From a059da53fe4c483d0361275d5c74ab4ef3d273f4 Mon Sep 17 00:00:00 2001
From: Joris Baum <joris.baum@sap.com>
Date: Fri, 6 Mar 2026 15:07:12 +0100
Subject: [PATCH] Add test for tls source file

---
 tls_test.go | 45 +++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 45 insertions(+)
 create mode 100644 tls_test.go

diff --git a/tls_test.go b/tls_test.go
new file mode 100644
index 0000000..559eeee
--- /dev/null
+++ b/tls_test.go
@@ -0,0 +1,45 @@
+package loggregator_test
+
+import (
+	"code.cloudfoundry.org/go-loggregator/v10"
+
+	. "github.com/onsi/ginkgo/v2"
+	. "github.com/onsi/gomega"
+)
+
+var _ = Describe("TLS", func() {
+	Describe("NewIngressTLSConfig", func() {
+		It("returns a valid TLS config with server name 'metron'", func() {
+			tlsConf, err := loggregator.NewIngressTLSConfig(
+				certs.CA(),
+				certs.Cert("test"),
+				certs.Key("test"),
+			)
+			Expect(err).NotTo(HaveOccurred())
+			Expect(tlsConf).NotTo(BeNil())
+			Expect(tlsConf.ServerName).To(Equal("metron"))
+		})
+
+		It("returns an error with an invalid cert path", func() {
+			_, err := loggregator.NewIngressTLSConfig(
+				certs.CA(),
+				"/invalid/cert/path",
+				certs.Key("test"),
+			)
+			Expect(err).To(HaveOccurred())
+		})
+	})
+
+	Describe("NewEgressTLSConfig", func() {
+		It("returns a valid TLS config with server name 'reverselogproxy'", func() {
+			tlsConf, err := loggregator.NewEgressTLSConfig(
+				certs.CA(),
+				certs.Cert("test"),
+				certs.Key("test"),
+			)
+			Expect(err).NotTo(HaveOccurred())
+			Expect(tlsConf).NotTo(BeNil())
+			Expect(tlsConf.ServerName).To(Equal("reverselogproxy"))
+		})
+	})
+})