status-im
/
consul
mirror of https://github.com/status-im/consul.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

validate localities on agent configs and registration endpoints (#17712)

This commit is contained in:
Eric Haberkorn 2023-06-15 10:01:04 -04:00 committed by GitHub
parent 37bd0e1b40
commit 0994ccf162
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
4 changed files with 71 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
agent/config/builder.go
View File

@ -1290,6 +1290,10 @@ func (b *builder) validate(rt RuntimeConfig) error {
"1 and 63 bytes.", rt.NodeName) "1 and 63 bytes.", rt.NodeName)
} }
if err := rt.StructLocality().Validate(); err != nil {
return fmt.Errorf("locality is invalid: %s", err)
}
if ipaddr.IsAny(rt.AdvertiseAddrLAN.IP) { if ipaddr.IsAny(rt.AdvertiseAddrLAN.IP) {
return fmt.Errorf("Advertise address cannot be 0.0.0.0, :: or [::]") return fmt.Errorf("Advertise address cannot be 0.0.0.0, :: or [::]")
} }

7
agent/config/runtime_test.go
View File

@ -1036,6 +1036,13 @@ func TestLoad_IntegrationWithFlags(t *testing.T) {
}, },
}, },
}) })
run(t, testCase{
desc: "locality invalid",
args: []string{`-data-dir=` + dataDir},
json: []string{`{"locality": {"zone": "us-west-1a"}}`},
hcl: []string{`locality { zone = "us-west-1a" }`},
expectedErr: "locality is invalid: zone cannot be set without region",
})
run(t, testCase{ run(t, testCase{
desc: "client addr and ports == 0", desc: "client addr and ports == 0",
args: []string{`-data-dir=` + dataDir}, args: []string{`-data-dir=` + dataDir},

16
agent/structs/structs.go
View File

@ -1480,6 +1480,10 @@ func (s *NodeService) IsGateway() bool {
func (s *NodeService) Validate() error { func (s *NodeService) Validate() error {
var result error var result error
if err := s.Locality.Validate(); err != nil {
result = multierror.Append(result, err)
}
if s.Kind == ServiceKindConnectProxy { if s.Kind == ServiceKindConnectProxy {
if s.Port == 0 && s.SocketPath == "" { if s.Port == 0 && s.SocketPath == "" {
result = multierror.Append(result, fmt.Errorf("Port or SocketPath must be set for a %s", s.Kind)) result = multierror.Append(result, fmt.Errorf("Port or SocketPath must be set for a %s", s.Kind))
@ -3111,3 +3115,15 @@ func (l *Locality) GetRegion() string {
} }
return l.Region return l.Region
} }
func (l *Locality) Validate() error {
if l == nil {
return nil
}
if l.Region == "" && l.Zone != "" {
return fmt.Errorf("zone cannot be set without region")
}
return nil
}

44
agent/structs/structs_test.go
View File

@ -592,6 +592,43 @@ func TestStructs_ServiceNode_Conversions(t *testing.T) {
} }
} }
func TestStructs_Locality_Validate(t *testing.T) {
type testCase struct {
locality *Locality
err string
}
cases := map[string]testCase{
"nil": {
nil,
"",
},
"region only": {
&Locality{Region: "us-west-1"},
"",
},
"region and zone": {
&Locality{Region: "us-west-1", Zone: "us-west-1a"},
"",
},
"zone only": {
&Locality{Zone: "us-west-1a"},
"zone cannot be set without region",
},
}
for name, tc := range cases {
t.Run(name, func(t *testing.T) {
err := tc.locality.Validate()
if tc.err == "" {
require.NoError(t, err)
} else {
require.Error(t, err)
require.Contains(t, err.Error(), tc.err)
}
})
}
}
func TestStructs_NodeService_ValidateMeshGateway(t *testing.T) { func TestStructs_NodeService_ValidateMeshGateway(t *testing.T) {
type testCase struct { type testCase struct {
Modify func(*NodeService) Modify func(*NodeService)
@ -1152,6 +1189,13 @@ func TestStructs_NodeService_ValidateConnectProxy(t *testing.T) {
}, },
"", "",
}, },
{
"connect-proxy: invalid locality",
func(x *NodeService) {
x.Locality = &Locality{Zone: "bad"}
},
"zone cannot be set without region",
},
} }
for _, tc := range cases { for _, tc := range cases {