Remove upstreamed work

Signed-off-by: Kristoffer Dalby <[email protected]>
juanfont · Mar 6, 2023 · 0c72a32 · 0c72a32
1 parent 0ed5863
commit 0c72a32
Showing 1 changed file with 0 additions and 170 deletions.
diff --git a/integration/acl_test.go b/integration/acl_test.go
@@ -337,173 +337,3 @@ func TestACLNamedHostsCanPing(t *testing.T) {
 	err = scenario.Shutdown()
 	assert.NoError(t, err)
 }
-
-// This tests a different ACL mechanism, if a host _cannot_ connect
-// to another node at all based on ACL, it should just not be part
-// of the NetMap sent to the host. This is slightly different than
-// the other tests as we can just check if the hosts are present
-// or not.
-func TestACLHostsInNetMapTable(t *testing.T) {
-	IntegrationSkip(t)
-
-	// NOTE: All want cases currently checks the
-	// total count of expected peers, this would
-	// typically be the client count of the users
-	// they can access minus one (them self).
-	tests := map[string]struct {
-		users  map[string]int
-		policy headscale.ACLPolicy
-		want   map[string]int
-	}{
-		// Test that when we have no ACL, each client netmap has
-		// the amount of peers of the total amount of clients
-		"base-acls": {
-			users: map[string]int{
-				"user1": 2,
-				"user2": 2,
-			},
-			policy: headscale.ACLPolicy{
-				ACLs: []headscale.ACL{
-					{
-						Action:       "accept",
-						Sources:      []string{"*"},
-						Destinations: []string{"*:*"},
-					},
-				},
-			}, want: map[string]int{
-				"user1": 3, // ns1 + ns2
-				"user2": 3, // ns2 + ns1
-			},
-		},
-		// Test that when we have two users, which cannot see
-		// eachother, each node has only the number of pairs from
-		// their own user.
-		"two-isolated-users": {
-			users: map[string]int{
-				"user1": 2,
-				"user2": 2,
-			},
-			policy: headscale.ACLPolicy{
-				ACLs: []headscale.ACL{
-					{
-						Action:       "accept",
-						Sources:      []string{"user1"},
-						Destinations: []string{"user1:*"},
-					},
-					{
-						Action:       "accept",
-						Sources:      []string{"user2"},
-						Destinations: []string{"user2:*"},
-					},
-				},
-			}, want: map[string]int{
-				"user1": 1,
-				"user2": 1,
-			},
-		},
-		// Test that when we have two users, with ACLs and they
-		// are restricted to a single port, nodes are still present
-		// in the netmap.
-		"two-restricted-present-in-netmap": {
-			users: map[string]int{
-				"user1": 2,
-				"user2": 2,
-			},
-			policy: headscale.ACLPolicy{
-				ACLs: []headscale.ACL{
-					{
-						Action:       "accept",
-						Sources:      []string{"user1"},
-						Destinations: []string{"user1:22"},
-					},
-					{
-						Action:       "accept",
-						Sources:      []string{"user2"},
-						Destinations: []string{"user2:22"},
-					},
-					{
-						Action:       "accept",
-						Sources:      []string{"user1"},
-						Destinations: []string{"user2:22"},
-					},
-					{
-						Action:       "accept",
-						Sources:      []string{"user2"},
-						Destinations: []string{"user1:22"},
-					},
-				},
-			}, want: map[string]int{
-				"user1": 3,
-				"user2": 3,
-			},
-		},
-		// Test that when we have two users, that are isolated,
-		// but one can see the others, we have the appropriate number
-		// of pairs
-		"two-ns-one-isolated": {
-			users: map[string]int{
-				"user1": 2,
-				"user2": 2,
-			},
-			policy: headscale.ACLPolicy{
-				ACLs: []headscale.ACL{
-					{
-						Action:       "accept",
-						Sources:      []string{"user1"},
-						Destinations: []string{"user1:*"},
-					},
-					{
-						Action:       "accept",
-						Sources:      []string{"user2"},
-						Destinations: []string{"user2:*"},
-					},
-					{
-						Action:       "accept",
-						Sources:      []string{"user1"},
-						Destinations: []string{"user2:*"},
-					},
-				},
-			}, want: map[string]int{
-				"user1": 3, // ns1 + ns2
-				"user2": 1,
-			},
-		},
-	}
-
-	for name, testCase := range tests {
-		t.Run(name, func(t *testing.T) {
-			scenario, err := NewScenario()
-			assert.NoError(t, err)
-
-			spec := testCase.users
-
-			err = scenario.CreateHeadscaleEnv(spec,
-				[]tsic.Option{},
-				hsic.WithACLPolicy(&testCase.policy),
-				// hsic.WithTestName(fmt.Sprintf("aclinnetmap%s", name)),
-			)
-			assert.NoError(t, err)
-
-			allClients, err := scenario.ListTailscaleClients()
-			assert.NoError(t, err)
-
-			err = scenario.WaitForTailscaleSync()
-			assert.NoError(t, err)
-
-			// allHostnames, err := scenario.ListTailscaleClientsFQDNs()
-			// assert.NoError(t, err)
-
-			for _, client := range allClients {
-				status, err := client.Status()
-				assert.NoError(t, err)
-
-				user := status.User[status.Self.UserID].LoginName
-
-				assert.Equal(t, (testCase.want[user]), len(status.Peer))
-			}
-
-			err = scenario.Shutdown()
-			assert.NoError(t, err)
-		})
-	}
-}