root
/
rabbitmq-server
mirror of https://github.com/rabbitmq/rabbitmq-server.git
1
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity

peer_discovery_tmp_hidden_node_SUITE: New testsuite for the temporary hidden node 

... used by peer discovery.
This commit is contained in:
Jean-Sébastien Pédron 2024-04-02 15:56:34 +02:00
parent bd2d85fcf6
commit dbf9dfbfa7
No known key found for this signature in database
GPG Key ID: 39E99761A5FD94CC
3 changed files with 393 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
deps/rabbit/BUILD.bazel vendored
View File

@ -576,6 +576,11 @@ rabbitmq_integration_suite(
size = "medium",
)
rabbitmq_integration_suite(
name = "peer_discovery_tmp_hidden_node_SUITE",
size = "large",
)
rabbitmq_integration_suite(
name = "per_user_connection_channel_limit_partitions_SUITE",
size = "large",

9
deps/rabbit/app.bzl vendored
View File

@ -1154,6 +1154,15 @@ def test_suite_beam_files(name = "test_suite_beam_files"):
erlc_opts = "//:test_erlc_opts",
deps = ["//deps/amqp_client:erlang_app"],
)
erlang_bytecode(
name = "peer_discovery_tmp_hidden_node_SUITE_beam_files",
testonly = True,
srcs = ["test/peer_discovery_tmp_hidden_node_SUITE.erl"],
outs = ["test/peer_discovery_tmp_hidden_node_SUITE.beam"],
app_name = "rabbit",
erlc_opts = "//:test_erlc_opts",
deps = ["//deps/amqp_client:erlang_app", "//deps/rabbitmq_ct_helpers:erlang_app"],
)
erlang_bytecode(
name = "per_user_connection_channel_limit_SUITE_beam_files",
testonly = True,

379
deps/rabbit/test/peer_discovery_tmp_hidden_node_SUITE.erl vendored Normal file
View File

@ -0,0 +1,379 @@
%% This Source Code Form is subject to the terms of the Mozilla Public
%% License, v. 2.0. If a copy of the MPL was not distributed with this
%% file, You can obtain one at https://mozilla.org/MPL/2.0/.
%%
%% Copyright (c) 2024 Broadcom. All Rights Reserved. The term Broadcom
%% refers to Broadcom Inc. and/or its subsidiaries. All rights reserved.
%%
-module(peer_discovery_tmp_hidden_node_SUITE).
-include_lib("kernel/include/logger.hrl").
-include_lib("kernel/include/inet.hrl").
-include_lib("common_test/include/ct.hrl").
-include_lib("eunit/include/eunit.hrl").
-include_lib("public_key/include/public_key.hrl").
-include_lib("rabbit_common/include/logging.hrl").
-export([suite/0,
all/0,
init_per_suite/1,
end_per_suite/1,
init_per_group/2,
end_per_group/2,
init_per_testcase/2,
end_per_testcase/2,
do_setup_test_node/1,
no_connection_between_peers_is_opened/1,
long_names_work/1,
ipv6_works/1,
inetrc_file_as_atom_works/1,
tls_dist_works/1
]).
suite() ->
[{timetrap, {minutes, 15}}].
all() ->
[no_connection_between_peers_is_opened,
long_names_work,
ipv6_works,
inetrc_file_as_atom_works,
tls_dist_works].
%% -------------------------------------------------------------------
%% Testsuite setup/teardown
%% -------------------------------------------------------------------
init_per_suite(Config) ->
rabbit_ct_helpers:log_environment(),
rabbit_ct_helpers:run_setup_steps(Config).
end_per_suite(Config) ->
rabbit_ct_helpers:run_teardown_steps(Config).
init_per_group(_Group, Config) ->
Config.
end_per_group(_Group, Config) ->
Config.
init_per_testcase(Testcase, Config) ->
rabbit_ct_helpers:testcase_started(Config, Testcase),
Config.
end_per_testcase(Testcase, Config) ->
rabbit_ct_helpers:testcase_finished(Config, Testcase).
%% -------------------------------------------------------------------
%% Testcases.
%% -------------------------------------------------------------------
no_connection_between_peers_is_opened(_Config) ->
PeerOptions = #{longnames => false},
test_query_node_props(?FUNCTION_NAME, 2, PeerOptions).
long_names_work(_Config) ->
PeerOptions = #{longnames => true},
test_query_node_props(?FUNCTION_NAME, 2, PeerOptions).
ipv6_works(Config) ->
PrivDir = ?config(priv_dir, Config),
InetrcFilename = filename:join(PrivDir, "inetrc-ipv6.erl"),
ct:pal("Inetrc filename:~n~0p", [InetrcFilename]),
Inetrc = [{inet6, true}],
InetrcContent = [io_lib:format("~p.~n", [Param]) || Param <- Inetrc],
ct:pal("Inetrc file content:~n---8<---~n~s---8<---", [InetrcContent]),
ok = file:write_file(InetrcFilename, InetrcContent),
InetrcArg = rabbit_misc:format("~0p", [InetrcFilename]),
PeerOptions = #{host => "::1",
args => ["-proto_dist", "inet6_tcp",
"-kernel", "inetrc", InetrcArg]},
test_query_node_props(?FUNCTION_NAME, 2, PeerOptions).
inetrc_file_as_atom_works(_Config) ->
%% We can't write the inetrc file in `privdir' like we did in
%% `ipv6_works/1' because here we convert the filename to an atom and an
%% atom can't be more than 255 characters. It happens that in the
%% Buildbuddy CI worker, we reach a filename of 340+ characters.
%%
%% Instead, we write the file in the temporary directory.
%%
%% TEMP and TMP are used on Microsoft Windows, TMPDIR on Unix (but TMPDIR
%% might not be defined).
TmpDir = os:getenv("TEMP", os:getenv("TMP", os:getenv("TMPDIR", "/tmp"))),
InetrcFilename = filename:join(TmpDir, "inetrc-ipv6.erl"),
ct:pal("Inetrc filename:~n~0p", [InetrcFilename]),
Inetrc = [{inet6, true}],
InetrcContent = [io_lib:format("~p.~n", [Param]) || Param <- Inetrc],
ct:pal("Inetrc file content:~n---8<---~n~s---8<---", [InetrcContent]),
ok = file:write_file(InetrcFilename, InetrcContent),
InetrcArg = rabbit_misc:format("~0p", [list_to_atom(InetrcFilename)]),
PeerOptions = #{host => "::1",
args => ["-proto_dist", "inet6_tcp",
"-kernel", "inetrc", InetrcArg]},
test_query_node_props(?FUNCTION_NAME, 2, PeerOptions).
tls_dist_works(Config) ->
CertsDir = ?config(rmq_certsdir, Config),
Password = ?config(rmq_certspwd, Config),
CACert = filename:join([CertsDir, "testca", "cacert.pem"]),
ServerCert = filename:join([CertsDir, "server", "cert.pem"]),
ServerKey = filename:join([CertsDir, "server", "key.pem"]),
SslOptions = [{server,
[{cacertfile, CACert},
{certfile, ServerCert},
{keyfile, ServerKey},
{password, Password},
{secure_renegotiate, true},
{verify, verify_none},
{fail_if_no_peer_cert, false}]},
{client,
[{cacertfile, CACert},
{secure_renegotiate, true}]}],
PrivDir = ?config(priv_dir, Config),
SslOptFilename = filename:join(PrivDir, "ssl-options.erl"),
ct:pal("SSL options filename:~n~0p", [SslOptFilename]),
SslOptContent = rabbit_misc:format("~p.~n", [SslOptions]),
ct:pal("SSL options file content:~n---8<---~n~s---8<---", [SslOptContent]),
ok = file:write_file(SslOptFilename, SslOptContent),
%% We need to read the certificate's Subject ID to see what hostname is
%% used in the certificate and use the same to start the test Erlang nodes.
%% We also need to pay attention if the name is short or long.
{ok, ServerCertBin} = file:read_file(ServerCert),
ct:pal("ServerCertBin = ~p", [ServerCertBin]),
[DecodedCert] = public_key:pem_decode(ServerCertBin),
ct:pal("DecodedCert = ~p", [DecodedCert]),
DecodedCert1 = element(2, DecodedCert),
{_SerialNr, {rdnSequence, IssuerAttrs}} = public_key:pkix_subject_id(
DecodedCert1),
ct:pal("IssuerAttrs = ~p", [IssuerAttrs]),
[ServerName] = [Value
|| [#'AttributeTypeAndValue'{type = {2, 5, 4, 3},
value = {utf8String, Value}}]
<- IssuerAttrs],
ct:pal("ServerName = ~p", [ServerName]),
UseLongnames = re:run(ServerName, "\\.", [{capture, none}]) =:= match,
PeerOptions = #{host => binary_to_list(ServerName),
longnames => UseLongnames,
args => ["-proto_dist", "inet_tls",
"-ssl_dist_optfile", SslOptFilename]},
test_query_node_props(?FUNCTION_NAME, 2, PeerOptions).
test_query_node_props(Testcase, NodeCount, PeerOptions) ->
Peers = start_test_nodes(Testcase, NodeCount, PeerOptions),
try
do_test_query_node_props(Peers)
after
stop_test_nodes(Peers)
end.
do_test_query_node_props(Peers) ->
%% Ensure no connection exists at the beginning.
ensure_no_connections_between_test_nodes(Peers),
%% Query the remote node's properties. The return value should have the
%% properties of the peer node, otherwise it means that we failed to
%% contact it.
[NodeA, NodeB] = lists:sort(maps:keys(Peers)),
NodeAPid = maps:get(NodeA, Peers),
Ret = peer:call(
NodeAPid,
rabbit_peer_discovery, query_node_props, [[NodeB]],
infinity),
ct:pal("Discovered nodes properties:~n~p", [Ret]),
?assertMatch([{NodeB, [NodeB], _, false}], Ret),
%% Ensure no connection exists after the query.
ensure_no_connections_between_test_nodes(Peers).
%% -------------------------------------------------------------------
%% Helpers.
%% -------------------------------------------------------------------
start_test_nodes(Testcase, NodeCount, PeerOptions) ->
PeerOptions1 = PeerOptions#{
%% We use an alternative connection channel, not the
%% regular Erlang distribution, because we want to test
%% the behavior of the temporary hidden node and
%% especially that it doesn't rely or create a connection
%% between the two nodes.
connection => standard_io,
wait_boot => infinity},
TestEbin = filename:dirname(code:which(?MODULE)),
Args0 = maps:get(args, PeerOptions1, []),
Args1 = ["-pa", TestEbin | Args0],
Env0 = maps:get(env, PeerOptions1, []),
Env1 = [{"ERL_LIBS", os:getenv("ERL_LIBS")} | Env0],
PeerOptions2 = PeerOptions1#{args => Args1,
env => Env1},
start_test_nodes(Testcase, 1, NodeCount, PeerOptions2, #{}).
start_test_nodes(Testcase, NodeNumber, NodeCount, PeerOptions, Peers)
when NodeNumber =< NodeCount ->
PeerName0 = rabbit_misc:format("~s-~b", [Testcase, NodeNumber]),
PeerOptions1 = PeerOptions#{name => PeerName0},
ct:pal("Starting peer with options: ~p", [PeerOptions1]),
case catch peer:start(PeerOptions1) of
{ok, PeerPid, PeerName} ->
ct:pal("Configuring peer '~ts'", [PeerName]),
setup_test_node(PeerPid, PeerOptions1),
Peers1 = Peers#{PeerName => PeerPid},
start_test_nodes(
Testcase, NodeNumber + 1, NodeCount, PeerOptions, Peers1);
Error1 when not is_map_key(host, PeerOptions1) ->
ct:pal("Failed to started peer node:~n"
"Options: ~p~n"
"Error: ~p", [PeerOptions1, Error1]),
%% At least when running from a Buildbuddy CI worker, the network
%% configuration is incomplete and the host lacks an FQDN. This
%% breaks the start of an Erlang node with long names.
%%
%% To work around that, we mess with the network configuration (the
%% Erlang node runs as root) and try to determine a hostname we can
%% use. We then try again to start the node.
case determine_hostname(PeerOptions1) of
{ok, Host} ->
PeerOptions2 = PeerOptions1#{host => Host},
start_test_nodes(
Testcase, NodeNumber, NodeCount, PeerOptions2, Peers);
{error, _} = Error2 ->
ct:pal("Failed to determine a usable hostname:~n"
"Options: ~p~n"
"Error: ~p", [PeerOptions1, Error2]),
stop_test_nodes(Peers),
erlang:throw(Error2)
end;
Error ->
ct:pal("Failed to started peer node:~n"
"Options: ~p~n"
"Error: ~p", [PeerOptions1, Error]),
stop_test_nodes(Peers),
erlang:throw(Error)
end;
start_test_nodes(_Testcase, _NodeNumber, _Count, _PeerOptions, Peers) ->
ct:pal("Peers: ~p", [Peers]),
Peers.
determine_hostname(PeerOptions) ->
%% Please wear eye protection glasses to read what's next!
%%
%% The Buildbuddy CI worker network configuration lacks an FQDN and we need
%% one to start an Erlang node with a long name. To work around this, we
%% modify `/etc/hosts' to add an FQDN for 127.0.0.1 and ::1.
%%
%% 1. We read the existing file
%% 2. We modify it to add the FQDN
%% 3. We write the modified file
%% 4. We put a coin in the swear jar
HostsFilename = "/etc/hosts",
case file:read_file(HostsFilename) of
{ok, HostsFile} ->
HostsFile1 = re:replace(
HostsFile,
"^(127\\.0\\.0\\.1|::1)\\s+.*",
"& localhost.my.domain",
[{return, binary}, multiline, global]),
ct:pal(
"Changing ~s from:~n"
"---8<---~n"
"~s"
"---8<---~n"
"to:~n"
"---8<---~n"
"~s"
"---8<---~n",
[HostsFilename, HostsFile, HostsFile1]),
case file:write_file(HostsFilename, HostsFile1) of
ok -> determine_hostname1(PeerOptions);
{error, _} = Error -> Error
end;
{error, _} = Error ->
Error
end.
determine_hostname1(PeerOptions) ->
%% Now that we proudly have an FQDN, we query the IP
%% addresses and get the hostname(s) associated with each.
%%
%% In the end, we return the first hostname that matches
%% the short/long name criteria.
case inet:getifaddrs() of
{ok, IFaces} ->
ct:pal("Network interfaces: ~p", [IFaces]),
IPv4Addrs = [IPv4Addr
|| {_Name, Props} <- IFaces,
{addr, IPv4Addr} <- Props,
is_tuple(IPv4Addr) andalso size(IPv4Addr) =:= 4],
ct:pal("IPv4 addresses: ~p", [IPv4Addrs]),
determine_hostname2(IPv4Addrs, PeerOptions);
{error, _} = Error ->
Error
end.
determine_hostname2([IPv4Addr | Rest], PeerOptions) ->
WantFQDN = maps:get(longnames, PeerOptions, false),
case inet:gethostbyaddr(IPv4Addr) of
{ok, #hostent{h_name = FQDN, h_aliases = ShortDNs}} ->
AllDNs = [FQDN | ShortDNs],
ct:pal(
"All domain names for IPv4 address ~p: ~p",
[IPv4Addr, AllDNs]),
ValidDNs = lists:filter(
fun(DN) ->
lists:member($., DN) =:= WantFQDN
end, AllDNs),
ct:pal(
"Valid domain names for IPv4 address ~p: ~p",
[IPv4Addr, ValidDNs]),
case ValidDNs of
[DN | _] ->
{ok, DN};
[] ->
ct:pal(
"No valid hostnames found for IPv4 ~p: ~p",
[IPv4Addr, AllDNs]),
determine_hostname2(Rest, PeerOptions)
end;
{error, _} = Error ->
Error
end;
determine_hostname2([], _PeerOptions) ->
{error, no_valid_hostnames_found}.
setup_test_node(PeerPid, PeerOptions) ->
peer:call(PeerPid, ?MODULE, do_setup_test_node, [PeerOptions]).
do_setup_test_node(PeerOptions) ->
Context = case maps:get(longnames, PeerOptions, false) of
true -> #{nodename_type => longnames};
false -> #{}
end,
logger:set_primary_config(level, debug),
meck:new(rabbit_prelaunch, [unstick, passthrough, no_link]),
meck:expect(rabbit_prelaunch, get_context, fun() -> Context end),
meck:new(rabbit_nodes, [unstick, passthrough, no_link]),
Nodes = [node()],
meck:expect(rabbit_nodes, all, fun() -> Nodes end),
meck:expect(rabbit_nodes, list_members, fun() -> Nodes end),
ok.
stop_test_nodes(Peers) ->
maps:foreach(
fun(_PeerName, PeerPid) ->
peer:stop(PeerPid)
end, Peers).
ensure_no_connections_between_test_nodes(Peers) ->
maps:foreach(
fun(_PeerName, PeerPid) ->
?assertEqual([], peer:call(PeerPid, erlang, nodes, []))
end, Peers).