Merge branch 'main' into dependabot/github_actions/github-actions-167a898cab

arslanbekov · web-flow · commit c5829a22dada · 2025-09-08T07:27:26.000+01:00
diff --git a/cloudconnexa/cloudconnexa.go b/cloudconnexa/cloudconnexa.go
@@ -71,6 +71,12 @@ func (e ErrClientResponse) Error() string {
 	return fmt.Sprintf("status code: %d, response body: %s", e.status, e.body)
 }
 
+// StatusCode returns the HTTP status code of the API error response.
+func (e ErrClientResponse) StatusCode() int { return e.status }
+
+// Body returns the raw response body of the API error response.
+func (e ErrClientResponse) Body() string { return e.body }
+
 // NewClient creates a new CloudConnexa API client with the given credentials.
 // It authenticates using OAuth2 client credentials flow and returns a configured client.
 func NewClient(baseURL, clientID, clientSecret string) (*Client, error) {
diff --git a/e2e/client_test.go b/e2e/client_test.go
@@ -1,7 +1,12 @@
 package client
 
 import (
+	"crypto/rand"
+	"encoding/binary"
+	"errors"
 	"fmt"
+	mrand "math/rand"
+	"net"
 	"os"
 	"testing"
 	"time"
@@ -49,6 +54,169 @@ func setUpClient(t *testing.T) *cloudconnexa.Client {
 	return client
 }
 
+// cidrOverlaps returns true if two IPv4 networks overlap (IPv4 only, safe)
+func cidrOverlaps(a *net.IPNet, b *net.IPNet) bool {
+	if a == nil || b == nil {
+		return false
+	}
+	if a.IP.To4() == nil || b.IP.To4() == nil {
+		return false
+	}
+	return a.Contains(b.IP) || b.Contains(a.IP)
+}
+
+// parseCIDROrNil parses CIDR string and returns *net.IPNet or nil on error
+func parseCIDROrNil(cidr string) *net.IPNet {
+	_, ipnet, err := net.ParseCIDR(cidr)
+	if err != nil {
+		return nil
+	}
+	return ipnet
+}
+
+func shuffledRange(start, end int, rnd *mrand.Rand) []int {
+	n := end - start + 1
+	arr := make([]int, n)
+	for i := 0; i < n; i++ {
+		arr[i] = start + i
+	}
+	rnd.Shuffle(n, func(i, j int) { arr[i], arr[j] = arr[j], arr[i] })
+	return arr
+}
+
+// findAvailableInRange scans used subnets and returns a free 10.a.b.0/24 within [startA, endA]
+func findAvailableInRange(used []*net.IPNet, startA, endA int, rnd *mrand.Rand) (string, bool) {
+	// Skip the commonly reserved 10.200.0.0/16 range first
+	reserved := parseCIDROrNil("10.200.0.0/16")
+	for _, a := range shuffledRange(startA, endA, rnd) {
+		for _, b := range shuffledRange(0, 255, rnd) {
+			candidate := fmt.Sprintf("10.%d.%d.0/24", a, b)
+			_, ipn, err := net.ParseCIDR(candidate)
+			if err != nil {
+				continue
+			}
+			if reserved != nil && cidrOverlaps(ipn, reserved) {
+				continue
+			}
+			overlap := false
+			for _, u := range used {
+				if cidrOverlaps(ipn, u) {
+					overlap = true
+					break
+				}
+			}
+			if !overlap {
+				return candidate, true
+			}
+		}
+	}
+	return "", false
+}
+
+// findAvailableInRange172 scans used subnets for a free 172.16-31.b.0/24
+func findAvailableInRange172(used []*net.IPNet, rnd *mrand.Rand) (string, bool) {
+	for _, a := range shuffledRange(16, 31, rnd) {
+		for _, b := range shuffledRange(0, 255, rnd) {
+			candidate := fmt.Sprintf("172.%d.%d.0/24", a, b)
+			_, ipn, err := net.ParseCIDR(candidate)
+			if err != nil {
+				continue
+			}
+			overlap := false
+			for _, u := range used {
+				if cidrOverlaps(ipn, u) {
+					overlap = true
+					break
+				}
+			}
+			if !overlap {
+				return candidate, true
+			}
+		}
+	}
+	return "", false
+}
+
+// findAvailableInRange192168 scans used subnets for a free 192.168.b.0/24
+func findAvailableInRange192168(used []*net.IPNet, rnd *mrand.Rand) (string, bool) {
+	for _, b := range shuffledRange(0, 255, rnd) {
+		candidate := fmt.Sprintf("192.168.%d.0/24", b)
+		_, ipn, err := net.ParseCIDR(candidate)
+		if err != nil {
+			continue
+		}
+		overlap := false
+		for _, u := range used {
+			if cidrOverlaps(ipn, u) {
+				overlap = true
+				break
+			}
+		}
+		if !overlap {
+			return candidate, true
+		}
+	}
+	return "", false
+}
+
+// findAvailableIPv4Subnet scans existing networks' routes and system subnets
+// and returns an available RFC1918 /24 subnet that does not overlap
+func findAvailableIPv4Subnet(c *cloudconnexa.Client) (string, error) {
+	var seedBytes [8]byte
+	_, _ = rand.Read(seedBytes[:])
+	rnd := mrand.New(mrand.NewSource(int64(binary.LittleEndian.Uint64(seedBytes[:]))))
+
+	networks, err := c.Networks.List()
+	if err != nil {
+		return "", err
+	}
+
+	var used []*net.IPNet
+	for _, n := range networks {
+		// Collect existing routes via API to ensure we see them
+		routes, err := c.Routes.List(n.ID)
+		if err == nil {
+			for _, r := range routes {
+				if r.Subnet == "" {
+					continue
+				}
+				if ipn := parseCIDROrNil(r.Subnet); ipn != nil {
+					used = append(used, ipn)
+				}
+			}
+		}
+		// Collect system subnets from GET network (may not be present in List)
+		if nn, err := c.Networks.Get(n.ID); err == nil && nn != nil {
+			for _, s := range nn.SystemSubnets {
+				if ipn := parseCIDROrNil(s); ipn != nil {
+					used = append(used, ipn)
+				}
+			}
+		}
+	}
+
+	// Try 10.0.0.0/8 excluding known reserved 10.200.0.0/16, prefer higher ranges
+	if candidate, ok := findAvailableInRange(used, 201, 254, rnd); ok {
+		return candidate, nil
+	}
+	if candidate, ok := findAvailableInRange(used, 0, 199, rnd); ok {
+		return candidate, nil
+	}
+	if candidate, ok := findAvailableInRange(used, 200, 200, rnd); ok {
+		return candidate, nil
+	}
+	// Try 172.16.0.0/12
+	if candidate, ok := findAvailableInRange172(used, rnd); ok {
+		return candidate, nil
+	}
+	// Try 192.168.0.0/16
+	if candidate, ok := findAvailableInRange192168(used, rnd); ok {
+		return candidate, nil
+	}
+
+	return "", fmt.Errorf("no available /24 subnet found in RFC1918 ranges")
+}
+
 // TestListNetworks tests the retrieval of networks using pagination
 // It verifies that networks can be retrieved successfully
 func TestListNetworks(t *testing.T) {
@@ -115,11 +283,7 @@ func TestCreateNetwork(t *testing.T) {
 		Name:        testName,
 		VpnRegionID: "it-mxp",
 	}
-	route := cloudconnexa.Route{
-		Description: "test",
-		Type:        "IP_V4",
-		Subnet:      fmt.Sprintf("10.%d.%d.0/24", timestamp%256, (timestamp/256)%256),
-	}
+
 	network := cloudconnexa.Network{
 		Description:       "test",
 		Egress:            false,
@@ -131,15 +295,46 @@ func TestCreateNetwork(t *testing.T) {
 	response, err := c.Networks.Create(network)
 	require.NoError(t, err)
 	fmt.Printf("created %s network\n", response.ID)
-	test, err := c.Routes.Create(response.ID, route)
-	require.NoError(t, err)
-	fmt.Printf("created %s route\n", test.ID)
+	// Ensure cleanup even if subsequent steps fail
+	defer func() { _ = c.Networks.Delete(response.ID) }()
+
+	// Attempt to create a non-overlapping route with retries to avoid CI matrix collisions
+	var testRoute *cloudconnexa.Route
+	var lastErr error
+	for attempts := 0; attempts < 20; attempts++ {
+		subnet, serr := findAvailableIPv4Subnet(c)
+		require.NoError(t, serr)
+		route := cloudconnexa.Route{
+			Description: "test",
+			Type:        "IP_V4",
+			Subnet:      subnet,
+		}
+		testRoute, err = c.Routes.Create(response.ID, route)
+		if err == nil {
+			fmt.Printf("created %s route\n", testRoute.ID)
+			break
+		}
+		lastErr = err
+		var apiErr *cloudconnexa.ErrClientResponse
+		if errors.As(err, &apiErr) {
+			if apiErr.StatusCode() == 400 {
+				// Overlap or validation error, refresh and retry
+				time.Sleep(500 * time.Millisecond)
+				continue
+			}
+		}
+		// Unexpected error
+		require.NoError(t, err)
+	}
+	require.NoError(t, lastErr)
+	require.NotNil(t, testRoute)
+
 	serviceConfig := cloudconnexa.IPServiceConfig{
 		ServiceTypes: []string{"ANY"},
 	}
 	ipServiceRoute := cloudconnexa.IPServiceRoute{
 		Description: "test",
-		Value:       fmt.Sprintf("10.%d.%d.0/24", timestamp%256, (timestamp/256)%256),
+		Value:       testRoute.Subnet,
 	}
 	service := cloudconnexa.IPService{
 		Name:            testName,
