Port mapping does not show external IP when using static IP (#8416)

yuyangbj · web-flow · commit 266accf1bcea · 2018-12-24T13:26:48.000+08:00
When using static IP for container network, the port mapping will
not be shown when the gateway is not set.
If container network is from DHCP, so everything is working well
because we can get gateway, netmask from DHCP ask packet. But if
we set a static IP, the DHCP request will not be sent for container
network, so gateway will be missed.
diff --git a/lib/apiservers/portlayer/restapi/handlers/containers_handlers.go b/lib/apiservers/portlayer/restapi/handlers/containers_handlers.go
@@ -646,12 +646,18 @@ func convertContainerToContainerInfo(c *exec.Container) *models.ContainerInfo {
 			Direct:      endpoint.Network.Type == constants.ExternalScopeType,
 		}
 
+		// for static endpoints we may not have forced a state refresh and therefore not have the address copied into the Assigned fields.
+		// In this case we used the configured data directly.
 		if !ip.IsUnspecifiedIP(endpoint.Network.Assigned.Gateway.IP) {
 			ep.Gateway = endpoint.Network.Assigned.Gateway.IP.String()
+		} else if endpoint.Static {
+			ep.Gateway = endpoint.Network.Gateway.IP.String()
 		}
 
 		if !ip.IsUnspecifiedIP(endpoint.Assigned.IP) {
 			ep.Address = endpoint.Assigned.String()
+		} else if endpoint.Static {
+			ep.Address = endpoint.IP.String()
 		}
 
 		if len(endpoint.Ports) > 0 {
diff --git a/lib/portlayer/network/context.go b/lib/portlayer/network/context.go
@@ -1115,6 +1115,15 @@ func (c *Context) AddContainer(h *exec.Handle, options *AddContainerOptions) err
 	}
 
 	if s.Type() == constants.ExternalScopeType {
+		// Check that specified static IP address for container network should only be
+		// allow when gateway is set
+		if len(options.IP) > 0 && !ip.IsUnspecifiedIP(options.IP) {
+			if ip.IsUnspecifiedIP(s.Gateway()) {
+				err = fmt.Errorf("Cannot set static IP (%s) when default gateway is not set for network %s", options.IP.String(), s.Name())
+				log.Errorln(err)
+				return err
+			}
+		}
 		// Check that ports are only opened on published network firewall configuration.
 		// Redirects are allow for all network types other than Closed and Outbound
 		if len(options.Ports) > 0 {
@@ -1209,14 +1218,14 @@ func (c *Context) AddContainer(h *exec.Handle, options *AddContainerOptions) err
 	}
 
 	ne.Static = false
+
 	if len(options.IP) > 0 && !ip.IsUnspecifiedIP(options.IP) {
 		ne.Static = true
 		ne.IP = &net.IPNet{
 			IP:   options.IP,
 			Mask: s.Subnet().Mask,
 		}
 	}
-
 	h.ExecConfig.Networks[s.Name()] = ne
 	return nil
 }
diff --git a/tests/test-cases/Group1-Docker-Commands/1-10-Docker-PS.robot b/tests/test-cases/Group1-Docker-Commands/1-10-Docker-PS.robot
@@ -362,3 +362,34 @@ Docker ps with volume and network filters
     Should Contain  ${output}  buzFooContainer
     ${output}=  Split To Lines  ${output}
     Length Should Be  ${output}  2
+
+
+Docker ps container with specified static IP
+    ${rc}=  Run And Return Rc  docker %{VCH-PARAMS} pull ${nginx}
+    Should Be Equal As Integers  ${rc}  0
+
+    # published via the container-network with specified static ip
+    ${rc}  ${output}=  Run And Return Rc And Output  docker %{VCH-PARAMS} create -p 8080:80 --net=public --ip 60.0.9.150 ${nginx}
+    Should Contain  ${output}  Cannot set static IP (60.0.9.150) when default gateway is not set for network public
+
+    Set Suite Variable  ${old-vch}  %{VCH-NAME}
+    Set Suite Variable  ${old-vch-params}  %{VCH-PARAMS}
+    Set Suite Variable  ${old-vch-bridge}  %{BRIDGE_NETWORK}
+    Set Suite Variable  ${old-vic-admin}  %{VIC-ADMIN}
+    Install VIC Appliance To Test Server  additional-args=--container-network-gateway %{CONTAINER_NETWORK}:50.0.9.1/24 --container-network-firewall=%{CONTAINER_NETWORK}:open
+    ${rc}=  Run And Return Rc  docker %{VCH-PARAMS} pull ${nginx}
+    Should Be Equal As Integers  ${rc}  0
+
+    ${rc}  ${output}=  Run And Return Rc And Output  docker %{VCH-PARAMS} run -d -p 8080:80 --net=public --ip 50.0.9.150 ${nginx}
+    Should Be Equal As Integers  ${rc}  0
+
+    ${rc}  ${output}=  Run And Return Rc And Output  docker %{VCH-PARAMS} ps
+    Log To Console  ${output}
+    Should Be Equal As Integers  ${rc}  0
+    Should Contain  ${output}  50.0.9.150:8080->80/tcp
+
+    Cleanup VIC Appliance On Test Server
+    Set Environment Variable  VCH-NAME  ${old-vch}
+    Set Environment Variable  BRIDGE_NETWORK  ${old-vch-bridge}
+    Set Environment Variable  VCH-PARAMS  ${old-vch-params}
+    Set Environment Variable  VIC-ADMIN  ${old-vic-admin}

Original file line number	Diff line number	Diff line change
`@@ -646,12 +646,18 @@ func convertContainerToContainerInfo(c exec.Container) models.ContainerInfo {`
`646`	`646`	`Direct: endpoint.Network.Type == constants.ExternalScopeType,`
`647`	`647`	`}`
`648`	`648`
	`649`	`+ // for static endpoints we may not have forced a state refresh and therefore not have the address copied into the Assigned fields.`
	`650`	`+ // In this case we used the configured data directly.`
`649`	`651`	`if !ip.IsUnspecifiedIP(endpoint.Network.Assigned.Gateway.IP) {`
`650`	`652`	`ep.Gateway = endpoint.Network.Assigned.Gateway.IP.String()`
	`653`	`+ } else if endpoint.Static {`
	`654`	`+ ep.Gateway = endpoint.Network.Gateway.IP.String()`
`651`	`655`	`}`
`652`	`656`
`653`	`657`	`if !ip.IsUnspecifiedIP(endpoint.Assigned.IP) {`
`654`	`658`	`ep.Address = endpoint.Assigned.String()`
	`659`	`+ } else if endpoint.Static {`
	`660`	`+ ep.Address = endpoint.IP.String()`
`655`	`661`	`}`
`656`	`662`
`657`	`663`	`if len(endpoint.Ports) > 0 {`
Original file line number	Diff line number	Diff line change
`@@ -1115,6 +1115,15 @@ func (c Context) AddContainer(h exec.Handle, options *AddContainerOptions) err`
`1115`	`1115`	`}`
`1116`	`1116`
`1117`	`1117`	`if s.Type() == constants.ExternalScopeType {`
	`1118`	`+ // Check that specified static IP address for container network should only be`
	`1119`	`+ // allow when gateway is set`
	`1120`	`+ if len(options.IP) > 0 && !ip.IsUnspecifiedIP(options.IP) {`
	`1121`	`+ if ip.IsUnspecifiedIP(s.Gateway()) {`
	`1122`	`+ err = fmt.Errorf("Cannot set static IP (%s) when default gateway is not set for network %s", options.IP.String(), s.Name())`
	`1123`	`+ log.Errorln(err)`
	`1124`	`+ return err`
	`1125`	`+ }`
	`1126`	`+ }`
`1118`	`1127`	`// Check that ports are only opened on published network firewall configuration.`
`1119`	`1128`	`// Redirects are allow for all network types other than Closed and Outbound`
`1120`	`1129`	`if len(options.Ports) > 0 {`
`@@ -1209,14 +1218,14 @@ func (c Context) AddContainer(h exec.Handle, options *AddContainerOptions) err`
`1209`	`1218`	`}`
`1210`	`1219`
`1211`	`1220`	`ne.Static = false`
	`1221`	`+`
`1212`	`1222`	`if len(options.IP) > 0 && !ip.IsUnspecifiedIP(options.IP) {`
`1213`	`1223`	`ne.Static = true`
`1214`	`1224`	`ne.IP = &net.IPNet{`
`1215`	`1225`	`IP: options.IP,`
`1216`	`1226`	`Mask: s.Subnet().Mask,`
`1217`	`1227`	`}`
`1218`	`1228`	`}`
`1219`		`-`
`1220`	`1229`	`h.ExecConfig.Networks[s.Name()] = ne`
`1221`	`1230`	`return nil`
`1222`	`1231`	`}`