2015-04-08 02:20:04 -04:00
|
|
|
package portmapper
|
|
|
|
|
|
|
|
import (
|
|
|
|
"net"
|
2015-05-21 15:20:48 -04:00
|
|
|
"strings"
|
2015-04-08 02:20:04 -04:00
|
|
|
"testing"
|
|
|
|
|
2021-04-05 20:24:47 -04:00
|
|
|
"github.com/docker/docker/libnetwork/iptables"
|
2015-04-08 02:20:04 -04:00
|
|
|
)
|
|
|
|
|
2015-05-21 13:12:21 -04:00
|
|
|
func init() {
|
|
|
|
// override this func to mock out the proxy server
|
|
|
|
newProxy = newMockProxyCommand
|
2015-04-08 02:20:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestSetIptablesChain(t *testing.T) {
|
2016-09-25 11:43:27 -04:00
|
|
|
pm := New("")
|
2015-04-08 02:20:04 -04:00
|
|
|
|
2015-06-11 21:12:00 -04:00
|
|
|
c := &iptables.ChainInfo{
|
|
|
|
Name: "TEST",
|
2015-04-08 02:20:04 -04:00
|
|
|
}
|
|
|
|
|
2015-04-10 14:59:05 -04:00
|
|
|
if pm.chain != nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatal("chain should be nil at init")
|
|
|
|
}
|
|
|
|
|
2015-06-11 21:12:00 -04:00
|
|
|
pm.SetIptablesChain(c, "lo")
|
2015-04-10 14:59:05 -04:00
|
|
|
if pm.chain == nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatal("chain should not be nil after set")
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-05-07 13:47:21 -04:00
|
|
|
func TestMapTCPPorts(t *testing.T) {
|
2016-09-25 11:43:27 -04:00
|
|
|
pm := New("")
|
2015-04-08 02:20:04 -04:00
|
|
|
dstIP1 := net.ParseIP("192.168.0.1")
|
|
|
|
dstIP2 := net.ParseIP("192.168.0.2")
|
|
|
|
dstAddr1 := &net.TCPAddr{IP: dstIP1, Port: 80}
|
|
|
|
dstAddr2 := &net.TCPAddr{IP: dstIP2, Port: 80}
|
|
|
|
|
|
|
|
srcAddr1 := &net.TCPAddr{Port: 1080, IP: net.ParseIP("172.16.0.1")}
|
|
|
|
srcAddr2 := &net.TCPAddr{Port: 1080, IP: net.ParseIP("172.16.0.2")}
|
|
|
|
|
|
|
|
addrEqual := func(addr1, addr2 net.Addr) bool {
|
|
|
|
return (addr1.Network() == addr2.Network()) && (addr1.String() == addr2.String())
|
|
|
|
}
|
|
|
|
|
2015-05-18 19:49:12 -04:00
|
|
|
if host, err := pm.Map(srcAddr1, dstIP1, 80, true); err != nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatalf("Failed to allocate port: %s", err)
|
|
|
|
} else if !addrEqual(dstAddr1, host) {
|
|
|
|
t.Fatalf("Incorrect mapping result: expected %s:%s, got %s:%s",
|
|
|
|
dstAddr1.String(), dstAddr1.Network(), host.String(), host.Network())
|
|
|
|
}
|
|
|
|
|
2015-05-18 19:49:12 -04:00
|
|
|
if _, err := pm.Map(srcAddr1, dstIP1, 80, true); err == nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatalf("Port is in use - mapping should have failed")
|
|
|
|
}
|
|
|
|
|
2015-05-18 19:49:12 -04:00
|
|
|
if _, err := pm.Map(srcAddr2, dstIP1, 80, true); err == nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatalf("Port is in use - mapping should have failed")
|
|
|
|
}
|
|
|
|
|
2015-05-18 19:49:12 -04:00
|
|
|
if _, err := pm.Map(srcAddr2, dstIP2, 80, true); err != nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatalf("Failed to allocate port: %s", err)
|
|
|
|
}
|
|
|
|
|
2015-04-10 14:59:05 -04:00
|
|
|
if pm.Unmap(dstAddr1) != nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatalf("Failed to release port")
|
|
|
|
}
|
|
|
|
|
2015-04-10 14:59:05 -04:00
|
|
|
if pm.Unmap(dstAddr2) != nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatalf("Failed to release port")
|
|
|
|
}
|
|
|
|
|
2015-04-10 14:59:05 -04:00
|
|
|
if pm.Unmap(dstAddr2) == nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatalf("Port already released, but no error reported")
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetUDPKey(t *testing.T) {
|
|
|
|
addr := &net.UDPAddr{IP: net.ParseIP("192.168.1.5"), Port: 53}
|
|
|
|
|
|
|
|
key := getKey(addr)
|
|
|
|
|
|
|
|
if expected := "192.168.1.5:53/udp"; key != expected {
|
|
|
|
t.Fatalf("expected key %s got %s", expected, key)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetTCPKey(t *testing.T) {
|
|
|
|
addr := &net.TCPAddr{IP: net.ParseIP("192.168.1.5"), Port: 80}
|
|
|
|
|
|
|
|
key := getKey(addr)
|
|
|
|
|
|
|
|
if expected := "192.168.1.5:80/tcp"; key != expected {
|
|
|
|
t.Fatalf("expected key %s got %s", expected, key)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetUDPIPAndPort(t *testing.T) {
|
|
|
|
addr := &net.UDPAddr{IP: net.ParseIP("192.168.1.5"), Port: 53}
|
|
|
|
|
|
|
|
ip, port := getIPAndPort(addr)
|
|
|
|
if expected := "192.168.1.5"; ip.String() != expected {
|
|
|
|
t.Fatalf("expected ip %s got %s", expected, ip)
|
|
|
|
}
|
|
|
|
|
|
|
|
if ep := 53; port != ep {
|
|
|
|
t.Fatalf("expected port %d got %d", ep, port)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-05-07 13:47:21 -04:00
|
|
|
func TestMapUDPPorts(t *testing.T) {
|
2016-09-25 11:43:27 -04:00
|
|
|
pm := New("")
|
2015-05-07 13:47:21 -04:00
|
|
|
dstIP1 := net.ParseIP("192.168.0.1")
|
|
|
|
dstIP2 := net.ParseIP("192.168.0.2")
|
|
|
|
dstAddr1 := &net.UDPAddr{IP: dstIP1, Port: 80}
|
|
|
|
dstAddr2 := &net.UDPAddr{IP: dstIP2, Port: 80}
|
|
|
|
|
|
|
|
srcAddr1 := &net.UDPAddr{Port: 1080, IP: net.ParseIP("172.16.0.1")}
|
|
|
|
srcAddr2 := &net.UDPAddr{Port: 1080, IP: net.ParseIP("172.16.0.2")}
|
|
|
|
|
|
|
|
addrEqual := func(addr1, addr2 net.Addr) bool {
|
|
|
|
return (addr1.Network() == addr2.Network()) && (addr1.String() == addr2.String())
|
|
|
|
}
|
|
|
|
|
2015-05-18 19:49:12 -04:00
|
|
|
if host, err := pm.Map(srcAddr1, dstIP1, 80, true); err != nil {
|
2015-05-07 13:47:21 -04:00
|
|
|
t.Fatalf("Failed to allocate port: %s", err)
|
|
|
|
} else if !addrEqual(dstAddr1, host) {
|
|
|
|
t.Fatalf("Incorrect mapping result: expected %s:%s, got %s:%s",
|
|
|
|
dstAddr1.String(), dstAddr1.Network(), host.String(), host.Network())
|
|
|
|
}
|
|
|
|
|
2015-05-18 19:49:12 -04:00
|
|
|
if _, err := pm.Map(srcAddr1, dstIP1, 80, true); err == nil {
|
2015-05-07 13:47:21 -04:00
|
|
|
t.Fatalf("Port is in use - mapping should have failed")
|
|
|
|
}
|
|
|
|
|
2015-05-18 19:49:12 -04:00
|
|
|
if _, err := pm.Map(srcAddr2, dstIP1, 80, true); err == nil {
|
2015-05-07 13:47:21 -04:00
|
|
|
t.Fatalf("Port is in use - mapping should have failed")
|
|
|
|
}
|
|
|
|
|
2015-05-18 19:49:12 -04:00
|
|
|
if _, err := pm.Map(srcAddr2, dstIP2, 80, true); err != nil {
|
2015-05-07 13:47:21 -04:00
|
|
|
t.Fatalf("Failed to allocate port: %s", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
if pm.Unmap(dstAddr1) != nil {
|
|
|
|
t.Fatalf("Failed to release port")
|
|
|
|
}
|
|
|
|
|
|
|
|
if pm.Unmap(dstAddr2) != nil {
|
|
|
|
t.Fatalf("Failed to release port")
|
|
|
|
}
|
|
|
|
|
|
|
|
if pm.Unmap(dstAddr2) == nil {
|
|
|
|
t.Fatalf("Port already released, but no error reported")
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-04-08 02:20:04 -04:00
|
|
|
func TestMapAllPortsSingleInterface(t *testing.T) {
|
2016-09-25 11:43:27 -04:00
|
|
|
pm := New("")
|
2015-04-08 02:20:04 -04:00
|
|
|
dstIP1 := net.ParseIP("0.0.0.0")
|
|
|
|
srcAddr1 := &net.TCPAddr{Port: 1080, IP: net.ParseIP("172.16.0.1")}
|
|
|
|
|
|
|
|
hosts := []net.Addr{}
|
|
|
|
var host net.Addr
|
|
|
|
var err error
|
|
|
|
|
2015-05-21 13:12:21 -04:00
|
|
|
defer func() {
|
|
|
|
for _, val := range hosts {
|
|
|
|
pm.Unmap(val)
|
|
|
|
}
|
|
|
|
}()
|
|
|
|
|
2015-04-08 02:20:04 -04:00
|
|
|
for i := 0; i < 10; i++ {
|
2015-04-10 14:59:05 -04:00
|
|
|
start, end := pm.Allocator.Begin, pm.Allocator.End
|
|
|
|
for i := start; i < end; i++ {
|
2015-05-18 19:49:12 -04:00
|
|
|
if host, err = pm.Map(srcAddr1, dstIP1, 0, true); err != nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatal(err)
|
|
|
|
}
|
|
|
|
|
|
|
|
hosts = append(hosts, host)
|
|
|
|
}
|
|
|
|
|
2015-05-18 19:49:12 -04:00
|
|
|
if _, err := pm.Map(srcAddr1, dstIP1, start, true); err == nil {
|
2015-04-10 14:59:05 -04:00
|
|
|
t.Fatalf("Port %d should be bound but is not", start)
|
2015-04-08 02:20:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
for _, val := range hosts {
|
2015-04-10 14:59:05 -04:00
|
|
|
if err := pm.Unmap(val); err != nil {
|
2015-04-08 02:20:04 -04:00
|
|
|
t.Fatal(err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
hosts = []net.Addr{}
|
|
|
|
}
|
|
|
|
}
|
2015-05-21 15:20:48 -04:00
|
|
|
|
|
|
|
func TestMapTCPDummyListen(t *testing.T) {
|
2016-09-25 11:43:27 -04:00
|
|
|
pm := New("")
|
2015-05-21 15:20:48 -04:00
|
|
|
dstIP := net.ParseIP("0.0.0.0")
|
|
|
|
dstAddr := &net.TCPAddr{IP: dstIP, Port: 80}
|
|
|
|
|
|
|
|
// no-op for dummy
|
|
|
|
srcAddr := &net.TCPAddr{Port: 1080, IP: net.ParseIP("172.16.0.1")}
|
|
|
|
|
|
|
|
addrEqual := func(addr1, addr2 net.Addr) bool {
|
|
|
|
return (addr1.Network() == addr2.Network()) && (addr1.String() == addr2.String())
|
|
|
|
}
|
|
|
|
|
|
|
|
if host, err := pm.Map(srcAddr, dstIP, 80, false); err != nil {
|
|
|
|
t.Fatalf("Failed to allocate port: %s", err)
|
|
|
|
} else if !addrEqual(dstAddr, host) {
|
|
|
|
t.Fatalf("Incorrect mapping result: expected %s:%s, got %s:%s",
|
|
|
|
dstAddr.String(), dstAddr.Network(), host.String(), host.Network())
|
|
|
|
}
|
|
|
|
if _, err := net.Listen("tcp", "0.0.0.0:80"); err == nil {
|
|
|
|
t.Fatal("Listen on mapped port without proxy should fail")
|
|
|
|
} else {
|
|
|
|
if !strings.Contains(err.Error(), "address already in use") {
|
|
|
|
t.Fatalf("Error should be about address already in use, got %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if _, err := net.Listen("tcp", "0.0.0.0:81"); err != nil {
|
|
|
|
t.Fatal(err)
|
|
|
|
}
|
|
|
|
if host, err := pm.Map(srcAddr, dstIP, 81, false); err == nil {
|
|
|
|
t.Fatalf("Bound port shouldn't be allocated, but it was on: %v", host)
|
|
|
|
} else {
|
|
|
|
if !strings.Contains(err.Error(), "address already in use") {
|
|
|
|
t.Fatalf("Error should be about address already in use, got %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestMapUDPDummyListen(t *testing.T) {
|
2016-09-25 11:43:27 -04:00
|
|
|
pm := New("")
|
2015-05-21 15:20:48 -04:00
|
|
|
dstIP := net.ParseIP("0.0.0.0")
|
|
|
|
dstAddr := &net.UDPAddr{IP: dstIP, Port: 80}
|
|
|
|
|
|
|
|
// no-op for dummy
|
|
|
|
srcAddr := &net.UDPAddr{Port: 1080, IP: net.ParseIP("172.16.0.1")}
|
|
|
|
|
|
|
|
addrEqual := func(addr1, addr2 net.Addr) bool {
|
|
|
|
return (addr1.Network() == addr2.Network()) && (addr1.String() == addr2.String())
|
|
|
|
}
|
|
|
|
|
|
|
|
if host, err := pm.Map(srcAddr, dstIP, 80, false); err != nil {
|
|
|
|
t.Fatalf("Failed to allocate port: %s", err)
|
|
|
|
} else if !addrEqual(dstAddr, host) {
|
|
|
|
t.Fatalf("Incorrect mapping result: expected %s:%s, got %s:%s",
|
|
|
|
dstAddr.String(), dstAddr.Network(), host.String(), host.Network())
|
|
|
|
}
|
|
|
|
if _, err := net.ListenUDP("udp", &net.UDPAddr{IP: dstIP, Port: 80}); err == nil {
|
|
|
|
t.Fatal("Listen on mapped port without proxy should fail")
|
|
|
|
} else {
|
|
|
|
if !strings.Contains(err.Error(), "address already in use") {
|
|
|
|
t.Fatalf("Error should be about address already in use, got %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if _, err := net.ListenUDP("udp", &net.UDPAddr{IP: dstIP, Port: 81}); err != nil {
|
|
|
|
t.Fatal(err)
|
|
|
|
}
|
|
|
|
if host, err := pm.Map(srcAddr, dstIP, 81, false); err == nil {
|
|
|
|
t.Fatalf("Bound port shouldn't be allocated, but it was on: %v", host)
|
|
|
|
} else {
|
|
|
|
if !strings.Contains(err.Error(), "address already in use") {
|
|
|
|
t.Fatalf("Error should be about address already in use, got %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|