Merge branch 'main' into removeCpuMetrics

Author: OhadRevah

Dockerfile

@@ -36,10 +36,11 @@ ENV UV_NO_SYNC=1
 
 WORKDIR ${TEST_DIR}
 ENV UV_CACHE_DIR=${TEST_DIR}/.cache
+ENV HOME=${TEST_DIR}
 
 ##TODO: We can remove wget, and use curl instead, this will require to change some tests
 RUN dnf update -y \
-  && dnf install -y procps-ng python3 bind-utils jq fwknop parallel wget clang cargo rsync openssl openssl-devel git\
+  && dnf install -y procps-ng python3 bind-utils jq fwknop parallel wget clang cargo rsync openssl openssl-devel git unzip\
   && dnf clean all \
   && rm -rf /var/cache/dnf \
   && rm -rf /var/lib/dnf \
@@ -50,6 +51,9 @@ COPY --from=builder /usr/bin/which /usr/bin/which
 COPY --from=builder /usr/bin/sshpass /usr/bin/sshpass
 COPY --from=builder ${TEST_DIR}/ ${TEST_DIR}/
 
+RUN curl -fsSL https://bws.bitwarden.com/install | sh \
+  && mkdir -p ${TEST_DIR}/.config/bws/state
+
 RUN uv sync --locked \
   && uv export --no-hashes \
   && if [[ -n "${OPENSHIFT_PYTHON_WRAPPER_COMMIT}" ]]; then uv pip install git+https://github.com/RedHatQE/openshift-python-wrapper.git@$OPENSHIFT_PYTHON_WRAPPER_COMMIT; fi \

pyproject.toml

@@ -38,7 +38,6 @@ authors = [{ "name" = "openshift-virtualization-tests" }]
 dependencies = [
   "bcrypt>=4.2.0",
   "bitmath>=1.3.3.1",
-  "bitwarden-sdk>=1.0.0",
   "bs4>=0.0.2",
   "click>=8.1.7",
   "colorlog>=6.9.0",

tests/network/connectivity/utils.py

@@ -1,5 +1,6 @@
 from collections import OrderedDict
 
+from tests.network.libs.ip import random_ipv4_address
 from utilities.constants import IPV6_STR
 from utilities.network import (
     compose_cloud_init_data_dict,
@@ -31,7 +32,10 @@ def create_running_vm(
         node_selector=node_selector,
         cloud_init_data=compose_cloud_init_data_dict(
             network_data={
-                "ethernets": {f"eth{i + 1}": {"addresses": [f"10.200.{i}.{end_ip_octet}/24"]} for i in range(0, 3)}
+                "ethernets": {
+                    f"eth{i + 1}": {"addresses": [f"{random_ipv4_address(net_seed=i, host_address=end_ip_octet)}/24"]}
+                    for i in range(0, 3)
+                }
             },
             ipv6_network_data=dual_stack_network_data,
         ),

tests/network/kubemacpool/test_kubemacpool.py

@@ -9,13 +9,14 @@
 
 @pytest.mark.s390x
 class TestKMPConnectivity:
-    #: KMPTestConnectivity setup
-    # .........                                                                    ..........
-    # |       |---eth0:           : POD network                :auto:       eth0---|        |
-    # |       |---eth1:10.200.1.1: Manual MAC          from pool:10.200.1.2:eth1---|        |
-    # | VM-A  |---eth2:10.200.2.1: Automatic MAC       from pool:10.200.2.2:eth2---|  VM-B  |
-    # |       |---eth3:10.200.3.1: Manual MAC not      from pool:10.200.3.2:eth3---|        |
-    # |.......|---eth4:10.200.4.1: Automatic mac tuning network :10.200.4.2:eth4---|........|
+    # KMPTestConnectivity setup example
+    # Third octet is random
+    # .........                                                                       ..........
+    # |       |---eth0:           : POD network                   :auto       :eth0---|        |
+    # |       |---eth1:172.16.37.1: Manual MAC from pool          :172.16.37.2:eth1---|        |
+    # | VM-A  |---eth2:172.16.24.1: Automatic MAC from pool       :172.16.24.2:eth2---|  VM-B  |
+    # |       |---eth3:172.16.51.1: Manual MAC not from pool      :172.16.51.2:eth3---|        |
+    # |.......|---eth4:172.16.65.1: Automatic mac tuning network  :172.16.65.2:eth4---|........|
     @pytest.mark.post_upgrade
     @pytest.mark.polarion("CNV-2154")
     def test_manual_mac_from_pool(self, namespace, running_vm_a, running_vm_b):

tests/network/kubemacpool/utils.py

@@ -2,6 +2,7 @@
 from collections import namedtuple
 from ipaddress import ip_interface
 
+from tests.network.libs.ip import random_ipv4_address
 from utilities.network import cloud_init_network_data, get_vmi_mac_address_by_iface_name
 from utilities.virt import (
     VirtualMachineForTests,
@@ -26,17 +27,25 @@ def vm_network_config(mac_pool, all_nads, end_ip_octet, mac_uid):
     """
     return {
         "eth1": IfaceTuple(
-            ip_address=f"10.200.1.{end_ip_octet}",
+            ip_address=random_ipv4_address(net_seed=0, host_address=end_ip_octet),
             mac_address=mac_pool.get_mac_from_pool(),
             name=all_nads[0],
         ),
-        "eth2": IfaceTuple(ip_address=f"10.200.2.{end_ip_octet}", mac_address="auto", name=all_nads[1]),
+        "eth2": IfaceTuple(
+            ip_address=random_ipv4_address(net_seed=1, host_address=end_ip_octet),
+            mac_address="auto",
+            name=all_nads[1],
+        ),
         "eth3": IfaceTuple(
-            ip_address=f"10.200.3.{end_ip_octet}",
+            ip_address=random_ipv4_address(net_seed=2, host_address=end_ip_octet),
             mac_address=f"02:0{mac_uid}:00:00:00:00",
             name=all_nads[2],
         ),
-        "eth4": IfaceTuple(ip_address=f"10.200.4.{end_ip_octet}", mac_address="auto", name=all_nads[3]),
+        "eth4": IfaceTuple(
+            ip_address=random_ipv4_address(net_seed=3, host_address=end_ip_octet),
+            mac_address="auto",
+            name=all_nads[3],
+        ),
     }
 
 

tests/network/libs/ip.py

@@ -0,0 +1,39 @@
+import random
+from functools import cache
+from typing import Final
+
+_MAX_NUM_OF_RANDOM_OCTETS_PER_SESSION: Final[int] = 4
+_IPV4_ADDRESS_SUBNET_PREFIX_VMI: Final[str] = "172.16"
+
+
+def random_ipv4_address(net_seed: int, host_address: int) -> str:
+    """Construct a random IPv4 address using a cached list of random third octets.
+
+    Uses a pre-defined network address, a cached random third octet and the given
+    host address to generate deterministic yet randomized IPv4 addresses.
+
+    Args:
+        net_seed (int): The index used to select a random third octet from the cached list.
+        host_address (int): The last (fourth) octet of the IPv4 address.
+
+    Returns:
+        str: A string representing a randomized IPv4 address.
+    """
+    third_octets = _random_octets(count=_MAX_NUM_OF_RANDOM_OCTETS_PER_SESSION)
+    return f"{_IPV4_ADDRESS_SUBNET_PREFIX_VMI}.{third_octets[net_seed]}.{host_address}"
+
+
+@cache
+def _random_octets(count: int) -> list[int]:
+    """Generate a list of random IPv4 octet values.
+
+    Randomly selects unique integers between 1 and 253 (inclusive) to be used
+    as the third octet in an IPv4 address.
+
+    Args:
+        count (int): The number of random octet values to generate.
+
+    Returns:
+        list[int]: A list of unique random integers representing octet values.
+    """
+    return random.sample(range(1, 254), count)

tests/network/localnet/conftest.py

@@ -209,7 +209,7 @@ def vm_ovs_bridge_localnet_link_down(
 ) -> Generator[BaseVirtualMachine]:
     with localnet_vm(
         namespace=namespace_localnet_1.name,
-        name="localnet-ovs-vm1",
+        name="localnet-ovs-link-down-vm",
         physical_network_name=cudn_localnet_ovs_bridge.name,
         spec_logical_network=LOCALNET_OVS_BRIDGE_NETWORK,
         cidr=next(ipv4_localnet_address_pool),

tests/network/localnet/liblocalnet.py

@@ -1,6 +1,9 @@
 import contextlib
+import logging
 from typing import Generator
 
+from kubernetes.client import ApiException
+
 from libs.net.traffic_generator import Client, Server
 from libs.net.vmspec import IP_ADDRESS, add_network_interface, add_volume_disk, lookup_iface_status
 from libs.vm.affinity import new_pod_anti_affinity
@@ -17,11 +20,17 @@
 LINK_STATE_UP = "up"
 LINK_STATE_DOWN = "down"
 _IPERF_SERVER_PORT = 5201
+LOGGER = logging.getLogger(__name__)
 
 
 def run_vms(vms: tuple[BaseVirtualMachine, ...]) -> tuple[BaseVirtualMachine, ...]:
     for vm in vms:
-        vm.start()  # type: ignore[no-untyped-call]
+        try:
+            vm.start()  # type: ignore[no-untyped-call]
+        except ApiException as vm_exception:
+            if "VM is already running" in vm_exception.body:
+                LOGGER.warning(f"VM {vm.name} is already running")
+                continue
     for vm in vms:
         vm.wait_for_ready_status(status=True)  # type: ignore[no-untyped-call]
         vm.wait_for_agent_connected()

tests/network/nmstate/test_connectivity_after_nmstate_changes.py

@@ -5,6 +5,7 @@
 from ocp_resources.resource import ResourceEditor
 from timeout_sampler import TimeoutSampler
 
+from tests.network.libs.ip import random_ipv4_address
 from tests.network.utils import (
     assert_nncp_successfully_configured,
     assert_ssh_alive,
@@ -94,7 +95,7 @@ def nmstate_linux_bridge_attached_vma(
     networks[nmstate_linux_nad.name] = nmstate_linux_nad.name
     network_data_data = {
         "ethernets": {
-            "eth1": {"addresses": ["10.200.0.1/24"]},
+            "eth1": {"addresses": [f"{random_ipv4_address(net_seed=0, host_address=1)}/24"]},
         }
     }
 
@@ -128,7 +129,7 @@ def nmstate_linux_bridge_attached_vmb(
     networks[nmstate_linux_nad.name] = nmstate_linux_nad.name
     network_data_data = {
         "ethernets": {
-            "eth1": {"addresses": ["10.200.0.2/24"]},
+            "eth1": {"addresses": [f"{random_ipv4_address(net_seed=0, host_address=2)}/24"]},
         }
     }
 

utilities/bitwarden.py

@@ -1,69 +1,82 @@
 import json
 import logging
 import os
-from functools import lru_cache
+from functools import cache
+from typing import Any
 
-from bitwarden_sdk import BitwardenClient
+from pyhelper_utils.shell import run_command
 
 from utilities.exceptions import MissingEnvironmentVariableError
 
 LOGGER = logging.getLogger(__name__)
-# Bitwarden SDK: https://github.com/bitwarden/sdk/blob/main/languages/python/bitwarden_sdk/bitwarden_client.py
 
 
-def get_bitwarden_secrets_client():
-    """
-    Creates a BitwardenClient instance, logs in using ACCESS_TOKEN environment variable and bitwarden AuthClient
-    instance, and returns SecretsClient. To use bitwarden secret manager ACCESS_TOKEN and ORGANIZATION_ID environment
-    variables must be set
+def _run_bws_command(args: list[str]) -> Any:
+    """Run bws CLI command and return parsed JSON output.
+
+    Args:
+        args: Command arguments to pass to bws (e.g., ['secret', 'list'])
 
     Returns:
-        SecretsClient: Returns SecretsClient instance to be used for secret manager calls
+        Any: Parsed JSON response from bws CLI (can be list or dict depending on command)
+
+    Raises:
+        MissingEnvironmentVariableError: If ACCESS_TOKEN not set
     """
-    if not (os.getenv("ACCESS_TOKEN") and os.getenv("ORGANIZATION_ID")):
-        raise MissingEnvironmentVariableError(
-            "Bitwarden client needs ORGANIZATION_ID and ACCESS_TOKEN environment variable set up"
-        )
-    bitwarden_client = BitwardenClient()
-    bitwarden_client.auth().login_access_token(access_token=os.getenv("ACCESS_TOKEN"))
-    return bitwarden_client.secrets()
+    access_token = os.getenv("ACCESS_TOKEN")
 
+    if not access_token:
+        raise MissingEnvironmentVariableError("Bitwarden client needs ACCESS_TOKEN environment variable set up")
 
-@lru_cache
-def get_all_cnv_tests_secrets(bitwarden_secrets_client):
-    """
-    Using Bitwarden SecretsClient, gets a list of all cnv-secrets saved in bitwarden secret manager (associated with
-    a specific organization id). ORGANIZATION_ID is expected to set via environment variable.
+    _, stdout, _ = run_command(
+        command=["bws", "--access-token", access_token] + args,
+        capture_output=True,
+        check=True,
+        hide_log_command=True,
+    )
 
-    Args:
-        bitwarden_secrets_client (SecretsClient): Bitwarden SecretsClient instance
+    return json.loads(stdout)
+
+
+@cache
+def get_all_cnv_tests_secrets() -> dict[str, str]:
+    """Gets a list of all cnv-secrets saved in Bitwarden Secret Manager.
+
+    Uses bws CLI to list all secrets associated with the organization.
+    ACCESS_TOKEN environment variable must be set.
 
     Returns:
-        dict: dictionary of secret name and secret uuid associated with the organization
+        dict[str, str]: Dictionary mapping secret name to secret UUID
     """
-    secrets = bitwarden_secrets_client.list(organization_id=os.getenv("ORGANIZATION_ID")).data.data
+    data = _run_bws_command(args=["secret", "list"])
+
     LOGGER.info(f"Cache info stats for pulling secrets: {get_all_cnv_tests_secrets.cache_info()}")
-    return {secret.key: secret.id for secret in secrets}
 
+    return {secret["key"]: secret["id"] for secret in data}
 
-@lru_cache
-def get_cnv_tests_secret_by_name(secret_name):
-    """
-    Pull a specific secret from bitwarden secret manager by name
+
+@cache
+def get_cnv_tests_secret_by_name(secret_name: str) -> dict[str, Any]:
+    """Pull a specific secret from Bitwarden Secret Manager by name.
 
     Args:
-        secret_name (str): Bitwarden secret manager secret name
+        secret_name: Bitwarden Secret Manager secret name
 
     Returns:
-        dict: value of the saved secret
+        dict[str, Any]: Value of the saved secret (parsed from JSON)
+
+    Raises:
+        ValueError: If secret is not found
     """
-    bitwarden_secrets_client = get_bitwarden_secrets_client()
-    secrets = get_all_cnv_tests_secrets(bitwarden_secrets_client=bitwarden_secrets_client)
-    secret_dict = None
-    for secret_key, secret_value in secrets.items():
-        if secret_key == secret_name:
-            secret_dict = json.loads(bitwarden_secrets_client.get(id=secret_value).data.value)
-            break
+    secrets = get_all_cnv_tests_secrets()
+
+    secret_id = secrets.get(secret_name)
+    if not secret_id:
+        raise ValueError(f"Secret '{secret_name}' not found in Bitwarden")
+
+    secret_data = _run_bws_command(args=["secret", "get", secret_id])
+    secret_value = secret_data.get("value", "")
+
+    secret_dict = json.loads(secret_value)
     LOGGER.info(f"Cache info stats for getting specific secret: {get_cnv_tests_secret_by_name.cache_info()}")
-    assert secret_dict, f"secret {secret_name} is either not found or does not have valid values."
     return secret_dict