1 // Copyright (C) The Arvados Authors. All rights reserved.
3 // SPDX-License-Identifier: Apache-2.0
24 "git.arvados.org/arvados.git/lib/controller/rpc"
25 "git.arvados.org/arvados.git/lib/crunchrun"
26 "git.arvados.org/arvados.git/sdk/go/arvados"
27 "git.arvados.org/arvados.git/sdk/go/arvadostest"
28 "git.arvados.org/arvados.git/sdk/go/httpserver"
29 check "gopkg.in/check.v1"
32 func (s *ClientSuite) TestShellGatewayNotAvailable(c *check.C) {
33 var stdout, stderr bytes.Buffer
34 cmd := exec.Command("go", "run", ".", "shell", arvadostest.QueuedContainerUUID, "-o", "controlpath=none", "echo", "ok")
35 cmd.Env = append(cmd.Env, os.Environ()...)
36 cmd.Env = append(cmd.Env, "ARVADOS_API_TOKEN="+arvadostest.ActiveTokenV2)
39 c.Check(cmd.Run(), check.NotNil)
40 c.Log(stderr.String())
41 c.Check(stderr.String(), check.Matches, `(?ms).*container is not running yet \(state is "Queued"\).*`)
44 func (s *ClientSuite) TestShellGateway(c *check.C) {
46 c.Check(arvados.NewClientFromEnv().RequestAndDecode(nil, "POST", "database/reset", nil, nil), check.IsNil)
48 uuid := arvadostest.QueuedContainerUUID
49 h := hmac.New(sha256.New, []byte(arvadostest.SystemRootToken))
51 authSecret := fmt.Sprintf("%x", h.Sum(nil))
52 gw := crunchrun.Gateway{
55 AuthSecret: authSecret,
56 // Just forward connections to localhost instead of a
57 // container, so we can test without running a
59 Target: crunchrun.GatewayTargetStub{},
62 c.Assert(err, check.IsNil)
64 rpcconn := rpc.NewConn("",
67 Host: os.Getenv("ARVADOS_API_HOST"),
70 func(context.Context) ([]string, error) {
71 return []string{arvadostest.SystemRootToken}, nil
73 _, err = rpcconn.ContainerUpdate(context.TODO(), arvados.UpdateOptions{UUID: uuid, Attrs: map[string]interface{}{
74 "state": arvados.ContainerStateLocked,
76 c.Assert(err, check.IsNil)
77 _, err = rpcconn.ContainerUpdate(context.TODO(), arvados.UpdateOptions{UUID: uuid, Attrs: map[string]interface{}{
78 "state": arvados.ContainerStateRunning,
79 "gateway_address": gw.Address,
81 c.Assert(err, check.IsNil)
83 var stdout, stderr bytes.Buffer
84 cmd := exec.Command("go", "run", ".", "shell", uuid, "-o", "controlpath=none", "-o", "userknownhostsfile="+c.MkDir()+"/known_hosts", "echo", "ok")
85 cmd.Env = append(cmd.Env, os.Environ()...)
86 cmd.Env = append(cmd.Env, "ARVADOS_API_TOKEN="+arvadostest.ActiveTokenV2)
89 c.Check(cmd.Run(), check.IsNil)
90 c.Check(stdout.String(), check.Equals, "ok\n")
92 // Set up an http server, and try using "arvados-client shell"
93 // to forward traffic to it.
94 httpTarget := &httpserver.Server{}
95 httpTarget.Handler = http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
96 c.Logf("httpTarget.Handler: incoming request: %s %s", r.Method, r.URL)
97 if r.URL.Path == "/foo" {
98 fmt.Fprintln(w, "bar baz")
100 w.WriteHeader(http.StatusNotFound)
103 err = httpTarget.Start()
104 c.Assert(err, check.IsNil)
106 ln, err := net.Listen("tcp", ":0")
107 c.Assert(err, check.IsNil)
108 _, forwardedPort, _ := net.SplitHostPort(ln.Addr().String())
113 ctx, cancel := context.WithDeadline(context.Background(), time.Now().Add(10*time.Second))
115 cmd = exec.CommandContext(ctx,
116 "go", "run", ".", "shell", uuid,
117 "-L", forwardedPort+":"+httpTarget.Addr,
118 "-o", "controlpath=none",
119 "-o", "userknownhostsfile="+c.MkDir()+"/known_hosts",
122 c.Logf("cmd.Args: %s", cmd.Args)
123 cmd.Env = append(cmd.Env, os.Environ()...)
124 cmd.Env = append(cmd.Env, "ARVADOS_API_TOKEN="+arvadostest.ActiveTokenV2)
129 forwardedURL := fmt.Sprintf("http://localhost:%s/foo", forwardedPort)
131 for range time.NewTicker(time.Second / 20).C {
132 resp, err := http.Get(forwardedURL)
134 if !strings.Contains(err.Error(), "connect") {
136 } else if ctx.Err() != nil {
137 if cmd.Process.Signal(syscall.Signal(0)) != nil {
138 c.Error("OpenSSH exited")
140 c.Errorf("timed out trying to connect: %s", err)
142 c.Logf("OpenSSH stdout:\n%s", stdout.String())
143 c.Logf("OpenSSH stderr:\n%s", stderr.String())
146 // Retry until OpenSSH starts listening
149 c.Check(resp.StatusCode, check.Equals, http.StatusOK)
150 body, err := ioutil.ReadAll(resp.Body)
151 c.Check(err, check.IsNil)
152 c.Check(string(body), check.Equals, "bar baz\n")
156 var wg sync.WaitGroup
157 for i := 0; i < 10; i++ {
161 resp, err := http.Get(forwardedURL)
162 if !c.Check(err, check.IsNil) {
165 body, err := ioutil.ReadAll(resp.Body)
166 c.Check(err, check.IsNil)
167 c.Check(string(body), check.Equals, "bar baz\n")