mirror of
https://github.com/qdm12/gluetun.git
synced 2026-06-25 13:27:31 +02:00
Quentin McGaw
90 lines
2.2 KiB
Go
90 lines
2.2 KiB
Go
package restrictednet
|
|
|
|
import (
|
|
"context"
|
|
"net"
|
|
"net/netip"
|
|
"testing"
|
|
|
|
"github.com/golang/mock/gomock"
|
|
"github.com/qdm12/dns/v2/pkg/provider"
|
|
"github.com/stretchr/testify/require"
|
|
)
|
|
|
|
type listenAddrPortMatcher struct {
|
|
expected netip.AddrPort
|
|
}
|
|
|
|
func (m listenAddrPortMatcher) Matches(x any) bool {
|
|
ip, ok := x.(netip.AddrPort)
|
|
if !ok {
|
|
return false
|
|
}
|
|
if m.expected.IsValid() {
|
|
return ip == m.expected
|
|
}
|
|
return ip.IsValid() && ip.Addr().IsValid() && ip.Port() > 0
|
|
}
|
|
|
|
func (m listenAddrPortMatcher) String() string {
|
|
if m.expected.IsValid() {
|
|
return "is the same as " + m.expected.String()
|
|
}
|
|
return "is a valid netip.AddrPort with a valid IP and non-zero port"
|
|
}
|
|
|
|
func Test_Client_OpenHTTPS(t *testing.T) {
|
|
t.Parallel()
|
|
ctx := t.Context()
|
|
|
|
netConfig := net.ListenConfig{}
|
|
listener, err := netConfig.Listen(ctx, "tcp", "127.0.0.1:0")
|
|
require.NoError(t, err)
|
|
t.Cleanup(func() {
|
|
_ = listener.Close()
|
|
})
|
|
listeningPort := uint16(listener.Addr().(*net.TCPAddr).Port) //nolint:gosec,forcetypeassert
|
|
go func() {
|
|
connection, acceptErr := listener.Accept()
|
|
if acceptErr == nil {
|
|
_ = connection.Close()
|
|
}
|
|
}()
|
|
|
|
ctrl := gomock.NewController(t)
|
|
firewall := NewMockFirewall(ctrl)
|
|
|
|
destination := netip.AddrPortFrom(netip.MustParseAddr("127.0.0.1"), listeningPort)
|
|
sourceMatcher := listenAddrPortMatcher{}
|
|
firewall.EXPECT().AcceptOutputFromIPPortToIPPort(
|
|
ctx, "tcp", "eth0", sourceMatcher, destination, false,
|
|
).DoAndReturn(func(_ context.Context,
|
|
_, _ string, source, _ netip.AddrPort, _ bool,
|
|
) error {
|
|
sourceMatcher.expected = source
|
|
return nil
|
|
})
|
|
firewall.EXPECT().AcceptOutputFromIPPortToIPPort(
|
|
context.Background(), "tcp", "eth0", sourceMatcher, destination, true,
|
|
)
|
|
|
|
const ipv6Supported = false
|
|
upstreamResolvers := []provider.Provider{provider.Google()}
|
|
settings := Settings{
|
|
Firewall: firewall,
|
|
DefaultInterface: "eth0",
|
|
IPv6Supported: ptrTo(ipv6Supported),
|
|
UpstreamResolvers: upstreamResolvers,
|
|
}
|
|
client := New(settings)
|
|
client.httpsPort = listeningPort
|
|
|
|
httpClient, cleanup, err := client.OpenHTTPS(ctx, "api.example.com", netip.MustParseAddr("127.0.0.1"))
|
|
require.NoError(t, err)
|
|
require.NotNil(t, httpClient)
|
|
require.NotNil(t, cleanup)
|
|
|
|
err = cleanup()
|
|
require.NoError(t, err)
|
|
}
|