vagrant-proxyconf 2.0.4 → 2.0.10

data/test/issues/218/.rspec

@@ -0,0 +1,2 @@
+--color
+--format documentation

data/test/issues/218/Dockerfile

@@ -0,0 +1,47 @@
+FROM centos:7
+
+ENV CI_USERNAME vagrant
+ENV CI_PASSWORD vagrant
+ENV CI_HOMEDIR  /home/vagrant
+ENV CI_SHELL    /bin/bash
+
+EXPOSE 8888
+
+RUN yum clean all && \
+    yum makecache fast && \
+    yum -y install epel-release && \
+    yum clean expire-cache && \
+    yum -y install \
+      curl \
+      initscripts \
+      openssh-clients \
+      openssh-server \
+      sudo \
+      tinyproxy
+
+RUN /usr/sbin/sshd-keygen && \
+    mkdir -p /var/run/sshd && \
+    rm -f /usr/lib/tmpfiles.d/systemd-nologin.conf
+
+RUN if ! getent passwd $CI_USERNAME; then \
+      useradd -m -d ${CI_HOMEDIR} -s ${CI_SHELL} $CI_USERNAME; \
+    fi && \
+    echo "${CI_USERNAME}:${CI_PASSWORD}" | chpasswd && \
+    echo "${CI_USERNAME} ALL=(ALL) NOPASSWD:ALL" >> /etc/sudoers && \
+    mkdir -p /etc/sudoers.d && \
+    echo "${CI_USERNAME} ALL=(ALL) NOPASSWD:ALL" >> /etc/sudoers.d/${CI_USERNAME} && \
+    chmod 0440 /etc/sudoers.d/${CI_USERNAME} && \
+    mkdir -p ${CI_HOMEDIR}/.ssh && \
+    chown -R ${CI_USERNAME}:${CI_USERNAME} ${CI_HOMEDIR}/.ssh && \
+    chmod 0700 ${CI_HOMEDIR}/.ssh && \
+    curl -L https://raw.githubusercontent.com/hashicorp/vagrant/master/keys/vagrant.pub > ${CI_HOMEDIR}/.ssh/vagrant.pub && \
+    touch ${CI_HOMEDIR}/.ssh/authorized_keys && \
+    grep -q "$(cat ${CI_HOMEDIR}/.ssh/vagrant.pub | awk '{print $2}')" ${CI_HOMEDIR}/.ssh/authorized_keys || cat ${CI_HOMEDIR}/.ssh/vagrant.pub >> ${CI_HOMEDIR}/.ssh/authorized_keys && \
+    chown ${CI_USERNAME}:${CI_USERNAME} ${CI_HOMEDIR}/.ssh/authorized_keys && \
+    chmod 0600 ${CI_HOMEDIR}/.ssh/authorized_keys
+
+COPY tinyproxy.conf /etc/tinyproxy/tinyproxy.conf
+COPY entrypoint.sh /entrypoint.sh
+
+ENTRYPOINT ["/entrypoint.sh"]
+CMD [ "start" ]

data/test/issues/218/README.md

@@ -0,0 +1,35 @@
+Tests
+-----
+
+
+Lined to github issue [#218](https://github.com/tmatilai/vagrant-proxyconf/issues/218)
+
+
+If you are testing the current release of this plugin via bundler
+
+```
+bundle exec vagrant up default
+```
+
+## Expect
+
+
+### Box `default``
+
+  - The box `default` is a docker container that will be a reverse
+    proxy. It should provision itself and work without errors.
+
+  - You can check that the proxy is working by
+    `tail -f /var/log/tinyproxy/tinyproxy.log` inside the container
+
+  - **NOTE**: You'll need to use `docker exec <hash> -it bash` to get into the container
+
+
+### Box `docker-host`
+
+  - Vagrant should automatically instally docker-ce.
+  - The box should come up and provision itself with the proxy settings
+    configured in your Vagrantfile.
+
+
+  - **NOTE**: You can use `ssh` to connect to this container.

data/test/issues/218/Rakefile

@@ -0,0 +1,27 @@
+require 'rake'
+require 'rspec/core/rake_task'
+
+task :spec    => 'spec:all'
+task :default => :spec
+
+namespace :spec do
+  targets = []
+  Dir.glob('./spec/*').each do |dir|
+    next unless File.directory?(dir)
+    target = File.basename(dir)
+    target = "_#{target}" if target == "default"
+    targets << target
+  end
+
+  task :all     => targets
+  task :default => :all
+
+  targets.each do |target|
+    original_target = target == "_default" ? target[1..-1] : target
+    desc "Run serverspec tests to #{original_target}"
+    RSpec::Core::RakeTask.new(target.to_sym) do |t|
+      ENV['TARGET_HOST'] = original_target
+      t.pattern = "spec/#{original_target}/*_spec.rb"
+    end
+  end
+end

data/test/issues/218/Vagrantfile

@@ -0,0 +1,62 @@
+# this should be the IP address of the :default box
+$PROXY_HOST ="10.0.2.2"
+$PROXY_PORT="8888"
+$PROXY_NO_PROXY=[
+  'localhost',
+]
+
+ENV['HTTP_PROXY']  = ENV.fetch('HTTP_PROXY',  "http://#{$PROXY_HOST}:#{$PROXY_PORT}")
+ENV['HTTPS_PROXY'] = ENV.fetch('HTTPS_PROXY', "http://#{$PROXY_HOST}:#{$PROXY_PORT}")
+ENV['NO_PROXY']    = ENV.fetch('NO_PROXY',    $PROXY_NO_PROXY.join(","))
+
+puts "HTTP_PROXY  = '#{ENV["HTTP_PROXY"]}'"
+puts "HTTPS_PROXY = '#{ENV["HTTPS_PROXY"]}'"
+puts "NO_PROXY    = '#{ENV["NO_PROXY"]}'"
+
+puts "is vagrant-proxyconf installed? #{Vagrant.has_plugin?('vagrant-proxyconf')}"
+
+Vagrant.configure("2") do |config|
+
+  config.vm.define 'default' do |c|
+    c.vm.box = nil
+
+    if Vagrant.has_plugin?('vagrant-proxyconf')
+      c.proxy.enabled = false
+    end
+
+    c.vm.provider "docker" do |d|
+      d.build_dir = "."
+      d.expose = ['8888']
+      d.has_ssh = true
+      d.ports = ['8888:8888']
+    end
+  end
+
+  config.vm.define 'docker_host' do |c|
+    c.vm.box = "centos/7"
+    c.vm.box_check_update = false
+
+    if Vagrant.has_plugin?('vagrant-proxyconf')
+      c.proxy.http     = ENV['HTTP_PROXY']
+      c.proxy.https    = ENV['HTTPS_PROXY']
+      c.proxy.no_proxy = ENV['NO_PROXY']
+    end
+
+    c.vm.provision "shell", path: "force-all-outbound-traffic-through-proxy.iptables"
+
+    if Vagrant.has_plugin?('vagrant-vbguest')
+      c.vbguest.auto_update = false
+      c.vbguest.auto_reboot = true
+    end
+
+    c.vm.provision "docker"
+
+    c.vm.synced_folder ".", "/vagrant",
+      disabled: false,
+      type: "sshfs",
+      ssh_opts_append: "-o Compression=yes -o ControlPersist=60s -o ControlMaster=auto",
+      sshfs_opts_append: "-o cache=no -o nonempty"
+
+  end
+
+end

data/test/issues/218/entrypoint.sh

@@ -0,0 +1,50 @@
+#!/bin/bash
+set -ex
+
+export PATH="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
+
+start() {
+  # start ssh if sshd is installed
+  if [ -f /usr/sbin/sshd ]; then
+
+    /usr/sbin/sshd-keygen
+    /usr/sbin/sshd -t
+    /usr/sbin/sshd
+
+  else
+
+    true
+
+  fi
+
+  # start tinyproxy
+  /usr/sbin/tinyproxy \
+    -d \
+    -c "/etc/tinyproxy/tinyproxy.conf"
+}
+
+stop() {
+
+  pgrep -f 'sshd' | while read _pid
+  do
+    kill -9 $_pid
+  done
+
+  pgrep -f 'tinyproxy' | while read _pid
+  do
+    kill -9 $_pid
+  done
+
+}
+
+case "${1}" in
+
+  start)
+    start
+    ;;
+
+  stop)
+    stop
+    ;;
+
+esac

data/test/issues/218/force-all-outbound-traffic-through-proxy.iptables

@@ -0,0 +1,18 @@
+#!/usr/bin/env bash
+set -ex
+
+# OUTPUT:IN= OUT=eth0 SRC=10.0.2.15 DST=10.0.2.2 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=61920 DF PROTO=TCP SPT=59780 DPT=8888 WINDOW=65535 RES=0x00 ACK URGP=0
+# OUTPUT:IN= OUT=eth0 SRC=10.0.2.15 DST=10.0.2.2 LEN=84 TOS=0x10 PREC=0x00 TTL=64 ID=22073 DF PROTO=TCP SPT=22 DPT=55694 WINDOW=47600 RES=0x00 ACK PSH URGP=0
+# OUTPUT:IN= OUT=eth0 SRC=10.0.2.15 DST=10.0.2.3 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=30731 PROTO=UDP SPT=45910 DPT=53 LEN=40
+
+iptables -F OUTPUT
+iptables -Z OUTPUT
+
+iptables -A OUTPUT -d 10.0.2.2 -p tcp -m tcp --dport 8888 -j ACCEPT
+iptables -A OUTPUT -p tcp -m tcp --sport 22 -j ACCEPT
+iptables -A OUTPUT -p udp -m udp --dport 53 -j ACCEPT
+iptables -A OUTPUT -p udp -m udp --dport 123 -j ACCEPT
+
+iptables -A OUTPUT -j LOG --log-prefix 'OUTPUT:DROPPED '
+
+iptables -P OUTPUT DROP

data/test/issues/218/spec/default/redhat_spec.rb

@@ -0,0 +1,16 @@
+require 'spec_helper'
+
+describe package('tinyproxy') do
+  it { should be_installed }
+end
+
+describe service('tinyproxy') do
+  it { should be_enabled }
+  it { should be_running }
+end
+
+
+describe port(8888) do
+  it { should be_listening }
+  it { should be_listening.on('0.0.0.0').with('tcp') }
+end

data/test/issues/218/spec/docker_host/redhat_spec.rb

@@ -0,0 +1,171 @@
+require 'spec_helper'
+
+PROXY_HOST = "10.0.2.2"
+
+describe service('docker') do
+  it { should be_running }
+  it { should be_enabled  }
+end
+
+
+describe file('/etc/docker/config.json') do
+  it { should_not be_file }
+  it { should_not exist }
+end
+
+
+describe file('/home/vagrant/.docker/config.json') do
+  it { should be_file }
+  it { should exist }
+  it { should be_mode 644 }
+  it { should be_owned_by "vagrant" }
+  it { should be_grouped_into "docker" }
+end
+
+context 'when proxy is enabled' do
+  before(:context) do
+    ENV['HTTP_PROXY']  = "http://#{PROXY_HOST}:8888"
+    ENV['HTTPS_PROXY'] = "http://#{PROXY_HOST}:8888"
+    ENV['NO_PROXY']    = "*.example.com"
+
+    `vagrant provision #{ENV['TARGET_HOST']}`
+    `sleep 3`
+  end
+
+  describe file('/home/vagrant/.docker/config.json') do
+    let(:expected_content) do
+      {
+        "proxies" => {
+          "default" => {
+            "httpProxy"  => "http://10.0.2.2:8888",
+            "httpsProxy" => "http://10.0.2.2:8888",
+             "noProxy"   => "*.example.com",
+          }
+        }
+      }
+    end
+
+    its(:content_as_json) do
+       should include(expected_content)
+    end
+  end
+
+end
+
+context 'when HTTP_PROXY=""' do
+
+  before(:context) do
+    ENV['HTTP_PROXY']  = ""
+    ENV['HTTPS_PROXY'] = "https://#{PROXY_HOST}:8888"
+    ENV['NO_PROXY']    = "*.example.com"
+
+    `vagrant provision #{ENV['TARGET_HOST']}`
+    `sleep 3`
+  end
+
+  describe file('/home/vagrant/.docker/config.json') do
+    let(:expected_content) do
+      {
+        "proxies" => {
+          "default" => {
+            "httpsProxy" => "https://#{PROXY_HOST}:8888",
+             "noProxy"   => "*.example.com",
+          }
+        }
+      }
+    end
+
+    its(:content_as_json) do
+       should include(expected_content)
+    end
+  end
+
+end
+
+context 'when HTTPS_PROXY=""' do
+
+  before(:context) do
+    ENV['HTTP_PROXY']  = "http://#{PROXY_HOST}:8888"
+    ENV['HTTPS_PROXY'] = ""
+    ENV['NO_PROXY']    = "*.example.com"
+
+    `vagrant provision #{ENV['TARGET_HOST']}`
+  end
+
+  describe file('/home/vagrant/.docker/config.json') do
+    let(:expected_content) do
+      {
+        "proxies" => {
+          "default" => {
+            "httpProxy"  => "http://#{PROXY_HOST}:8888",
+             "noProxy"   => "*.example.com",
+          }
+        }
+      }
+    end
+
+    its(:content_as_json) do
+       should include(expected_content)
+    end
+  end
+
+end
+
+context 'when HTTPS_PROXY="" and HTTP_PROXY=""' do
+
+  before(:context) do
+    ENV['HTTP_PROXY']  = ""
+    ENV['HTTPS_PROXY'] = ""
+    ENV['NO_PROXY']    = "*.example.com"
+
+    `vagrant provision #{ENV['TARGET_HOST']}`
+    `sleep 3`
+  end
+
+  describe file('/home/vagrant/.docker/config.json') do
+    let(:expected_content) do
+      {
+        "proxies" => {
+          "default" => {
+             "noProxy"   => "*.example.com",
+          }
+        }
+      }
+    end
+
+    its(:content_as_json) do
+       should include(expected_content)
+    end
+  end
+
+end
+
+context 'when NO_PROXY=""' do
+
+  before(:context) do
+    ENV['HTTP_PROXY']  = "http://#{PROXY_HOST}:8888"
+    ENV['HTTPS_PROXY'] = "https://#{PROXY_HOST}:8888"
+    ENV['NO_PROXY']    = ""
+
+    `vagrant provision #{ENV['TARGET_HOST']}`
+    `sleep 3`
+  end
+
+  describe file('/home/vagrant/.docker/config.json') do
+    let(:expected_content) do
+      {
+        "proxies" => {
+          "default" => {
+             "httpProxy" => "http://#{PROXY_HOST}:8888",
+             "httpsProxy" => "https://#{PROXY_HOST}:8888",
+          }
+        }
+      }
+    end
+
+    its(:content_as_json) do
+       should include(expected_content)
+    end
+  end
+
+end

data/test/issues/218/spec/spec_helper.rb

@@ -0,0 +1,43 @@
+require 'serverspec'
+require 'net/ssh'
+require 'tempfile'
+
+set :backend, :ssh
+
+if ENV['ASK_SUDO_PASSWORD']
+  begin
+    require 'highline/import'
+  rescue LoadError
+    fail "highline is not available. Try installing it."
+  end
+  set :sudo_password, ask("Enter sudo password: ") { |q| q.echo = false }
+else
+  set :sudo_password, ENV['SUDO_PASSWORD'] || "vagrant"
+end
+
+host = ENV['TARGET_HOST']
+
+`vagrant up #{host}`
+
+config = Tempfile.new('', Dir.tmpdir)
+config.write(`vagrant ssh-config #{host}`)
+config.close
+
+options = Net::SSH::Config.for(host, [config.path])
+
+options[:user] ||= Etc.getlogin
+
+set :host,        options[:host_name] || host
+set :ssh_options, options
+
+# Disable sudo
+# set :disable_sudo, true
+
+
+# Set environment variables
+set :env,
+      :LANG => 'C',
+      :LC_MESSAGES => 'C'
+
+# Set PATH
+# set :path, '/sbin:/usr/local/sbin:$PATH'