roof/pic
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0773179962d980ab3b8cadbd28ff83114852d006
pic/tests/test_peer_management_update.py
T
roof a43f9fbf0d fix: full security audit remediation — P0/P1/P2/P3 fixes + 1020 passing tests 
P0 — Broken functionality:
- Fix 12+ endpoints with wrong manager method signatures (email/calendar/file/routing)
- Fix email_manager.delete_email_user() missing domain arg
- Fix cell-link DNS forwarding wiped on every peer change (generate_corefile now
  accepts cell_links param; add/remove_cell_dns_forward no longer clobber the file)
- Fix Flask SECRET_KEY regenerating on every restart (persisted to DATA_DIR)
- Fix _next_peer_ip exhaustion returning 500 instead of 409
- Fix ConfigManager Caddyfile path (/app/config-caddy/)
- Fix UI double-add and wrong-key peer bugs in Peers.jsx / WireGuard.jsx
- Remove hardcoded credentials from Dashboard.jsx

P1 — Security:
- CSRF token validation on all POST/PUT/DELETE/PATCH to /api/* (double-submit pattern)
- enforce_auth: 503 only when users file readable but empty; never bypass on IOError
- WireGuard add_cell_peer: validate pubkey, name, endpoint against strict regexes
- DNS add_cell_dns_forward: validate IP and domain; reject injection chars
- DNS zone write: realpath containment + record content validation
- iptables comment /32 suffix prevents substring match deleting wrong peer rules
- is_local_request() trusts only loopback + 172.16.0.0/12 (Docker bridge)
- POST /api/containers: volume allow-list prevents arbitrary host mounts
- file_manager: bcrypt ($2b→$2y) for WebDAV; realpath containment in delete_user
- email/calendar: stop persisting plaintext passwords in user records
- routing_manager: validate IPs, networks, and interface names
- peer_registry: write peers.json at mode 0o600
- vault_manager: Fernet key file at mode 0o600
- CORS: lock down to explicit origin list
- domain/cell_name validation: reject newline, brace, semicolon injection chars

P2 — Architecture:
- Peer add: rollback registry entry if firewall rules fail post-add
- restart_service(): base class now calls _restart_container(); email and calendar
  managers call cell-mail / cell-radicale respectively
- email/calendar managers sync user list (no passwords) to cell_config.json
- Pending-restart flag cleared only after helper subprocess exits with code 0
- docker-compose.yml: add config-caddy volume to API container

P3 — Tests (854 → 1020):
- Fill test_email_endpoints.py, test_calendar_endpoints.py,
  test_network_endpoints.py, test_routing_endpoints.py
- New: test_peer_management_update.py, test_peer_management_edge_cases.py,
  test_input_validation.py, test_enforce_auth_configured.py,
  test_cell_link_dns.py, test_logs_endpoints.py, test_cells_endpoints.py,
  test_is_local_request_per_endpoint.py, test_caddy_routing.py
- E2E conftest: skip WireGuard suite when wg-quick absent
- Update existing tests to match fixed signatures and comment formats

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-27 11:30:21 -04:00

177 lines
5.7 KiB
Python
Raw Blame History

#!/usr/bin/env python3
"""
Tests for PUT /api/peers/<peer_name>.
Key scenarios:
- 404 when peer_registry.get_peer returns None
- 200 on successful update
- config_needs_reinstall=True in response when internet_access changes
- config_needs_reinstall=False (config_changed=False) when only description changes
"""
import sys
import json
import unittest
from pathlib import Path
from unittest.mock import patch, MagicMock
api_dir = Path(__file__).parent.parent / 'api'
sys.path.insert(0, str(api_dir))
from app import app
class TestUpdatePeer(unittest.TestCase):
def setUp(self):
app.config['TESTING'] = True
self.client = app.test_client()
@patch('app.firewall_manager')
@patch('app.peer_registry')
def test_update_peer_returns_404_when_peer_not_found(self, mock_reg, mock_fw):
mock_reg.get_peer.return_value = None
r = self.client.put(
'/api/peers/ghost',
data=json.dumps({'description': 'updated'}),
content_type='application/json',
)
self.assertEqual(r.status_code, 404)
data = json.loads(r.data)
self.assertIn('error', data)
@patch('app.firewall_manager')
@patch('app.peer_registry')
def test_update_peer_returns_200_on_success(self, mock_reg, mock_fw):
existing = {
'peer': 'alice',
'ip': '10.0.0.2',
'internet_access': True,
'public_key': 'KEY==',
}
mock_reg.get_peer.return_value = existing
mock_reg.update_peer.return_value = True
mock_reg.list_peers.return_value = [existing]
mock_fw.apply_peer_rules.return_value = None
mock_fw.apply_all_dns_rules.return_value = None
r = self.client.put(
'/api/peers/alice',
data=json.dumps({'description': 'my laptop'}),
content_type='application/json',
)
self.assertEqual(r.status_code, 200)
data = json.loads(r.data)
self.assertIn('message', data)
@patch('app.firewall_manager')
@patch('app.peer_registry')
def test_update_peer_config_changed_true_when_internet_access_changes(
self, mock_reg, mock_fw
):
existing = {
'peer': 'alice',
'ip': '10.0.0.2',
'internet_access': True,
'public_key': 'KEY==',
}
mock_reg.get_peer.return_value = existing
mock_reg.update_peer.return_value = True
mock_reg.list_peers.return_value = [existing]
mock_fw.apply_peer_rules.return_value = None
mock_fw.apply_all_dns_rules.return_value = None
r = self.client.put(
'/api/peers/alice',
data=json.dumps({'internet_access': False}),
content_type='application/json',
)
self.assertEqual(r.status_code, 200)
data = json.loads(r.data)
self.assertTrue(data['config_changed'])
@patch('app.firewall_manager')
@patch('app.peer_registry')
def test_update_peer_config_changed_false_when_only_description_changes(
self, mock_reg, mock_fw
):
existing = {
'peer': 'alice',
'ip': '10.0.0.2',
'internet_access': True,
'public_key': 'KEY==',
}
mock_reg.get_peer.return_value = existing
mock_reg.update_peer.return_value = True
mock_reg.list_peers.return_value = [existing]
mock_fw.apply_peer_rules.return_value = None
mock_fw.apply_all_dns_rules.return_value = None
r = self.client.put(
'/api/peers/alice',
data=json.dumps({'description': 'just a label'}),
content_type='application/json',
)
self.assertEqual(r.status_code, 200)
data = json.loads(r.data)
self.assertFalse(data['config_changed'])
@patch('app.firewall_manager')
@patch('app.peer_registry')
def test_update_peer_returns_500_when_update_fails(self, mock_reg, mock_fw):
existing = {
'peer': 'alice',
'ip': '10.0.0.2',
'internet_access': True,
'public_key': 'KEY==',
}
mock_reg.get_peer.return_value = existing
mock_reg.update_peer.return_value = False
r = self.client.put(
'/api/peers/alice',
data=json.dumps({'description': 'fail'}),
content_type='application/json',
)
self.assertEqual(r.status_code, 500)
self.assertIn('error', json.loads(r.data))
@patch('app.firewall_manager')
@patch('app.peer_registry')
def test_update_peer_config_changed_true_when_ip_changes(self, mock_reg, mock_fw):
existing = {
'peer': 'alice',
'ip': '10.0.0.2',
'internet_access': True,
'public_key': 'KEY==',
}
mock_reg.get_peer.return_value = existing
mock_reg.update_peer.return_value = True
mock_reg.list_peers.return_value = [existing]
mock_fw.apply_peer_rules.return_value = None
mock_fw.apply_all_dns_rules.return_value = None
r = self.client.put(
'/api/peers/alice',
data=json.dumps({'ip': '10.0.0.99'}),
content_type='application/json',
)
self.assertEqual(r.status_code, 200)
data = json.loads(r.data)
self.assertTrue(data['config_changed'])
@patch('app.peer_registry')
def test_update_peer_returns_500_on_exception(self, mock_reg):
mock_reg.get_peer.side_effect = Exception('disk error')
r = self.client.put(
'/api/peers/alice',
data=json.dumps({'description': 'test'}),
content_type='application/json',
)
self.assertEqual(r.status_code, 500)
self.assertIn('error', json.loads(r.data))
if __name__ == '__main__':
unittest.main()
Reference in New Issue View Git Blame Copy Permalink