aherman
/
boundary
mirror of https://github.com/hashicorp/boundary
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'deeac5c457'
${ noResults }
boundary/internal/session/service_worker_status_repor...

428 lines
13 KiB
Raw Blame History

// Copyright (c) HashiCorp, Inc.
// SPDX-License-Identifier: BUSL-1.1
package session_test
import (
"context"
"testing"
"github.com/hashicorp/boundary/internal/authtoken"
"github.com/hashicorp/boundary/internal/db"
"github.com/hashicorp/boundary/internal/host/static"
"github.com/hashicorp/boundary/internal/iam"
"github.com/hashicorp/boundary/internal/kms"
"github.com/hashicorp/boundary/internal/server"
"github.com/hashicorp/boundary/internal/server/store"
"github.com/hashicorp/boundary/internal/session"
"github.com/hashicorp/boundary/internal/target"
"github.com/hashicorp/boundary/internal/target/tcp"
"github.com/stretchr/testify/assert"
"github.com/stretchr/testify/require"
)
func TestWorkerStatusReport(t *testing.T) {
ctx := context.Background()
conn, _ := db.TestSetup(t, "postgres")
rw := db.New(conn)
wrapper := db.TestWrapper(t)
kms := kms.TestKms(t, conn, wrapper)
org, prj := iam.TestScopes(t, iam.TestRepo(t, conn, wrapper))
serverRepo, _ := server.NewRepository(ctx, rw, rw, kms)
_, err := serverRepo.UpsertController(ctx, &store.Controller{
PrivateId: "test_controller1",
Address: "127.0.0.1",
})
require.NoError(t, err)
repo, err := session.NewRepository(ctx, rw, rw, kms)
require.NoError(t, err)
connRepo, err := session.NewConnectionRepository(ctx, rw, rw, kms, session.WithWorkerStateDelay(0))
require.NoError(t, err)
at := authtoken.TestAuthToken(t, conn, kms, org.GetPublicId())
uId := at.GetIamUserId()
hc := static.TestCatalogs(t, conn, prj.GetPublicId(), 1)[0]
hs := static.TestSets(t, conn, hc.GetPublicId(), 1)[0]
h := static.TestHosts(t, conn, hc.GetPublicId(), 1)[0]
static.TestSetMembers(t, conn, hs.GetPublicId(), []*static.Host{h})
tar := tcp.TestTarget(
ctx,
t, conn, prj.GetPublicId(), "test",
target.WithHostSources([]string{hs.GetPublicId()}),
target.WithSessionConnectionLimit(-1),
)
type testCase struct {
worker *server.Worker
req []*session.StateReport
want []*session.StateReport
orphanedConnections []string
}
cases := []struct {
name string
caseFn func(t *testing.T) testCase
}{
{
name: "No Sessions",
caseFn: func(t *testing.T) testCase {
worker := server.TestKmsWorker(t, conn, wrapper)
return testCase{
worker: worker,
req: []*session.StateReport{},
want: []*session.StateReport{},
}
},
},
{
name: "No Sessions already canceled",
caseFn: func(t *testing.T) testCase {
worker := server.TestKmsWorker(t, conn, wrapper)
sess := session.TestSession(t, conn, wrapper, session.ComposedOf{
UserId: uId,
HostId: h.GetPublicId(),
TargetId: tar.GetPublicId(),
HostSetId: hs.GetPublicId(),
AuthTokenId: at.GetPublicId(),
ProjectId: prj.GetPublicId(),
Endpoint: "tcp://127.0.0.1:22",
ConnectionLimit: 10,
})
tofu := session.TestTofu(t)
sess, _, err = repo.ActivateSession(ctx, sess.PublicId, sess.Version, tofu)
require.NoError(t, err)
require.NoError(t, err)
_, err = connRepo.AuthorizeConnection(ctx, sess.PublicId, worker.PublicId)
require.NoError(t, err)
_, err = repo.CancelSession(ctx, sess.PublicId, sess.Version)
require.NoError(t, err)
return testCase{
worker: worker,
req: []*session.StateReport{},
want: []*session.StateReport{},
}
},
},
{
name: "Still Active",
caseFn: func(t *testing.T) testCase {
worker := server.TestKmsWorker(t, conn, wrapper)
sess := session.TestSession(t, conn, wrapper, session.ComposedOf{
UserId: uId,
HostId: h.GetPublicId(),
TargetId: tar.GetPublicId(),
HostSetId: hs.GetPublicId(),
AuthTokenId: at.GetPublicId(),
ProjectId: prj.GetPublicId(),
Endpoint: "tcp://127.0.0.1:22",
ConnectionLimit: 10,
})
tofu := session.TestTofu(t)
sess, _, err = repo.ActivateSession(ctx, sess.PublicId, sess.Version, tofu)
require.NoError(t, err)
require.NoError(t, err)
connection, err := connRepo.AuthorizeConnection(ctx, sess.PublicId, worker.PublicId)
require.NoError(t, err)
return testCase{
worker: worker,
req: []*session.StateReport{
{
SessionId: sess.PublicId,
Status: session.StatusActive,
Connections: []*session.Connection{
{PublicId: connection.PublicId},
},
},
},
want: []*session.StateReport{},
}
},
},
{
name: "SessionClosed",
caseFn: func(t *testing.T) testCase {
worker := server.TestKmsWorker(t, conn, wrapper)
sess := session.TestSession(t, conn, wrapper, session.ComposedOf{
UserId: uId,
HostId: h.GetPublicId(),
TargetId: tar.GetPublicId(),
HostSetId: hs.GetPublicId(),
AuthTokenId: at.GetPublicId(),
ProjectId: prj.GetPublicId(),
Endpoint: "tcp://127.0.0.1:22",
ConnectionLimit: 10,
})
tofu := session.TestTofu(t)
sess, _, err = repo.ActivateSession(ctx, sess.PublicId, sess.Version, tofu)
require.NoError(t, err)
connection, err := connRepo.AuthorizeConnection(ctx, sess.PublicId, worker.PublicId)
require.NoError(t, err)
_, err = repo.CancelSession(ctx, sess.PublicId, sess.Version)
require.NoError(t, err)
return testCase{
worker: worker,
req: []*session.StateReport{
{
SessionId: sess.PublicId,
Status: session.StatusActive,
Connections: []*session.Connection{
{PublicId: connection.PublicId},
},
},
},
want: []*session.StateReport{
{
SessionId: sess.PublicId,
Status: session.StatusCanceling,
},
},
}
},
},
{
name: "unrecognized session",
caseFn: func(t *testing.T) testCase {
worker := server.TestKmsWorker(t, conn, wrapper)
return testCase{
worker: worker,
req: []*session.StateReport{
{
SessionId: "unrecognized_session_id",
Status: session.StatusActive,
},
},
want: []*session.StateReport{
{
SessionId: "unrecognized_session_id",
Unrecognized: true,
},
},
}
},
},
{
name: "MultipleSessionsClosed",
caseFn: func(t *testing.T) testCase {
worker := server.TestKmsWorker(t, conn, wrapper)
sess := session.TestSession(t, conn, wrapper, session.ComposedOf{
UserId: uId,
HostId: h.GetPublicId(),
TargetId: tar.GetPublicId(),
HostSetId: hs.GetPublicId(),
AuthTokenId: at.GetPublicId(),
ProjectId: prj.GetPublicId(),
Endpoint: "tcp://127.0.0.1:22",
ConnectionLimit: 10,
})
tofu := session.TestTofu(t)
sess, _, err = repo.ActivateSession(ctx, sess.PublicId, sess.Version, tofu)
require.NoError(t, err)
connection, err := connRepo.AuthorizeConnection(ctx, sess.PublicId, worker.PublicId)
require.NoError(t, err)
_, err = repo.CancelSession(ctx, sess.PublicId, sess.Version)
require.NoError(t, err)
sess2 := session.TestSession(t, conn, wrapper, session.ComposedOf{
UserId: uId,
HostId: h.GetPublicId(),
TargetId: tar.GetPublicId(),
HostSetId: hs.GetPublicId(),
AuthTokenId: at.GetPublicId(),
ProjectId: prj.GetPublicId(),
Endpoint: "tcp://127.0.0.1:22",
ConnectionLimit: 10,
})
tofu2 := session.TestTofu(t)
sess2, _, err = repo.ActivateSession(ctx, sess2.PublicId, sess2.Version, tofu2)
require.NoError(t, err)
connection2, err := connRepo.AuthorizeConnection(ctx, sess2.PublicId, worker.PublicId)
require.NoError(t, err)
_, err = repo.CancelSession(ctx, sess2.PublicId, sess2.Version)
require.NoError(t, err)
return testCase{
worker: worker,
req: []*session.StateReport{
{
SessionId: sess.PublicId,
Status: session.StatusActive,
Connections: []*session.Connection{
{PublicId: connection.PublicId},
},
},
{
SessionId: sess2.PublicId,
Status: session.StatusActive,
Connections: []*session.Connection{
{PublicId: connection2.PublicId},
},
},
},
want: []*session.StateReport{
{
SessionId: sess.PublicId,
Status: session.StatusCanceling,
},
{
SessionId: sess2.PublicId,
Status: session.StatusCanceling,
},
},
}
},
},
{
name: "OrphanedConnection",
caseFn: func(t *testing.T) testCase {
worker := server.TestKmsWorker(t, conn, wrapper)
sess := session.TestSession(t, conn, wrapper, session.ComposedOf{
UserId: uId,
HostId: h.GetPublicId(),
TargetId: tar.GetPublicId(),
HostSetId: hs.GetPublicId(),
AuthTokenId: at.GetPublicId(),
ProjectId: prj.GetPublicId(),
Endpoint: "tcp://127.0.0.1:22",
ConnectionLimit: 10,
})
tofu := session.TestTofu(t)
sess, _, err = repo.ActivateSession(ctx, sess.PublicId, sess.Version, tofu)
require.NoError(t, err)
connection, err := connRepo.AuthorizeConnection(ctx, sess.PublicId, worker.PublicId)
require.NoError(t, err)
sess2 := session.TestSession(t, conn, wrapper, session.ComposedOf{
UserId: uId,
HostId: h.GetPublicId(),
TargetId: tar.GetPublicId(),
HostSetId: hs.GetPublicId(),
AuthTokenId: at.GetPublicId(),
ProjectId: prj.GetPublicId(),
Endpoint: "tcp://127.0.0.1:22",
ConnectionLimit: 10,
})
tofu2 := session.TestTofu(t)
sess2, _, err = repo.ActivateSession(ctx, sess2.PublicId, sess2.Version, tofu2)
require.NoError(t, err)
connection2, err := connRepo.AuthorizeConnection(ctx, sess2.PublicId, worker.PublicId)
require.NoError(t, err)
require.NotEqual(t, connection.PublicId, connection2.PublicId)
return testCase{
worker: worker,
req: []*session.StateReport{
{
SessionId: sess2.PublicId,
Status: session.StatusActive,
Connections: []*session.Connection{
{PublicId: connection2.PublicId},
},
},
},
want: []*session.StateReport{},
orphanedConnections: []string{connection.PublicId},
}
},
},
{
name: "MultipleSessionsAndOrphanedConnections",
caseFn: func(t *testing.T) testCase {
worker := server.TestKmsWorker(t, conn, wrapper)
sess := session.TestSession(t, conn, wrapper, session.ComposedOf{
UserId: uId,
HostId: h.GetPublicId(),
TargetId: tar.GetPublicId(),
HostSetId: hs.GetPublicId(),
AuthTokenId: at.GetPublicId(),
ProjectId: prj.GetPublicId(),
Endpoint: "tcp://127.0.0.1:22",
ConnectionLimit: 10,
})
tofu := session.TestTofu(t)
sess, _, err = repo.ActivateSession(ctx, sess.PublicId, sess.Version, tofu)
require.NoError(t, err)
connection, err := connRepo.AuthorizeConnection(ctx, sess.PublicId, worker.PublicId)
require.NoError(t, err)
_, err = repo.CancelSession(ctx, sess.PublicId, sess.Version)
require.NoError(t, err)
sess2 := session.TestSession(t, conn, wrapper, session.ComposedOf{
UserId: uId,
HostId: h.GetPublicId(),
TargetId: tar.GetPublicId(),
HostSetId: hs.GetPublicId(),
AuthTokenId: at.GetPublicId(),
ProjectId: prj.GetPublicId(),
Endpoint: "tcp://127.0.0.1:22",
ConnectionLimit: 10,
})
tofu2 := session.TestTofu(t)
sess2, _, err = repo.ActivateSession(ctx, sess2.PublicId, sess2.Version, tofu2)
require.NoError(t, err)
connection2, err := connRepo.AuthorizeConnection(ctx, sess2.PublicId, worker.PublicId)
require.NoError(t, err)
connection3, err := connRepo.AuthorizeConnection(ctx, sess2.PublicId, worker.PublicId)
require.NoError(t, err)
_, err = repo.CancelSession(ctx, sess2.PublicId, sess2.Version)
require.NoError(t, err)
return testCase{
worker: worker,
req: []*session.StateReport{
{
SessionId: sess.PublicId,
Status: session.StatusActive,
Connections: []*session.Connection{
{PublicId: connection.PublicId},
},
},
{
SessionId: sess2.PublicId,
Status: session.StatusActive,
Connections: []*session.Connection{
{PublicId: connection2.PublicId},
},
},
},
want: []*session.StateReport{
{
SessionId: sess.PublicId,
Status: session.StatusCanceling,
},
{
SessionId: sess2.PublicId,
Status: session.StatusCanceling,
},
},
orphanedConnections: []string{connection3.PublicId},
}
},
},
}
for _, tt := range cases {
t.Run(tt.name, func(t *testing.T) {
assert, require := assert.New(t), require.New(t)
tc := tt.caseFn(t)
got, err := session.WorkerStatusReport(ctx, repo, connRepo, tc.worker.PublicId, tc.req)
require.NoError(err)
assert.ElementsMatch(tc.want, got)
for _, dc := range tc.orphanedConnections {
gotConn, err := connRepo.LookupConnection(ctx, dc)
require.NoError(err)
assert.Equal(session.ConnectionSystemError, session.ClosedReason(gotConn.ClosedReason))
assert.Equal(session.StatusClosed, session.ConnectionStatusFromString(gotConn.Status))
}
})
}
}
Reference in new issue View Git Blame Copy Permalink