diff --git a/.github/workflows/podman_container_api.yml b/.github/workflows/podman_container_api.yml new file mode 100644 index 00000000..cd7c00b0 --- /dev/null +++ b/.github/workflows/podman_container_api.yml @@ -0,0 +1,118 @@ +name: Podman API container + +on: + push: + paths: + - '.github/workflows/podman_container_api.yml' + - 'ci/*.yml' + - 'ci/run_containers_tests.sh' + - 'ci/playbooks/containers/podman_container_api.yml' + #- 'plugins/modules/podman_container.py' + - 'plugins/module_utils/podman/podman_container_lib.py' + - 'plugins/module_utils/podman/podman_api.py' + - 'plugins/module_utils/podman/common.py' + - 'tests/integration/targets/podman_container_api/**' + branches: + - master + pull_request: + paths: + - '.github/workflows/podman_container_api.yml' + - 'ci/*.yml' + - 'ci/run_containers_tests.sh' + - 'ci/playbooks/containers/podman_container_api.yml' + #- 'plugins/modules/podman_container.py' + - 'plugins/module_utils/podman/podman_container_lib.py' + - 'plugins/module_utils/podman/podman_api.py' + - 'plugins/module_utils/podman/common.py' + - 'tests/integration/targets/podman_container_api/**' + schedule: + - cron: 4 0 * * * # Run daily at 0:03 UTC + +jobs: + + test_podman_container_api: + name: Podman API container ${{ matrix.ansible-version }}-${{ matrix.os || 'ubuntu-22.04' }} + runs-on: ${{ matrix.os || 'ubuntu-22.04' }} + defaults: + run: + shell: bash + strategy: + fail-fast: false + matrix: + ansible-version: + - ansible<2.10 + - git+https://github.com/ansible/ansible.git@stable-2.15 + - git+https://github.com/ansible/ansible.git@devel + os: + - ubuntu-22.04 + python-version: + - 3.9 + + steps: + + - name: Check out repository + uses: actions/checkout@v3 + + - name: Set up Python ${{ matrix.python-version }} + uses: actions/setup-python@v4 + with: + python-version: ${{ matrix.python-version }} + + - name: Upgrade pip and display Python and PIP versions + run: | + sudo apt-get update + sudo apt-get install -y python*-wheel python*-yaml + python -m pip install --upgrade pip + python -V + pip --version + + - name: Set up pip cache + uses: actions/cache@v3 + with: + path: ~/.cache/pip + key: ${{ runner.os }}-pip-${{ github.ref }}-units-VMs + restore-keys: | + ${{ runner.os }}-pip- + ${{ runner.os }}- + + - name: Install Ansible ${{ matrix.ansible-version }} + run: python3 -m pip install --user --force-reinstall --upgrade '${{ matrix.ansible-version }}' + + - name: Build and install the collection tarball + run: | + export PATH=~/.local/bin:$PATH + + echo "Run ansible version" + command -v ansible + ansible --version + rm -rf /tmp/just_new_collection + ~/.local/bin/ansible-galaxy collection build --output-path /tmp/just_new_collection --force + ~/.local/bin/ansible-galaxy collection install -vvv --force /tmp/just_new_collection/*.tar.gz + + - name: Run collection tests for podman container API + run: | + export PATH=~/.local/bin:$PATH + + if [[ '${{ matrix.ansible-version }}' == 'git+https://github.com/ansible/ansible.git@devel' ]]; then + export ANSIBLE_CONFIG=$(pwd)/ci/ansible-dev.cfg + elif [[ '${{ matrix.ansible-version }}' == 'ansible<2.10' ]]; then + export ANSIBLE_CONFIG=$(pwd)/ci/ansible-2.9.cfg + fi + python3 -m pip install --user -r requirements.txt + podman system service --time=0 unix:///tmp/podman.sock & + sudo podman system service --time=0 unix:///tmp/root-podman.sock & + + echo $ANSIBLE_CONFIG + command -v ansible-playbook + pip --version + python --version + ansible-playbook --version + + ansible-playbook -vv ci/playbooks/pre.yml \ + -e host=localhost \ + -i localhost, \ + -e ansible_connection=local \ + -e setup_python=false + + TEST2RUN=podman_container_api ./ci/run_containers_tests.sh + shell: bash diff --git a/bindep.txt b/bindep.txt new file mode 100644 index 00000000..5247d591 --- /dev/null +++ b/bindep.txt @@ -0,0 +1 @@ +podman diff --git a/ci/playbooks/containers/podman_container_api.yml b/ci/playbooks/containers/podman_container_api.yml new file mode 100644 index 00000000..ae4ffe14 --- /dev/null +++ b/ci/playbooks/containers/podman_container_api.yml @@ -0,0 +1,12 @@ +--- +- hosts: all + gather_facts: true + module_defaults: + containers.podman.podman_container: + podman_socket: unix:///tmp/podman.sock + tasks: + - include_role: + name: podman_container_api + vars: + idem_image: idempotency_test + ansible_python_interpreter: "{{ _ansible_python_interpreter }}" diff --git a/plugins/module_utils/podman/common.py b/plugins/module_utils/podman/common.py index 0e98f167..6b216c8d 100644 --- a/plugins/module_utils/podman/common.py +++ b/plugins/module_utils/podman/common.py @@ -18,6 +18,13 @@ raise_from(ImportError('To use this plugin or module with ansible-core' ' < 2.11, you need to use Python < 3.12 with ' 'distutils.version present'), exc) +try: + import requests # pylint: disable=unused-import + from .podman_api import PodmanAPIClient + HAS_REQUESTS = True +except ImportError: + PodmanAPIClient = object + HAS_REQUESTS = False def run_podman_command(module, executable='podman', args=None, expected_rc=0, ignore_errors=False): @@ -295,3 +302,15 @@ def normalize_signal(signal_name_or_number): if signal_name not in _signal_map: raise RuntimeError("Unknown signal '{0}'".format(signal_name_or_number)) return str(_signal_map[signal_name]) + + +class PodmanAPI: + def __init__(self, module, module_params): + if module_params.get('podman_socket') and not HAS_REQUESTS: + module.fail_json( + msg="Requests module is not installed while socket was provided!") + self.client = PodmanAPIClient(module_params.get('podman_socket')) + try: + self.client.version() + except Exception as api_error: + module.fail_json(msg="Podman API error: %s" % str(api_error)) diff --git a/plugins/module_utils/podman/podman_api.py b/plugins/module_utils/podman/podman_api.py new file mode 100644 index 00000000..9d3fe83a --- /dev/null +++ b/plugins/module_utils/podman/podman_api.py @@ -0,0 +1,287 @@ + +# The follwing code is taken from +# https://github.com/msabramo/requests-unixsocket/blob/master/ +# requests_unixsocket/adapters.py +from __future__ import (absolute_import, division, print_function) + +import socket +try: + import requests + from requests.adapters import HTTPAdapter + from requests.compat import urlparse, unquote, quote + HAS_REQUESTS = True +except ImportError: + HAS_REQUESTS = False + +try: + from requests.packages import urllib3 + HAS_URLLIB3 = True +except ImportError: + try: + import urllib3 + HAS_URLLIB3 = True + except ImportError: + HAS_URLLIB3 = False + +try: + import http.client as httplib +except ImportError: + import httplib + +import json + + +__metaclass__ = type + + +DEFAULT_SCHEME = 'http+unix://' + + +# The following was adapted from some code from docker-py +# https://github.com/docker/docker-py/blob/master/docker/transport/unixconn.py +class UnixHTTPConnection(httplib.HTTPConnection, object): + + def __init__(self, unix_socket_url, timeout=60): + """Create an HTTP connection to a unix domain socket + :param unix_socket_url: A URL with a scheme of 'http+unix' and the + netloc is a percent-encoded path to a unix domain socket. E.g.: + 'http+unix://%2Ftmp%2Fprofilesvc.sock/status/pid' + """ + super(UnixHTTPConnection, self).__init__('localhost', timeout=timeout) + self.unix_socket_url = unix_socket_url + self.timeout = timeout + self.sock = None + + def __del__(self): # base class does not have d'tor + if self.sock: + self.sock.close() + + def connect(self): + sock = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM) + sock.settimeout(self.timeout) + socket_path = unquote(urlparse(self.unix_socket_url).netloc) + sock.connect(socket_path) + self.sock = sock + + +if HAS_URLLIB3: + class UnixHTTPConnectionPool(urllib3.connectionpool.HTTPConnectionPool): + + def __init__(self, socket_path, timeout=60): + super(UnixHTTPConnectionPool, self).__init__( + 'localhost', timeout=timeout) + self.socket_path = socket_path + self.timeout = timeout + + def _new_conn(self): + return UnixHTTPConnection(self.socket_path, self.timeout) + + +if HAS_REQUESTS: + class UnixAdapter(HTTPAdapter): + + def __init__(self, timeout=60, pool_connections=25, *args, **kwargs): + super(UnixAdapter, self).__init__(*args, **kwargs) + self.timeout = timeout + self.pools = urllib3._collections.RecentlyUsedContainer( + pool_connections, dispose_func=lambda p: p.close() + ) + + def get_connection(self, url, proxies=None): + proxies = proxies or {} + proxy = proxies.get(urlparse(url.lower()).scheme) + + if proxy: + raise ValueError('%s does not support specifying proxies' + % self.__class__.__name__) + + with self.pools.lock: + pool = self.pools.get(url) + if pool: + return pool + + pool = UnixHTTPConnectionPool(url, self.timeout) + self.pools[url] = pool + + return pool + + def request_url(self, request, proxies): + return request.path_url + + def close(self): + self.pools.clear() + + +if HAS_REQUESTS: + class APISession(requests.Session): + def __init__(self, url_scheme=DEFAULT_SCHEME, *args, **kwargs): + super(APISession, self).__init__(*args, **kwargs) + self.mount(url_scheme, UnixAdapter()) + + +class PodmanAPIHTTP: + def __init__(self, base_url): + self.api_url = "".join((DEFAULT_SCHEME, + quote(base_url, safe=""), + "/v2.0.0/libpod")) + self.session = APISession() + + def request(self, method, url, **kwargs): + return self.session.request(method=method, url=self.api_url + url, **kwargs) + + def get(self, url, **kwargs): + kwargs.setdefault('allow_redirects', True) + return self.request('get', url, **kwargs) + + def head(self, url, **kwargs): + kwargs.setdefault('allow_redirects', False) + return self.request('head', url, **kwargs) + + def post(self, url, data=None, json=None, **kwargs): + return self.request('post', url, data=data, json=json, **kwargs) + + def patch(self, url, data=None, **kwargs): + return self.request('patch', url, data=data, **kwargs) + + def put(self, url, data=None, **kwargs): + return self.request('put', url, data=data, **kwargs) + + def delete(self, url, **kwargs): + return self.request('delete', url, **kwargs) + + def options(self, url, **kwargs): + kwargs.setdefault('allow_redirects', True) + return self.request('options', url, **kwargs) + + +class PodmanAPIClient: + def __init__(self, base_url): + if not HAS_REQUESTS: + raise Exception("requests package is required for podman API") + socket_opt = urlparse(base_url) + if socket_opt.scheme != "unix": + raise Exception("Scheme %s is not supported! Use %s" % ( + socket_opt.scheme, + DEFAULT_SCHEME + )) + self.api = PodmanAPIHTTP(socket_opt.path) + self.containers = PodmanAPIContainers(self.api) + self.images = PodmanAPIImages(api=self.api) + + def version(self): + response = self.api.get( + '/version') + return response.json() + + +class PodmanAPIContainers: + def __init__(self, api): + self.api = api + self.quote = quote + + def list( + self, all_=None, filters=None, limit=None, size=None, sync=None): + """List all images for a Podman service.""" + query = {} + if all_ is not None: + query["all"] = True + if filters is not None: + query["filters"] = filters + if limit is not None: + query["limit"] = limit + if size is not None: + query["size"] = size + if sync is not None: + query["sync"] = sync + response = self.api.get("/containers/json", params=query) + # observed to return None when no containers + return response.json() or [] + + def create(self, **container_data): + response = self.api.post( + "/containers/create", + json=container_data, + ) + if response.ok: + return response.json() + raise Exception("Container %s failed to create! Error: %s" % + (container_data.get('name'), response.text)) + + def get(self, name): + response = self.api.get( + '/containers/{0}/json'.format(self.quote(name))) + data = response.json() + if data.get('response') == 404: + data = {} + # raise Exception("Container %s not found!" % name) + return data + + def run(self, **container_data): + _ = self.create(**container_data) # pylint: disable=blacklisted-name + name = container_data.get("name") + _ = self.api.post( # pylint: disable=blacklisted-name + "/containers/{0}/start".format(self.quote(name)), + ) + return self.get(name) + + def start(self, name): + _ = self.api.post( # pylint: disable=blacklisted-name + "/containers/{0}/start".format(self.quote(name)), + ) + return self.get(name) + + def stop(self, name): + _ = self.api.post( # pylint: disable=blacklisted-name + "/containers/{0}/stop".format(self.quote(name)), + ) + return self.get(name) + + def restart(self, name): + _ = self.api.post( # pylint: disable=blacklisted-name + "/containers/{0}/restart".format(self.quote(name)), + ) + return self.get(name) + + def remove(self, name, force=False): + _ = self.api.delete( # pylint: disable=blacklisted-name + "/containers/{0}".format(self.quote(name)), + params={"force": force} + ) + return + + +class PodmanAPIImages: + def __init__(self, api): + self.api = api + self.quote = quote + self.inspect = self.get + + def exists(self, name): + response = self.api.get( + '/images/{0}/exists'.format(self.quote(name))) + return response.status_code == 204 + + def pull(self, reference): + response = self.api.post( + '/images/pull', + params={'reference': reference} + ) + if response.ok: + correct_response = {'stream': '', 'text': response.text} + for i in response.text.splitlines(): + if '"images"' in i: + correct_response['images'] = json.loads(i)['images'] + if '"id"' in i: + correct_response['id'] = json.loads(i)['id'] + elif '"stream"' in i: + correct_response['stream'] += json.loads(i)['stream'] + elif '"error"' in i: + correct_response['error'] = json.loads(i)['error'] + correct_response['code'] = response.status_code + return correct_response + return {"error": "HTTP %s Error: %s" % (response.json()['message'])} + + def get(self, name): + response = self.api.get( + '/images/{0}/json'.format(self.quote(name))) + return response.json() diff --git a/plugins/module_utils/podman/podman_container_lib.py b/plugins/module_utils/podman/podman_container_lib.py index 35c8a849..02f9485b 100644 --- a/plugins/module_utils/podman/podman_container_lib.py +++ b/plugins/module_utils/podman/podman_container_lib.py @@ -2,6 +2,7 @@ import json # noqa: F402 import os # noqa: F402 import shlex # noqa: F402 +import time from ansible.module_utils._text import to_bytes, to_native # noqa: F402 from ansible_collections.containers.podman.plugins.module_utils.podman.common import LooseVersion @@ -9,12 +10,15 @@ from ansible_collections.containers.podman.plugins.module_utils.podman.common import generate_systemd from ansible_collections.containers.podman.plugins.module_utils.podman.common import delete_systemd from ansible_collections.containers.podman.plugins.module_utils.podman.common import normalize_signal +from .common import PodmanAPI __metaclass__ = type +USE_API = False ARGUMENTS_SPEC_CONTAINER = dict( name=dict(required=True, type='str'), executable=dict(default='podman', type='str'), + podman_socket=dict(type='str'), state=dict(type='str', default='started', choices=[ 'absent', 'present', 'stopped', 'started', 'created']), image=dict(type='str'), @@ -49,7 +53,7 @@ device_write_iops=dict(type='list', elements='str'), dns=dict(type='list', elements='str', aliases=['dns_servers']), dns_option=dict(type='str', aliases=['dns_opts']), - dns_search=dict(type='str', aliases=['dns_search_domains']), + dns_search=dict(type='list', elements='str', aliases=['dns_search_domains']), entrypoint=dict(type='str'), env=dict(type='dict'), env_file=dict(type='path'), @@ -138,6 +142,55 @@ volumes_from=dict(type='list', elements='str'), workdir=dict(type='str', aliases=['working_dir']) ) +NON_PODMAN_ARGS = [ + 'state', + 'podman_socket', + 'executable', 'debug', + 'force_restart', + 'image_strict', + 'recreate' +] +API_TRANSLATION = { + 'annotation': 'annotations', + 'conmon_pidfile': 'conmon_pid_file', + 'etc_hosts': 'hostadd', + 'add_hosts': 'hostadd', + 'http_proxy': 'httpproxy', + 'label': 'labels', + 'publish_all': 'publish_image_ports', + 'rm': 'remove', + 'auto_remove': 'remove', + 'volume': 'volumes', + 'mount': 'mounts', + 'workdir': 'work_dir', + 'working_dir': 'work_dir', + 'dns_search_domains': 'dns_search', + 'dns': 'dns_server', + 'dns_opts': 'dns_option', + 'publish': 'portmappings', + 'published': 'portmappings', + 'published_ports': 'portmappings', + 'ports': 'portmappings', + 'pids_mode': 'pidns', + 'pid': 'pidns', + 'ipc_mode': 'ipcns', + 'ipc': 'ipcns', + 'uts': 'utsns', + 'userns_mode': 'userns', + 'tty': 'terminal', + 'device': 'devices', + 'exposed': 'expose', + 'exposed_ports': 'expose', + 'group_add': 'groups', + 'ulimit': 'r_limits', + 'ulimits': 'r_limits', + 'read_only': 'read_only_filesystem', + 'ip': 'static_ip', + 'mac_address': 'static_mac', + 'no_hosts': 'use_image_hosts', + 'log_opt': 'log_configuration', + 'log_driver': 'log_configuration', +} def init_options(): @@ -184,6 +237,218 @@ def set_container_opts(input_vars): return options_dict +class PodmanModuleParamsAPI: + """Creates Podman API call. + + Arguments: + action {str} -- action type from 'run', 'stop', 'create', 'delete', + 'start' + params {dict} -- dictionary of module parameters + + """ + def __init__(self, params, podman_version, module): + self.params = params + self.podman_version = podman_version + self.module = module + self.new_params = {} + + def translate(self): + self.new_params = { + k: v for k, v in self.params.items() + if v is not None and k not in NON_PODMAN_ARGS + } + if self.new_params.get('command') and not isinstance( + self.new_params.get('command'), list): + self.new_params['command'] = shlex.split(self.new_params['command']) + transformed = {} + mounts = [] + for k in self.new_params: + key = API_TRANSLATION.get(k, k) + transformed[key] = self.new_params[k] + if transformed.get('env'): + for k, v in transformed['env'].items(): + transformed['env'][k] = str(v) + if transformed.get('labels'): + for k, v in transformed['labels'].items(): + transformed['labels'][k] = str(v) + if transformed.get('entrypoint') is not None: + transformed['entrypoint'] = shlex.split(transformed['entrypoint']) + if transformed.get('hostadd') is not None: + hosts = [] + for k, v in transformed['hostadd'].items(): + hosts.append(":".join((k, v))) + transformed['hostadd'] = hosts + if transformed.get('volumes'): + volumes = [] + for v in transformed['volumes']: + vols = v.split(":") + if len(vols) < 2 or "/" not in vols[0]: + name = vols[0] if len(vols) > 1 else "" + volumes.append( + { + "Name": name, + "Dest": vols[1] if len(vols) > 1 else v, + } + ) + continue + source = vols[0] + dest = vols[1].split(",")[0] # remove options + options = [] + if len(vols) > 2: + opts = vols[2].split(",") + # work on options + for opt in opts: + if opt.lower() == 'ro': + options.append('ro') + elif opt.lower().lstrip("r") in ( + 'shared', 'slave', 'private', 'unbindable'): + options.append(opt) + mounts.append( + {'destination': dest, + 'source': source, + 'type': 'bind', + 'options': options, + } + ) + transformed['volumes'] = volumes + if transformed.get('mounts'): + n_mounts = [] + for m in transformed['mounts']: + if not isinstance(m, str): + continue + mlist = m.split(",") + mdict = {} + for m1 in mlist: + if '=' in m1: + mkey, mval = m1.split("=") + else: + continue + if mkey.lower() == 'type': + mdict['Type'] = mval + if mval.lower() == 'devpts': + mdict['Source'] = 'devpts' + elif mkey.lower() in ('source', 'src'): + mdict['Source'] = mval + elif mkey.lower() in ('destination', 'dst', 'target'): + mdict['Destination'] = mval + elif mkey.lower() == 'bind-propagation': + if 'BindOptions' not in mdict: + mdict['BindOptions'] = {} + mdict['BindOptions']['Propagation'] = mval + elif mkey.lower() == 'bind-nonrecursive': + if 'BindOptions' not in mdict: + mdict['BindOptions'] = {} + mdict['BindOptions']['NonRecursive'] = mval + elif mkey.lower() == 'ro': + mdict['ReadOnly'] = mval + elif mkey.lower() == 'tmpfs-mode': + if 'TmpfsOptions' not in mdict: + mdict['TmpfsOptions'] = {} + mdict['TmpfsOptions']['Mode'] = mval + elif mkey.lower() == 'tmpfs-size': + if 'TmpfsOptions' not in mdict: + mdict['TmpfsOptions'] = {} + mdict['TmpfsOptions']['SizeBytes'] = mval + n_mounts.append(mdict) + transformed['mounts'] = n_mounts + mounts + else: + transformed['mounts'] = mounts + if transformed.get('portmappings') is not None: + total_ports = [] + for p in transformed.get('portmappings'): + parts = p.split(":") + if len(parts) == 1: + c_port, protocol = (parts[0].split("/") + ["tcp"])[:2] + total_ports.append({ + "container_port": int(p), + "protocol": protocol if 'udp' not in p else 'udp', + # "host_port": int(parts[0].split("/")[0]) + }) + elif len(parts) == 2: + c_port, protocol = (parts[1].split("/") + ["tcp"])[:2] + total_ports.append( + { + "container_port": int(c_port), + "host_port": int(parts[0].split("/")[0]), + "protocol": protocol if 'udp' not in p else 'udp', + }) + elif len(parts) == 3: + c_port, protocol = (parts[1].split("/") + ["tcp"])[:2] + total_ports.append( + { + "host_port": int(c_port), + "container_port": int(parts[2].split("/")[0]), + "protocol": protocol if 'udp' not in p else 'udp', + "host_ip": parts[0], + }) + transformed['portmappings'] = total_ports + if transformed.get('pod'): + # API doesn't support creating Pod + transformed['pod'] = transformed['pod'].replace("new:", "") + if transformed.get('pidns'): + transformed['pidns'] = {"nsmode": transformed['pidns']} + if transformed.get('ipcns'): + transformed['ipcns'] = {"nsmode": transformed['ipcns']} + if transformed.get('utsns'): + transformed['utsns'] = {"nsmode": transformed['utsns']} + if transformed.get('userns'): + transformed['userns'] = {"nsmode": transformed['userns']} + if transformed.get('cgroupns'): + transformed['cgroupns'] = {"nsmode": transformed['cgroupns']} + if transformed.get('network'): + if (len(transformed['network']) > 1 + or len(transformed['network'][0].split(",")) > 1 + and transformed['network'][0] not in ('none', 'host', 'bridge', 'private') + and 'container:' not in transformed['network'][0] + and 'ns:' not in transformed['network'][0] + and 'slirp4netns:' not in transformed['network'][0]): + if "," in transformed['network'][0]: + transformed['Networks'] = {k: {} for k in transformed['network'][0].split(",")} + else: + transformed['Networks'] = {k: {} for k in transformed['network']} + transformed['netns'] = {"nsmode": 'bridge'} + elif (len(transformed['network']) == 1 + and transformed['network'][0] not in ('none', 'host', 'bridge', 'private') + and 'container:' not in transformed['network'][0] + and 'ns:' not in transformed['network'][0] + and 'slirp4netns:' not in transformed['network'][0]): + transformed['Networks'] = {k: {} for k in transformed['network']} + elif 'slirp4netns:' in transformed['network'][0] or 'bridge:' in transformed['network'][0]: + transformed['netns'] = {"nsmode": transformed['network'][0].split(":")[0]} + netopts = {k: [v] for k, v in [i.split("=") + for i in transformed['network'][0].split(":")[1].split(",")]} + transformed['network_options'] = netopts + else: + transformed['netns'] = {"nsmode": transformed['network'][0]} + if transformed.get('r_limits'): + rlimits = [] + for rlim in transformed['r_limits']: + tmp_rlim = rlim.split("=") + typ = tmp_rlim[0] + soft = tmp_rlim[1].split(":")[0] + if len(tmp_rlim[1].split(":")) > 1: + hard = tmp_rlim[1].split(":")[1] + else: + hard = soft + rlimits.append( + {"type": typ, "soft": int(soft), "hard": int(hard)}) + transformed['r_limits'] = rlimits + if transformed.get('rootfs'): + transformed["rootfs"] = transformed["image"] + transformed.pop("image") + if transformed.get('log_configuration'): + transformed['log_configuration'] = {} + if self.params['log_opt'] is not None: + transformed['log_configuration']['options'] = self.params['log_opt'] + if self.params['log_driver'] is not None: + transformed['log_configuration']['driver'] = self.params['log_driver'] + if transformed.get('devices'): + transformed['devices'] = [ + {'path': d.split(":")[0]} for d in transformed['devices']] + self.module.log("PODMAN-DEBUG-API: %s" % transformed) + return transformed + + class PodmanModuleParams: """Creates list of arguments for podman CLI command. @@ -353,7 +618,7 @@ def addparam_dns_option(self, c): return c + ['--dns-option', self.params['dns_option']] def addparam_dns_search(self, c): - return c + ['--dns-search', self.params['dns_search']] + return c + ['--dns-search', ','.join(self.params['dns_search'])] def addparam_entrypoint(self, c): return c + ['--entrypoint', self.params['entrypoint']] @@ -960,7 +1225,10 @@ def diffparam_hostname(self): def diffparam_image(self): before_id = self.info['image'] or self.info['rootfs'] - after_id = self.image_info['id'] + if self.params['rootfs']: + after_id = self.params['image'] + else: + after_id = self.image_info['id'] if before_id == after_id: return self._diff_update_and_compare('image', before_id, after_id) is_rootfs = self.info['rootfs'] != '' or self.params['rootfs'] @@ -1101,11 +1369,19 @@ def diffparam_network(self): cr_net = cr_com[cr_com.index('--network') + 1].lower() if 'slirp4netns:' in cr_net: before = [cr_net] + elif net_mode_before == 'slirp4netns': + before = ['slirp4netns'] after = self.params['network'] or [] + # In API case + if 'createcommand' not in self.info['config']: + if net_mode_before == 'slirp4netns' and after and 'slirp4netns' in after[0]: + after = ['slirp4netns'] + return self._diff_update_and_compare('network', before, after) # If container is in pod and no networks are provided if not self.module_params['network'] and self.params['pod']: after = before return self._diff_update_and_compare('network', before, after) + # Check special network modes if after in [['bridge'], ['host'], ['slirp4netns'], ['none']]: net_mode_after = after[0] @@ -1321,7 +1597,7 @@ def is_different(self): return different -def ensure_image_exists(module, image, module_params): +def ensure_image_exists(module, image, module_params, client): """If image is passed, ensure it exists, if not - pull it or fail. Arguments: @@ -1341,13 +1617,25 @@ def ensure_image_exists(module, image, module_params): return image_actions if not image: return image_actions - rc, out, err = module.run_command([module_exec, 'image', 'exists', image]) - if rc == 0: - return image_actions - rc, out, err = module.run_command([module_exec, 'image', 'pull', image]) - if rc != 0: - module.fail_json(msg="Can't pull image %s" % image, stdout=out, - stderr=err) + if USE_API: + if client.images.exists(image): + return image_actions + else: + rc, out, err = module.run_command( + [module_exec, 'image', 'exists', image]) + if rc == 0: + return image_actions + if USE_API: + img = client.images.pull(image) + if not img.get('id'): + module.fail_json(msg="Can't find and pull image %s: %s" % ( + image, img['text'])) + else: + rc, out, err = module.run_command( + [module_exec, 'image', 'pull', image]) + if rc != 0: + module.fail_json(msg="Can't pull image %s" % image, stdout=out, + stderr=err) image_actions.append("pulled image %s" % image) return image_actions @@ -1358,7 +1646,7 @@ class PodmanContainer: Manages podman container, inspects it and checks its current state """ - def __init__(self, module, name, module_params): + def __init__(self, module, name, module_params, client): """Initialize PodmanContainer class. Arguments: @@ -1367,6 +1655,7 @@ def __init__(self, module, name, module_params): """ self.module = module + self.client = client self.module_params = module_params self.name = name self.stdout, self.stderr = '', '' @@ -1413,6 +1702,12 @@ def stopped(self): def get_info(self): """Inspect container and gather info about it.""" # pylint: disable=unused-variable + if USE_API: + try: + container = self.client.containers.get(self.name) + return container + except Exception: + return {} rc, out, err = self.module.run_command( [self.module_params['executable'], b'container', b'inspect', self.name]) return json.loads(out)[0] if rc == 0 else {} @@ -1420,15 +1715,24 @@ def get_info(self): def get_image_info(self): """Inspect container image and gather info about it.""" # pylint: disable=unused-variable - is_rootfs = self.module_params['rootfs'] - if is_rootfs: - return {'Id': self.module_params['image']} - rc, out, err = self.module.run_command( - [self.module_params['executable'], b'image', b'inspect', self.module_params['image']]) - return json.loads(out)[0] if rc == 0 else {} + if USE_API: + try: + img = self.client.images.get(self.module_params['image']) + return img + except Exception: + return {} + else: + is_rootfs = self.module_params['rootfs'] + if is_rootfs: + return {'Id': self.module_params['image']} + rc, out, err = self.module.run_command( + [self.module_params['executable'], b'image', b'inspect', self.module_params['image']]) + return json.loads(out)[0] if rc == 0 else {} def _get_podman_version(self): # pylint: disable=unused-variable + if USE_API: + return self.client.version()['Version'] rc, out, err = self.module.run_command( [self.module_params['executable'], b'--version']) if rc != 0 or not out or "version" not in out: @@ -1443,34 +1747,69 @@ def _perform_action(self, action): action {str} -- action to perform - start, create, stop, run, delete, restart """ - b_command = PodmanModuleParams(action, - self.module_params, - self.version, - self.module, - ).construct_command_from_params() - if action == 'create': - b_command.remove(b'--detach=True') - full_cmd = " ".join([self.module_params['executable']] - + [to_native(i) for i in b_command]) - self.actions.append(full_cmd) - if self.module.check_mode: - self.module.log( - "PODMAN-CONTAINER-DEBUG (check_mode): %s" % full_cmd) + if USE_API: + new_params = PodmanModuleParamsAPI(self.module_params, + self.version, + self.module, + ).translate() + + if action in ('start', 'stop', 'delete', 'restart'): + container = self.client.containers.get(self.name) + if not container: + self.module.fail_json(msg="Container %s doesn't exist") + if action == 'start': + self.client.containers.start(self.name) + elif action == 'stop': + self.client.containers.stop(self.name) + elif action == 'restart': + self.client.containers.restart(self.name) + elif action == 'delete': + self.client.containers.remove(self.name, force=True) + elif action == 'create': + new_params.pop('detach') + try: + container = self.client.containers.create( + **new_params + ) + except Exception as e: + self.module.fail_json(msg=str(e)) + elif action == 'run': + try: + container = self.client.containers.run( + **new_params + ) + except Exception as e: + self.module.fail_json(msg=str(e)) + self.actions.append({action: new_params}) else: - rc, out, err = self.module.run_command( - [self.module_params['executable'], b'container'] + b_command, - expand_user_and_vars=False) - self.module.log("PODMAN-CONTAINER-DEBUG: %s" % full_cmd) - if self.module_params['debug']: - self.module.log("PODMAN-CONTAINER-DEBUG STDOUT: %s" % out) - self.module.log("PODMAN-CONTAINER-DEBUG STDERR: %s" % err) - self.module.log("PODMAN-CONTAINER-DEBUG RC: %s" % rc) - self.stdout = out - self.stderr = err - if rc != 0: - self.module.fail_json( - msg="Can't %s container %s" % (action, self.name), - stdout=out, stderr=err) + b_command = PodmanModuleParams(action, + self.module_params, + self.version, + self.module, + ).construct_command_from_params() + if action == 'create': + b_command.remove(b'--detach=True') + full_cmd = " ".join([self.module_params['executable']] + + [to_native(i) for i in b_command]) + self.actions.append(full_cmd) + if self.module.check_mode: + self.module.log( + "PODMAN-CONTAINER-DEBUG (check_mode): %s" % full_cmd) + else: + rc, out, err = self.module.run_command( + [self.module_params['executable'], b'container'] + b_command, + expand_user_and_vars=False) + self.module.log("PODMAN-CONTAINER-DEBUG: %s" % full_cmd) + if self.module_params['debug']: + self.module.log("PODMAN-CONTAINER-DEBUG STDOUT: %s" % out) + self.module.log("PODMAN-CONTAINER-DEBUG STDERR: %s" % err) + self.module.log("PODMAN-CONTAINER-DEBUG RC: %s" % rc) + self.stdout = out + self.stderr = err + if rc != 0: + self.module.fail_json( + msg="Can't %s container %s" % (action, self.name), + stdout=out, stderr=err) def run(self): """Run the container.""" @@ -1534,12 +1873,19 @@ def __init__(self, module, params): } self.module_params = params self.name = self.module_params['name'] - self.executable = \ - self.module.get_bin_path(self.module_params['executable'], - required=True) + self.client = None + if self.module_params['podman_socket']: + global USE_API + USE_API = True + api = PodmanAPI(self.module, self.module_params) + self.client = api.client + else: + self.executable = \ + self.module.get_bin_path(self.module_params['executable'], + required=True) self.image = self.module_params['image'] image_actions = ensure_image_exists( - self.module, self.image, self.module_params) + self.module, self.image, self.module_params, self.client) self.results['actions'] += image_actions self.state = self.module_params['state'] self.restart = self.module_params['force_restart'] @@ -1549,7 +1895,23 @@ def __init__(self, module, params): self.module_params['rm'] = True self.container = PodmanContainer( - self.module, self.name, self.module_params) + self.module, self.name, self.module_params, self.client) + + def api_wait(self): + """In case of detach=False and API call, wait until container + is finished. + """ + if (self.container.module_params.get("detach") is None + or self.container.module_params.get("detach")): + return + status = True + time.sleep(2) # Give time to container to start + while status: + info = self.container.get_info() + if not info: + return + status = info['State']['Running'] + time.sleep(2) def update_container_result(self, changed=True): """Inspect the current container, update results with last info, exit. @@ -1558,6 +1920,8 @@ def update_container_result(self, changed=True): changed {bool} -- whether any action was performed (default: {True}) """ + if USE_API: + self.api_wait() facts = self.container.get_info() if changed else self.container.info out, err = self.container.stdout, self.container.stderr self.results.update({'changed': changed, 'container': facts, diff --git a/plugins/modules/podman_container.py b/plugins/modules/podman_container.py index 94b54bcb..735ae66c 100644 --- a/plugins/modules/podman_container.py +++ b/plugins/modules/podman_container.py @@ -32,6 +32,11 @@ machine running C(podman) default: 'podman' type: str + podman_socket: + description: + - Unix socket address for API connection. If API is not available, the + module will fail. + type: str state: description: - I(absent) - A container matching the specified name will be stopped and @@ -247,7 +252,8 @@ description: - Set custom DNS search domains (Use dns_search with '' if you don't wish to set the search domain) - type: str + type: list + elements: str aliases: - dns_search_domains entrypoint: diff --git a/plugins/modules/podman_container_info.py b/plugins/modules/podman_container_info.py index bbdd29fb..455ec574 100644 --- a/plugins/modules/podman_container_info.py +++ b/plugins/modules/podman_container_info.py @@ -31,6 +31,11 @@ machine running C(podman) default: 'podman' type: str + podman_socket: + description: + - Unix socket address for API connection. If API is not available, the + module will fail. + type: str ''' EXAMPLES = r""" @@ -316,8 +321,12 @@ import json import time + +from ..module_utils.podman.common import PodmanAPI from ansible.module_utils.basic import AnsibleModule +USE_API = False + def get_containers_facts(module, executable, name): """Collect containers facts for all containers or for specified in 'name'. @@ -332,6 +341,24 @@ def get_containers_facts(module, executable, name): """ retry = 0 retry_limit = 4 + if module.params['podman_socket']: + global USE_API + USE_API = True + api = PodmanAPI(module, module.params) + client = api.client + all_names = client.containers.list(all_=True) + all_data = [] + cycle = name or [j['Id'] for j in all_names] + for c in cycle: + try: + container_attrs = client.containers.get(c) + if container_attrs: + all_data.append(container_attrs) + except Exception: + if name: + module.fail_json(msg="Container %s can't be found!" % c) + continue + return all_data, '', '' if not name: all_names = [executable, 'container', 'ls', '-q', '-a'] rc, out, err = module.run_command(all_names) @@ -394,12 +421,16 @@ def main(): argument_spec={ 'executable': {'type': 'str', 'default': 'podman'}, 'name': {'type': 'list', 'elements': 'str'}, + 'podman_socket': {'type': 'str'} }, supports_check_mode=True, ) name = module.params['name'] - executable = module.get_bin_path(module.params['executable'], required=True) + executable = None + if not module.params['podman_socket']: + executable = module.get_bin_path( + module.params['executable'], required=True) # pylint: disable=unused-variable inspect_results, out, err = get_containers_facts(module, executable, name) diff --git a/requirements.txt b/requirements.txt new file mode 100644 index 00000000..ba07d192 --- /dev/null +++ b/requirements.txt @@ -0,0 +1 @@ +requests==2.28.2 diff --git a/tests/integration/targets/podman_container/tasks/main.yml b/tests/integration/targets/podman_container/tasks/main.yml index ef651d62..5fd1e1ce 100644 --- a/tests/integration/targets/podman_container/tasks/main.yml +++ b/tests/integration/targets/podman_container/tasks/main.yml @@ -20,6 +20,7 @@ executable: "{{ test_executable | default('podman') }}" name: "{{ item }}" state: absent + podman_socket: "{{ podman_socket | default(omit) }}" loop: - "alpine:3.7" - "container" @@ -32,6 +33,7 @@ containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" name: container + podman_socket: "{{ podman_socket | default(omit) }}" ignore_errors: true register: no_image @@ -40,6 +42,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: created + podman_socket: "{{ podman_socket | default(omit) }}" ignore_errors: true register: no_image1 @@ -48,6 +51,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: present + podman_socket: "{{ podman_socket | default(omit) }}" ignore_errors: true register: no_image2 @@ -76,6 +80,7 @@ image: alpine:3.7 state: started command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: image - name: Check using already pulled image @@ -85,6 +90,7 @@ image: alpine:3.7 state: started command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: image2 - name: Check output is correct @@ -110,6 +116,7 @@ image: ineverneverneverexist state: started command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: imagefail ignore_errors: true @@ -117,7 +124,9 @@ assert: that: - imagefail is failed - - imagefail.msg == "Can't pull image ineverneverneverexist" + - >- + imagefail.msg == "Can't pull image ineverneverneverexist" + or "Can't find and pull image ineverneverneverexist" in imagefail.msg - name: Force container recreate containers.podman.podman_container: @@ -127,6 +136,7 @@ state: started command: sleep 1d recreate: true + podman_socket: "{{ podman_socket | default(omit) }}" register: recreated - name: Check output is correct @@ -144,6 +154,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: started + podman_socket: "{{ podman_socket | default(omit) }}" - name: Present container containers.podman.podman_container: @@ -152,6 +163,7 @@ image: alpine state: present command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: start_present - name: Check output is correct @@ -164,6 +176,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: stopped + podman_socket: "{{ podman_socket | default(omit) }}" register: stopped - name: Stop the same container again (idempotency) @@ -171,6 +184,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: stopped + podman_socket: "{{ podman_socket | default(omit) }}" register: stopped_again - name: Check output is correct @@ -192,6 +206,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: absent + podman_socket: "{{ podman_socket | default(omit) }}" register: deleted - name: Delete again container (idempotency) @@ -199,6 +214,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: absent + podman_socket: "{{ podman_socket | default(omit) }}" register: deleted_again - name: Check output is correct @@ -222,6 +238,7 @@ image: alpine:3.7 state: stopped command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: created - name: Check output is correct @@ -240,6 +257,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Create container in 'created' state containers.podman.podman_container: @@ -248,6 +266,7 @@ image: alpine:3.7 state: created command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: created - name: Check output is correct @@ -269,6 +288,7 @@ state: created command: sleep 1d recreate: true + podman_socket: "{{ podman_socket | default(omit) }}" register: recreated - name: Check output is correct @@ -285,6 +305,7 @@ executable: "{{ test_executable | default('podman') }}" name: container restart: true + podman_socket: "{{ podman_socket | default(omit) }}" register: restarted - name: Check output is correct @@ -301,6 +322,7 @@ executable: "{{ test_executable | default('podman') }}" name: container restart: true + podman_socket: "{{ podman_socket | default(omit) }}" register: restarted - name: Check output is correct @@ -317,6 +339,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Start container that was deleted containers.podman.podman_container: @@ -325,6 +348,7 @@ image: alpine:3.7 state: started command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: started - name: Check output is correct @@ -340,6 +364,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: absent + podman_socket: "{{ podman_socket | default(omit) }}" register: deleted - name: Delete again container (idempotency) @@ -347,6 +372,7 @@ executable: "{{ test_executable | default('podman') }}" name: container state: absent + podman_socket: "{{ podman_socket | default(omit) }}" register: deleted_again - name: Check output is correct @@ -399,6 +425,7 @@ - /tmp:/data mounts: - type=devpts,destination=/dev/pts + podman_socket: "{{ podman_socket | default(omit) }}" register: test - name: Check output is correct @@ -465,6 +492,7 @@ image: docker.io/alpine state: started command: sleep 20m + podman_socket: "{{ podman_socket | default(omit) }}" - name: Check basic idempotency of running container - run it again containers.podman.podman_container: @@ -473,6 +501,7 @@ image: alpine:latest state: started command: sleep 20m + podman_socket: "{{ podman_socket | default(omit) }}" register: idem - name: Check that nothing was changed @@ -488,6 +517,7 @@ state: started command: sleep 20m force_restart: true + podman_socket: "{{ podman_socket | default(omit) }}" register: idem_r - name: Check that task was changed @@ -502,6 +532,7 @@ image: alpine:latest state: started command: sleep 20m + podman_socket: "{{ podman_socket | default(omit) }}" register: idem_r1 - name: Check that task was not changed @@ -517,6 +548,7 @@ state: started command: sleep 20m tty: true + podman_socket: "{{ podman_socket | default(omit) }}" register: idem1 - name: Check that container is recreated when changed @@ -531,6 +563,7 @@ image: alpine state: started command: sleep 20m + podman_socket: "{{ podman_socket | default(omit) }}" register: idem2 - name: Check that container is recreated when changed to default value @@ -543,15 +576,21 @@ executable: "{{ test_executable | default('podman') }}" name: testidem state: absent + podman_socket: "{{ podman_socket | default(omit) }}" register: remove - name: Check podman_actions assert: that: - "'podman rm -f testidem' in remove.podman_actions" + when: podman_socket is not defined - # - name: Create a pod - # shell: podman pod create --name testidempod + - name: Check basic idempotency of pod container + containers.podman.podman_pod: + executable: "{{ test_executable | default('podman') }}" + name: testidempod + state: started + when: podman_socket is defined - name: Check basic idempotency of pod container containers.podman.podman_container: @@ -561,6 +600,7 @@ state: started command: sleep 20m pod: "new:testidempod" + podman_socket: "{{ podman_socket | default(omit) }}" - name: Check basic idempotency of pod container - run it again containers.podman.podman_container: @@ -570,6 +610,7 @@ state: started command: sleep 20m pod: testidempod + podman_socket: "{{ podman_socket | default(omit) }}" register: idem3 - name: Check that nothing was changed in pod containers @@ -586,6 +627,7 @@ command: sleep 20m tty: true pod: testidempod + podman_socket: "{{ podman_socket | default(omit) }}" register: idem4 - name: Check that container is recreated when changed @@ -602,6 +644,7 @@ image: alpine state: started command: sleep 20m + podman_socket: "{{ podman_socket | default(omit) }}" generate_systemd: path: /tmp/ restart_policy: always @@ -623,6 +666,7 @@ image: alpine state: started command: sleep 20m + podman_socket: "{{ podman_socket | default(omit) }}" generate_systemd: path: /tmp/ time: 120 @@ -689,6 +733,7 @@ image: alpine state: absent command: sleep 20m + podman_socket: "{{ podman_socket | default(omit) }}" generate_systemd: path: /tmp/ restart_policy: always @@ -724,17 +769,29 @@ - name: Download alpine releases file ansible.builtin.get_url: - url: "https://dl-cdn.alpinelinux.org/alpine/latest-stable/releases/{{ ansible_architecture }}/latest-releases.yaml" + url: "https://dl-cdn.alpinelinux.org/alpine/latest-stable/releases/{{ ansible_architecture | default('x86_64') }}/latest-releases.yaml" dest: "{{ container_tempdir.path }}/latest-releases.yaml" register: alpine_releases_file + - name: Get content of galaxy.yml + slurp: + src: "{{ container_tempdir.path }}/latest-releases.yaml" + register: release_vars + + - name: Parse yaml into temporary variable + set_fact: + release_yaml_t: "{{ release_vars['content'] | b64decode | from_yaml }}" + + - name: Parse yaml into variable + set_fact: + release_yaml: "{{ release_yaml_t | from_yaml }}" + - name: Download alpine latest rootfs vars: - latest_releases: "{{ lookup('file', alpine_releases_file.dest) }}" - latest_version: "{{ (latest_releases | from_yaml)[0].version }}" - latest_branch: "{{ (latest_releases | from_yaml)[0].branch }}" + latest_version: "{{ release_yaml[0].version }}" + latest_branch: "{{ release_yaml[0].branch }}" ansible.builtin.unarchive: - src: "https://dl-cdn.alpinelinux.org/alpine/{{ latest_branch }}/releases/{{ ansible_architecture }}/alpine-minirootfs-{{ latest_version }}-{{ ansible_architecture }}.tar.gz" + src: "https://dl-cdn.alpinelinux.org/alpine/{{ latest_branch }}/releases/{{ ansible_architecture | default('x86_64') }}/alpine-minirootfs-{{ latest_version }}-{{ ansible_architecture | default('x86_64') }}.tar.gz" dest: "{{ container_tempdir.path }}" remote_src: true @@ -746,6 +803,7 @@ rootfs: true state: started command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: imagerootfsfail ignore_errors: true @@ -763,6 +821,7 @@ rootfs: true state: started command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: image - name: Check output is correct @@ -785,6 +844,7 @@ rootfs: true state: started command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: idem - name: Check that nothing was changed @@ -799,6 +859,7 @@ image: alpine:3.7 state: started command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: image - name: Debug image @@ -825,6 +886,7 @@ rootfs: true state: started command: sleep 1d + podman_socket: "{{ podman_socket | default(omit) }}" register: image - name: Check output is correct @@ -846,12 +908,14 @@ executable: "{{ test_executable | default('podman') }}" name: testidem-pod state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Delete all container leftovers from tests containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" name: "{{ item }}" state: absent + podman_socket: "{{ podman_socket | default(omit) }}" loop: - "alpine:3.7" - "container" diff --git a/tests/integration/targets/podman_container_api/files b/tests/integration/targets/podman_container_api/files new file mode 120000 index 00000000..01683cbe --- /dev/null +++ b/tests/integration/targets/podman_container_api/files @@ -0,0 +1 @@ +../podman_container_idempotency/files \ No newline at end of file diff --git a/tests/integration/targets/podman_container_api/tasks/main.yml b/tests/integration/targets/podman_container_api/tasks/main.yml new file mode 100644 index 00000000..5845d559 --- /dev/null +++ b/tests/integration/targets/podman_container_api/tasks/main.yml @@ -0,0 +1,38 @@ +--- +- name: Set podman socket var for rootless + set_fact: + podman_socket: unix:///tmp/podman.sock + podman_root_socket: unix:///tmp/root-podman.sock + +- name: Run tasks from podman container + include_tasks: ../../podman_container/tasks/main.yml + +- name: Run tasks from podman container info + include_tasks: ../../podman_container_info/tasks/main.yml + +- name: Prepare a container + include_tasks: ../../podman_container_idempotency/tasks/build_test_container.yml + +- name: Test idempotency of users + include_tasks: ../../podman_container_idempotency/tasks/idem_users.yml + +- name: Test idempotency of workdir + include_tasks: ../../podman_container_idempotency/tasks/idem_workdir.yml + +- name: Test idempotency of labels + include_tasks: ../../podman_container_idempotency/tasks/idem_labels.yml + +- name: Test idempotency of stop signal + include_tasks: ../../podman_container_idempotency/tasks/idem_stopsignal.yml + +- name: Test idempotency of ports + include_tasks: ../../podman_container_idempotency/tasks/idem_ports.yml + +- name: Test idempotency of volumes + include_tasks: ../../podman_container_idempotency/tasks/idem_volumes.yml + +- name: Test idempotency of containers in pods + include_tasks: ../../podman_container_idempotency/tasks/idem_pods.yml + +- name: Test idempotency of other settings + include_tasks: ../../podman_container_idempotency/tasks/idem_all.yml diff --git a/tests/integration/targets/podman_container_idempotency/tasks/idem_all.yml b/tests/integration/targets/podman_container_idempotency/tasks/idem_all.yml index 48247d71..6b16a5d7 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/idem_all.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/idem_all.yml @@ -4,6 +4,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Run container containers.podman.podman_container: @@ -12,6 +13,7 @@ name: idempotency state: started command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" - name: Run container again containers.podman.podman_container: @@ -20,6 +22,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test1 - name: Check info when running container again @@ -36,6 +39,7 @@ mykey: "amazing value" ENV1: "one=two=three" command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test2 - name: Check info with environment vars @@ -52,6 +56,7 @@ mykey: "amazing value" ENV1: "one=two=three" command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test3 - name: Check info with environment vars again @@ -68,6 +73,7 @@ mykey: "amazing value1" ENV1: "one=two=three" command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test4 - name: Check info with changed environment vars @@ -84,6 +90,7 @@ tag: nonotag log_driver: journald command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9 - name: Check info with log opt tag @@ -100,6 +107,7 @@ tag: nonotag log_driver: journald command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test10 - name: Check info with log opt tag - again @@ -114,6 +122,7 @@ state: present command: 1h log_driver: journald + podman_socket: "{{ podman_socket | default(omit) }}" register: test11 - name: Check info with default log opt tag @@ -130,6 +139,7 @@ path: /tmp/container.log log_driver: journald command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test12 - name: Check info with log opt path @@ -146,6 +156,7 @@ path: /tmp/container2.log log_driver: journald command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test13 - name: Check info with changed log opt path @@ -160,6 +171,7 @@ state: present log_driver: journald command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test14 # We can't guess the default log path @@ -179,68 +191,7 @@ max_size: 100mb tag: sometag command: 1h - -- name: Run container with mounted /dev/fuse - containers.podman.podman_container: - executable: "{{ test_executable | default('podman') }}" - image: "{{ idem_image }}" - name: idempotency - state: started - command: 1h - device: - - /dev/fuse - register: test15 - -- name: Run container with mounted /dev/fuse again - containers.podman.podman_container: - executable: "{{ test_executable | default('podman') }}" - image: "{{ idem_image }}" - name: idempotency - state: started - command: 1h - device: - - /dev/fuse - register: test16 - -- name: Run container with mounted /dev/fuse:/dev/fuse - containers.podman.podman_container: - executable: "{{ test_executable | default('podman') }}" - image: "{{ idem_image }}" - name: idempotency - state: started - command: 1h - device: - - /dev/fuse:/dev/fuse - register: test17 - -- name: Run container with mounted /dev/fuse third time - containers.podman.podman_container: - executable: "{{ test_executable | default('podman') }}" - image: "{{ idem_image }}" - name: idempotency - state: started - command: 1h - device: - - /dev/fuse - register: test18 - -- name: Run container without mounted device - containers.podman.podman_container: - executable: "{{ test_executable | default('podman') }}" - image: "{{ idem_image }}" - name: idempotency - state: started - command: 1h - register: test19 - -- name: Check info with mounted devices - assert: - that: - - test15 is changed - - test16 is not changed - - test17 is not changed - - test18 is not changed - - test19 is changed + podman_socket: "{{ podman_socket | default(omit) }}" - name: Run container with etc_hosts containers.podman.podman_container: @@ -337,3 +288,4 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency state: absent + podman_socket: "{{ podman_socket | default(omit) }}" diff --git a/tests/integration/targets/podman_container_idempotency/tasks/idem_labels.yml b/tests/integration/targets/podman_container_idempotency/tasks/idem_labels.yml index 5d08d450..1eaf5549 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/idem_labels.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/idem_labels.yml @@ -3,6 +3,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -10,6 +11,7 @@ name: idempotency state: started command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -17,6 +19,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test1 - name: check test1 @@ -32,6 +35,7 @@ key: "amazing value" nobody: "cares" command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test2 - name: check test2 @@ -44,6 +48,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test3 - name: check test3 @@ -61,6 +66,7 @@ OEIWIOP: eufslsa ieui4: KDJSL4D command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test4 - name: check test4 @@ -78,6 +84,7 @@ OEIWIOP: eufslsa ieui4: KDJSL4D command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test5 - name: check test5 @@ -90,6 +97,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test6 - name: check test6 @@ -104,6 +112,7 @@ label: test: notest command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test7 - name: check test7 @@ -119,6 +128,7 @@ key: "amazing value" nobody: "cares" command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test8 - name: check test8 @@ -131,6 +141,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9 - name: check test9 @@ -141,6 +152,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency1 state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -148,6 +160,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -155,6 +168,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test10 - name: check test10 @@ -169,6 +183,7 @@ label: razraz: dva command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test11 - name: check test11 @@ -181,6 +196,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test12 - name: check test12 @@ -193,6 +209,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test13 - name: check test13 diff --git a/tests/integration/targets/podman_container_idempotency/tasks/idem_networks.yml b/tests/integration/targets/podman_container_idempotency/tasks/idem_networks.yml index 0eedfda6..900ce7e2 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/idem_networks.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/idem_networks.yml @@ -3,6 +3,7 @@ executable: "{{ test_executable | default('podman') }}" name: netcontainer state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Run container with {{ item.first_net }} containers.podman.podman_container: @@ -12,6 +13,7 @@ command: 1h state: started network: "{{ item.first_net }}" + podman_socket: "{{ podman_socket | default(omit) }}" - name: Run container again with {{ item.first_net }} containers.podman.podman_container: @@ -21,6 +23,7 @@ command: 1h state: present network: "{{ item.first_net }}" + podman_socket: "{{ podman_socket | default(omit) }}" register: info - name: Check info for 2 runs of {{ item.first_net }} @@ -36,6 +39,7 @@ command: 1h state: present network: "{{ item.next_net }}" + podman_socket: "{{ podman_socket | default(omit) }}" register: info1 - name: Check info diff --git a/tests/integration/targets/podman_container_idempotency/tasks/idem_pods.yml b/tests/integration/targets/podman_container_idempotency/tasks/idem_pods.yml index 56e1e95d..06597be8 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/idem_pods.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/idem_pods.yml @@ -9,6 +9,7 @@ executable: "{{ test_executable | default('podman') }}" name: testpod_container1 state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Create pod containers.podman.podman_pod: @@ -30,6 +31,7 @@ test: test2 volumes: - /tmp:/data + podman_socket: "{{ podman_socket | default(omit) }}" - name: Start test container again containers.podman.podman_container: @@ -44,6 +46,7 @@ test: test2 volumes: - /tmp:/data + podman_socket: "{{ podman_socket | default(omit) }}" register: info - name: Check starting container @@ -57,6 +60,7 @@ name: testpod_container1 pod: testpod state: started + podman_socket: "{{ podman_socket | default(omit) }}" register: info1 - name: Check starting container changed @@ -70,6 +74,7 @@ name: testpod_container1 pod: testpod state: started + podman_socket: "{{ podman_socket | default(omit) }}" register: info2 - name: Check starting container again diff --git a/tests/integration/targets/podman_container_idempotency/tasks/idem_ports.yml b/tests/integration/targets/podman_container_idempotency/tasks/idem_ports.yml index 54a667c8..161bfb9c 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/idem_ports.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/idem_ports.yml @@ -3,6 +3,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -10,6 +11,7 @@ name: idempotency state: started command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -17,6 +19,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test1 - name: check test1 @@ -40,6 +43,7 @@ - "127.0.0.1:43423:8872" - "127.0.0.2:43423:8872/tcp" - "127.0.0.3:43423:8872" + podman_socket: "{{ podman_socket | default(omit) }}" register: test2 - name: check test2 @@ -63,6 +67,7 @@ - "127.0.0.1:43423:8872" - "127.0.0.2:43423:8872/tcp" - "127.0.0.3:43423:8872" + podman_socket: "{{ podman_socket | default(omit) }}" register: test3 - name: check test3 @@ -76,6 +81,7 @@ state: present publish_all: true command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test4 - name: check test4 @@ -89,6 +95,7 @@ state: present publish_all: true command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test5 - name: check test5 @@ -101,6 +108,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test6 - name: check test6 @@ -115,6 +123,7 @@ ports: - 10000:8080 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test7 - name: check test7 @@ -129,6 +138,7 @@ ports: - 10001:8080 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test8 - name: check test8 @@ -143,6 +153,7 @@ ports: - 10001:8080/tcp command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9 - name: check test9 @@ -158,6 +169,7 @@ - 10001:8080/tcp publish_all: false command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9a - name: check test9a @@ -170,6 +182,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9b - name: check test9b @@ -180,6 +193,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency1 state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -187,6 +201,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -194,6 +209,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test10 - name: check test10 @@ -207,6 +223,7 @@ state: present publish_all: false command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test11 - name: check test11 @@ -220,6 +237,7 @@ state: present publish_all: true command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test11a - name: check test11a @@ -234,6 +252,7 @@ ports: - 10000:8080 command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test12 - name: check test12 @@ -246,6 +265,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test13 - name: check test13 @@ -258,6 +278,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test14 - name: check test14 diff --git a/tests/integration/targets/podman_container_idempotency/tasks/idem_stopsignal.yml b/tests/integration/targets/podman_container_idempotency/tasks/idem_stopsignal.yml index 98586aec..db7e9ced 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/idem_stopsignal.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/idem_stopsignal.yml @@ -3,6 +3,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -10,6 +11,7 @@ name: idempotency state: started command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -17,6 +19,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test1 - name: check test1 @@ -30,6 +33,7 @@ state: present stop_signal: 9 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test2 - name: check test2 @@ -42,6 +46,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test3 - name: check test3 @@ -55,6 +60,7 @@ state: present stop_signal: 10 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test4 - name: check test4 @@ -68,6 +74,7 @@ state: present stop_signal: 10 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test5 - name: check test5 @@ -80,6 +87,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test6 - name: check test6 @@ -93,6 +101,7 @@ state: present stop_signal: 15 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test7 - name: check test7 @@ -106,6 +115,7 @@ state: present stop_signal: 9 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test8 - name: check test8 @@ -118,6 +128,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9 - name: check test9 @@ -131,6 +142,7 @@ state: present stop_signal: 15 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9a - name: check test9a @@ -143,6 +155,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9b - name: check test9b @@ -153,6 +166,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency1 state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -160,6 +174,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -167,6 +182,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test10 - name: check test10 @@ -180,6 +196,7 @@ state: present stop_signal: 15 command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test11 - name: check test11 @@ -193,6 +210,7 @@ state: present stop_signal: 10 command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test12 - name: check test12 @@ -205,6 +223,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test13 - name: check test13 @@ -217,6 +236,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test14 - name: check test14 diff --git a/tests/integration/targets/podman_container_idempotency/tasks/idem_users.yml b/tests/integration/targets/podman_container_idempotency/tasks/idem_users.yml index 6be03bb1..737203aa 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/idem_users.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/idem_users.yml @@ -3,6 +3,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -10,6 +11,7 @@ name: idempotency state: started command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -17,6 +19,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test1 - name: check test1 @@ -30,6 +33,7 @@ state: present user: user command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test2 - name: check test2 @@ -42,6 +46,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test3 - name: check test3 @@ -55,6 +60,7 @@ state: present user: user2 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test4 - name: check test4 @@ -68,6 +74,7 @@ state: present user: user2 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test5 - name: check test5 @@ -80,6 +87,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test6 - name: check test6 @@ -93,6 +101,7 @@ state: present user: user2 command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test7 - name: check test7 @@ -106,6 +115,7 @@ state: present user: user command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test8 - name: check test8 @@ -118,6 +128,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9 - name: check test9 @@ -128,6 +139,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency1 state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -142,6 +154,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test10 - name: check test10 @@ -155,6 +168,7 @@ state: present user: nobody command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test11 - name: check test11 @@ -167,6 +181,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test12 - name: check test12 @@ -179,6 +194,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test13 - name: check test13 diff --git a/tests/integration/targets/podman_container_idempotency/tasks/idem_volumes.yml b/tests/integration/targets/podman_container_idempotency/tasks/idem_volumes.yml index 3fff4e34..4a60c90d 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/idem_volumes.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/idem_volumes.yml @@ -3,6 +3,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -10,6 +11,7 @@ name: idempotency state: started command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -17,6 +19,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test1 - name: check test1 @@ -29,6 +32,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test2 - name: check test2 @@ -41,6 +45,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test3 - name: check test3 @@ -55,6 +60,7 @@ volumes: - /opt:/somedir/ command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test4 - name: check test4 @@ -69,6 +75,7 @@ volumes: - /opt/://somedir/ command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test5 - name: check test5 @@ -81,6 +88,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test6 - name: check test6 @@ -96,6 +104,7 @@ - /opt:/somedir - /data command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test7 - name: check test7 @@ -110,6 +119,7 @@ volumes: - /data command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test8 - name: check test8 @@ -122,6 +132,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9 - name: check test9 @@ -142,6 +153,7 @@ volumes: - "/opt:/anotherdir" - "local_volume1:/data" + podman_socket: "{{ podman_socket | default(omit) }}" register: test10 - name: check test10 @@ -157,6 +169,7 @@ volumes: - "/opt//:/anotherdir" - "local_volume1:/data/" + podman_socket: "{{ podman_socket | default(omit) }}" register: test11 - name: check test11 @@ -172,6 +185,7 @@ volumes: - "/opt:/anotherdir" - "local_volume2:/data" + podman_socket: "{{ podman_socket | default(omit) }}" register: test12 - name: check test12 @@ -186,6 +200,7 @@ command: 1h volumes: - "/opt:/anotherdir" + podman_socket: "{{ podman_socket | default(omit) }}" register: test13 - name: check test13 @@ -196,6 +211,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency1 state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -203,6 +219,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -210,6 +227,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test14 - name: check test14 @@ -224,6 +242,7 @@ volumes: - /opt:/data command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test15 - name: check test15 @@ -236,6 +255,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test16 - name: check test16 @@ -248,6 +268,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test17 - name: check test17 diff --git a/tests/integration/targets/podman_container_idempotency/tasks/idem_workdir.yml b/tests/integration/targets/podman_container_idempotency/tasks/idem_workdir.yml index ef110318..3f44f65d 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/idem_workdir.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/idem_workdir.yml @@ -3,6 +3,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -10,6 +11,7 @@ name: idempotency state: started command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -17,6 +19,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test1 - name: check test1 @@ -30,6 +33,7 @@ state: present workdir: /work command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test2 - name: check test2 @@ -42,6 +46,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test3 - name: check test3 @@ -55,6 +60,7 @@ state: present workdir: /var command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test4 - name: check test4 @@ -68,6 +74,7 @@ state: present workdir: /var command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test5 - name: check test5 @@ -80,6 +87,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test6 - name: check test6 @@ -93,6 +101,7 @@ state: present workdir: /var command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test7 - name: check test7 @@ -106,6 +115,7 @@ state: present workdir: /work command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test8 - name: check test8 @@ -118,6 +128,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9 - name: check test9 @@ -131,6 +142,7 @@ state: present workdir: / command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9a - name: check test9a @@ -143,6 +155,7 @@ name: idempotency state: present command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test9b - name: check test9b @@ -153,6 +166,7 @@ executable: "{{ test_executable | default('podman') }}" name: idempotency1 state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -160,6 +174,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" - containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" @@ -167,6 +182,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test10 - name: check test10 @@ -180,6 +196,7 @@ state: present workdir: / command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test11 - name: check test11 @@ -193,6 +210,7 @@ state: present workdir: /var command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test12 - name: check test12 @@ -205,6 +223,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test13 - name: check test13 @@ -217,6 +236,7 @@ name: idempotency1 state: present command: sleep 1h + podman_socket: "{{ podman_socket | default(omit) }}" register: test14 - name: check test14 diff --git a/tests/integration/targets/podman_container_idempotency/tasks/root-podman-network.yml b/tests/integration/targets/podman_container_idempotency/tasks/root-podman-network.yml index 6d5b7bb0..79d7b955 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/root-podman-network.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/root-podman-network.yml @@ -6,12 +6,13 @@ executable: "{{ test_executable | default('podman') }}" name: netcontainer state: absent + podman_socket: "{{ podman_root_socket | default(omit) }}" - name: Create network testnet - command: podman network create testnet --subnet 10.92.92.0/24 + shell: podman network exists testnet || podman network create testnet --subnet 10.92.92.0/24 - name: Create network anothernet - command: podman network create anothernet --subnet 10.72.72.0/24 + shell: podman network exists anothernet || podman network create anothernet --subnet 10.72.72.0/24 - name: List current networks command: podman network ls @@ -64,6 +65,7 @@ executable: "{{ test_executable | default('podman') }}" name: netcontainer state: absent + podman_socket: "{{ podman_root_socket | default(omit) }}" - name: Delete all network leftovers from tests shell: | diff --git a/tests/integration/targets/podman_container_idempotency/tasks/root-podman.yml b/tests/integration/targets/podman_container_idempotency/tasks/root-podman.yml index f4158736..2b74fe24 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/root-podman.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/root-podman.yml @@ -5,6 +5,7 @@ executable: "{{ test_executable | default('podman') }}" name: root-idempotency state: absent + podman_socket: "{{ podman_root_socket | default(omit) }}" - name: Run container as is containers.podman.podman_container: @@ -13,6 +14,7 @@ name: root-idempotency state: started command: 1h + podman_socket: "{{ podman_root_socket | default(omit) }}" - name: Run container as is again containers.podman.podman_container: @@ -21,6 +23,7 @@ name: root-idempotency state: present command: 1h + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info_a - name: Check that it is not recreated @@ -38,6 +41,7 @@ ulimit: - 'nofile=55535:55535' - 'memlock=-1:-1' + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info - name: Check that it is recreated @@ -55,6 +59,7 @@ ulimit: - 'nofile=55535:55535' - 'memlock=-1:-1' + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info1 - name: Check that it is recreated @@ -72,6 +77,7 @@ ulimit: - 'nofile=55535:65535' - 'memlock=-1:-1' + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info2 - name: Check that it is recreated @@ -89,6 +95,7 @@ ulimit: - 'nofile=55535:65535' - 'memlock=-1:-1' + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info3 - name: Check that it is recreated @@ -103,6 +110,7 @@ name: root-idempotency state: started command: 1h + podman_socket: "{{ podman_root_socket | default(omit) }}" - name: Run containers with MAC address containers.podman.podman_container: @@ -112,6 +120,7 @@ state: started command: 1h mac_address: 44:55:66:77:88:99 + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info4 - name: Check that it is not recreated @@ -128,6 +137,7 @@ state: present command: 1h mac_address: 44:55:66:77:88:99 + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info5 - name: Check that it is not recreated @@ -143,6 +153,7 @@ state: present command: 1h mac_address: 44:55:66:77:88:33 + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info6 - name: Check that it is recreated @@ -157,6 +168,7 @@ name: root-idempotency state: present command: 1h + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info7 - name: Check that it is recreated @@ -178,6 +190,7 @@ - "127.0.0.1:7671:7676/udp" - "127.0.0.3:43423:8872" - "[::1]:34523:35425" + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info8 - name: Check that it is recreated @@ -199,6 +212,7 @@ - "127.0.0.1:7671:7676/udp" - "127.0.0.3:43423:8872" - "[::1]:34523:35425" + podman_socket: "{{ podman_root_socket | default(omit) }}" register: info9 - name: Check that it is recreated @@ -206,8 +220,76 @@ that: - info9 is not changed +- name: Run container with mounted /dev/fuse + containers.podman.podman_container: + executable: "{{ test_executable | default('podman') }}" + image: "{{ idem_image }}" + name: idempotency + state: started + command: 1h + device: + - /dev/fuse + podman_socket: "{{ podman_socket | default(omit) }}" + register: test15 + +- name: Run container with mounted /dev/fuse again + containers.podman.podman_container: + executable: "{{ test_executable | default('podman') }}" + image: "{{ idem_image }}" + name: idempotency + state: started + command: 1h + device: + - /dev/fuse + podman_socket: "{{ podman_socket | default(omit) }}" + register: test16 + +- name: Run container with mounted /dev/fuse:/dev/fuse + containers.podman.podman_container: + executable: "{{ test_executable | default('podman') }}" + image: "{{ idem_image }}" + name: idempotency + state: started + command: 1h + device: + - /dev/fuse:/dev/fuse + podman_socket: "{{ podman_socket | default(omit) }}" + register: test17 + +- name: Run container with mounted /dev/fuse third time + containers.podman.podman_container: + executable: "{{ test_executable | default('podman') }}" + image: "{{ idem_image }}" + name: idempotency + state: started + command: 1h + device: + - /dev/fuse + podman_socket: "{{ podman_socket | default(omit) }}" + register: test18 + +- name: Run container without mounted device + containers.podman.podman_container: + executable: "{{ test_executable | default('podman') }}" + image: "{{ idem_image }}" + name: idempotency + state: started + command: 1h + podman_socket: "{{ podman_socket | default(omit) }}" + register: test19 + +- name: Check info with mounted devices + assert: + that: + - test15 is changed + - test16 is not changed + - test17 is not changed + - test18 is not changed + - test19 is changed + - name: Make sure container doesn't exist containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" name: root-idempotency state: absent + podman_socket: "{{ podman_root_socket | default(omit) }}" diff --git a/tests/integration/targets/podman_container_idempotency/tasks/rootless-podman-network.yml b/tests/integration/targets/podman_container_idempotency/tasks/rootless-podman-network.yml index 62dd3a5a..eb22a862 100644 --- a/tests/integration/targets/podman_container_idempotency/tasks/rootless-podman-network.yml +++ b/tests/integration/targets/podman_container_idempotency/tasks/rootless-podman-network.yml @@ -6,12 +6,14 @@ executable: "{{ test_executable | default('podman') }}" name: rootlessnet2 state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Remove container rootlessnet containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" name: rootlessnet state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Run container with no specified networks containers.podman.podman_container: @@ -20,6 +22,7 @@ image: "{{ idem_image }}" command: 1h state: started + podman_socket: "{{ podman_socket | default(omit) }}" - name: Run container again with no specified networks containers.podman.podman_container: @@ -28,6 +31,7 @@ image: "{{ idem_image }}" command: 1h state: present + podman_socket: "{{ podman_socket | default(omit) }}" register: info - name: Check info for no specified networks @@ -43,6 +47,7 @@ command: 1h state: present network: host + podman_socket: "{{ podman_socket | default(omit) }}" register: info1 - name: Check info with network mode host @@ -58,6 +63,7 @@ command: 1h state: present network: host + podman_socket: "{{ podman_socket | default(omit) }}" register: info2 - name: Check info with network mode host again @@ -73,6 +79,7 @@ command: 1h state: present network: none + podman_socket: "{{ podman_socket | default(omit) }}" register: info3 - name: Check info without network at all @@ -88,6 +95,7 @@ command: 1h state: present network: none + podman_socket: "{{ podman_socket | default(omit) }}" register: info4 - name: Check info without network at all again @@ -102,6 +110,7 @@ image: "{{ idem_image }}" command: 1h state: present + podman_socket: "{{ podman_socket | default(omit) }}" register: info5 - name: Check info with default network mode @@ -118,12 +127,14 @@ state: present network: - slirp4netns:allow_host_loopback=true,cidr=10.0.3.0/24 + podman_socket: "{{ podman_socket | default(omit) }}" register: info6 - name: Check info with slirp4netns options assert: that: - info6 is changed + when: podman_socket is not defined - name: Run container with slirp4netns options - again containers.podman.podman_container: @@ -134,6 +145,7 @@ state: present network: - slirp4netns:allow_host_loopback=true,cidr=10.0.3.0/24 + podman_socket: "{{ podman_socket | default(omit) }}" register: info7 - name: Check info with slirp4netns options - again @@ -150,12 +162,14 @@ state: present network: - slirp4netns:allow_host_loopback=true,cidr=10.0.4.0/24 + podman_socket: "{{ podman_socket | default(omit) }}" register: info8 - name: Check info with different slirp4netns options assert: that: - info8 is changed + when: podman_socket is not defined - name: Run container without options containers.podman.podman_container: @@ -164,12 +178,14 @@ image: "{{ idem_image }}" command: 1h state: present + podman_socket: "{{ podman_socket | default(omit) }}" register: info9 - name: Check info without options assert: that: - info9 is changed + when: podman_socket is not defined - name: Run container without options - again containers.podman.podman_container: @@ -178,6 +194,7 @@ image: "{{ idem_image }}" command: 1h state: present + podman_socket: "{{ podman_socket | default(omit) }}" register: info10 - name: Check info without options - again @@ -193,12 +210,15 @@ command: 1h state: started network: 'container:rootlessnet' + podman_socket: "{{ podman_socket | default(omit) }}" register: info11 + when: podman_socket is not defined - name: Check info container network attached to first one assert: that: - info11 is changed + when: podman_socket is not defined - name: Run container network attached to first one - again containers.podman.podman_container: @@ -208,12 +228,15 @@ command: 1h state: started network: 'container:rootlessnet' + podman_socket: "{{ podman_socket | default(omit) }}" register: info12 + when: podman_socket is not defined - name: Check info container network attached to first one - again assert: that: - info12 is not changed + when: podman_socket is not defined always: - name: Delete all containers leftovers from tests @@ -221,9 +244,11 @@ executable: "{{ test_executable | default('podman') }}" name: rootlessnet2 state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Delete all containers leftovers from tests 2 containers.podman.podman_container: executable: "{{ test_executable | default('podman') }}" name: rootlessnet state: absent + podman_socket: "{{ podman_socket | default(omit) }}" diff --git a/tests/integration/targets/podman_container_info/tasks/main.yml b/tests/integration/targets/podman_container_info/tasks/main.yml index d62bf8f1..909246d8 100644 --- a/tests/integration/targets/podman_container_info/tasks/main.yml +++ b/tests/integration/targets/podman_container_info/tasks/main.yml @@ -10,11 +10,13 @@ executable: "{{ test_executable | default('podman') }}" name: "{{ container_name }}" state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Get missing container info containers.podman.podman_container_info: executable: "{{ test_executable | default('podman') }}" name: "{{ container_name }}" + podman_socket: "{{ podman_socket | default(omit) }}" register: nonexist - name: Check results of missing container info @@ -31,6 +33,7 @@ - "{{ container_name }}" - neverexist - whatever + podman_socket: "{{ podman_socket | default(omit) }}" register: nonexist2 ignore_errors: true @@ -48,6 +51,7 @@ containers.podman.podman_container_info: executable: "{{ test_executable | default('podman') }}" name: "{{ container_name }}" + podman_socket: "{{ podman_socket | default(omit) }}" register: existing_container - name: Get mixed existing and non-existing container info @@ -56,10 +60,12 @@ name: - "{{ container_name }}" - whatever + podman_socket: "{{ podman_socket | default(omit) }}" register: mixed_existing_container - name: Get all containers info containers.podman.podman_container_info: + podman_socket: "{{ podman_socket | default(omit) }}" executable: "{{ test_executable | default('podman') }}" register: all_containers @@ -79,6 +85,7 @@ executable: "{{ test_executable | default('podman') }}" name: "{{ container_name }}" state: absent + podman_socket: "{{ podman_socket | default(omit) }}" - name: Make checks # https://github.com/containers/podman/issues/9490 @@ -99,3 +106,4 @@ executable: "{{ test_executable | default('podman') }}" name: "{{ container_name }}" state: absent + podman_socket: "{{ podman_socket | default(omit) }}"