Skip to content

[Test] Better cover with unit tests the configuration of shared storage security group and removed unnecessary assertion in integ test #7202

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
gmarciani wants to merge 3 commits into from
Closed

[Test] Better cover with unit tests the configuration of shared storage security group and removed unnecessary assertion in integ test #7202

gmarciani wants to merge 3 commits into from

Conversation

@gmarciani
Copy link
Contributor

@gmarciani gmarciani commented Jan 21, 2026
edited
Loading

CLOSED because we then decided to revert #7193

Description of changes

Consolidated and extended the unit test to verify the configuration of the shared storage security group.

In particular, the unit tests verifies that the security group has the expected rules in the following cases:

  1. Case 1: All nodes use the default (managed) security group
  2. Case 2: All nodes use the same custom security group
  3. Case 3: All nodes use different custom security groups

Fix assertion in integ test test_overwrite_sg to reflect the recent changes to scope down networking access for shared storage security group.

Tests

  • Unit tests
  • ONGOING integ test test_overwrite_sg

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

@gmarciani gmarciani added skip-changelog-update Disables the check that enforces changelog updates in PRs 3.x Test labels Jan 21, 2026
@gmarciani gmarciani force-pushed the wip/mgiacomo/3150/test-sg-0121-1 branch 7 times, most recently from 9da47ec to 299d48a Compare January 22, 2026 03:03
@gmarciani gmarciani changed the title [Test] [Test] Better cover with unit tests the configuration of shared storage security group Jan 22, 2026
@gmarciani gmarciani changed the title [Test] Better cover with unit tests the configuration of shared storage security group [Test] Better cover with unit tests the configuration of shared storage security group and removed unnecessary assertion in integ test Jan 22, 2026
@gmarciani
[Test] Consolidated and extended the unit test to verify the configur…
0c98c5d 
…ation of the shared storage security group.

In particular, the unit tests verifies that the security group has the expected rules in the following cases:

  1. Case 1: All nodes use the default (managed) security group
  2. Case 2: All nodes use the same custom security group
  3. Case 3: All nodes use different custom security groups
@gmarciani
[Test] Fix assertion in integ test test_overwrite_sg to reflect the…
822fc58 
… recent changes to scope down networking access for shared storage security group.

In particular, those are the expected SG rules:
- EFS:
  - ingress: rule(2049) * (customSG) + rule(all) * (storage) = 2 rules
  - egress: rule(all traffic) * (customSG + storage) = 2 rules
- FSx:
  - ingress: rule(988,1018-1023) * (customSG) + rule(all) * (storage) = 3 rules
  - egress: rule(all traffic) * (customSG + storage) = 2 rules
@gmarciani
[Test] Remove unnecessary assertion on shared storage security groups…
e9c8a21 
… which is covered by unit test.
@gmarciani gmarciani force-pushed the wip/mgiacomo/3150/test-sg-0121-1 branch from 299d48a to e9c8a21 Compare January 22, 2026 14:41
@gmarciani gmarciani closed this Jan 22, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

3.x skip-changelog-update Disables the check that enforces changelog updates in PRs Test

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@gmarciani