dash14
diff --git a/‎Makefile‎
Lines changed: 13 additions & 4 deletions b/‎Makefile‎
Lines changed: 13 additions & 4 deletions
diff --git a/‎compose.test.yml‎
Lines changed: 2 additions & 2 deletions b/‎compose.test.yml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎docker/Dockerfile‎
Lines changed: 8 additions & 3 deletions b/‎docker/Dockerfile‎
Lines changed: 8 additions & 3 deletions
diff --git a/‎docker/files/s6-rc.d/haproxy-log/consumer-for‎
Lines changed: 1 addition & 0 deletions b/‎docker/files/s6-rc.d/haproxy-log/consumer-for‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎…er/files/s6-rc.d/user/contents.d/haproxy‎ ‎…/s6-rc.d/haproxy-log/dependencies.d/base‎docker/files/s6-rc.d/user/contents.d/haproxy renamed to docker/files/s6-rc.d/haproxy-log/dependencies.d/base b/‎…er/files/s6-rc.d/user/contents.d/haproxy‎ ‎…/s6-rc.d/haproxy-log/dependencies.d/base‎docker/files/s6-rc.d/user/contents.d/haproxy renamed to docker/files/s6-rc.d/haproxy-log/dependencies.d/base
diff --git a/‎docker/files/s6-rc.d/haproxy-log/pipeline-name‎
Lines changed: 1 addition & 0 deletions b/‎docker/files/s6-rc.d/haproxy-log/pipeline-name‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎docker/files/s6-rc.d/haproxy-log/run‎
Lines changed: 2 additions & 0 deletions b/‎docker/files/s6-rc.d/haproxy-log/run‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎docker/files/s6-rc.d/haproxy-log/type‎
Lines changed: 1 addition & 0 deletions b/‎docker/files/s6-rc.d/haproxy-log/type‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎docker/files/s6-rc.d/haproxy/producer-for‎
Lines changed: 1 addition & 0 deletions b/‎docker/files/s6-rc.d/haproxy/producer-for‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎docker/files/s6-rc.d/haproxy/run‎
Lines changed: 1 addition & 0 deletions b/‎docker/files/s6-rc.d/haproxy/run‎
Lines changed: 1 addition & 0 deletions
@@ -29,8 +29,8 @@ run_restrict_mode: ## Start in restrict mode
 	@echo "Starting buildcage in RESTRICT mode..."
 	@COMPOSE_FILE=$(COMPOSE_FILE) \
 	  PROXY_MODE=restrict \
-	  ALLOWED_HTTP_RULES="$$(node setup/convert-rules.mjs "$${ALLOWED_HTTP_RULES:-}")" \
-	  ALLOWED_HTTPS_RULES="$$(node setup/convert-rules.mjs "$${ALLOWED_HTTPS_RULES:-github.com:443 registry.npmjs.org:443 api.github.com:443 objects.githubusercontent.com:443 httpbin.org:443 deb.debian.org:80 *.githubusercontent.com:443}")" \
+	  ALLOWED_HTTP_RULES="$${ALLOWED_HTTP_RULES:-}" \
+	  ALLOWED_HTTPS_RULES="$${ALLOWED_HTTPS_RULES:-github.com:443 registry.npmjs.org:443 api.github.com:443 objects.githubusercontent.com:443 httpbin.org:443 deb.debian.org:80 *.githubusercontent.com:443}" \
 	  docker compose up -d --wait --build
 	@docker buildx rm buildcage 2>/dev/null || true
 	@echo "Creating buildx builder..."
@@ -67,8 +67,17 @@ test_audit_mode: ## Run audit mode tests
 	@$(MAKE) clean
 
 .PHONY: test_unit
-test_unit: ## Run unit tests
-	@node --test setup/lib/rules.test.mjs
+test_unit: test_legacy test_qjs ## Run unit tests
+
+.PHONY: test_legacy
+test_legacy: ## Run legacy rules unit tests
+	@node --test setup/lib/legacy-rules.test.mjs
+
+.PHONY: test_qjs
+test_qjs: ## Run unit tests in Docker
+	@docker build -t buildcage-qjs-test docker
+	@docker run --rm --entrypoint qjs buildcage-qjs-test /opt/buildcage/tools/lib/rules.test.mjs
+	@docker run --rm --entrypoint qjs buildcage-qjs-test /opt/buildcage/tools/lib/log-parser.test.mjs
 
 .PHONY: test_audit_example
 run_audit_example: ## Run audit mode example tests
 
@@ -3,8 +3,8 @@ services:
   builder:
     environment:
       - EXTERNAL_RESOLVER=10.200.0.53
-      - ALLOWED_HTTPS_RULES=^allowed\.example\.com:(443|8443)$$ ^[^.]+\.wildcard\.example\.com:(443|8443)$$
-      - ALLOWED_HTTP_RULES=^allowed\.example\.com:(80|8080)$$ ^[^.]+\.wildcard\.example\.com:(80|8080)$$
+      - ALLOWED_HTTPS_RULES=allowed.example.com:443 allowed.example.com:8443 *.wildcard.example.com:443 *.wildcard.example.com:8443
+      - ALLOWED_HTTP_RULES=allowed.example.com:80 allowed.example.com:8080 *.wildcard.example.com:80 *.wildcard.example.com:8080
     networks:
       default:
       test-net:
 
@@ -24,7 +24,8 @@ RUN apk add --no-cache \
       haproxy \
       dnsmasq \
       iptables \
-      curl
+      curl \
+      quickjs
 
 # s6-overlay
 ARG S6_OVERLAY_VERSION
@@ -55,15 +56,19 @@ COPY files/cni.conflist   /etc/buildkit/cni.conflist
 COPY files/dnsmasq.conf /etc/dnsmasq.conf
 
 # HAProxy
-RUN mkdir -p /etc/haproxy/rules
+RUN mkdir -p /etc/haproxy/rules /var/log/haproxy
 COPY files/haproxy.cfg.template /etc/haproxy/haproxy.cfg.template
 
+# Tools (QuickJS scripts)
+COPY files/tools/ /opt/buildcage/tools/
+
 # s6 service definitions and init scripts
 COPY files/s6-rc.d/ /etc/s6-overlay/s6-rc.d/
 COPY files/s6-scripts/ /etc/s6-overlay/scripts/
 RUN chmod +x /etc/s6-overlay/scripts/* && \
     chmod +x /etc/s6-overlay/s6-rc.d/dnsmasq/run && \
-    chmod +x /etc/s6-overlay/s6-rc.d/haproxy/run
+    chmod +x /etc/s6-overlay/s6-rc.d/haproxy/run && \
+    chmod +x /etc/s6-overlay/s6-rc.d/haproxy-log/run
 
 ENTRYPOINT ["/init"]
 CMD ["buildkitd", "--oci-worker-net=cni", "--addr", "tcp://0.0.0.0:1234"]
@@ -0,0 +1 @@
+haproxy
@@ -0,0 +1 @@
+haproxy-pipeline
@@ -0,0 +1,2 @@
+#!/command/execlineb -P
+s6-log 1 /var/log/haproxy
@@ -0,0 +1 @@
+longrun
@@ -0,0 +1 @@
+haproxy-log
@@ -1,2 +1,3 @@
 #!/command/with-contenv sh
+exec 2>&1
 exec haproxy -f /etc/haproxy/haproxy.cfg -db
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+#!/command/execlineb -P`
	`2`	`+s6-log 1 /var/log/haproxy`
Original file line number	Diff line number	Diff line change
`@@ -1,2 +1,3 @@`
`1`	`1`	`#!/command/with-contenv sh`
	`2`	`+exec 2>&1`
`2`	`3`	`exec haproxy -f /etc/haproxy/haproxy.cfg -db`