Tim Duesterhus | d371e99 | 2021-04-15 21:45:58 +0200 | [diff] [blame] | 1 | varnishtest "normalize-uri tests" |
| 2 | #REQUIRE_VERSION=2.4 |
| 3 | |
| 4 | # This reg-test tests the http-request normalize-uri action. |
| 5 | |
| 6 | feature ignore_unknown_macro |
| 7 | |
| 8 | server s1 { |
| 9 | rxreq |
| 10 | txresp |
Tim Duesterhus | a407193 | 2021-04-15 21:46:02 +0200 | [diff] [blame] | 11 | } -repeat 43 -start |
Tim Duesterhus | d371e99 | 2021-04-15 21:45:58 +0200 | [diff] [blame] | 12 | |
| 13 | haproxy h1 -conf { |
| 14 | defaults |
| 15 | mode http |
| 16 | timeout connect 1s |
| 17 | timeout client 1s |
| 18 | timeout server 1s |
| 19 | |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 20 | frontend fe_path_merge_slashes |
| 21 | bind "fd@${fe_path_merge_slashes}" |
Tim Duesterhus | d371e99 | 2021-04-15 21:45:58 +0200 | [diff] [blame] | 22 | |
| 23 | http-request set-var(txn.before) url |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 24 | http-request normalize-uri path-merge-slashes |
Tim Duesterhus | d371e99 | 2021-04-15 21:45:58 +0200 | [diff] [blame] | 25 | http-request set-var(txn.after) url |
| 26 | |
| 27 | http-response add-header before %[var(txn.before)] |
| 28 | http-response add-header after %[var(txn.after)] |
| 29 | |
| 30 | default_backend be |
| 31 | |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 32 | frontend fe_path_strip_dotdot |
| 33 | bind "fd@${fe_path_strip_dotdot}" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 34 | |
| 35 | http-request set-var(txn.before) url |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 36 | http-request normalize-uri path-strip-dotdot |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 37 | http-request set-var(txn.after) url |
| 38 | |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 39 | http-request set-uri %[var(txn.before)] |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 40 | http-request normalize-uri path-strip-dotdot full |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 41 | http-request set-var(txn.after_full) url |
| 42 | |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 43 | http-response add-header before %[var(txn.before)] |
| 44 | http-response add-header after %[var(txn.after)] |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 45 | http-response add-header after-full %[var(txn.after_full)] |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 46 | |
| 47 | default_backend be |
| 48 | |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 49 | frontend fe_sort_query_by_name |
| 50 | bind "fd@${fe_sort_query_by_name}" |
Tim Duesterhus | d7b89be | 2021-04-15 21:46:01 +0200 | [diff] [blame] | 51 | |
| 52 | http-request set-var(txn.before) url |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 53 | http-request normalize-uri query-sort-by-name |
Tim Duesterhus | d7b89be | 2021-04-15 21:46:01 +0200 | [diff] [blame] | 54 | http-request set-var(txn.after) url |
| 55 | |
| 56 | http-response add-header before %[var(txn.before)] |
| 57 | http-response add-header after %[var(txn.after)] |
| 58 | |
| 59 | default_backend be |
| 60 | |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 61 | frontend fe_percent_to_uppercase |
| 62 | bind "fd@${fe_percent_to_uppercase}" |
Tim Duesterhus | a407193 | 2021-04-15 21:46:02 +0200 | [diff] [blame] | 63 | |
| 64 | http-request set-var(txn.before) url |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 65 | http-request normalize-uri percent-to-uppercase |
Tim Duesterhus | a407193 | 2021-04-15 21:46:02 +0200 | [diff] [blame] | 66 | http-request set-var(txn.after) url |
| 67 | |
| 68 | http-response add-header before %[var(txn.before)] |
| 69 | http-response add-header after %[var(txn.after)] |
| 70 | |
| 71 | default_backend be |
| 72 | |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 73 | frontend fe_percent_to_uppercase_strict |
| 74 | bind "fd@${fe_percent_to_uppercase_strict}" |
Tim Duesterhus | a407193 | 2021-04-15 21:46:02 +0200 | [diff] [blame] | 75 | |
| 76 | http-request set-var(txn.before) url |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 77 | http-request normalize-uri percent-to-uppercase strict |
Tim Duesterhus | a407193 | 2021-04-15 21:46:02 +0200 | [diff] [blame] | 78 | http-request set-var(txn.after) url |
| 79 | |
| 80 | http-response add-header before %[var(txn.before)] |
| 81 | http-response add-header after %[var(txn.after)] |
| 82 | |
| 83 | default_backend be |
| 84 | |
Tim Duesterhus | d371e99 | 2021-04-15 21:45:58 +0200 | [diff] [blame] | 85 | backend be |
| 86 | server s1 ${s1_addr}:${s1_port} |
| 87 | |
| 88 | } -start |
| 89 | |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 90 | client c1 -connect ${h1_fe_path_merge_slashes_sock} { |
Tim Duesterhus | d371e99 | 2021-04-15 21:45:58 +0200 | [diff] [blame] | 91 | txreq -url "/foo/bar" |
| 92 | rxresp |
| 93 | expect resp.http.before == "/foo/bar" |
| 94 | expect resp.http.after == "/foo/bar" |
| 95 | |
| 96 | txreq -url "/foo//bar" |
| 97 | rxresp |
| 98 | expect resp.http.before == "/foo//bar" |
| 99 | expect resp.http.after == "/foo/bar" |
| 100 | |
| 101 | txreq -url "/foo///bar" |
| 102 | rxresp |
| 103 | expect resp.http.before == "/foo///bar" |
| 104 | expect resp.http.after == "/foo/bar" |
| 105 | |
| 106 | txreq -url "///foo///bar" |
| 107 | rxresp |
| 108 | expect resp.http.before == "///foo///bar" |
| 109 | expect resp.http.after == "/foo/bar" |
| 110 | |
| 111 | txreq -url "///foo/bar" |
| 112 | rxresp |
| 113 | expect resp.http.before == "///foo/bar" |
| 114 | expect resp.http.after == "/foo/bar" |
| 115 | |
| 116 | txreq -url "///foo///bar///" |
| 117 | rxresp |
| 118 | expect resp.http.before == "///foo///bar///" |
| 119 | expect resp.http.after == "/foo/bar/" |
| 120 | |
| 121 | txreq -url "///" |
| 122 | rxresp |
| 123 | expect resp.http.before == "///" |
| 124 | expect resp.http.after == "/" |
| 125 | |
| 126 | txreq -url "/foo?bar=///" |
| 127 | rxresp |
| 128 | expect resp.http.before == "/foo?bar=///" |
| 129 | expect resp.http.after == "/foo?bar=///" |
| 130 | |
| 131 | txreq -url "//foo?bar=///" |
| 132 | rxresp |
| 133 | expect resp.http.before == "//foo?bar=///" |
| 134 | expect resp.http.after == "/foo?bar=///" |
| 135 | |
| 136 | txreq -req OPTIONS -url "*" |
| 137 | rxresp |
| 138 | expect resp.http.before == "*" |
| 139 | expect resp.http.after == "*" |
| 140 | } -run |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 141 | |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 142 | client c2 -connect ${h1_fe_path_strip_dotdot_sock} { |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 143 | txreq -url "/foo/bar" |
| 144 | rxresp |
| 145 | expect resp.http.before == "/foo/bar" |
| 146 | expect resp.http.after == "/foo/bar" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 147 | expect resp.http.after-full == "/foo/bar" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 148 | |
| 149 | txreq -url "/foo/.." |
| 150 | rxresp |
| 151 | expect resp.http.before == "/foo/.." |
| 152 | expect resp.http.after == "/" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 153 | expect resp.http.after-full == "/" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 154 | |
| 155 | txreq -url "/foo/../" |
| 156 | rxresp |
| 157 | expect resp.http.before == "/foo/../" |
| 158 | expect resp.http.after == "/" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 159 | expect resp.http.after-full == "/" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 160 | |
| 161 | txreq -url "/foo/bar/../" |
| 162 | rxresp |
| 163 | expect resp.http.before == "/foo/bar/../" |
| 164 | expect resp.http.after == "/foo/" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 165 | expect resp.http.after-full == "/foo/" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 166 | |
| 167 | txreq -url "/foo/../bar" |
| 168 | rxresp |
| 169 | expect resp.http.before == "/foo/../bar" |
| 170 | expect resp.http.after == "/bar" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 171 | expect resp.http.after-full == "/bar" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 172 | |
| 173 | txreq -url "/foo/../bar/" |
| 174 | rxresp |
| 175 | expect resp.http.before == "/foo/../bar/" |
| 176 | expect resp.http.after == "/bar/" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 177 | expect resp.http.after-full == "/bar/" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 178 | |
| 179 | txreq -url "/foo/../../bar/" |
| 180 | rxresp |
| 181 | expect resp.http.before == "/foo/../../bar/" |
| 182 | expect resp.http.after == "/../bar/" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 183 | expect resp.http.after-full == "/bar/" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 184 | |
| 185 | txreq -url "/foo//../../bar/" |
| 186 | rxresp |
| 187 | expect resp.http.before == "/foo//../../bar/" |
| 188 | expect resp.http.after == "/bar/" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 189 | expect resp.http.after-full == "/bar/" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 190 | |
| 191 | txreq -url "/foo/?bar=/foo/../" |
| 192 | rxresp |
| 193 | expect resp.http.before == "/foo/?bar=/foo/../" |
| 194 | expect resp.http.after == "/foo/?bar=/foo/../" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 195 | expect resp.http.after-full == "/foo/?bar=/foo/../" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 196 | |
| 197 | txreq -url "/foo/../?bar=/foo/../" |
| 198 | rxresp |
| 199 | expect resp.http.before == "/foo/../?bar=/foo/../" |
| 200 | expect resp.http.after == "/?bar=/foo/../" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 201 | expect resp.http.after-full == "/?bar=/foo/../" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 202 | |
| 203 | txreq -req OPTIONS -url "*" |
| 204 | rxresp |
| 205 | expect resp.http.before == "*" |
| 206 | expect resp.http.after == "*" |
Tim Duesterhus | 560e1a6 | 2021-04-15 21:46:00 +0200 | [diff] [blame] | 207 | expect resp.http.after-full == "*" |
Tim Duesterhus | 9982fc2 | 2021-04-15 21:45:59 +0200 | [diff] [blame] | 208 | } -run |
Tim Duesterhus | d7b89be | 2021-04-15 21:46:01 +0200 | [diff] [blame] | 209 | |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 210 | client c3 -connect ${h1_fe_sort_query_by_name_sock} { |
Tim Duesterhus | d7b89be | 2021-04-15 21:46:01 +0200 | [diff] [blame] | 211 | txreq -url "/?a=a" |
| 212 | rxresp |
| 213 | expect resp.http.before == "/?a=a" |
| 214 | expect resp.http.after == "/?a=a" |
| 215 | |
| 216 | txreq -url "/?a=a&z=z" |
| 217 | rxresp |
| 218 | expect resp.http.before == "/?a=a&z=z" |
| 219 | expect resp.http.after == "/?a=a&z=z" |
| 220 | |
| 221 | txreq -url "/?z=z&a=a" |
| 222 | rxresp |
| 223 | expect resp.http.before == "/?z=z&a=a" |
| 224 | expect resp.http.after == "/?a=a&z=z" |
| 225 | |
| 226 | txreq -url "/?a=z&z=a" |
| 227 | rxresp |
| 228 | expect resp.http.before == "/?a=z&z=a" |
| 229 | expect resp.http.after == "/?a=z&z=a" |
| 230 | |
| 231 | txreq -url "/?z=a&a=z" |
| 232 | rxresp |
| 233 | expect resp.http.before == "/?z=a&a=z" |
| 234 | expect resp.http.after == "/?a=z&z=a" |
| 235 | |
| 236 | txreq -url "/?c&b&a&z&x&y" |
| 237 | rxresp |
| 238 | expect resp.http.before == "/?c&b&a&z&x&y" |
| 239 | expect resp.http.after == "/?a&b&c&x&y&z" |
| 240 | |
| 241 | txreq -url "/?a=&aa=&aaa=&aaaa=" |
| 242 | rxresp |
| 243 | expect resp.http.before == "/?a=&aa=&aaa=&aaaa=" |
| 244 | expect resp.http.after == "/?a=&aa=&aaa=&aaaa=" |
| 245 | |
| 246 | txreq -url "/?aaaa=&a=&aa=&aaa=" |
| 247 | rxresp |
| 248 | expect resp.http.before == "/?aaaa=&a=&aa=&aaa=" |
| 249 | expect resp.http.after == "/?a=&aa=&aaa=&aaaa=" |
| 250 | |
| 251 | txreq -url "/?a=5&a=3&a=1&a=2&a=4" |
| 252 | rxresp |
| 253 | expect resp.http.before == "/?a=5&a=3&a=1&a=2&a=4" |
| 254 | expect resp.http.after == "/?a=5&a=3&a=1&a=2&a=4" |
| 255 | |
| 256 | txreq -url "/?a=5&b=3&a=1&a=2&b=4" |
| 257 | rxresp |
| 258 | expect resp.http.before == "/?a=5&b=3&a=1&a=2&b=4" |
| 259 | expect resp.http.after == "/?a=5&a=1&a=2&b=3&b=4" |
| 260 | |
| 261 | txreq -url "/" |
| 262 | rxresp |
| 263 | expect resp.http.before == "/" |
| 264 | expect resp.http.after == "/" |
| 265 | |
| 266 | txreq -url "/?" |
| 267 | rxresp |
| 268 | expect resp.http.before == "/?" |
| 269 | expect resp.http.after == "/?" |
| 270 | |
| 271 | txreq -req OPTIONS -url "*" |
| 272 | rxresp |
| 273 | expect resp.http.before == "*" |
| 274 | expect resp.http.after == "*" |
| 275 | } -run |
Tim Duesterhus | a407193 | 2021-04-15 21:46:02 +0200 | [diff] [blame] | 276 | |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 277 | client c4 -connect ${h1_fe_percent_to_uppercase_sock} { |
Tim Duesterhus | a407193 | 2021-04-15 21:46:02 +0200 | [diff] [blame] | 278 | txreq -url "/a?a=a" |
| 279 | rxresp |
| 280 | expect resp.http.before == "/a?a=a" |
| 281 | expect resp.http.after == "/a?a=a" |
| 282 | |
| 283 | txreq -url "/%aa?a=%aa" |
| 284 | rxresp |
| 285 | expect resp.http.before == "/%aa?a=%aa" |
| 286 | expect resp.http.after == "/%AA?a=%AA" |
| 287 | |
| 288 | txreq -url "/%zz?a=%zz" |
| 289 | rxresp |
| 290 | expect resp.status == 200 |
| 291 | expect resp.http.before == "/%zz?a=%zz" |
| 292 | expect resp.http.after == "/%zz?a=%zz" |
| 293 | |
| 294 | txreq -req OPTIONS -url "*" |
| 295 | rxresp |
| 296 | expect resp.http.before == "*" |
| 297 | expect resp.http.after == "*" |
| 298 | } -run |
| 299 | |
Tim Duesterhus | 5be6ab2 | 2021-04-17 11:21:10 +0200 | [diff] [blame] | 300 | client c5 -connect ${h1_fe_percent_to_uppercase_strict_sock} { |
Tim Duesterhus | a407193 | 2021-04-15 21:46:02 +0200 | [diff] [blame] | 301 | txreq -url "/a?a=a" |
| 302 | rxresp |
| 303 | expect resp.http.before == "/a?a=a" |
| 304 | expect resp.http.after == "/a?a=a" |
| 305 | |
| 306 | txreq -url "/%aa?a=%aa" |
| 307 | rxresp |
| 308 | expect resp.http.before == "/%aa?a=%aa" |
| 309 | expect resp.http.after == "/%AA?a=%AA" |
| 310 | |
| 311 | txreq -url "/%zz?a=%zz" |
| 312 | rxresp |
| 313 | expect resp.status == 400 |
| 314 | } -run |