apps/wstunnel
1
0
Fork 0
mirror of https://github.com/erebe/wstunnel.git synced 2025-09-27 03:25:53 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add tests
Some checks failed
/ Build - Windows x86 (push) Has been cancelled
Details
/ Build - Windows x86_64 (push) Has been cancelled
Details
/ Build - Linux x86 (push) Has been cancelled
Details
/ Build - Android aarch64 (push) Has been cancelled
Details
/ Build - Linux aarch64 (push) Has been cancelled
Details
/ Build - Linux x86_64 (push) Has been cancelled
Details
/ Build - MacOS aarch64 (push) Has been cancelled
Details
/ Build - MacOS x86_64 (push) Has been cancelled
Details
/ Build - Freebsd x86_64 (push) Has been cancelled
Details
/ Build - Android armv7 (push) Has been cancelled
Details
/ Build - Freebsd x86 (push) Has been cancelled
Details
/ Build - Linux armv7hf (push) Has been cancelled
Details
/ Release (push) Has been cancelled
Details

Browse Source
This commit is contained in:
Σrebe - Romain GERARD
2025-06-05 08:29:12 +02:00
parent 73c53b0a25
commit f13fb41770
1 changed files with 127 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

127
wstunnel/src/restrictions/mod.rs
View File

@@ -89,3 +89,130 @@ impl RestrictionsRules {
Ok(Self { restrictions }) Ok(Self { restrictions })
} }
} }
#[cfg(test)]
mod tests {
use super::*;
use crate::restrictions::types::{AllowConfig, MatchConfig};
use std::net::Ipv4Addr;
#[test]
fn test_restriction_rule_with_host_restriction() -> anyhow::Result<()> {
// Test setup with empty path prefixes and specific host restriction
let path_prefixes: Vec<String> = vec![];
let restrict_to = vec![("google.com".to_string(), 443)];
let rules = RestrictionsRules::from_path_prefix(&path_prefixes, &restrict_to)?;
// Validate the rules structure
assert_eq!(rules.restrictions.len(), 1);
// Get the first restriction
let restriction = &rules.restrictions[0];
// Validate the restriction name
assert_eq!(restriction.name, "Allow All");
// Validate that there's exactly one allow rule
assert_eq!(restriction.allow.len(), 1);
// Check the tunnel configuration
if let AllowConfig::Tunnel(tunnel_config) = &restriction.allow[0] {
// Validate the host regex pattern
assert_eq!(tunnel_config.host.as_str(), "^google\\.com$");
// Validate the port configuration
assert_eq!(tunnel_config.port.len(), 1);
assert_eq!(*tunnel_config.port[0].start(), 443);
assert_eq!(*tunnel_config.port[0].end(), 443);
// Validate that CIDR list is empty (since we're using hostname)
assert!(tunnel_config.cidr.is_empty());
} else {
panic!("Expected Tunnel configuration");
}
Ok(())
}
#[test]
fn test_restriction_rule_with_ip_restriction() -> anyhow::Result<()> {
// Test setup with empty path prefixes and specific host restriction
let path_prefixes: Vec<String> = vec![];
let restrict_to = vec![("127.0.0.1".to_string(), 443)];
let rules = RestrictionsRules::from_path_prefix(&path_prefixes, &restrict_to)?;
// Validate the rules structure
assert_eq!(rules.restrictions.len(), 1);
// Get the first restriction
let restriction = &rules.restrictions[0];
// Validate the restriction name
assert_eq!(restriction.name, "Allow All");
// Validate that there's exactly one allow rule
assert_eq!(restriction.allow.len(), 1);
assert_eq!(restriction.r#match.len(), 1);
// Check the tunnel configuration
if let AllowConfig::Tunnel(tunnel_config) = &restriction.allow[0] {
// Validate the host regex pattern
assert_eq!(tunnel_config.host.as_str(), "^$");
// Validate the port configuration
assert_eq!(tunnel_config.port.len(), 1);
assert_eq!(*tunnel_config.port[0].start(), 443);
assert_eq!(*tunnel_config.port[0].end(), 443);
// Validate that CIDR is correct
assert_eq!(tunnel_config.cidr.len(), 1);
assert_eq!(tunnel_config.cidr[0], IpNet::new(IpAddr::V4(Ipv4Addr::LOCALHOST), 32)?);
} else {
panic!("Expected Tunnel configuration");
}
Ok(())
}
#[test]
fn test_restriction_rule_with_path_prefix() -> anyhow::Result<()> {
// Test setup with path prefix and host restriction
let path_prefixes = vec!["/test/path".to_string()];
let restrict_to = vec![];
let rules = RestrictionsRules::from_path_prefix(&path_prefixes, &restrict_to)?;
// Validate the rules structure
assert_eq!(rules.restrictions.len(), 1);
// Get the first restriction
let restriction = &rules.restrictions[0];
// Validate the restriction name
assert_eq!(restriction.name, "Allow path prefix /test/path");
if let MatchConfig::PathPrefix(reg) = &restriction.r#match[0] {
// Validate the host regex pattern
assert_eq!(reg.as_str(), "^/test/path$");
} else {
panic!("Expected Match configuration");
}
if let AllowConfig::Tunnel(tunnel_config) = &restriction.allow[0] {
// Validate the host regex pattern
assert_eq!(tunnel_config.host.as_str(), "^.*$");
// Validate the port configuration
assert_eq!(tunnel_config.port.len(), 0);
// Validate that CIDR is correct
assert_eq!(tunnel_config.cidr, default_cidr());
} else {
panic!("Expected Tunnel configuration");
}
Ok(())
}
}