add test to make sure ipv6only=on is not erroneously removed

Remove ipv6only=on from duplicated vhosts
add test for remove duplicate ipv6only
2018-03-26 15:31:15 -07:00 · 2018-03-26 15:29:22 -07:00 · 2018-03-26 15:28:37 -07:00 · 2018-03-26 15:19:07 -07:00 · 2018-03-26 14:04:38 -07:00 · 2018-03-26 13:57:56 -07:00
4 changed files with 35 additions and 6 deletions
--- a/certbot-nginx/certbot_nginx/configurator.py
+++ b/certbot-nginx/certbot_nginx/configurator.py
@@ -332,7 +332,8 @@ class NginxConfigurator(common.Installer):
    def _vhost_from_duplicated_default(self, domain, port=None):
        if self.new_vhost is None:
            default_vhost = self._get_default_vhost(port)
-            self.new_vhost = self.parser.duplicate_vhost(default_vhost, delete_default=True)
+            self.new_vhost = self.parser.duplicate_vhost(default_vhost,
+                remove_singleton_listen_params=True)
            self.new_vhost.names = set()

        self._add_server_name_to_vhost(self.new_vhost, domain)
--- a/certbot-nginx/certbot_nginx/obj.py
+++ b/certbot-nginx/certbot_nginx/obj.py
@@ -29,6 +29,8 @@ class Addr(common.Addr):
    :param str port: port number or "\*" or ""
    :param bool ssl: Whether the directive includes 'ssl'
    :param bool default: Whether the directive includes 'default_server'
+    :param bool default: Whether this is an IPv6 address
+    :param bool ipv6only: Whether the directive includes 'ipv6only=on'

    """
    UNSPECIFIED_IPV4_ADDRESSES = ('', '*', '0.0.0.0')
--- a/certbot-nginx/certbot_nginx/parser.py
+++ b/certbot-nginx/certbot_nginx/parser.py
@@ -354,13 +354,14 @@ class NginxParser(object):
        except errors.MisconfigurationError as err:
            raise errors.MisconfigurationError("Problem in %s: %s" % (filename, str(err)))

-    def duplicate_vhost(self, vhost_template, delete_default=False, only_directives=None):
+    def duplicate_vhost(self, vhost_template, remove_singleton_listen_params=False,
+        only_directives=None):
        """Duplicate the vhost in the configuration files.

        :param :class:`~certbot_nginx.obj.VirtualHost` vhost_template: The vhost
            whose information we copy
-        :param bool delete_default: If we should remove default_server
-            from listen directives in the block.
+        :param bool remove_singleton_listen_params: If we should remove parameters
+            from listen directives in the block that can only be used once per address
        :param list only_directives: If it exists, only duplicate the named directives. Only
            looks at first level of depth; does not expand includes.

@@ -387,15 +388,18 @@ class NginxParser(object):

        enclosing_block.append(raw_in_parsed)
        new_vhost.path[-1] = len(enclosing_block) - 1
-        if delete_default:
+        if remove_singleton_listen_params:
            for addr in new_vhost.addrs:
                addr.default = False
+                addr.ipv6only = False
            for directive in enclosing_block[new_vhost.path[-1]][1]:
                if len(directive) > 0 and directive[0] == 'listen':
                    if 'default_server' in directive:
                        del directive[directive.index('default_server')]
                    if 'default' in directive:
                        del directive[directive.index('default')]
+                    if 'ipv6only=on' in directive:
+                        del directive[directive.index('ipv6only=on')]
        return new_vhost


--- a/certbot-nginx/certbot_nginx/tests/parser_test.py
+++ b/certbot-nginx/certbot_nginx/tests/parser_test.py
@@ -430,7 +430,7 @@ class NginxParserTest(util.NginxTest): #pylint: disable=too-many-public-methods

        vhosts = nparser.get_vhosts()
        default = [x for x in vhosts if 'default' in x.filep][0]
-        new_vhost = nparser.duplicate_vhost(default, delete_default=True)
+        new_vhost = nparser.duplicate_vhost(default, remove_singleton_listen_params=True)
        nparser.filedump(ext='')

        # check properties of new vhost
@@ -448,6 +448,28 @@ class NginxParserTest(util.NginxTest): #pylint: disable=too-many-public-methods
        self.assertEqual(len(default.raw), len(new_vhost_parsed.raw))
        self.assertTrue(next(iter(default.addrs)).super_eq(next(iter(new_vhost_parsed.addrs))))

+    def test_duplicate_vhost_remove_ipv6only(self):
+        nparser = parser.NginxParser(self.config_path)
+
+        vhosts = nparser.get_vhosts()
+        ipv6ssl = [x for x in vhosts if 'ipv6ssl' in x.filep][0]
+        new_vhost = nparser.duplicate_vhost(ipv6ssl, remove_singleton_listen_params=True)
+        nparser.filedump(ext='')
+
+        for addr in new_vhost.addrs:
+            self.assertFalse(addr.ipv6only)
+
+        identical_vhost = nparser.duplicate_vhost(ipv6ssl, remove_singleton_listen_params=False)
+        nparser.filedump(ext='')
+
+        called = False
+        for addr in identical_vhost.addrs:
+            if addr.ipv6:
+                self.assertTrue(addr.ipv6only)
+                called = True
+        self.assertTrue(called)
+
+

 if __name__ == "__main__":
    unittest.main()  # pragma: no cover
Author	SHA1	Message	Date
Erica Portnoy	6c168d4e7e	add test to make sure ipv6only=on is not erroneously removed	2018-03-26 15:31:15 -07:00
Erica Portnoy	83c5a0f665	Remove ipv6only=on from duplicated vhosts	2018-03-26 15:29:22 -07:00
Erica Portnoy	25e056fcbf	add test for remove duplicate ipv6only	2018-03-26 15:28:37 -07:00
Erica Portnoy	435fd10c21	Merge branch 'master' into ipv6onlydup	2018-03-26 15:19:07 -07:00
Erica Portnoy	a6cb245116	add documentation to obj.py	2018-03-26 14:04:38 -07:00
Erica Portnoy	21e90a017c	update docstring	2018-03-26 13:57:56 -07:00
Erica Portnoy	504bf6dc15	rename delete_default to remove_singleton_listen_params	2018-03-26 13:57:00 -07:00