container-openvpn/test/tests/conf_options/container.sh

#!/bin/bash

# Function to fail
abort() { cat <<< "$@" 1>&2; exit 1; }


#
# Generate openvpn.config file
#
read -d '' MULTILINE_EXTRA_SERVER_CONF << EOF
management localhost 7505
max-clients 10
EOF

SERV_IP=$(ip -4 -o addr show scope global  | awk '{print $4}' | sed -e 's:/.*::' | head -n1)
ovpn_genconfig -u udp://$SERV_IP -f 1400 -e "$MULTILINE_EXTRA_SERVER_CONF" -e 'duplicate-cn' -e 'topology subnet' -p 'route 172.22.22.0 255.255.255.0'

#
# grep for config lines from openvpn.conf
# add more tests for more configs as required
#

# 1. verb config
CONFIG_REQUIRED_VERB="verb 3"
CONFIG_MATCH_VERB=$(busybox grep verb /etc/openvpn/openvpn.conf)

# 2. fragment config
CONFIG_REQUIRED_FRAGMENT="fragment 1400"
CONFIG_MATCH_FRAGMENT=$(busybox grep fragment /etc/openvpn/openvpn.conf)

## Tests for extra configs
# 3. management config
CONFIG_REQUIRED_MANAGEMENT="^management localhost 7505"
CONFIG_MATCH_MANAGEMENT=$(busybox grep management /etc/openvpn/openvpn.conf)

# 4. max-clients config
CONFIG_REQUIRED_MAX_CLIENTS="^max-clients 10"
CONFIG_MATCH_MAX_CLIENTS=$(busybox grep max-clients /etc/openvpn/openvpn.conf)

# 5. duplicate-cn config
CONFIG_REQUIRED_DUPCN="^duplicate-cn"
CONFIG_MATCH_DUPCN=$(busybox grep duplicate-cn /etc/openvpn/openvpn.conf)

# 6. topology config
CONFIG_REQUIRED_TOPOLOGY="^topology subnet"
CONFIG_MATCH_TOPOLOGY=$(busybox grep 'topology subnet' /etc/openvpn/openvpn.conf)

## Tests for push config
# 7. push route
CONFIG_REQUIRED_PUSH_ROUTE="^push route 172.22.22.0 255.255.255.0"
CONFIG_MATCH_PUSH_ROUTE=$(busybox grep 'push route 172.22.22.0 255.255.255.0' /etc/openvpn/openvpn.conf)

## Test for default
# 8. Should see default route if none provided
CONFIG_REQUIRED_DEFAULT_ROUTE="^route 192.168.254.0 255.255.255.0"
CONFIG_MATCH_DEFAULT_ROUTE=$(busybox grep 'route 192.168.254.0 255.255.255.0' /etc/openvpn/openvpn.conf)

# 9. Should see a push of 'block-outside-dns' by default
CONFIG_REQUIRED_DEFAULT_ROUTE="^push block-outside-dns"
CONFIG_MATCH_DEFAULT_ROUTE=$(busybox grep 'push block-outside-dns' /etc/openvpn/openvpn.conf)

# 10. Should see a push of 'dhcp-option DNS' by default
CONFIG_REQUIRED_DEFAULT_DNS_1="^push dhcp-option DNS 8.8.8.8"
CONFIG_MATCH_DEFAULT_DNS_1=$(busybox grep 'push dhcp-option DNS 8.8.8.8' /etc/openvpn/openvpn.conf)
CONFIG_REQUIRED_DEFAULT_DNS_2="^push dhcp-option DNS 8.8.4.4"
CONFIG_MATCH_DEFAULT_DNS_2=$(busybox grep 'push dhcp-option DNS 8.8.4.4' /etc/openvpn/openvpn.conf)


#
# Tests
#

if [[ $CONFIG_MATCH_VERB =~ $CONFIG_REQUIRED_VERB ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_VERB == $CONFIG_MATCH_VERB"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_VERB != $CONFIG_MATCH_VERB"
fi

if [[ $CONFIG_MATCH_FRAGMENT =~ $CONFIG_REQUIRED_FRAGMENT ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_FRAGMENT == $CONFIG_MATCH_FRAGMENT"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_FRAGMENT != $CONFIG_MATCH_FRAGMENT"
fi

if [[ $CONFIG_MATCH_MANAGEMENT =~ $CONFIG_REQUIRED_MANAGEMENT ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_MANAGEMENT == $CONFIG_MATCH_MANAGEMENT"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_MANAGEMENT != $CONFIG_MATCH_MANAGEMENT"
fi


if [[ $CONFIG_MATCH_MAX_CLIENTS =~ $CONFIG_REQUIRED_MAX_CLIENTS ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_MAX_CLIENTS == $CONFIG_MATCH_MAX_CLIENTS"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_MAX_CLIENTS != $CONFIG_MATCH_MAX_CLIENTS"
fi

if [[ $CONFIG_MATCH_DUPCN =~ $CONFIG_REQUIRED_DUPCN ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_DUPCN == $CONFIG_MATCH_DUPCN"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_DUPCN != $CONFIG_MATCH_DUPCN"
fi

if [[ $CONFIG_MATCH_TOPOLOGY =~ $CONFIG_REQUIRED_TOPOLOGY ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_TOPOLOGY == $CONFIG_MATCH_TOPOLOGY"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_TOPOLOGY != $CONFIG_MATCH_TOPOLOGY"
fi

if [[ $CONFIG_MATCH_PUSH_ROUTE =~ $CONFIG_REQUIRED_PUSH_ROUTE ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_PUSH_ROUTE == $CONFIG_MATCH_PUSH_ROUTE"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_PUSH_ROUTE != $CONFIG_MATCH_PUSH_ROUTE"
fi

if [[ $CONFIG_MATCH_DEFAULT_ROUTE =~ $CONFIG_REQUIRED_DEFAULT_ROUTE ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_DEFAULT_ROUTE == $CONFIG_MATCH_DEFAULT_ROUTE"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_DEFAULT_ROUTE != $CONFIG_MATCH_DEFAULT_ROUTE"
fi

if [[ $CONFIG_MATCH_DEFAULT_DNS_1 =~ $CONFIG_REQUIRED_DEFAULT_DNS_1 ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_DEFAULT_DNS_1 == $CONFIG_MATCH_DEFAULT_DNS_1"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_DEFAULT_DNS_1 != $CONFIG_MATCH_DEFAULT_DNS_1"
fi

if [[ $CONFIG_MATCH_DEFAULT_DNS_2 =~ $CONFIG_REQUIRED_DEFAULT_DNS_2 ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_DEFAULT_DNS_2 == $CONFIG_MATCH_DEFAULT_DNS_2"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_DEFAULT_DNS_2 != $CONFIG_MATCH_DEFAULT_DNS_2"
fi

SERV_IP=$(ip -4 -o addr show scope global  | awk '{print $4}' | sed -e 's:/.*::' | head -n1)
ovpn_genconfig -u udp://$SERV_IP -r "172.33.33.0/24" -r "172.34.34.0/24"

CONFIG_REQUIRED_ROUTE_1="^route 172.33.33.0 255.255.255.0"
CONFIG_MATCH_ROUTE_1=$(busybox grep 'route 172.33.33.0 255.255.255.0' /etc/openvpn/openvpn.conf)

CONFIG_REQUIRED_ROUTE_2="^route 172.34.34.0 255.255.255.0"
CONFIG_MATCH_ROUTE_2=$(busybox grep 'route 172.34.34.0 255.255.255.0' /etc/openvpn/openvpn.conf)

if [[ $CONFIG_MATCH_ROUTE_1 =~ $CONFIG_REQUIRED_ROUTE_1 ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_ROUTE_1 == $CONFIG_MATCH_ROUTE_1"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_ROUTE_1 != $CONFIG_MATCH_ROUTE_1"
fi

if [[ $CONFIG_MATCH_ROUTE_2 =~ $CONFIG_REQUIRED_ROUTE_2 ]]
then
  echo "==> Config match found: $CONFIG_REQUIRED_ROUTE_2 == $CONFIG_MATCH_ROUTE_2"
else
  abort "==> Config match not found: $CONFIG_REQUIRED_ROUTE_2 != $CONFIG_MATCH_ROUTE_2"
fi
Add openvpn.conf gerneration -f fragment directive option 2016-04-06 07:06:02 +00:00			`#!/bin/bash`

			`# Function to fail`
			`abort() { cat <<< "$@" 1>&2; exit 1; }`


			`#`
			`# Generate openvpn.config file`
			`#`
Added test for multiple extra options 2016-09-20 16:01:56 +00:00			`read -d '' MULTILINE_EXTRA_SERVER_CONF << EOF`
adding tests for extra server config 2016-05-17 15:42:22 +00:00			`management localhost 7505`
			`max-clients 10`
			`EOF`

Add openvpn.conf gerneration -f fragment directive option 2016-04-06 07:06:02 +00:00			`SERV_IP=$(ip -4 -o addr show scope global \| awk '{print $4}' \| sed -e 's:/.*::' \| head -n1)`
Too many arguments while pushing route So I was trying to push a route to my client and the script failed with 'too many arguments', I reworked this part and took the opportunity to rework a little bit the way push and routes were handled. I also added some tests and validated that what I changed would not break what was there before. 2016-09-22 20:02:59 +00:00			`ovpn_genconfig -u udp://$SERV_IP -f 1400 -e "$MULTILINE_EXTRA_SERVER_CONF" -e 'duplicate-cn' -e 'topology subnet' -p 'route 172.22.22.0 255.255.255.0'`
Add openvpn.conf gerneration -f fragment directive option 2016-04-06 07:06:02 +00:00
			`#`
			`# grep for config lines from openvpn.conf`
			`# add more tests for more configs as required`
			`#`

			`# 1. verb config`
			`CONFIG_REQUIRED_VERB="verb 3"`
test: Migrate conf_options test * Move the configuration options to new docker test suite. 2016-08-31 18:53:03 +00:00			`CONFIG_MATCH_VERB=$(busybox grep verb /etc/openvpn/openvpn.conf)`
Add openvpn.conf gerneration -f fragment directive option 2016-04-06 07:06:02 +00:00
			`# 2. fragment config`
			`CONFIG_REQUIRED_FRAGMENT="fragment 1400"`
test: Migrate conf_options test * Move the configuration options to new docker test suite. 2016-08-31 18:53:03 +00:00			`CONFIG_MATCH_FRAGMENT=$(busybox grep fragment /etc/openvpn/openvpn.conf)`
Add openvpn.conf gerneration -f fragment directive option 2016-04-06 07:06:02 +00:00
Added test for multiple extra options 2016-09-20 16:01:56 +00:00			`## Tests for extra configs`
adding tests for extra server config 2016-05-17 15:42:22 +00:00			`# 3. management config`
			`CONFIG_REQUIRED_MANAGEMENT="^management localhost 7505"`
test: Migrate conf_options test * Move the configuration options to new docker test suite. 2016-08-31 18:53:03 +00:00			`CONFIG_MATCH_MANAGEMENT=$(busybox grep management /etc/openvpn/openvpn.conf)`
adding tests for extra server config 2016-05-17 15:42:22 +00:00
			`# 4. max-clients config`
			`CONFIG_REQUIRED_MAX_CLIENTS="^max-clients 10"`
test: Migrate conf_options test * Move the configuration options to new docker test suite. 2016-08-31 18:53:03 +00:00			`CONFIG_MATCH_MAX_CLIENTS=$(busybox grep max-clients /etc/openvpn/openvpn.conf)`
Add openvpn.conf gerneration -f fragment directive option 2016-04-06 07:06:02 +00:00
Added test for multiple extra options 2016-09-20 16:01:56 +00:00			`# 5. duplicate-cn config`
			`CONFIG_REQUIRED_DUPCN="^duplicate-cn"`
			`CONFIG_MATCH_DUPCN=$(busybox grep duplicate-cn /etc/openvpn/openvpn.conf)`

			`# 6. topology config`
			`CONFIG_REQUIRED_TOPOLOGY="^topology subnet"`
			`CONFIG_MATCH_TOPOLOGY=$(busybox grep 'topology subnet' /etc/openvpn/openvpn.conf)`

Too many arguments while pushing route So I was trying to push a route to my client and the script failed with 'too many arguments', I reworked this part and took the opportunity to rework a little bit the way push and routes were handled. I also added some tests and validated that what I changed would not break what was there before. 2016-09-22 20:02:59 +00:00			`## Tests for push config`
			`# 7. push route`
			`CONFIG_REQUIRED_PUSH_ROUTE="^push route 172.22.22.0 255.255.255.0"`
			`CONFIG_MATCH_PUSH_ROUTE=$(busybox grep 'push route 172.22.22.0 255.255.255.0' /etc/openvpn/openvpn.conf)`

			`## Test for default`
			`# 8. Should see default route if none provided`
			`CONFIG_REQUIRED_DEFAULT_ROUTE="^route 192.168.254.0 255.255.255.0"`
			`CONFIG_MATCH_DEFAULT_ROUTE=$(busybox grep 'route 192.168.254.0 255.255.255.0' /etc/openvpn/openvpn.conf)`

			`# 9. Should see a push of 'block-outside-dns' by default`
			`CONFIG_REQUIRED_DEFAULT_ROUTE="^push block-outside-dns"`
			`CONFIG_MATCH_DEFAULT_ROUTE=$(busybox grep 'push block-outside-dns' /etc/openvpn/openvpn.conf)`

Fix for regression As I reworked the push options, a bug got introduced where a duplication of push in the config for the DNS dhcp-options would make it to fail. There was no tests covering this, so I did not catch it earlier. I've add the missing tests and fix the bug 2016-09-22 22:12:45 +00:00			`# 10. Should see a push of 'dhcp-option DNS' by default`
			`CONFIG_REQUIRED_DEFAULT_DNS_1="^push dhcp-option DNS 8.8.8.8"`
			`CONFIG_MATCH_DEFAULT_DNS_1=$(busybox grep 'push dhcp-option DNS 8.8.8.8' /etc/openvpn/openvpn.conf)`
			`CONFIG_REQUIRED_DEFAULT_DNS_2="^push dhcp-option DNS 8.8.4.4"`
			`CONFIG_MATCH_DEFAULT_DNS_2=$(busybox grep 'push dhcp-option DNS 8.8.4.4' /etc/openvpn/openvpn.conf)`

Too many arguments while pushing route So I was trying to push a route to my client and the script failed with 'too many arguments', I reworked this part and took the opportunity to rework a little bit the way push and routes were handled. I also added some tests and validated that what I changed would not break what was there before. 2016-09-22 20:02:59 +00:00
Add openvpn.conf gerneration -f fragment directive option 2016-04-06 07:06:02 +00:00			`#`
			`# Tests`
			`#`

			`if [[ $CONFIG_MATCH_VERB =~ $CONFIG_REQUIRED_VERB ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_VERB == $CONFIG_MATCH_VERB"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_VERB != $CONFIG_MATCH_VERB"`
			`fi`

			`if [[ $CONFIG_MATCH_FRAGMENT =~ $CONFIG_REQUIRED_FRAGMENT ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_FRAGMENT == $CONFIG_MATCH_FRAGMENT"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_FRAGMENT != $CONFIG_MATCH_FRAGMENT"`
adding tests for extra server config 2016-05-17 15:42:22 +00:00			`fi`

			`if [[ $CONFIG_MATCH_MANAGEMENT =~ $CONFIG_REQUIRED_MANAGEMENT ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_MANAGEMENT == $CONFIG_MATCH_MANAGEMENT"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_MANAGEMENT != $CONFIG_MATCH_MANAGEMENT"`
			`fi`

Added test for multiple extra options 2016-09-20 16:01:56 +00:00
adding tests for extra server config 2016-05-17 15:42:22 +00:00			`if [[ $CONFIG_MATCH_MAX_CLIENTS =~ $CONFIG_REQUIRED_MAX_CLIENTS ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_MAX_CLIENTS == $CONFIG_MATCH_MAX_CLIENTS"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_MAX_CLIENTS != $CONFIG_MATCH_MAX_CLIENTS"`
			`fi`
Added test for multiple extra options 2016-09-20 16:01:56 +00:00
			`if [[ $CONFIG_MATCH_DUPCN =~ $CONFIG_REQUIRED_DUPCN ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_DUPCN == $CONFIG_MATCH_DUPCN"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_DUPCN != $CONFIG_MATCH_DUPCN"`
			`fi`

			`if [[ $CONFIG_MATCH_TOPOLOGY =~ $CONFIG_REQUIRED_TOPOLOGY ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_TOPOLOGY == $CONFIG_MATCH_TOPOLOGY"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_TOPOLOGY != $CONFIG_MATCH_TOPOLOGY"`
			`fi`
Too many arguments while pushing route So I was trying to push a route to my client and the script failed with 'too many arguments', I reworked this part and took the opportunity to rework a little bit the way push and routes were handled. I also added some tests and validated that what I changed would not break what was there before. 2016-09-22 20:02:59 +00:00
			`if [[ $CONFIG_MATCH_PUSH_ROUTE =~ $CONFIG_REQUIRED_PUSH_ROUTE ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_PUSH_ROUTE == $CONFIG_MATCH_PUSH_ROUTE"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_PUSH_ROUTE != $CONFIG_MATCH_PUSH_ROUTE"`
			`fi`

			`if [[ $CONFIG_MATCH_DEFAULT_ROUTE =~ $CONFIG_REQUIRED_DEFAULT_ROUTE ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_DEFAULT_ROUTE == $CONFIG_MATCH_DEFAULT_ROUTE"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_DEFAULT_ROUTE != $CONFIG_MATCH_DEFAULT_ROUTE"`
			`fi`

Fix for regression As I reworked the push options, a bug got introduced where a duplication of push in the config for the DNS dhcp-options would make it to fail. There was no tests covering this, so I did not catch it earlier. I've add the missing tests and fix the bug 2016-09-22 22:12:45 +00:00			`if [[ $CONFIG_MATCH_DEFAULT_DNS_1 =~ $CONFIG_REQUIRED_DEFAULT_DNS_1 ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_DEFAULT_DNS_1 == $CONFIG_MATCH_DEFAULT_DNS_1"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_DEFAULT_DNS_1 != $CONFIG_MATCH_DEFAULT_DNS_1"`
			`fi`

			`if [[ $CONFIG_MATCH_DEFAULT_DNS_2 =~ $CONFIG_REQUIRED_DEFAULT_DNS_2 ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_DEFAULT_DNS_2 == $CONFIG_MATCH_DEFAULT_DNS_2"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_DEFAULT_DNS_2 != $CONFIG_MATCH_DEFAULT_DNS_2"`
			`fi`
Too many arguments while pushing route So I was trying to push a route to my client and the script failed with 'too many arguments', I reworked this part and took the opportunity to rework a little bit the way push and routes were handled. I also added some tests and validated that what I changed would not break what was there before. 2016-09-22 20:02:59 +00:00
			`SERV_IP=$(ip -4 -o addr show scope global \| awk '{print $4}' \| sed -e 's:/.*::' \| head -n1)`
			`ovpn_genconfig -u udp://$SERV_IP -r "172.33.33.0/24" -r "172.34.34.0/24"`

			`CONFIG_REQUIRED_ROUTE_1="^route 172.33.33.0 255.255.255.0"`
			`CONFIG_MATCH_ROUTE_1=$(busybox grep 'route 172.33.33.0 255.255.255.0' /etc/openvpn/openvpn.conf)`

			`CONFIG_REQUIRED_ROUTE_2="^route 172.34.34.0 255.255.255.0"`
			`CONFIG_MATCH_ROUTE_2=$(busybox grep 'route 172.34.34.0 255.255.255.0' /etc/openvpn/openvpn.conf)`

			`if [[ $CONFIG_MATCH_ROUTE_1 =~ $CONFIG_REQUIRED_ROUTE_1 ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_ROUTE_1 == $CONFIG_MATCH_ROUTE_1"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_ROUTE_1 != $CONFIG_MATCH_ROUTE_1"`
			`fi`

			`if [[ $CONFIG_MATCH_ROUTE_2 =~ $CONFIG_REQUIRED_ROUTE_2 ]]`
			`then`
			`echo "==> Config match found: $CONFIG_REQUIRED_ROUTE_2 == $CONFIG_MATCH_ROUTE_2"`
			`else`
			`abort "==> Config match not found: $CONFIG_REQUIRED_ROUTE_2 != $CONFIG_MATCH_ROUTE_2"`
			`fi`