|
|
|
if !ok {
|
|
|
|
|
return nil, errors.New("not found")
|
|
|
|
|
}
|
|
|
|
|
return &imds.GetMetadataOutput{
|
|
|
|
|
Content: io.NopCloser(
|
|
|
|
|
strings.NewReader(
|
|
|
|
|
tag,
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
}, s.getMetadataErr
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type stubEC2 struct {
|
|
|
|
|
describeInstancesErr error
|
|
|
|
|
describeInstancesResp1 *ec2.DescribeInstancesOutput
|
|
|
|
|
describeInstancesResp2 *ec2.DescribeInstancesOutput
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *stubEC2) DescribeInstances(_ context.Context, in *ec2.DescribeInstancesInput, _ ...func(*ec2.Options)) (*ec2.DescribeInstancesOutput, error) {
|
|
|
|
|
if in.NextToken == nil {
|
|
|
|
|
return s.describeInstancesResp1, s.describeInstancesErr
|
|
|
|
|
}
|
|
|
|
|
return s.describeInstancesResp2, s.describeInstancesErr
|
|
|
|
|
}
|
2022-10-24 18:51:24 -04:00
|
|
|
|
|
|
|
|
type stubLoadbalancer struct {
|
|
|
|
|
describeLoadBalancersErr error
|
|
|
|
|
describeLoadBalancersOut *elasticloadbalancingv2.DescribeLoadBalancersOutput
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *stubLoadbalancer) DescribeLoadBalancers(_ context.Context,
|
2023-03-20 06:03:36 -04:00
|
|
|
_ *elasticloadbalancingv2.DescribeLoadBalancersInput,
|
2022-10-24 18:51:24 -04:00
|
|
|
_ ...func(*elasticloadbalancingv2.Options)) (
|
|
|
|
|
*elasticloadbalancingv2.DescribeLoadBalancersOutput, error,
|
|
|
|
|
) {
|
|
|
|
|
return s.describeLoadBalancersOut, s.describeLoadBalancersErr
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type stubResourceGroupTagging struct {
|
|
|
|
|
getResourcesErr error
|
|
|
|
|
getResourcesOut1 *resourcegroupstaggingapi.GetResourcesOutput
|
|
|
|
|
getResourcesOut2 *resourcegroupstaggingapi.GetResourcesOutput
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *stubResourceGroupTagging) GetResources(_ context.Context,
|
|
|
|
|
in *resourcegroupstaggingapi.GetResourcesInput,
|
|
|
|
|
_ ...func(*resourcegroupstaggingapi.Options)) (
|
|
|
|
|
*resourcegroupstaggingapi.GetResourcesOutput, error,
|
|
|
|
|
) {
|
|
|
|
|
if in.PaginationToken == nil {
|
|
|
|
|
return s.getResourcesOut1, s.getResourcesErr
|
|
|
|
|
}
|
|
|
|
|
return s.getResourcesOut2, s.getResourcesErr
|
|
|
|
|
}
|
