ssl_exporter/ssl_exporter_test.go

package main

import (
	"net/http"
	"net/http/httptest"
	"os"
	"strings"
	"testing"

	"github.com/go-kit/log"
	"github.com/ribbybibby/ssl_exporter/v2/config"
	"github.com/ribbybibby/ssl_exporter/v2/test"
)

// TestProbeHandler tests that the probe handler sets the ssl_probe_success and
// ssl_prober metrics correctly
func TestProbeHandler(t *testing.T) {
	server, _, _, caFile, teardown, err := test.SetupHTTPSServer()
	if err != nil {
		t.Fatalf(err.Error())
	}
	defer teardown()

	server.StartTLS()
	defer server.Close()

	conf := &config.Config{
		Modules: map[string]config.Module{
			"https": config.Module{
				Prober: "https",
				TLSConfig: config.TLSConfig{
					CAFile: caFile,
				},
			},
		},
	}

	rr, err := probe(server.URL, "https", conf)
	if err != nil {
		t.Fatalf(err.Error())
	}

	// Check probe success
	if ok := strings.Contains(rr.Body.String(), "ssl_probe_success 1"); !ok {
		t.Errorf("expected `ssl_probe_success 1`")
	}

	// Check prober metric
	if ok := strings.Contains(rr.Body.String(), "ssl_prober{prober=\"https\"} 1"); !ok {
		t.Errorf("expected `ssl_prober{prober=\"https\"} 1`")
	}
}

// TestProbeHandlerFail tests that the probe handler sets the ssl_probe_success and
// ssl_prober metrics correctly when the probe fails
func TestProbeHandlerFail(t *testing.T) {
	rr, err := probe("localhost:6666", "", config.DefaultConfig)
	if err != nil {
		t.Fatalf(err.Error())
	}

	// Check probe success
	if ok := strings.Contains(rr.Body.String(), "ssl_probe_success 0"); !ok {
		t.Errorf("expected `ssl_probe_success 0`")
	}

	// Check prober metric
	if ok := strings.Contains(rr.Body.String(), "ssl_prober{prober=\"tcp\"} 1"); !ok {
		t.Errorf("expected `ssl_prober{prober=\"tcp\"} 1`")
	}
}

// TestProbeHandlerDefaultModule tests the default module is used correctly
func TestProbeHandlerDefaultModule(t *testing.T) {
	server, _, _, caFile, teardown, err := test.SetupHTTPSServer()
	if err != nil {
		t.Fatalf(err.Error())
	}
	defer teardown()

	server.StartTLS()
	defer server.Close()

	conf := &config.Config{
		DefaultModule: "https",
		Modules: map[string]config.Module{
			"tcp": config.Module{
				Prober: "tcp",
				TLSConfig: config.TLSConfig{
					CAFile: caFile,
				},
			},
			"https": config.Module{
				Prober: "https",
				TLSConfig: config.TLSConfig{
					CAFile: caFile,
				},
			},
		},
	}

	rr, err := probe(server.URL, "", conf)
	if err != nil {
		t.Fatalf(err.Error())
	}

	// Should have used the https prober
	if ok := strings.Contains(rr.Body.String(), "ssl_prober{prober=\"https\"} 1"); !ok {
		t.Errorf("expected `ssl_prober{prober=\"https\"} 1`")
	}

	conf.DefaultModule = ""

	rr, err = probe(server.URL, "", conf)
	if err != nil {
		t.Fatalf(err.Error())
	}

	// It should fail when there's no default module
	if rr.Code != http.StatusBadRequest {
		t.Errorf("expected code: %d, got: %d", http.StatusBadRequest, rr.Code)
	}

}

// TestProbeHandlerTarget tests the target module parameter is used correctly
func TestProbeHandlerDefaultTarget(t *testing.T) {
	server, _, _, caFile, teardown, err := test.SetupHTTPSServer()
	if err != nil {
		t.Fatalf(err.Error())
	}
	defer teardown()

	server.StartTLS()
	defer server.Close()

	conf := &config.Config{
		Modules: map[string]config.Module{
			"https": config.Module{
				Prober: "https",
				Target: server.URL,
				TLSConfig: config.TLSConfig{
					CAFile: caFile,
				},
			},
		},
	}

	// Should use the target in the module configuration
	rr, err := probe("", "https", conf)
	if err != nil {
		t.Fatalf(err.Error())
	}

	// Check probe success
	if ok := strings.Contains(rr.Body.String(), "ssl_probe_success 1"); !ok {
		t.Errorf("expected `ssl_probe_success 1`")
	}

	// Check prober metric
	if ok := strings.Contains(rr.Body.String(), "ssl_prober{prober=\"https\"} 1"); !ok {
		t.Errorf("expected `ssl_prober{prober=\"https\"} 1`")
	}

	// Should ignore a different target in the target parameter
	rr, err = probe("localhost:6666", "https", conf)
	if err != nil {
		t.Fatalf(err.Error())
	}

	// Check probe success
	if ok := strings.Contains(rr.Body.String(), "ssl_probe_success 1"); !ok {
		t.Errorf("expected `ssl_probe_success 1`")
	}

	// Check prober metric
	if ok := strings.Contains(rr.Body.String(), "ssl_prober{prober=\"https\"} 1"); !ok {
		t.Errorf("expected `ssl_prober{prober=\"https\"} 1`")
	}

	conf.Modules["tcp"] = config.Module{
		Prober: "tcp",
		TLSConfig: config.TLSConfig{
			CAFile: caFile,
		},
	}

	rr, err = probe("", "tcp", conf)
	if err != nil {
		t.Fatalf(err.Error())
	}

	// It should fail when there's no target in the module configuration or
	// the query parameters
	if rr.Code != http.StatusBadRequest {
		t.Errorf("expected code: %d, got: %d", http.StatusBadRequest, rr.Code)
	}
}

func probe(target, module string, conf *config.Config) (*httptest.ResponseRecorder, error) {
	uri := "/probe?target=" + target
	if module != "" {
		uri = uri + "&module=" + module
	}
	req, err := http.NewRequest("GET", uri, nil)
	if err != nil {
		return nil, err
	}

	rr := httptest.NewRecorder()
	handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		probeHandler(newTestLogger(), w, r, conf)
	})

	handler.ServeHTTP(rr, req)

	return rr, nil
}

func newTestLogger() log.Logger {
	return log.NewLogfmtLogger(log.NewSyncWriter(os.Stdout))
}
Adding some basic tests 2017-12-02 17:38:30 +02:00			`package main`

			`import (`
			`"net/http"`
			`"net/http/httptest"`
Move to github.com/prometheus/common/promlog for logging (#71) * Move to yaml.v3 everywhere * Switch to github.com/prometheus/common/promlog for logging 2021-06-23 18:22:22 +02:00			`"os"`
Adding some basic tests 2017-12-02 17:38:30 +02:00			`"strings"`
			`"testing"`
Move to a modules/probers model, like the blackbox_exporter. (#34) There are a number of reasons for this change: - Modules allow a single instance of the exporter to be configured with numerous different tls configs. Previously you had to run a different exporter for each combination. - Adding new and more complicated options to the exporter should be easier with modules than if I was to go down the route of accepting configuration directly through url params - I prefer defining a specific prober (https,tcp) over using the URL to guess what the user wants 2020-06-17 17:29:21 +02:00
Move to github.com/prometheus/common/promlog for logging (#71) * Move to yaml.v3 everywhere * Switch to github.com/prometheus/common/promlog for logging 2021-06-23 18:22:22 +02:00			`"github.com/go-kit/log"`
Amend module path for v2 2022-05-07 10:31:08 +02:00			`"github.com/ribbybibby/ssl_exporter/v2/config"`
			`"github.com/ribbybibby/ssl_exporter/v2/test"`
Adding some basic tests 2017-12-02 17:38:30 +02:00			`)`

Move tests to prober package 2020-11-16 02:41:36 +02:00			`// TestProbeHandler tests that the probe handler sets the ssl_probe_success and`
			`// ssl_prober metrics correctly`
			`func TestProbeHandler(t *testing.T) {`
			`server, _, _, caFile, teardown, err := test.SetupHTTPSServer()`
Improve tests and remove reliance on external websites 2019-03-27 20:10:35 +02:00			`if err != nil {`
			`t.Fatalf(err.Error())`
			`}`
Move to a modules/probers model, like the blackbox_exporter. (#34) There are a number of reasons for this change: - Modules allow a single instance of the exporter to be configured with numerous different tls configs. Previously you had to run a different exporter for each combination. - Adding new and more complicated options to the exporter should be easier with modules than if I was to go down the route of accepting configuration directly through url params - I prefer defining a specific prober (https,tcp) over using the URL to guess what the user wants 2020-06-17 17:29:21 +02:00			`defer teardown()`

			`server.StartTLS()`
			`defer server.Close()`
Improve tests and remove reliance on external websites 2019-03-27 20:10:35 +02:00
Move to a modules/probers model, like the blackbox_exporter. (#34) There are a number of reasons for this change: - Modules allow a single instance of the exporter to be configured with numerous different tls configs. Previously you had to run a different exporter for each combination. - Adding new and more complicated options to the exporter should be easier with modules than if I was to go down the route of accepting configuration directly through url params - I prefer defining a specific prober (https,tcp) over using the URL to guess what the user wants 2020-06-17 17:29:21 +02:00			`conf := &config.Config{`
			`Modules: map[string]config.Module{`
			`"https": config.Module{`
			`Prober: "https",`
Support TLS renegotiation (#83) * Support TLS renegotiation * Bump version * Revert version bump * Extend TLSConfig with renegotiation support * Update config/config.go - comment formatting Co-authored-by: Rob Best <robertbest89@gmail.com> * add dedicated renegotiation example * Create local NewTLSConfig in order to incorporate local extentions * go mod tidy * Move TLS renegotiation parsing into UnmarshalYAML Co-authored-by: Rob Best <robertbest89@gmail.com> 2021-12-09 10:34:59 +02:00			`TLSConfig: config.TLSConfig{`
Move to a modules/probers model, like the blackbox_exporter. (#34) There are a number of reasons for this change: - Modules allow a single instance of the exporter to be configured with numerous different tls configs. Previously you had to run a different exporter for each combination. - Adding new and more complicated options to the exporter should be easier with modules than if I was to go down the route of accepting configuration directly through url params - I prefer defining a specific prober (https,tcp) over using the URL to guess what the user wants 2020-06-17 17:29:21 +02:00			`CAFile: caFile,`
			`},`
			`},`
			`},`
			`}`

			`rr, err := probe(server.URL, "https", conf)`
Improve tests and remove reliance on external websites 2019-03-27 20:10:35 +02:00			`if err != nil {`
			`t.Fatalf(err.Error())`
			`}`

Move tests to prober package 2020-11-16 02:41:36 +02:00			`// Check probe success`
Add file prober 2020-11-09 14:57:28 +02:00			`if ok := strings.Contains(rr.Body.String(), "ssl_probe_success 1"); !ok {`
			t.Errorf("expected `ssl_probe_success 1`")
Improve tests and remove reliance on external websites 2019-03-27 20:10:35 +02:00			`}`

Move tests to prober package 2020-11-16 02:41:36 +02:00			`// Check prober metric`
Add a configurable timeout to the module configuration (#55) 2020-10-09 17:47:21 +02:00			`if ok := strings.Contains(rr.Body.String(), "ssl_prober{prober=\"https\"} 1"); !ok {`
			t.Errorf("expected `ssl_prober{prober=\"https\"} 1`")
			`}`
			`}`

Add default_module and target options If default_module is set then the exporter will use that when the module parameter isn't set. If target is set for a module then the module will use that target, ignoring the target parameter completely. 2021-12-23 17:10:38 +02:00			`// TestProbeHandlerFail tests that the probe handler sets the ssl_probe_success and`
Move tests to prober package 2020-11-16 02:41:36 +02:00			`// ssl_prober metrics correctly when the probe fails`
			`func TestProbeHandlerFail(t *testing.T) {`
			`rr, err := probe("localhost:6666", "", config.DefaultConfig)`
Add a configurable timeout to the module configuration (#55) 2020-10-09 17:47:21 +02:00			`if err != nil {`
			`t.Fatalf(err.Error())`
			`}`

Move tests to prober package 2020-11-16 02:41:36 +02:00			`// Check probe success`
Add file prober 2020-11-09 14:57:28 +02:00			`if ok := strings.Contains(rr.Body.String(), "ssl_probe_success 0"); !ok {`
			t.Errorf("expected `ssl_probe_success 0`")
Add a configurable timeout to the module configuration (#55) 2020-10-09 17:47:21 +02:00			`}`

Move tests to prober package 2020-11-16 02:41:36 +02:00			`// Check prober metric`
Add a configurable timeout to the module configuration (#55) 2020-10-09 17:47:21 +02:00			`if ok := strings.Contains(rr.Body.String(), "ssl_prober{prober=\"tcp\"} 1"); !ok {`
			t.Errorf("expected `ssl_prober{prober=\"tcp\"} 1`")
			`}`
Add metrics for certificates in the verified chains (#48) 2020-09-11 19:20:41 +02:00			`}`

Add default_module and target options If default_module is set then the exporter will use that when the module parameter isn't set. If target is set for a module then the module will use that target, ignoring the target parameter completely. 2021-12-23 17:10:38 +02:00			`// TestProbeHandlerDefaultModule tests the default module is used correctly`
			`func TestProbeHandlerDefaultModule(t *testing.T) {`
			`server, _, _, caFile, teardown, err := test.SetupHTTPSServer()`
			`if err != nil {`
			`t.Fatalf(err.Error())`
			`}`
			`defer teardown()`

			`server.StartTLS()`
			`defer server.Close()`

			`conf := &config.Config{`
			`DefaultModule: "https",`
			`Modules: map[string]config.Module{`
			`"tcp": config.Module{`
			`Prober: "tcp",`
			`TLSConfig: config.TLSConfig{`
			`CAFile: caFile,`
			`},`
			`},`
			`"https": config.Module{`
			`Prober: "https",`
			`TLSConfig: config.TLSConfig{`
			`CAFile: caFile,`
			`},`
			`},`
			`},`
			`}`

			`rr, err := probe(server.URL, "", conf)`
			`if err != nil {`
			`t.Fatalf(err.Error())`
			`}`

			`// Should have used the https prober`
			`if ok := strings.Contains(rr.Body.String(), "ssl_prober{prober=\"https\"} 1"); !ok {`
			t.Errorf("expected `ssl_prober{prober=\"https\"} 1`")
			`}`

			`conf.DefaultModule = ""`

			`rr, err = probe(server.URL, "", conf)`
			`if err != nil {`
			`t.Fatalf(err.Error())`
			`}`

			`// It should fail when there's no default module`
			`if rr.Code != http.StatusBadRequest {`
			`t.Errorf("expected code: %d, got: %d", http.StatusBadRequest, rr.Code)`
			`}`

			`}`

			`// TestProbeHandlerTarget tests the target module parameter is used correctly`
			`func TestProbeHandlerDefaultTarget(t *testing.T) {`
			`server, _, _, caFile, teardown, err := test.SetupHTTPSServer()`
			`if err != nil {`
			`t.Fatalf(err.Error())`
			`}`
			`defer teardown()`

			`server.StartTLS()`
			`defer server.Close()`

			`conf := &config.Config{`
			`Modules: map[string]config.Module{`
			`"https": config.Module{`
			`Prober: "https",`
			`Target: server.URL,`
			`TLSConfig: config.TLSConfig{`
			`CAFile: caFile,`
			`},`
			`},`
			`},`
			`}`

			`// Should use the target in the module configuration`
			`rr, err := probe("", "https", conf)`
			`if err != nil {`
			`t.Fatalf(err.Error())`
			`}`

			`// Check probe success`
			`if ok := strings.Contains(rr.Body.String(), "ssl_probe_success 1"); !ok {`
			t.Errorf("expected `ssl_probe_success 1`")
			`}`

			`// Check prober metric`
			`if ok := strings.Contains(rr.Body.String(), "ssl_prober{prober=\"https\"} 1"); !ok {`
			t.Errorf("expected `ssl_prober{prober=\"https\"} 1`")
			`}`

			`// Should ignore a different target in the target parameter`
			`rr, err = probe("localhost:6666", "https", conf)`
			`if err != nil {`
			`t.Fatalf(err.Error())`
			`}`

			`// Check probe success`
			`if ok := strings.Contains(rr.Body.String(), "ssl_probe_success 1"); !ok {`
			t.Errorf("expected `ssl_probe_success 1`")
			`}`

			`// Check prober metric`
			`if ok := strings.Contains(rr.Body.String(), "ssl_prober{prober=\"https\"} 1"); !ok {`
			t.Errorf("expected `ssl_prober{prober=\"https\"} 1`")
			`}`

			`conf.Modules["tcp"] = config.Module{`
			`Prober: "tcp",`
			`TLSConfig: config.TLSConfig{`
			`CAFile: caFile,`
			`},`
			`}`

			`rr, err = probe("", "tcp", conf)`
			`if err != nil {`
			`t.Fatalf(err.Error())`
			`}`

			`// It should fail when there's no target in the module configuration or`
			`// the query parameters`
			`if rr.Code != http.StatusBadRequest {`
			`t.Errorf("expected code: %d, got: %d", http.StatusBadRequest, rr.Code)`
			`}`
			`}`

Move to a modules/probers model, like the blackbox_exporter. (#34) There are a number of reasons for this change: - Modules allow a single instance of the exporter to be configured with numerous different tls configs. Previously you had to run a different exporter for each combination. - Adding new and more complicated options to the exporter should be easier with modules than if I was to go down the route of accepting configuration directly through url params - I prefer defining a specific prober (https,tcp) over using the URL to guess what the user wants 2020-06-17 17:29:21 +02:00			`func probe(target, module string, conf config.Config) (httptest.ResponseRecorder, error) {`
			`uri := "/probe?target=" + target`
			`if module != "" {`
			`uri = uri + "&module=" + module`
Improve tests and remove reliance on external websites 2019-03-27 20:10:35 +02:00			`}`
			`req, err := http.NewRequest("GET", uri, nil)`
			`if err != nil {`
			`return nil, err`
			`}`

			`rr := httptest.NewRecorder()`
			`handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
Move to github.com/prometheus/common/promlog for logging (#71) * Move to yaml.v3 everywhere * Switch to github.com/prometheus/common/promlog for logging 2021-06-23 18:22:22 +02:00			`probeHandler(newTestLogger(), w, r, conf)`
Improve tests and remove reliance on external websites 2019-03-27 20:10:35 +02:00			`})`

			`handler.ServeHTTP(rr, req)`

			`return rr, nil`
			`}`
Move to github.com/prometheus/common/promlog for logging (#71) * Move to yaml.v3 everywhere * Switch to github.com/prometheus/common/promlog for logging 2021-06-23 18:22:22 +02:00
			`func newTestLogger() log.Logger {`
			`return log.NewLogfmtLogger(log.NewSyncWriter(os.Stdout))`
			`}`