Home Explore Help
Sign In
miti
/
graphene
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 84f81d8f13
Branches Tags
graphene
/
LibOS
/
shim
/
test
/
apps
/
nginx
/
nginx-tests
/
rewrite_unescape.t

rewrite_unescape.t 4.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164 
  1. #!/usr/bin/perl
    2. 

  2. 

  3. # (C) Maxim Dounin
    4. 

  4. 

  5. # Tests for escaping/unescaping in rewrite module.
    6. 

  6. 

  7. ###############################################################################
    8. 

  8. 

  9. use warnings;
    10. 

  10. use strict;
    11. 

  11. 

  12. use Test::More;
    13. 

  13. 

  14. BEGIN { use FindBin; chdir($FindBin::Bin); }
    15. 

  15. 

  16. use lib 'lib';
    17. 

  17. use Test::Nginx;
    18. 

  18. 

  19. ###############################################################################
    20. 

  20. 

  21. select STDERR; $| = 1;
    22. 

  22. select STDOUT; $| = 1;
    23. 

  23. 

  24. my $t = Test::Nginx->new()->has(qw/http rewrite/)->plan(9)
    25. 

  25. 	->write_file_expand('nginx.conf', <<'EOF');
    26. 

  26. 

  27. %%TEST_GLOBALS%%
    28. 

  28. 

  29. master_process off;
    30. 

  30. daemon         off;
    31. 

  31. 

  32. events {
    33. 

  33. }
    34. 

  34. 

  35. http {
    36. 

  36.     %%TEST_GLOBALS_HTTP%%
    37. 

  37. 

  38.     server {
    39. 

  39.         listen       127.0.0.1:8080;
    40. 

  40.         server_name  localhost;
    41. 

  41. 

  42.         location /t1 {
    43. 

  43.             rewrite ^ $arg_r? redirect;
    44. 

  44.         }
    45. 

  45. 

  46.         location /t2 {
    47. 

  47.             rewrite ^ http://example.com$request_uri? redirect;
    48. 

  48.         }
    49. 

  49. 

  50.         location /t3 {
    51. 

  51.             rewrite ^ http://example.com$uri redirect;
    52. 

  52.         }
    53. 

  53. 

  54.         location /t4 {
    55. 

  55.             rewrite ^(.*) http://example.com$1 redirect;
    56. 

  56.         }
    57. 

  57. 

  58.         location /t5 {
    59. 

  59.             rewrite ^ http://example.com/blah%20%3Fblah redirect;
    60. 

  60.         }
    61. 

  61. 

  62.         location /t6 {
    63. 

  63.             rewrite ^ http://example.com/blah%20%2Fblah redirect;
    64. 

  64.         }
    65. 

  65.     }
    66. 

  66. }
    67. 

  67. 

  68. EOF
    69. 

  69. 

  70. mkdir($t->testdir() . '/directory');
    71. 

  71. 

  72. $t->run();
    73. 

  73. 

  74. ###############################################################################
    75. 

  75. 

  76. # Some rewrites and expected (?) behaviour
    77. 

  77. # 
    78. 

  78. # /t1?r=http%3A%2F%2Fexample.com%2F%3Ffrom
    79. 

  79. # rewrite ^ $arg_r? redirect;
    80. 

  80. # expected: http://example.com/?from
    81. 

  81. # got:      http://example.com/?from
    82. 

  82. #
    83. 

  83. # /t1?r=http%3A%2F%2Fexample.com%0D%0Asplit
    84. 

  84. # rewrite ^ $arg_r? redirect;
    85. 

  85. # expected: http://example.com%0D%0Asplit
    86. 

  86. # got:      http://example.com%0D%0Asplit
    87. 

  87. #
    88. 

  88. # /t1?r=http%3A%2F%2Fexample.com%2F%3Ffrom%3Dblah
    89. 

  89. # rewrite ^ $arg_r? redirect;
    90. 

  90. # expected: http://example.com/?from=blah
    91. 

  91. # got:      http://example.com/?from%3Dblah
    92. 

  92. #
    93. 

  93. # /blah%3Fblah
    94. 

  94. # rewrite ^ http://example.com$request_uri? redirect;
    95. 

  95. # expected: http://example.com/blah%3Fblah
    96. 

  96. # got:      http://example.com/blah?blah
    97. 

  97. #
    98. 

  98. # /blah%3Fblah
    99. 

  99. # rewrite ^ http://example.com$uri redirect;
    100. 

  100. # expected: http://example.com/blah%3Fblah
    101. 

  101. # got:      http://example.com/blah?blah
    102. 

  102. #
    103. 

  103. # /blah%3Fblah
    104. 

  104. # rewrite ^(.*) http://example.com$1 redirect;
    105. 

  105. # expected: http://example.com/blah%3Fblah
    106. 

  106. # got:      http://example.com/blah?blah
    107. 

  107. #
    108. 

  108. # /
    109. 

  109. # rewrite ^ http://example.com/blah%3Fblah redirect;
    110. 

  110. # expected: http://example.com/blah%3Fblah
    111. 

  111. # got:      http://example.com/blah?blah
    112. 

  112. #
    113. 

  113. 

  114. location('/t1?r=http%3A%2F%2Fexample.com%2F%3Ffrom',
    115. 

  115. 	'http://example.com/?from', 'escaped argument');
    116. 

  116. 

  117. location('/t1?r=http%3A%2F%2Fexample.com%0D%0Asplit',
    118. 

  118. 	'http://example.com%0D%0Asplit', 'escaped argument header splitting');
    119. 

  119. 

  120. TODO: {
    121. 

  121. local $TODO = 'not yet';
    122. 

  122. 

  123. # Fixing this cases will require major changes to the whole aproach and
    124. 

  124. # likely to break some currently working cases.  On the other hand, current
    125. 

  125. # behaviour is far from acceptable.  Should be carefully thought.
    126. 

  126. 

  127. location('/t1?r=http%3A%2F%2Fexample.com%2F%3Ffrom%3Dblah',
    128. 

  128. 	'http://example.com/?from=blah', 'escaped argument with complex query');
    129. 

  129. 

  130. location('/t2/blah%20%3Fblah',
    131. 

  131. 	'http://example.com/t2/blah%20%3Fblah', 'escaped $request_uri');
    132. 

  132. 

  133. location('/t3/blah%20%3Fblah',
    134. 

  134. 	'http://example.com/t3/blah%20%3Fblah', 'escaped $uri');
    135. 

  135. 

  136. location('/t4/blah%20%3Fblah',
    137. 

  137. 	'http://example.com/t4/blah%20%3Fblah', 'escaped $1');
    138. 

  138. 

  139. location('/t5',
    140. 

  140. 	'http://example.com/blah%20%3Fblah', 'escaped static');
    141. 

  141. 

  142. location('/t5?arg=blah',
    143. 

  143. 	'http://example.com/blah%20%3Fblah?arg=blah',
    144. 

  144. 	'escaped static with argument');
    145. 

  145. 

  146. location('/t6',
    147. 

  147. 	'http://example.com/blah%20%2Fblah', 'escaped static slash');
    148. 

  148. 

  149. }
    150. 

  150. 

  151. ###############################################################################
    152. 

  152. 

  153. sub location {
    154. 

  154. 	my ($url, $value, $name) = @_;
    155. 

  155. 	my $data = http_get($url);
    156. 

  156. 	if ($data !~ qr!^Location: (.*?)\x0d?$!ms) {
    157. 

  157. 		fail($name);
    158. 

  158. 		return;
    159. 

  159. 	}
    160. 

  160. 	my $location = $1;
    161. 

  161. 	is($location, $value, $name);
    162. 

  162. }
    163. 

  163. 

  164. ###############################################################################
    165.