fix extra port mapping validation

Signed-off-by: Daman Arora <[email protected]>
kubernetes-sigs · Nov 30, 2023 · 6fa6758 · 6fa6758
1 parent e9912a3
commit 6fa6758
Show file tree

Hide file tree

Showing 2 changed files with 96 additions and 43 deletions.
diff --git a/pkg/internal/apis/config/validate.go b/pkg/internal/apis/config/validate.go
@@ -20,6 +20,7 @@ import (
 	"fmt"
 	"net"
 	"regexp"
+	"strconv"
 	"strings"
 
 	"sigs.k8s.io/kind/pkg/errors"
@@ -137,7 +138,7 @@ func (n *Node) Validate() error {
 }
 
 func validatePortMappings(portMappings []PortMapping) error {
-	errMsg := "port mapping with same listen address, port and protocol already configured"
+	errMsg := "port mapping with same listen address, host port and protocol already configured"
 
 	wildcardAddrIPv4 := net.ParseIP("0.0.0.0")
 	wildcardAddrIPv6 := net.ParseIP("::")
@@ -152,11 +153,16 @@ func validatePortMappings(portMappings []PortMapping) error {
 	}
 
 	for _, portMapping := range portMappings {
+		// skipping validation if host port is not defined
+		if portMapping.HostPort == 0 {
+			continue
+		}
+
 		addr := net.ParseIP(portMapping.ListenAddress)
 		addrString := addr.String()
 
 		portProtocol := formatPortProtocol(portMapping.HostPort, portMapping.Protocol)
-		possibleErr := fmt.Errorf("%s: %s:%s", errMsg, addrString, portProtocol)
+		possibleErr := fmt.Errorf("%s: %s/%s", errMsg, net.JoinHostPort(addrString, strconv.Itoa(int(portMapping.HostPort))), portMapping.Protocol)
 
 		// in golang 0.0.0.0 and [::] are equivalent, convert [::] -> 0.0.0.0
 		// https://github.com/golang/go/issues/48723

diff --git a/pkg/internal/apis/config/validate_test.go b/pkg/internal/apis/config/validate_test.go
@@ -18,7 +18,6 @@ package config
 
 import (
 	"fmt"
-	"sigs.k8s.io/kind/pkg/internal/assert"
 	"testing"
 
 	"sigs.k8s.io/kind/pkg/errors"
@@ -44,7 +43,7 @@ func TestClusterValidate(t *testing.T) {
 			Cluster: func() Cluster {
 				c := Cluster{}
 				SetDefaultsCluster(&c)
-				c.Nodes = append(c.Nodes, newDefaultedNode(WorkerRole), newDefaultedNode(WorkerRole))
+				c.Nodes = append(c.Nodes, newDefaultedNode(WorkerRole, IPv4Family), newDefaultedNode(WorkerRole, IPv4Family))
 				return c
 			}(),
 		},
@@ -276,12 +275,12 @@ func TestClusterValidate(t *testing.T) {
 	}
 }
 
-func newDefaultedNode(role NodeRole) Node {
+func newDefaultedNode(role NodeRole, ipFamily ClusterIPFamily) Node {
 	n := Node{
 		Role:  role,
 		Image: "myImage:latest",
 	}
-	SetDefaultsNode(&n)
+	SetDefaultsNode(&n, ipFamily)
 	return n
 }
 
@@ -294,18 +293,18 @@ func TestNodeValidate(t *testing.T) {
 	}{
 		{
 			TestName:     "Canonical node",
-			Node:         newDefaultedNode(ControlPlaneRole),
+			Node:         newDefaultedNode(ControlPlaneRole, IPv4Family),
 			ExpectErrors: 0,
 		},
 		{
 			TestName:     "Canonical node 2",
-			Node:         newDefaultedNode(WorkerRole),
+			Node:         newDefaultedNode(WorkerRole, IPv4Family),
 			ExpectErrors: 0,
 		},
 		{
 			TestName: "Empty image field",
 			Node: func() Node {
-				cfg := newDefaultedNode(ControlPlaneRole)
+				cfg := newDefaultedNode(ControlPlaneRole, IPv4Family)
 				cfg.Image = ""
 				return cfg
 			}(),
@@ -314,7 +313,7 @@ func TestNodeValidate(t *testing.T) {
 		{
 			TestName: "Empty role field",
 			Node: func() Node {
-				cfg := newDefaultedNode(ControlPlaneRole)
+				cfg := newDefaultedNode(ControlPlaneRole, IPv4Family)
 				cfg.Role = ""
 				return cfg
 			}(),
@@ -323,7 +322,7 @@ func TestNodeValidate(t *testing.T) {
 		{
 			TestName: "Unknown role field",
 			Node: func() Node {
-				cfg := newDefaultedNode(ControlPlaneRole)
+				cfg := newDefaultedNode(ControlPlaneRole, IPv4Family)
 				cfg.Role = "ssss"
 				return cfg
 			}(),
@@ -332,7 +331,7 @@ func TestNodeValidate(t *testing.T) {
 		{
 			TestName: "Invalid ContainerPort",
 			Node: func() Node {
-				cfg := newDefaultedNode(ControlPlaneRole)
+				cfg := newDefaultedNode(ControlPlaneRole, IPv4Family)
 				cfg.ExtraPortMappings = []PortMapping{
 					{
 						ContainerPort: 999999999,
@@ -346,7 +345,7 @@ func TestNodeValidate(t *testing.T) {
 		{
 			TestName: "Invalid HostPort",
 			Node: func() Node {
-				cfg := newDefaultedNode(ControlPlaneRole)
+				cfg := newDefaultedNode(ControlPlaneRole, IPv4Family)
 				cfg.ExtraPortMappings = []PortMapping{
 					{
 						ContainerPort: 8080,
@@ -357,6 +356,24 @@ func TestNodeValidate(t *testing.T) {
 			}(),
 			ExpectErrors: 1,
 		},
+		{
+			TestName: "Duplicate HostPort",
+			Node: func() Node {
+				cfg := newDefaultedNode(ControlPlaneRole, DualStackFamily)
+				cfg.ExtraPortMappings = []PortMapping{
+					{
+						ContainerPort: 8080,
+						HostPort:      9999,
+					},
+					{
+						ContainerPort: 5000,
+						HostPort:      9999,
+					},
+				}
+				return cfg
+			}(),
+			ExpectErrors: 1,
+		},
 	}
 
 	for _, tc := range cases {
@@ -432,45 +449,66 @@ func TestPortValidate(t *testing.T) {
 }
 
 func TestValidatePortMappings(t *testing.T) {
-	newPortMapping := func(addr string, port int, protocol string) PortMapping {
+	newPortMapping := func(addr string, hostPort, containerPort int, protocol string) PortMapping {
 		return PortMapping{
-			HostPort:      int32(port),
+			HostPort:      int32(hostPort),
+			ContainerPort: int32(containerPort),
 			ListenAddress: addr,
 			Protocol:      PortMappingProtocol(protocol),
 		}
 	}
-	errMsg := "port mapping with same listen address, port and protocol already configured"
+	errMsg := "port mapping with same listen address, host port and protocol already configured"
 	cases := []struct {
 		testName     string
 		portMappings []PortMapping
 		expectErr    string
 	}{
+		{
+			testName: "unique container ports",
+			portMappings: []PortMapping{
+				newPortMapping("", 0, 1000, ""),
+				newPortMapping("", 0, 2000, ""),
+				newPortMapping("", 0, 3000, ""),
+				newPortMapping("", 0, 4000, ""),
+			},
+			expectErr: "",
+		},
+		{
+			testName: "duplicate container ports",
+			portMappings: []PortMapping{
+				newPortMapping("", 0, 1000, ""),
+				newPortMapping("", 0, 2000, ""),
+				newPortMapping("", 0, 3000, ""),
+				newPortMapping("", 0, 3000, ""),
+			},
+			expectErr: "",
+		},
 		{
 			testName: "unique port mappings ipv4",
 			portMappings: []PortMapping{
-				newPortMapping("127.0.0.1", 80, "UDP"),
-				newPortMapping("127.0.0.1", 80, "TCP"),
-				newPortMapping("0.0.0.0", 3000, "UDP"),
-				newPortMapping("0.0.0.0", 5000, "TCP"),
+				newPortMapping("127.0.0.1", 80, 5000, "UDP"),
+				newPortMapping("127.0.0.1", 80, 5000, "TCP"),
+				newPortMapping("0.0.0.0", 3000, 8000, "UDP"),
+				newPortMapping("0.0.0.0", 5000, 8000, "TCP"),
 			},
 			expectErr: "",
 		},
 		{
 			testName: "unique port mappings ipv6",
 			portMappings: []PortMapping{
-				newPortMapping("::1", 80, "UDP"),
-				newPortMapping("::1", 80, "TCP"),
-				newPortMapping("1e3d:6e85:424d:a011:a72e:9780:5f6f:a6fc", 3000, "UDP"),
-				newPortMapping("6516:944d:e070:a1d1:2e91:8437:a6b3:edf9", 5000, "TCP"),
+				newPortMapping("::1", 80, 5000, "UDP"),
+				newPortMapping("::1", 80, 5000, "TCP"),
+				newPortMapping("1e3d:6e85:424d:a011:a72e:9780:5f6f:a6fc", 3000, 8000, "UDP"),
+				newPortMapping("6516:944d:e070:a1d1:2e91:8437:a6b3:edf9", 5000, 8000, "TCP"),
 			},
 			expectErr: "",
 		},
 		{
 			testName: "exact duplicate port mappings ipv4",
 			portMappings: []PortMapping{
-				newPortMapping("127.0.0.1", 80, "TCP"),
-				newPortMapping("127.0.0.1", 80, "UDP"),
-				newPortMapping("127.0.0.1", 80, "TCP"),
+				newPortMapping("127.0.0.1", 80, 3000, "TCP"),
+				newPortMapping("127.0.0.1", 80, 5000, "UDP"),
+				newPortMapping("127.0.0.1", 80, 8000, "TCP"),
 			},
 			// error expected: exact duplicate
 			expectErr: fmt.Sprintf("%s: 127.0.0.1:80/TCP", errMsg),
@@ -479,20 +517,20 @@ func TestValidatePortMappings(t *testing.T) {
 		{
 			testName: "exact duplicate port mappings ipv6",
 			portMappings: []PortMapping{
-				newPortMapping("::1", 80, "TCP"),
-				newPortMapping("::1", 80, "UDP"),
-				newPortMapping("::1", 80, "TCP"),
+				newPortMapping("::1", 80, 3000, "TCP"),
+				newPortMapping("::1", 80, 5000, "UDP"),
+				newPortMapping("::1", 80, 8000, "TCP"),
 			},
 			// error expected: exact duplicate
 			expectErr: fmt.Sprintf("%s: [::1]:80/TCP", errMsg),
 		},
 		{
 			testName: "wildcard ipv4 & ipv6",
 			portMappings: []PortMapping{
-				newPortMapping("127.0.0.1", 80, "TCP"),
-				newPortMapping("0.0.0.0", 80, "UDP"),
-				newPortMapping("::1", 80, "TCP"),
-				newPortMapping("::", 80, "UDP"),
+				newPortMapping("127.0.0.1", 80, 3000, "TCP"),
+				newPortMapping("0.0.0.0", 80, 5000, "UDP"),
+				newPortMapping("::1", 80, 3000, "TCP"),
+				newPortMapping("::", 80, 5000, "UDP"),
 			},
 			// error expected: 0.0.0.0 & [::] are same in golang
 			// https://github.com/golang/go/issues/48723
@@ -501,35 +539,35 @@ func TestValidatePortMappings(t *testing.T) {
 		{
 			testName: "subset already configured ipv4",
 			portMappings: []PortMapping{
-				newPortMapping("127.0.0.1", 80, "TCP"),
-				newPortMapping("0.0.0.0", 80, "TCP"),
+				newPortMapping("127.0.0.1", 80, 3000, "TCP"),
+				newPortMapping("0.0.0.0", 80, 5000, "TCP"),
 			},
 			// error expected: subset of 0.0.0.0 -> 127.0.0.1 is already defined for same port and protocol
 			expectErr: fmt.Sprintf("%s: 0.0.0.0:80/TCP", errMsg),
 		},
 		{
 			testName: "subset already configured ipv6",
 			portMappings: []PortMapping{
-				newPortMapping("::1", 80, "TCP"),
-				newPortMapping("::", 80, "TCP"),
+				newPortMapping("::1", 80, 3000, "TCP"),
+				newPortMapping("::", 80, 5000, "TCP"),
 			},
 			// error expected: subset of :: -> ::1 is already defined for same port and protocol
 			expectErr: fmt.Sprintf("%s: [::]:80/TCP", errMsg),
 		},
 		{
 			testName: "port mapping already configured via wildcard ipv4",
 			portMappings: []PortMapping{
-				newPortMapping("0.0.0.0", 80, "TCP"),
-				newPortMapping("127.0.0.1", 80, "TCP"),
+				newPortMapping("0.0.0.0", 80, 5000, "TCP"),
+				newPortMapping("127.0.0.1", 80, 5000, "TCP"),
 			},
 			// error expected: port mapping is already defined for wildcard interface - 0.0.0.0
 			expectErr: fmt.Sprintf("%s: 127.0.0.1:80/TCP", errMsg),
 		},
 		{
 			testName: "port mapping already configured via wildcard ipv6",
 			portMappings: []PortMapping{
-				newPortMapping("::", 80, "SCTP"),
-				newPortMapping("::1", 80, "SCTP"),
+				newPortMapping("::", 80, 5000, "SCTP"),
+				newPortMapping("::1", 80, 5000, "SCTP"),
 			},
 			// error expected: port mapping is already defined for wildcard interface - ::
 			expectErr: fmt.Sprintf("%s: [::1]:80/SCTP", errMsg),
@@ -542,7 +580,16 @@ func TestValidatePortMappings(t *testing.T) {
 			t.Parallel()
 
 			err := validatePortMappings(tc.portMappings)
-			assert.ExpectError(t, len(tc.expectErr) > 0, err)
+
+			// the error can be:
+			// - nil, in which case we should expect no errors or fail
+			if err == nil && len(tc.expectErr) > 0 {
+				t.Errorf("Test failed, unexpected error: %s", tc.expectErr)
+			}
+
+			if err != nil && err.Error() != tc.expectErr {
+				t.Errorf("Test failed, error: %s expected error: %s", err, tc.expectErr)
+			}
 		})
 	}
 }