2021-11-10 19:06:12 +00:00
|
|
|
package integrationtests
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
|
|
|
|
"crypto/tls"
|
|
|
|
|
"encoding/json"
|
2023-12-31 11:52:08 +00:00
|
|
|
"fmt"
|
2022-08-11 18:00:25 +00:00
|
|
|
"io"
|
2024-04-12 17:26:48 +00:00
|
|
|
"net"
|
2021-11-10 19:06:12 +00:00
|
|
|
"net/http"
|
2023-03-18 19:38:18 +00:00
|
|
|
"strings"
|
2021-11-10 19:06:12 +00:00
|
|
|
"testing"
|
|
|
|
|
|
2024-04-12 17:26:48 +00:00
|
|
|
validator "github.com/dcarrillo/whatismyip/internal/validator/uuid"
|
2021-11-10 19:06:12 +00:00
|
|
|
"github.com/dcarrillo/whatismyip/router"
|
2023-03-18 19:38:18 +00:00
|
|
|
"github.com/quic-go/quic-go/http3"
|
2021-11-10 19:06:12 +00:00
|
|
|
"github.com/stretchr/testify/assert"
|
2024-04-12 17:26:48 +00:00
|
|
|
"github.com/stretchr/testify/require"
|
|
|
|
|
tc "github.com/testcontainers/testcontainers-go/modules/compose"
|
2021-11-10 19:06:12 +00:00
|
|
|
)
|
|
|
|
|
|
2024-04-12 17:26:48 +00:00
|
|
|
func customDialContext() func(ctx context.Context, network, addr string) (net.Conn, error) {
|
|
|
|
|
return func(ctx context.Context, network, addr string) (net.Conn, error) {
|
|
|
|
|
dialer := &net.Dialer{
|
|
|
|
|
Resolver: &net.Resolver{
|
|
|
|
|
PreferGo: true,
|
|
|
|
|
Dial: func(ctx context.Context, _, _ string) (net.Conn, error) {
|
|
|
|
|
d := net.Dialer{}
|
|
|
|
|
return d.DialContext(ctx, "udp", "127.0.0.1:53531")
|
|
|
|
|
},
|
2023-12-31 11:52:08 +00:00
|
|
|
},
|
2024-04-12 17:26:48 +00:00
|
|
|
}
|
2021-11-10 19:06:12 +00:00
|
|
|
|
2024-04-12 17:26:48 +00:00
|
|
|
return dialer.DialContext(ctx, network, addr)
|
|
|
|
|
}
|
2021-11-10 19:06:12 +00:00
|
|
|
}
|
|
|
|
|
|
2024-04-12 17:26:48 +00:00
|
|
|
func testWhatIsMyDNS(t *testing.T) {
|
|
|
|
|
t.Run("RequestDNSDiscovery", func(t *testing.T) {
|
|
|
|
|
http.DefaultTransport.(*http.Transport).DialContext = customDialContext()
|
|
|
|
|
req, err := http.NewRequest("GET", "http://localhost:8000", nil)
|
|
|
|
|
assert.NoError(t, err)
|
|
|
|
|
req.Host = "dns.example.com"
|
|
|
|
|
client := &http.Client{
|
|
|
|
|
CheckRedirect: func(_ *http.Request, _ []*http.Request) error {
|
|
|
|
|
return http.ErrUseLastResponse
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
resp, err := client.Do(req)
|
|
|
|
|
assert.NoError(t, err)
|
|
|
|
|
assert.Equal(t, http.StatusFound, resp.StatusCode)
|
|
|
|
|
u, err := resp.Location()
|
|
|
|
|
assert.NoError(t, err)
|
|
|
|
|
assert.True(t, validator.IsValid(strings.Split(u.Hostname(), ".")[0]))
|
|
|
|
|
|
|
|
|
|
for _, accept := range []string{"application/json", "*/*", "text/html"} {
|
|
|
|
|
req, err = http.NewRequest("GET", u.String(), nil)
|
|
|
|
|
req.Host = u.Hostname()
|
|
|
|
|
req.Header.Set("Accept", accept)
|
|
|
|
|
assert.NoError(t, err)
|
|
|
|
|
resp, err = client.Do(req)
|
|
|
|
|
assert.NoError(t, err)
|
|
|
|
|
assert.Equal(t, http.StatusOK, resp.StatusCode)
|
|
|
|
|
body, err := io.ReadAll(resp.Body)
|
|
|
|
|
assert.NoError(t, err)
|
2023-12-31 11:52:08 +00:00
|
|
|
|
2024-04-12 17:26:48 +00:00
|
|
|
if accept == "application/json" {
|
|
|
|
|
assert.NoError(t, json.Unmarshal(body, &router.DNSJSONResponse{}))
|
|
|
|
|
} else {
|
|
|
|
|
ip := strings.Split(string(body), " ")[0]
|
|
|
|
|
assert.True(t, net.ParseIP(ip) != nil)
|
|
|
|
|
}
|
|
|
|
|
}
|
2021-11-10 19:06:12 +00:00
|
|
|
})
|
2023-12-31 11:52:08 +00:00
|
|
|
}
|
2021-11-10 19:06:12 +00:00
|
|
|
|
2023-12-31 11:52:08 +00:00
|
|
|
func TestContainerIntegration(t *testing.T) {
|
|
|
|
|
if testing.Short() {
|
|
|
|
|
t.Skip("Skiping integration tests")
|
|
|
|
|
}
|
2021-11-10 19:06:12 +00:00
|
|
|
|
2024-04-12 17:26:48 +00:00
|
|
|
compose, err := tc.NewDockerComposeWith(tc.WithStackFiles("../test/docker-compose.yml"), tc.StackIdentifier("whatismyip"))
|
|
|
|
|
require.NoError(t, err, "NewDockerComposeAPIWith()")
|
|
|
|
|
|
|
|
|
|
t.Cleanup(func() {
|
|
|
|
|
require.NoError(t, compose.Down(context.Background(), tc.RemoveOrphans(true), tc.RemoveImagesLocal), "compose.Down()")
|
|
|
|
|
})
|
|
|
|
|
ctx, cancel := context.WithCancel(context.Background())
|
|
|
|
|
t.Cleanup(cancel)
|
|
|
|
|
require.NoError(t, compose.Up(ctx, tc.Wait(true)), "compose.Up()")
|
2023-12-31 11:52:08 +00:00
|
|
|
|
|
|
|
|
http.DefaultTransport.(*http.Transport).TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
|
2023-03-18 19:38:18 +00:00
|
|
|
tests := []struct {
|
|
|
|
|
name string
|
|
|
|
|
url string
|
|
|
|
|
quic bool
|
|
|
|
|
}{
|
|
|
|
|
{
|
|
|
|
|
name: "RequestOverHTTP",
|
|
|
|
|
url: "http://localhost:8000",
|
|
|
|
|
quic: false,
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "RequestOverHTTPs",
|
|
|
|
|
url: "https://localhost:8001",
|
|
|
|
|
quic: false,
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "RequestOverUDPWithQuic",
|
|
|
|
|
url: "https://localhost:8001",
|
|
|
|
|
quic: true,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2023-12-31 11:52:08 +00:00
|
|
|
testsPortScan := []struct {
|
|
|
|
|
name string
|
|
|
|
|
port int
|
|
|
|
|
want bool
|
|
|
|
|
}{
|
|
|
|
|
{
|
|
|
|
|
name: "RequestOpenPortScan",
|
|
|
|
|
port: 8000,
|
|
|
|
|
want: true,
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "RequestClosedPortScan",
|
|
|
|
|
port: 65533,
|
|
|
|
|
want: false,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-18 19:38:18 +00:00
|
|
|
for _, tt := range tests {
|
|
|
|
|
t.Run(tt.name, func(t *testing.T) {
|
2023-12-31 11:52:08 +00:00
|
|
|
req, err := http.NewRequest("GET", tt.url, nil)
|
|
|
|
|
assert.NoError(t, err)
|
2023-03-18 19:38:18 +00:00
|
|
|
req.Header.Set("Accept", "application/json")
|
|
|
|
|
|
|
|
|
|
var resp *http.Response
|
|
|
|
|
var body []byte
|
|
|
|
|
if tt.quic {
|
|
|
|
|
resp, body, err = doQuicRequest(req)
|
|
|
|
|
} else {
|
|
|
|
|
client := &http.Client{}
|
|
|
|
|
resp, _ = client.Do(req)
|
|
|
|
|
body, err = io.ReadAll(resp.Body)
|
|
|
|
|
if strings.Contains(tt.url, "https://") {
|
2023-07-22 11:20:17 +00:00
|
|
|
assert.Equal(t, `h3=":8001"; ma=2592000`, resp.Header.Get("Alt-Svc"))
|
2023-03-18 19:38:18 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
assert.NoError(t, err)
|
|
|
|
|
assert.Equal(t, 200, resp.StatusCode)
|
|
|
|
|
|
|
|
|
|
assert.NoError(t, json.Unmarshal(body, &router.JSONResponse{}))
|
|
|
|
|
assert.Equal(t, "DENY", resp.Header.Get("X-Frame-Options"))
|
|
|
|
|
assert.Equal(t, "nosniff", resp.Header.Get("X-Content-Type-Options"))
|
|
|
|
|
assert.Equal(t, "1; mode=block", resp.Header.Get("X-Xss-Protection"))
|
|
|
|
|
})
|
2021-11-10 19:06:12 +00:00
|
|
|
}
|
2023-12-31 11:52:08 +00:00
|
|
|
|
|
|
|
|
for _, tt := range testsPortScan {
|
|
|
|
|
t.Run(tt.name, func(t *testing.T) {
|
|
|
|
|
req, err := http.NewRequest("GET", fmt.Sprintf("http://localhost:8000/scan/tcp/%d", tt.port), nil)
|
|
|
|
|
assert.NoError(t, err)
|
|
|
|
|
req.Header.Set("Accept", "application/json")
|
|
|
|
|
req.Header.Set("X-Real-IP", "127.0.0.1")
|
|
|
|
|
|
|
|
|
|
client := &http.Client{}
|
|
|
|
|
resp, err := client.Do(req)
|
|
|
|
|
assert.NoError(t, err)
|
|
|
|
|
assert.Equal(t, 200, resp.StatusCode)
|
|
|
|
|
|
|
|
|
|
body, err := io.ReadAll(resp.Body)
|
|
|
|
|
assert.NoError(t, err)
|
|
|
|
|
j := router.JSONScanResponse{}
|
|
|
|
|
assert.NoError(t, json.Unmarshal(body, &j))
|
|
|
|
|
assert.Equal(t, tt.want, j.Reachable)
|
|
|
|
|
})
|
|
|
|
|
}
|
2024-04-12 17:26:48 +00:00
|
|
|
|
|
|
|
|
testWhatIsMyDNS(t)
|
2021-11-10 19:06:12 +00:00
|
|
|
}
|
2023-03-18 19:38:18 +00:00
|
|
|
|
|
|
|
|
func doQuicRequest(req *http.Request) (*http.Response, []byte, error) {
|
|
|
|
|
roundTripper := &http3.RoundTripper{
|
|
|
|
|
TLSClientConfig: &tls.Config{
|
|
|
|
|
InsecureSkipVerify: true,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
defer roundTripper.Close()
|
|
|
|
|
|
|
|
|
|
client := &http.Client{
|
|
|
|
|
Transport: roundTripper,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
resp, err := client.Do(req)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
defer resp.Body.Close()
|
|
|
|
|
body, _ := io.ReadAll(resp.Body)
|
|
|
|
|
|
|
|
|
|
return resp, body, nil
|
|
|
|
|
}
|
