Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[ios_acls] Fix replaced state, to consider ace entries with remarks #1032

Merged
merged 6 commits into from
Feb 14, 2024
Merged

[ios_acls] Fix replaced state, to consider ace entries with remarks #1032

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
7131e0e
fix replaced state
KB-perByte Feb 14, 2024
9b0d855
[pre-commit.ci] auto fixes from pre-commit.com hooks
pre-commit-ci[bot] Feb 14, 2024
5cf0809
remove debug
KB-perByte Feb 14, 2024
ce4f7e6
[pre-commit.ci] auto fixes from pre-commit.com hooks
pre-commit-ci[bot] Feb 14, 2024
97ac6e5
fix comments
KB-perByte Feb 14, 2024
8414149
[pre-commit.ci] auto fixes from pre-commit.com hooks
pre-commit-ci[bot] Feb 14, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 3 additions & 0 deletions changelogs/fragments/ios_acls_replaced_state.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
---
bugfixes:
- ios_acls - Fix replaced state to consider remarks and ace entries while comparing configuration.
24 changes: 19 additions & 5 deletions plugins/module_utils/network/ios/config/acls/acls.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -221,7 +221,10 @@ def pop_remark(r_entry, afi):
for k_wrems, wrems in rem_wentry.get("remarks").items():
if k_wrems not in rem_hentry.get("remarks", {}).keys():
self.addcmd(
{"remarks": wrems, "sequence": hentry.get("sequence", "")},
{
"remarks": wrems,
"sequence": hentry.get("sequence", ""),
},
"remarks",
)
else:
Expand All @@ -247,8 +250,12 @@ def pop_remark(r_entry, afi):
"remarks",
negate=True,
)
else: # remove extra aces
self.addcmd(add_afi(hseq, afi), "aces", negate=True)
hseq.pop("remarks")
self.addcmd(
add_afi(hseq, afi),
"aces",
negate=True,
) # deal with the rest of ace entry

def sanitize_protocol_options(self, wace, hace):
"""handles protocol and protocol options as optional attribute"""
Expand Down Expand Up @@ -291,7 +298,9 @@ def list_to_dict(self, param):
temp_aces = {}
if acl.get("aces"):
rem_idx = 0 # remarks if defined in an ace
for count, ace in enumerate(acl.get("aces")): # each ace turned to dict
for count, ace in enumerate(
acl.get("aces"),
): # each ace turned to dict
if (
ace.get("destination")
and ace.get("destination", {}).get(
Expand Down Expand Up @@ -346,7 +355,12 @@ def list_to_dict(self, param):

if acl.get("acl_type"): # update acl dict with req info
temp_acls.update(
{acl.get("name"): {"aces": temp_aces, "acl_type": acl["acl_type"]}},
{
acl.get("name"): {
"aces": temp_aces,
"acl_type": acl["acl_type"],
},
},
)
else: # if no acl type then here eg: ipv6
temp_acls.update({acl.get("name"): {"aces": temp_aces}})
Expand Down
37 changes: 36 additions & 1 deletion tests/unit/modules/network/ios/test_ios_acls.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -561,7 +561,6 @@ def test_ios_acls_merged_idempotent(self):
)
result = self.execute_module(changed=False)
self.assertEqual(sorted(result["commands"]), [])
# self.execute_module(changed=False, commands=[], sort=True)

def test_ios_acls_replaced(self):
self.execute_show_command.return_value = dedent(
Expand All @@ -575,11 +574,23 @@ def test_ios_acls_replaced(self):
ip access-list standard test_acl
remark remark check 1
remark some random remark 2
ip access-list standard testRobustReplace
10 remark Remarks for 10
10 permit 192.168.1.0 0.0.0.255
20 remark Remarks for 20
20 permit 0.0.0.0 255.0.0.0
30 remark Remarks for 30
30 permit 172.16.0.0 0.15.255.255
40 remark Remarks for 40
40 permit 192.0.2.0 0.0.0.255
50 remark Remarks for 50
50 permit 198.51.100.0 0.0.0.255
""",
)
self.execute_show_command_name.return_value = dedent(
"""\
Standard IP access list test_acl
Standard IP access list testRobustReplace
""",
)
set_module_args(
Expand Down Expand Up @@ -613,6 +624,21 @@ def test_ios_acls_replaced(self):
acl_type="standard",
aces=[dict(remarks=["Another remark here"])],
),
dict(
name="testRobustReplace",
acl_type="standard",
aces=[
dict(
sequence=10,
grant="permit",
remarks=["Remarks for 10"],
source=dict(
address="192.168.1.0",
wildcard_bits="0.0.0.255",
),
),
],
),
],
),
],
Expand All @@ -627,6 +653,15 @@ def test_ios_acls_replaced(self):
"no remark remark check 1",
"no remark some random remark 2",
"remark Another remark here",
"ip access-list standard testRobustReplace",
"no 20 remark Remarks for 20",
"no 20 permit 0.0.0.0 255.0.0.0",
"no 30 remark Remarks for 30",
"no 30 permit 172.16.0.0 0.15.255.255",
"no 40 remark Remarks for 40",
"no 40 permit 192.0.2.0 0.0.0.255",
"no 50 remark Remarks for 50",
"no 50 permit 198.51.100.0 0.0.0.255",
]
self.assertEqual(sorted(result["commands"]), sorted(commands))

Expand Down
Loading