Add waitForFailure for e2e test framework

test/e2e_node/security_context_test.go

@@ -340,39 +340,25 @@ var _ = framework.KubeDescribe("Security Context", func() {
 			podName := fmt.Sprintf("busybox-readonly-%v-%s", readOnlyRootFilesystem, uuid.NewUUID())
 			podClient.Create(makeUserPod(podName,
 				"gcr.io/google_containers/busybox:1.24",
-				[]string{"sh", "-c", "touch checkfile && [ -f checkfile ] && echo Found || true"},
+				[]string{"sh", "-c", "touch checkfile"},
 				readOnlyRootFilesystem,
 			))
 
-			podClient.WaitForSuccess(podName, framework.PodStartTimeout)
+			if readOnlyRootFilesystem {
+				podClient.WaitForFailure(podName, framework.PodStartTimeout)
+			} else {
+				podClient.WaitForSuccess(podName, framework.PodStartTimeout)
+			}
 
 			return podName
 		}
 
 		It("should run the container with readonly rootfs when readOnlyRootFilesystem=true", func() {
-			podName := createAndWaitUserPod(true)
-			logs, err := framework.GetPodLogs(f.ClientSet, f.Namespace.Name, podName, podName)
-			if err != nil {
-				framework.Failf("GetPodLogs for pod %q failed: %v", podName, err)
-			}
-
-			framework.Logf("Got logs for pod %q: %q", podName, logs)
-			if strings.Contains(logs, "Found") {
-				framework.Failf("readonly-rootfs container shouldn't be able to write files")
-			}
+			createAndWaitUserPod(true)
 		})
 
 		It("should run the container with writable rootfs when readOnlyRootFilesystem=false", func() {
-			podName := createAndWaitUserPod(false)
-			logs, err := framework.GetPodLogs(f.ClientSet, f.Namespace.Name, podName, podName)
-			if err != nil {
-				framework.Failf("GetPodLogs for pod %q failed: %v", podName, err)
-			}
-
-			framework.Logf("Got logs for pod %q: %q", podName, logs)
-			if !strings.Contains(logs, "Found") {
-				framework.Failf("non-readonly-rootfs container should be able to write files")
-			}
+			createAndWaitUserPod(false)
 		})
 	})
 })