From 82d756152acd1854564e1dde27ccb363c4873a32 Mon Sep 17 00:00:00 2001 From: downtownallday Date: Sun, 30 Oct 2022 08:23:36 -0400 Subject: [PATCH] Adds a test to ensure dns is functional --- tests/runner.sh | 1 + tests/suites/_ldap-functions.sh | 6 +++ tests/suites/dns-basic.sh | 89 +++++++++++++++++++++++++++++++++ 3 files changed, 96 insertions(+) create mode 100644 tests/suites/dns-basic.sh diff --git a/tests/runner.sh b/tests/runner.sh index 199c952a..68dec47a 100755 --- a/tests/runner.sh +++ b/tests/runner.sh @@ -24,6 +24,7 @@ cd "$(dirname $0)" default_suites=( ldap-connection ldap-access + dns-basic mail-basic mail-from mail-aliases diff --git a/tests/suites/_ldap-functions.sh b/tests/suites/_ldap-functions.sh index 308c99b4..21d7bc75 100644 --- a/tests/suites/_ldap-functions.sh +++ b/tests/suites/_ldap-functions.sh @@ -321,6 +321,12 @@ test_r_access() { } +domain_exists() { + get_attribute "$LDAP_DOMAINS_BASE" "dc=$1" dn + [ -z "$ATTR_DN" ] && return 1 + return 0 +} + assert_r_access() { # asserts read or unreadable access FAILURE="" diff --git a/tests/suites/dns-basic.sh b/tests/suites/dns-basic.sh new file mode 100644 index 00000000..24969a74 --- /dev/null +++ b/tests/suites/dns-basic.sh @@ -0,0 +1,89 @@ +# -*- indent-tabs-mode: t; tab-width: 4; -*- +##### +##### This file is part of Mail-in-a-Box-LDAP which is released under the +##### terms of the GNU Affero General Public License as published by the +##### Free Software Foundation, either version 3 of the License, or (at +##### your option) any later version. See file LICENSE or go to +##### https://github.com/downtownallday/mailinabox-ldap for full license +##### details. +##### + +# +# Ensure dns is functional + + +assert_nslookup() { + local query="$1" + local nameserver="$2" + local expected_ip="$3" + record "[lookup $query]" + local output code + output=$(nslookup "$query" - "$nameserver" 2>&1) + code=$? + record "$output" + if [ $code -ne 0 ]; then + local msg="$(grep "^*" <<<"$output")" + test_failure "Could not lookup $query on $nameserver - ${msg:-$output}" + + elif [ ! -z "$expected_ip" ]; then + local addresses + addresses=( $(awk '/Address:/ { print $2 }' <<<"$output") ) + if ! array_contains "$expected_ip" ${addresses[@]}; then + test_failure "Expected $query to resolve to '$expected_ip' but got: ${addresses[*]}" + fi + fi + +} + +is_nsd_domain() { + [ ! -e /etc/nsd/nsd.conf.d/zones.conf ] && return 1 + grep -F "name: ${1:-xxxxx}" /etc/nsd/nsd.conf.d/zones.conf >/dev/null +} + + +test_nsd_queries() { + test_start "nsd-queries" + + # lookup our own hostname + assert_nslookup "$PRIMARY_HOSTNAME" "$PRIVATE_IP" "$PUBLIC_IP" + + # create a new domain and ensure we can look that up + # 1. create a standard user alice with a new unique domain + local alice="alice@alice.com" + local alice_domain="$(email_domainpart "$alice")" + + if is_nsd_domain "$alice_domain"; then + test_failure "Before test start, $alice_domain should not be listed as an existing zone in /etc/nsd/nsd.conf.d/zones.conf" + + elif domain_exists "$alice_domain"; then + test_failure "Before test start, $alice_domain should not be an existing MiaB domain" + + elif mgmt_assert_create_user "$alice" "alice_1234"; then + # 2. assert we can lookup the new domain + assert_nslookup "$alice_domain" "$PRIVATE_IP" "$PUBLIC_IP" + + # cleanup + mgmt_assert_delete_user "$alice" + + if is_nsd_domain "$alice_domain"; then + test_failure "Domain $alice_domain should not exist as a nsd domain in /etc/nsd/nsd.conf.d/zones.conf" + fi + fi + + test_end +} + +test_bind_queries() { + test_start "bind-queries" + assert_nslookup "google.com" "localhost" + test_end +} + + + +suite_start "dns-basic" mgmt_start + +test_nsd_queries +test_bind_queries + +suite_end mgmt_end