2021-04-20 03:21:48 +00:00
|
|
|
// Copyright (c) 2021 Tailscale Inc & AUTHORS All rights reserved.
|
|
|
|
|
// Use of this source code is governed by a BSD-style
|
|
|
|
|
// license that can be found in the LICENSE file.
|
|
|
|
|
|
|
|
|
|
package ipnlocal
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"bytes"
|
|
|
|
|
"fmt"
|
2021-04-20 04:00:25 +00:00
|
|
|
"io"
|
|
|
|
|
"io/ioutil"
|
2021-04-20 03:21:48 +00:00
|
|
|
"net/http"
|
|
|
|
|
"net/http/httptest"
|
|
|
|
|
"os"
|
|
|
|
|
"path/filepath"
|
|
|
|
|
"strings"
|
|
|
|
|
"testing"
|
|
|
|
|
|
|
|
|
|
"tailscale.com/tailcfg"
|
|
|
|
|
"tailscale.com/types/netmap"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
type peerAPITestEnv struct {
|
|
|
|
|
ph *peerAPIHandler
|
|
|
|
|
rr *httptest.ResponseRecorder
|
|
|
|
|
logBuf bytes.Buffer
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (e *peerAPITestEnv) logf(format string, a ...interface{}) {
|
|
|
|
|
fmt.Fprintf(&e.logBuf, format, a...)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type check func(*testing.T, *peerAPITestEnv)
|
|
|
|
|
|
|
|
|
|
func checks(vv ...check) []check { return vv }
|
|
|
|
|
|
|
|
|
|
func httpStatus(wantStatus int) check {
|
|
|
|
|
return func(t *testing.T, e *peerAPITestEnv) {
|
|
|
|
|
if res := e.rr.Result(); res.StatusCode != wantStatus {
|
|
|
|
|
t.Errorf("HTTP response code = %v; want %v", res.Status, wantStatus)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func bodyContains(sub string) check {
|
|
|
|
|
return func(t *testing.T, e *peerAPITestEnv) {
|
|
|
|
|
if body := e.rr.Body.String(); !strings.Contains(body, sub) {
|
|
|
|
|
t.Errorf("HTTP response body does not contain %q; got: %s", sub, body)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-04-20 04:00:25 +00:00
|
|
|
func fileHasSize(name string, size int) check {
|
2021-04-20 03:21:48 +00:00
|
|
|
return func(t *testing.T, e *peerAPITestEnv) {
|
|
|
|
|
root := e.ph.ps.rootDir
|
|
|
|
|
if root == "" {
|
|
|
|
|
t.Errorf("no rootdir; can't check whether %q has size %v", name, size)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
path := filepath.Join(root, name)
|
|
|
|
|
if fi, err := os.Stat(path); err != nil {
|
|
|
|
|
t.Errorf("fileHasSize(%q, %v): %v", name, size, err)
|
2021-04-20 04:00:25 +00:00
|
|
|
} else if fi.Size() != int64(size) {
|
2021-04-20 03:21:48 +00:00
|
|
|
t.Errorf("file %q has size %v; want %v", name, fi.Size(), size)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-04-20 04:00:25 +00:00
|
|
|
func fileHasContents(name string, want string) check {
|
|
|
|
|
return func(t *testing.T, e *peerAPITestEnv) {
|
|
|
|
|
root := e.ph.ps.rootDir
|
|
|
|
|
if root == "" {
|
|
|
|
|
t.Errorf("no rootdir; can't check contents of %q", name)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
path := filepath.Join(root, name)
|
|
|
|
|
got, err := ioutil.ReadFile(path)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Errorf("fileHasContents: %v", err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if string(got) != want {
|
|
|
|
|
t.Errorf("file contents = %q; want %q", got, want)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-04-20 03:21:48 +00:00
|
|
|
func TestHandlePeerPut(t *testing.T) {
|
|
|
|
|
tests := []struct {
|
|
|
|
|
name string
|
|
|
|
|
isSelf bool // the peer sending the request is owned by us
|
|
|
|
|
capSharing bool // self node has file sharing capabilty
|
|
|
|
|
omitRoot bool // don't configure
|
|
|
|
|
req *http.Request
|
|
|
|
|
checks []check
|
|
|
|
|
}{
|
|
|
|
|
{
|
|
|
|
|
name: "reject_non_owner_put",
|
|
|
|
|
isSelf: false,
|
|
|
|
|
capSharing: true,
|
|
|
|
|
req: httptest.NewRequest("PUT", "/v0/put/foo", nil),
|
|
|
|
|
checks: checks(
|
|
|
|
|
httpStatus(http.StatusForbidden),
|
|
|
|
|
bodyContains("not owner"),
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "owner_without_cap",
|
|
|
|
|
isSelf: true,
|
|
|
|
|
capSharing: false,
|
|
|
|
|
req: httptest.NewRequest("PUT", "/v0/put/foo", nil),
|
|
|
|
|
checks: checks(
|
|
|
|
|
httpStatus(http.StatusForbidden),
|
|
|
|
|
bodyContains("file sharing not enabled by Tailscale admin"),
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "owner_with_cap_no_rootdir",
|
|
|
|
|
omitRoot: true,
|
|
|
|
|
isSelf: true,
|
|
|
|
|
capSharing: true,
|
|
|
|
|
req: httptest.NewRequest("PUT", "/v0/put/foo", nil),
|
|
|
|
|
checks: checks(
|
|
|
|
|
httpStatus(http.StatusInternalServerError),
|
|
|
|
|
bodyContains("no rootdir"),
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
{
|
2021-04-20 04:00:25 +00:00
|
|
|
name: "bad_method",
|
|
|
|
|
isSelf: true,
|
|
|
|
|
capSharing: true,
|
|
|
|
|
req: httptest.NewRequest("POST", "/v0/put/foo", nil),
|
|
|
|
|
checks: checks(
|
|
|
|
|
httpStatus(405),
|
|
|
|
|
bodyContains("expected method PUT"),
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "put_zero_length",
|
2021-04-20 03:21:48 +00:00
|
|
|
isSelf: true,
|
|
|
|
|
capSharing: true,
|
|
|
|
|
req: httptest.NewRequest("PUT", "/v0/put/foo", nil),
|
|
|
|
|
checks: checks(
|
|
|
|
|
httpStatus(200),
|
|
|
|
|
bodyContains("{}"),
|
|
|
|
|
fileHasSize("foo", 0),
|
2021-04-20 04:00:25 +00:00
|
|
|
fileHasContents("foo", ""),
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "put_non_zero_length_content_length",
|
|
|
|
|
isSelf: true,
|
|
|
|
|
capSharing: true,
|
|
|
|
|
req: httptest.NewRequest("PUT", "/v0/put/foo", strings.NewReader("contents")),
|
|
|
|
|
checks: checks(
|
|
|
|
|
httpStatus(200),
|
|
|
|
|
bodyContains("{}"),
|
|
|
|
|
fileHasSize("foo", len("contents")),
|
|
|
|
|
fileHasContents("foo", "contents"),
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "put_non_zero_length_chunked",
|
|
|
|
|
isSelf: true,
|
|
|
|
|
capSharing: true,
|
|
|
|
|
req: httptest.NewRequest("PUT", "/v0/put/foo", struct{ io.Reader }{strings.NewReader("contents")}),
|
|
|
|
|
checks: checks(
|
|
|
|
|
httpStatus(200),
|
|
|
|
|
bodyContains("{}"),
|
|
|
|
|
fileHasSize("foo", len("contents")),
|
|
|
|
|
fileHasContents("foo", "contents"),
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "bad_filename_partial",
|
|
|
|
|
isSelf: true,
|
|
|
|
|
capSharing: true,
|
|
|
|
|
req: httptest.NewRequest("PUT", "/v0/put/foo.partial", nil),
|
|
|
|
|
checks: checks(
|
|
|
|
|
httpStatus(400),
|
|
|
|
|
bodyContains("bad filename"),
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name: "bad_filename_dot",
|
|
|
|
|
isSelf: true,
|
|
|
|
|
capSharing: true,
|
|
|
|
|
req: httptest.NewRequest("PUT", "/v0/put/.", nil),
|
|
|
|
|
checks: checks(
|
|
|
|
|
httpStatus(400),
|
|
|
|
|
bodyContains("bad filename"),
|
2021-04-20 03:21:48 +00:00
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
for _, tt := range tests {
|
|
|
|
|
t.Run(tt.name, func(t *testing.T) {
|
|
|
|
|
var caps []string
|
|
|
|
|
if tt.capSharing {
|
|
|
|
|
caps = append(caps, tailcfg.CapabilityFileSharing)
|
|
|
|
|
}
|
|
|
|
|
var e peerAPITestEnv
|
|
|
|
|
lb := &LocalBackend{
|
|
|
|
|
netMap: &netmap.NetworkMap{
|
|
|
|
|
SelfNode: &tailcfg.Node{
|
|
|
|
|
Capabilities: caps,
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
logf: e.logf,
|
|
|
|
|
}
|
|
|
|
|
e.ph = &peerAPIHandler{
|
|
|
|
|
isSelf: tt.isSelf,
|
|
|
|
|
peerNode: &tailcfg.Node{
|
|
|
|
|
ComputedName: "some-peer-name",
|
|
|
|
|
},
|
|
|
|
|
ps: &peerAPIServer{
|
|
|
|
|
b: lb,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
if !tt.omitRoot {
|
|
|
|
|
e.ph.ps.rootDir = t.TempDir()
|
|
|
|
|
}
|
|
|
|
|
e.rr = httptest.NewRecorder()
|
|
|
|
|
e.ph.ServeHTTP(e.rr, tt.req)
|
|
|
|
|
for _, f := range tt.checks {
|
|
|
|
|
f(t, &e)
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
}
|
