package cli import ( "os" "path/filepath" "strings" "testing" ) func TestAppRun_ProfileDirInjection(t *testing.T) { t.Parallel() // Set up a temporary directory to simulate XDG_CONFIG_HOME/wg-wrap/profiles tmpDir := t.TempDir() // Write a valid test-vpn.conf profile file to the temporary directory confContent := `[Interface] PrivateKey = YXNkZmFzZGZhc2RmYXNkZmFzZGZhc2RmYXNkZmFzZGY= Address = 10.0.0.2/24 [Peer] PublicKey = YXNkZmFzZGZhc2RmYXNkZmFzZGZhc2RmYXNkZmFzZGY= Endpoint = 127.0.0.1:51820 AllowedIPs = 10.0.0.0/24 ` importPath := filepath.Join(tmpDir, "test-vpn.conf") if err := os.WriteFile(importPath, []byte(confContent), 0644); err != nil { t.Fatalf("failed to write test profile: %v", err) } tests := []struct { name string args []string wantErr bool }{ { name: "valid profile with injected dir", args: []string{"wg-wrap", "--profile", "test-vpn", "true"}, wantErr: false, }, } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { app := NewApp(tt.args) app.ConfigDir = tmpDir // Inject temporary directory app.RuntimeBaseDir = tmpDir // Inject temporary directory for PID tracking err := app.Run() if (err != nil) != tt.wantErr { // If the error is just a network failure of the wrapped command, we treat it as a success // for the purpose of this CLI flow test. if err != nil && strings.Contains(err.Error(), "command execution failed") { return } t.Errorf("App.Run() error = %v, wantErr %v", err, tt.wantErr) } }) } } func TestIsValidProfileName(t *testing.T) { tests := []struct { name string want bool }{ {"default", true}, {"home", true}, {"work-vpn", true}, {"my_vpn_123", true}, {"", false}, {"..", false}, {"../home", false}, {"/etc/shadow", false}, {"-profile", false}, {"profile.conf", false}, // we append .conf so the name itself shouldn't have . {"foo/bar", false}, {"foo\\bar", false}, } for _, tt := range tests { got := IsValidProfileName(tt.name) if got != tt.want { t.Errorf("IsValidProfileName(%q) = %v; want %v", tt.name, got, tt.want) } } }