greg/nix-bitcoin
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

netns test: improve ping test

Browse Source 
- Use fping for pinging multiple hosts in parallel.
  Significantly improves test runtime:
  >13 s -> ~200 ms for the negative ping tests.
- Only test network namespaces that are enabled.
  This allows running the netns test with a reduced service set for debugging.
- Remove deprecated services, instead add btcpayserver, spark-wallet
This commit is contained in:
Erik Arvstedt 2020-10-29 21:20:24 +01:00
parent 5e0e16529c
commit bae1b7f413
No known key found for this signature in database
GPG Key ID: 33312B944DD97846
2 changed files with 20 additions and 31 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
test/tests.nix
View File

@ -115,6 +115,7 @@ let testEnv = rec {
nix-bitcoin.netns-isolation.enable = true; nix-bitcoin.netns-isolation.enable = true;
test.data.netns = config.nix-bitcoin.netns-isolation.netns; test.data.netns = config.nix-bitcoin.netns-isolation.netns;
tests.netns-isolation = true; tests.netns-isolation = true;
environment.systemPackages = [ pkgs.fping ];
# This test is rather slow and unaffected by netns settings # This test is rather slow and unaffected by netns settings
tests.backups = mkForce false; tests.backups = mkForce false;

50
test/tests.py
View File

@ -237,39 +237,27 @@ def _():
# (and their corresponding network namespaces). # (and their corresponding network namespaces).
@test("netns-isolation") @test("netns-isolation")
def _(): def _():
ping_bitcoind = "ip netns exec nb-bitcoind ping -c 1 -w 1" def get_ips(services):
ping_nanopos = "ip netns exec nb-nanopos ping -c 1 -w 1" enabled = enabled_tests.intersection(services)
ping_nbxplorer = "ip netns exec nb-nbxplorer ping -c 1 -w 1" return " ".join(ip(service) for service in enabled)
# Positive ping tests (non-exhaustive) def assert_reachable(src, dests):
machine.succeed( dest_ips = get_ips(dests)
"%s %s &&" % (ping_bitcoind, ip("bitcoind")) if src in enabled_tests and dest_ips:
+ "%s %s &&" % (ping_bitcoind, ip("clightning")) machine.succeed(f"ip netns exec nb-{src} fping -c1 -t100 {dest_ips}")
+ "%s %s &&" % (ping_bitcoind, ip("lnd"))
+ "%s %s &&" % (ping_bitcoind, ip("liquidd"))
+ "%s %s &&" % (ping_bitcoind, ip("nbxplorer"))
+ "%s %s &&" % (ping_nbxplorer, ip("btcpayserver"))
+ "%s %s &&" % (ping_nanopos, ip("lightning-charge"))
+ "%s %s &&" % (ping_nanopos, ip("nanopos"))
+ "%s %s" % (ping_nanopos, ip("nginx"))
)
# Negative ping tests (non-exhaustive) def assert_unreachable(src, dests):
machine.fail( dest_ips = get_ips(dests)
"%s %s ||" % (ping_bitcoind, ip("spark-wallet")) if src in enabled_tests and dest_ips:
+ "%s %s ||" % (ping_bitcoind, ip("lightning-loop")) machine.fail(
+ "%s %s ||" % (ping_bitcoind, ip("lightning-charge")) # This fails when no host is reachable within 100 ms
+ "%s %s ||" % (ping_bitcoind, ip("nanopos")) f"ip netns exec nb-{src} fping -c1 -t100 --reachable=1 {dest_ips}"
+ "%s %s ||" % (ping_bitcoind, ip("nginx")) )
+ "%s %s ||" % (ping_nanopos, ip("bitcoind"))
+ "%s %s ||" % (ping_nanopos, ip("clightning")) # These reachability tests are non-exhaustive
+ "%s %s ||" % (ping_nanopos, ip("lnd")) assert_reachable("bitcoind", ["clightning", "lnd", "liquidd"])
+ "%s %s ||" % (ping_nanopos, ip("lightning-loop")) assert_unreachable("bitcoind", ["btcpayserver", "spark-wallet", "lightning-loop"])
+ "%s %s ||" % (ping_nanopos, ip("liquidd")) assert_unreachable("btcpayserver", ["bitcoind", "lightning-loop", "liquidd"])
+ "%s %s ||" % (ping_nanopos, ip("electrs"))
+ "%s %s ||" % (ping_nanopos, ip("spark-wallet"))
+ "%s %s" % (ping_nanopos, ip("btcpayserver"))
)
# test that netns-exec can't be run for unauthorized namespace # test that netns-exec can't be run for unauthorized namespace
machine.fail("netns-exec nb-electrs ip a") machine.fail("netns-exec nb-electrs ip a")