Fix extraneous commas and quotes in README. Implement Stringer interface for PeerConfig structs. Break out ValToPtr functions into a testutils package.

catherinetcai · catherinetcai · commit f0083cf27764 · 2025-11-02T12:36:38.000-08:00
diff --git a/docs/bgp.md b/docs/bgp.md
@@ -95,10 +95,10 @@ kubectl annotate node <kube-node> \
 kube-router.io/peers="$(cat <<'EOF'
 - remoteip: 192.168.1.99
   remoteasn: 65000
-  password: U2VjdXJlUGFzc3dvcmQK,
+  password: U2VjdXJlUGFzc3dvcmQK
 - remoteip: 192.168.1.100
-  remoteasn: 65000'
-  password: U2VjdXJlUGFzc3dvcmQK,
+  remoteasn: 65000
+  password: U2VjdXJlUGFzc3dvcmQK
 EOF
 )"
 ```
diff --git a/internal/testutils/pointers.go b/internal/testutils/pointers.go
@@ -0,0 +1,22 @@
+package testutils
+
+import (
+	"net"
+
+	"github.com/cloudnativelabs/kube-router/v2/pkg/utils"
+)
+
+type TestValue interface {
+	string | uint32 | net.IP | utils.Base64String
+}
+
+func ValToPtr[V TestValue](v V) *V {
+	return &v
+}
+
+func PtrToVal[V TestValue](v *V) V {
+	if v == nil {
+		return *new(V)
+	}
+	return *v
+}
diff --git a/pkg/bgp/peer_config.go b/pkg/bgp/peer_config.go
@@ -5,6 +5,7 @@ import (
 	"fmt"
 	"net"
 	"strconv"
+	"strings"
 
 	"github.com/cloudnativelabs/kube-router/v2/pkg/options"
 	"github.com/cloudnativelabs/kube-router/v2/pkg/utils"
@@ -19,6 +20,25 @@ type PeerConfig struct {
 	RemoteIP  *net.IP             `yaml:"remoteip"`
 }
 
+// Custom Stringer to prevent leaking passwords when printed
+func (p PeerConfig) String() string {
+	var fields []string
+
+	if p.LocalIP != nil {
+		fields = append(fields, fmt.Sprintf("LocalIP: %s", *p.LocalIP))
+	}
+	if p.Port != nil {
+		fields = append(fields, fmt.Sprintf("Port: %d", *p.Port))
+	}
+	if p.RemoteASN != nil {
+		fields = append(fields, fmt.Sprintf("RemoteASN: %d", *p.RemoteASN))
+	}
+	if p.RemoteIP != nil {
+		fields = append(fields, fmt.Sprintf("RemoteIP: %v", *p.RemoteIP))
+	}
+	return fmt.Sprintf("PeerConfig{%s}", strings.Join(fields, ", "))
+}
+
 func (p *PeerConfig) UnmarshalYAML(raw []byte) error {
 	tmp := struct {
 		LocalIP   *string             `yaml:"localip"`
@@ -110,6 +130,15 @@ func (p PeerConfigs) RemoteIPStrings() []string {
 	return remoteIPs
 }
 
+// Prints the PeerConfigs without the passwords leaking
+func (p PeerConfigs) String() string {
+	pcs := make([]string, len(p))
+	for i, pc := range p {
+		pcs[i] = pc.String()
+	}
+	return fmt.Sprintf("PeerConfigs[%s]", strings.Join(pcs, ","))
+}
+
 func (p *PeerConfigs) UnmarshalYAML(raw []byte) error {
 	type tmpPeerConfigs PeerConfigs
 	tmp := (*tmpPeerConfigs)(p)
diff --git a/pkg/bgp/peer_config_test.go b/pkg/bgp/peer_config_test.go
@@ -1,11 +1,141 @@
 package bgp
 
 import (
+	"net"
 	"testing"
 
+	"github.com/cloudnativelabs/kube-router/v2/internal/testutils"
+	"github.com/cloudnativelabs/kube-router/v2/pkg/utils"
 	"github.com/stretchr/testify/assert"
 )
 
+func TestPeerConfig_String(t *testing.T) {
+	tests := []struct {
+		name     string
+		config   PeerConfig
+		expected string
+	}{
+		{
+			name:     "empty PeerConfig",
+			config:   PeerConfig{},
+			expected: "PeerConfig{}",
+		},
+		{
+			name: "LocalIP",
+			config: PeerConfig{
+				LocalIP: testutils.ValToPtr("192.168.1.1"),
+			},
+			expected: "PeerConfig{LocalIP: 192.168.1.1}",
+		},
+		{
+			name: "Port",
+			config: PeerConfig{
+				Port: testutils.ValToPtr(uint32(179)),
+			},
+			expected: "PeerConfig{Port: 179}",
+		},
+		{
+			name: "RemoteASN",
+			config: PeerConfig{
+				RemoteASN: testutils.ValToPtr(uint32(65000)),
+			},
+			expected: "PeerConfig{RemoteASN: 65000}",
+		},
+		{
+			name: "RemoteIP",
+			config: PeerConfig{
+				RemoteIP: testutils.ValToPtr(net.ParseIP("10.0.0.1")),
+			},
+			expected: "PeerConfig{RemoteIP: 10.0.0.1}",
+		},
+		{
+			name: "RemoteIP with IPv6",
+			config: PeerConfig{
+				RemoteIP: testutils.ValToPtr(net.ParseIP("2001:db8::1")),
+			},
+			expected: "PeerConfig{RemoteIP: 2001:db8::1}",
+		},
+		{
+			name: "Password - should not be printed",
+			config: PeerConfig{
+				Password: testutils.ValToPtr(utils.Base64String("password")),
+			},
+			expected: "PeerConfig{}",
+		},
+		{
+			name: "all fields - Password should not be printed",
+			config: PeerConfig{
+				LocalIP:   testutils.ValToPtr("192.168.1.1"),
+				Password:  testutils.ValToPtr(utils.Base64String("password")),
+				Port:      testutils.ValToPtr(uint32(179)),
+				RemoteASN: testutils.ValToPtr(uint32(65000)),
+				RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.1")),
+			},
+			expected: "PeerConfig{LocalIP: 192.168.1.1, Port: 179, RemoteASN: 65000, RemoteIP: 10.0.0.1}",
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			result := tt.config.String()
+			assert.Equal(t, tt.expected, result)
+		})
+	}
+}
+
+func TestPeerConfigs_String(t *testing.T) {
+	tests := []struct {
+		name     string
+		configs  PeerConfigs
+		expected string
+	}{
+		{
+			name:     "empty PeerConfigs",
+			configs:  PeerConfigs{},
+			expected: "PeerConfigs[]",
+		},
+		{
+			name: "PeerConfig - password should not be printed",
+			configs: PeerConfigs{
+				{
+					LocalIP:   testutils.ValToPtr("192.168.1.1"),
+					Password:  testutils.ValToPtr(utils.Base64String("secret")),
+					Port:      testutils.ValToPtr(uint32(179)),
+					RemoteASN: testutils.ValToPtr(uint32(65000)),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.1")),
+				},
+			},
+			expected: "PeerConfigs[PeerConfig{LocalIP: 192.168.1.1, Port: 179, RemoteASN: 65000, RemoteIP: 10.0.0.1}]",
+		},
+		{
+			name: "multiple PeerConfigs - passwords should not be printed",
+			configs: PeerConfigs{
+				{
+					LocalIP:   testutils.ValToPtr("192.168.1.1"),
+					Password:  testutils.ValToPtr(utils.Base64String("secret")),
+					RemoteASN: testutils.ValToPtr(uint32(65000)),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.1")),
+				},
+				{
+					Port:      testutils.ValToPtr(uint32(1790)),
+					RemoteASN: testutils.ValToPtr(uint32(65001)),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.2")),
+				},
+				{
+					RemoteIP: testutils.ValToPtr(net.ParseIP("10.0.0.3")),
+				},
+			},
+			expected: "PeerConfigs[PeerConfig{LocalIP: 192.168.1.1, RemoteASN: 65000, RemoteIP: 10.0.0.1},PeerConfig{Port: 1790, RemoteASN: 65001, RemoteIP: 10.0.0.2},PeerConfig{RemoteIP: 10.0.0.3}]",
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			assert.Equal(t, tt.expected, tt.configs.String())
+		})
+	}
+}
+
 func Test_NewPeerConfigs(t *testing.T) {
 	tcs := []struct {
 		name                string
diff --git a/pkg/controllers/routing/network_routes_controller_test.go b/pkg/controllers/routing/network_routes_controller_test.go
@@ -10,6 +10,7 @@ import (
 	"testing"
 	"time"
 
+	"github.com/cloudnativelabs/kube-router/v2/internal/testutils"
 	"github.com/cloudnativelabs/kube-router/v2/pkg/bgp"
 	"github.com/cloudnativelabs/kube-router/v2/pkg/k8s/indexers"
 	"github.com/cloudnativelabs/kube-router/v2/pkg/utils"
@@ -1822,11 +1823,11 @@ func Test_nodeHasEndpointsForService(t *testing.T) {
 				Endpoints: []discoveryv1.Endpoint{
 					{
 						Addresses: []string{"172.20.1.1"},
-						NodeName:  valToPtr("node-1"),
+						NodeName:  testutils.ValToPtr("node-1"),
 					},
 					{
 						Addresses: []string{"172.20.1.2"},
-						NodeName:  valToPtr("node-2"),
+						NodeName:  testutils.ValToPtr("node-2"),
 					},
 				},
 			},
@@ -1867,11 +1868,11 @@ func Test_nodeHasEndpointsForService(t *testing.T) {
 				Endpoints: []discoveryv1.Endpoint{
 					{
 						Addresses: []string{"172.20.1.1"},
-						NodeName:  valToPtr("node-2"),
+						NodeName:  testutils.ValToPtr("node-2"),
 					},
 					{
 						Addresses: []string{"172.20.1.2"},
-						NodeName:  valToPtr("node-3"),
+						NodeName:  testutils.ValToPtr("node-3"),
 					},
 				},
 			},
@@ -2650,16 +2651,16 @@ func Test_bgpPeerConfigsFromAnnotations(t *testing.T) {
 			},
 			bgp.PeerConfigs{
 				bgp.PeerConfig{
-					RemoteIP:  valToPtr(net.ParseIP("10.0.0.1")),
-					RemoteASN: valToPtr(uint32(64640)),
-					Password:  valToPtr(utils.Base64String("password")),
-					LocalIP:   valToPtr("192.168.0.1"),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.1")),
+					RemoteASN: testutils.ValToPtr(uint32(64640)),
+					Password:  testutils.ValToPtr(utils.Base64String("password")),
+					LocalIP:   testutils.ValToPtr("192.168.0.1"),
 				},
 				bgp.PeerConfig{
-					RemoteIP:  valToPtr(net.ParseIP("10.0.0.2")),
-					RemoteASN: valToPtr(uint32(64641)),
-					Password:  valToPtr(utils.Base64String("password")),
-					LocalIP:   valToPtr("192.168.0.2"),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.2")),
+					RemoteASN: testutils.ValToPtr(uint32(64641)),
+					Password:  testutils.ValToPtr(utils.Base64String("password")),
+					LocalIP:   testutils.ValToPtr("192.168.0.2"),
 				},
 			},
 			false,
@@ -2676,14 +2677,14 @@ func Test_bgpPeerConfigsFromAnnotations(t *testing.T) {
 			},
 			bgp.PeerConfigs{
 				bgp.PeerConfig{
-					RemoteIP:  valToPtr(net.ParseIP("10.0.0.1")),
-					RemoteASN: valToPtr(uint32(64640)),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.1")),
+					RemoteASN: testutils.ValToPtr(uint32(64640)),
 				},
 				bgp.PeerConfig{
-					RemoteIP:  valToPtr(net.ParseIP("10.0.0.2")),
-					RemoteASN: valToPtr(uint32(64641)),
-					Password:  valToPtr(utils.Base64String("password")),
-					LocalIP:   valToPtr("192.168.0.2"),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.2")),
+					RemoteASN: testutils.ValToPtr(uint32(64641)),
+					Password:  testutils.ValToPtr(utils.Base64String("password")),
+					LocalIP:   testutils.ValToPtr("192.168.0.2"),
 				},
 			},
 			true,
@@ -2698,16 +2699,16 @@ func Test_bgpPeerConfigsFromAnnotations(t *testing.T) {
 			},
 			bgp.PeerConfigs{
 				bgp.PeerConfig{
-					RemoteIP:  valToPtr(net.ParseIP("10.0.0.1")),
-					RemoteASN: valToPtr(uint32(64640)),
-					Password:  valToPtr(utils.Base64String("password")),
-					LocalIP:   valToPtr("192.168.0.1"),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.1")),
+					RemoteASN: testutils.ValToPtr(uint32(64640)),
+					Password:  testutils.ValToPtr(utils.Base64String("password")),
+					LocalIP:   testutils.ValToPtr("192.168.0.1"),
 				},
 				bgp.PeerConfig{
-					RemoteIP:  valToPtr(net.ParseIP("10.0.0.2")),
-					RemoteASN: valToPtr(uint32(64641)),
-					Password:  valToPtr(utils.Base64String("password")),
-					LocalIP:   valToPtr("192.168.0.2"),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.2")),
+					RemoteASN: testutils.ValToPtr(uint32(64641)),
+					Password:  testutils.ValToPtr(utils.Base64String("password")),
+					LocalIP:   testutils.ValToPtr("192.168.0.2"),
 				},
 			},
 			false,
@@ -2722,16 +2723,16 @@ func Test_bgpPeerConfigsFromAnnotations(t *testing.T) {
 			},
 			bgp.PeerConfigs{
 				bgp.PeerConfig{
-					RemoteIP:  valToPtr(net.ParseIP("10.0.0.1")),
-					RemoteASN: valToPtr(uint32(64640)),
-					Password:  valToPtr(utils.Base64String("password")),
-					LocalIP:   valToPtr("192.168.0.1"),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.1")),
+					RemoteASN: testutils.ValToPtr(uint32(64640)),
+					Password:  testutils.ValToPtr(utils.Base64String("password")),
+					LocalIP:   testutils.ValToPtr("192.168.0.1"),
 				},
 				bgp.PeerConfig{
-					RemoteIP:  valToPtr(net.ParseIP("10.0.0.2")),
-					RemoteASN: valToPtr(uint32(64641)),
-					Password:  valToPtr(utils.Base64String("password")),
-					LocalIP:   valToPtr("192.168.0.2"),
+					RemoteIP:  testutils.ValToPtr(net.ParseIP("10.0.0.2")),
+					RemoteASN: testutils.ValToPtr(uint32(64641)),
+					Password:  testutils.ValToPtr(utils.Base64String("password")),
+					LocalIP:   testutils.ValToPtr("192.168.0.2"),
 				},
 			},
 			true,
@@ -2760,7 +2761,7 @@ func Test_bgpPeerConfigsFromAnnotations(t *testing.T) {
 
 	for _, tc := range testCases {
 		t.Run(tc.name, func(t *testing.T) {
-			bgpPeerCfgs, err := bgpPeerConfigsFromAnnotations(tc.nodeAnnotations)
+			bgpPeerCfgs, err := bgpPeerConfigsFromAnnotations(tc.nodeAnnotations, "")
 			if tc.expectError {
 				assert.Error(t, err)
 				return
@@ -3018,18 +3019,3 @@ func waitForListerWithTimeout(lister cache.Indexer, timeout time.Duration, t *te
 		}
 	}
 }
-
-type value interface {
-	string | uint32 | net.IP | utils.Base64String
-}
-
-func valToPtr[V value](v V) *V {
-	return &v
-}
-
-func ptrToVal[V value](v *V) V {
-	if v == nil {
-		return *new(V)
-	}
-	return *v
-}
