Inicio Explorar Axuda
Iniciar sesión
txlyre
/
3x-ui
réplica de https://github.com/MHSanaei/3x-ui
1
0
Fork 0
Ficheiros Incidencias 0 Wiki
Árbore: 37c5e0bfd2
Ramas Etiquetas
3x-ui
/
internal
/
web
/
middleware
/
config_envelope_test.go

config_envelope_test.go 2.4 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182 
  1. package middleware
    2. 

  2. 

  3. import (
    4. 

  4. 	"bytes"
    5. 

  5. 	"io"
    6. 

  6. 	"net/http"
    7. 

  7. 	"net/http/httptest"
    8. 

  8. 	"strings"
    9. 

  9. 	"testing"
    10. 

  10. 

  11. 	"github.com/gin-gonic/gin"
    12. 

  12. 

  13. 	"github.com/mhsanaei/3x-ui/v3/internal/util/wirecodec"
    14. 

  14. )
    15. 

  15. 

  16. func envelopeTestEngine(t *testing.T, onHandler func()) *gin.Engine {
    17. 

  17. 	t.Helper()
    18. 

  18. 	gin.SetMode(gin.TestMode)
    19. 

  19. 	engine := gin.New()
    20. 

  20. 	engine.Use(ConfigEnvelopeMiddleware())
    21. 

  21. 	engine.POST("/echo", func(c *gin.Context) {
    22. 

  22. 		if onHandler != nil {
    23. 

  23. 			onHandler()
    24. 

  24. 		}
    25. 

  25. 		b, _ := io.ReadAll(c.Request.Body)
    26. 

  26. 		c.String(http.StatusOK, "%s", string(b))
    27. 

  27. 	})
    28. 

  28. 	return engine
    29. 

  29. }
    30. 

  30. 

  31. func TestConfigEnvelope_DecompressesAndVerifies(t *testing.T) {
    32. 

  32. 	engine := envelopeTestEngine(t, nil)
    33. 

  33. 

  34. 	orig := []byte(strings.Repeat("payload-", 200))
    35. 

  35. 	packed := wirecodec.Compress(orig)
    36. 

  36. 	req := httptest.NewRequest(http.MethodPost, "/echo", bytes.NewReader(packed))
    37. 

  37. 	req.Header.Set("Content-Encoding", wirecodec.EncodingZstd)
    38. 

  38. 	req.Header.Set(wirecodec.HashHeader, wirecodec.Sha256Hex(orig))
    39. 

  39. 	w := httptest.NewRecorder()
    40. 

  40. 	engine.ServeHTTP(w, req)
    41. 

  41. 

  42. 	if w.Code != http.StatusOK {
    43. 

  43. 		t.Fatalf("status = %d, want 200", w.Code)
    44. 

  44. 	}
    45. 

  45. 	if w.Body.String() != string(orig) {
    46. 

  46. 		t.Fatal("handler did not receive the decompressed body")
    47. 

  47. 	}
    48. 

  48. 	if !strings.Contains(w.Header().Get(wirecodec.CapsHeader), wirecodec.CapZstd) {
    49. 

  49. 		t.Fatal("response must advertise the zstd capability")
    50. 

  50. 	}
    51. 

  51. }
    52. 

  52. 

  53. func TestConfigEnvelope_RejectsHashMismatch(t *testing.T) {
    54. 

  54. 	called := false
    55. 

  55. 	engine := envelopeTestEngine(t, func() { called = true })
    56. 

  56. 

  57. 	body := []byte("the-real-config")
    58. 

  58. 	req := httptest.NewRequest(http.MethodPost, "/echo", bytes.NewReader(body))
    59. 

  59. 	// Header claims a hash of a *different* body — a tampered/corrupted push.
    60. 

  60. 	req.Header.Set(wirecodec.HashHeader, wirecodec.Sha256Hex([]byte("a-different-config")))
    61. 

  61. 	w := httptest.NewRecorder()
    62. 

  62. 	engine.ServeHTTP(w, req)
    63. 

  63. 

  64. 	if w.Code != http.StatusBadRequest {
    65. 

  65. 		t.Fatalf("a hash mismatch must be rejected 4xx, got %d", w.Code)
    66. 

  66. 	}
    67. 

  67. 	if called {
    68. 

  68. 		t.Fatal("the handler must NOT be invoked on a hash mismatch")
    69. 

  69. 	}
    70. 

  70. }
    71. 

  71. 

  72. func TestConfigEnvelope_PlainPassesThrough(t *testing.T) {
    73. 

  73. 	engine := envelopeTestEngine(t, nil)
    74. 

  74. 

  75. 	req := httptest.NewRequest(http.MethodPost, "/echo", strings.NewReader("plain=body"))
    76. 

  76. 	w := httptest.NewRecorder()
    77. 

  77. 	engine.ServeHTTP(w, req)
    78. 

  78. 

  79. 	if w.Code != http.StatusOK || w.Body.String() != "plain=body" {
    80. 

  80. 		t.Fatalf("a request with no envelope headers must pass through unchanged: code=%d body=%q", w.Code, w.Body.String())
    81. 

  81. 	}
    82. 

  82. }
    83.