Mercurial > hg > nginx-tests
comparison proxy_protocol2_tlv.t @ 1805:76fdf5ede7c0
Tests: improved readability in PROXY protocol v2 TLV tests.
author | Sergey Kandaurov <pluknet@nginx.com> |
---|---|
date | Thu, 10 Nov 2022 17:08:43 +0400 |
parents | 35e88bf538c1 |
children |
comparison
equal
deleted
inserted
replaced
1804:35e88bf538c1 | 1805:76fdf5ede7c0 |
---|---|
78 } | 78 } |
79 | 79 |
80 EOF | 80 EOF |
81 | 81 |
82 $t->write_file('t1', 'SEE-THIS'); | 82 $t->write_file('t1', 'SEE-THIS'); |
83 $t->try_run('no proxy_protocol tlv')->plan(15); | 83 $t->try_run('no proxy_protocol tlv')->plan(14); |
84 | 84 |
85 ############################################################################### | 85 ############################################################################### |
86 | 86 |
87 my $p = pack("N3C", 0x0D0A0D0A, 0x000D0A51, 0x5549540A, 0x21); | 87 my $tlv = pp2_create_tlv(0x1, "ALPN1"); |
88 my $tlv = $p . pack("CnN2n2N21nN2nN2nN4", 0x11, 134, 0xc0000201, 0xc0000202, | 88 $tlv .= pp2_create_tlv(0x2, "localhost"); |
89 123, 5678, | 89 $tlv .= pp2_create_tlv(0x3, "4321"); |
90 # 0x01 alpn | 90 $tlv .= pp2_create_tlv(0x5, "UNIQQ"); |
91 0x01000541, 0x4c504e31, | |
92 # 0x02 authority | |
93 0x0200096c, 0x6f63616c, 0x686f7374, | |
94 # 0x03 crc32 | |
95 0x03000534, 0x33323130, | |
96 # 0x05 unique_id | |
97 0x05000555, 0x4e495151, | |
98 # 0x20 ssl | |
99 0x20004301, 0x000000ff, | |
100 # 0x21 ssl_version | |
101 0x21000132, | |
102 # 0x22 ssl_cn | |
103 0x22000541, 0x42433435, | |
104 # 0x23 ssl_cipher | |
105 0x23001b45, 0x43444845, 0x2d525341, 0x2d414553, 0x3132382d, 0x47434d2d, | |
106 0x53484132, 0x3536, | |
107 # 0x24 ssl_sig_alg | |
108 0x24000753, 0x48413130, 0x3234, | |
109 # 0x25 ssl_key_alg | |
110 0x25000752, 0x53413230, 0x3438, | |
111 # 0x30 netns | |
112 0x3000054e, 0x45544e53, | |
113 # 0xae custom | |
114 0xae000531, 0x32333435); | |
115 my $r; | |
116 | 91 |
117 $r = pp_get('/t1', $tlv); | 92 my $sub = pp2_create_tlv(0x21, "TLSv1.2"); |
118 like($r, qr/X-ALPN: ALPN1-ALPN1\x0d/, 'ALPN - tlv named variable'); | 93 $sub .= pp2_create_tlv(0x22, "example.com"); |
119 like($r, qr/X-AUTHORITY: localhost-localhost\x0d/, | 94 $sub .= pp2_create_tlv(0x23, "AES256-SHA"); |
120 'AUTHORITY - tlv named variable'); | 95 $sub .= pp2_create_tlv(0x24, "SHA1"); |
121 like($r, qr/X-UNIQUE-ID: UNIQQ-UNIQQ\x0d/, 'UNIQUE_ID - tlv named variable'); | 96 $sub .= pp2_create_tlv(0x25, "RSA512"); |
122 like($r, qr/X-NETNS: NETNS-NETNS\x0d/, 'NETNS - tlv named variable'); | 97 my $ssl = pp2_create_ssl(0x01, 255, $sub); |
123 like($r, qr/X-SSL-BINARY: true/, 'SSL_BINARY - tlv named variable'); | 98 $tlv .= pp2_create_tlv(0x20, $ssl); |
124 like($r, qr/X-SSL-VERIFY: 255\x0d/, 'SSL_VERIFY - tlv named variable'); | 99 |
125 like($r, qr/X-SSL-VERSION: 2-2\x0d/, 'SSL_VERSION - tlv named variable'); | 100 $tlv .= pp2_create_tlv(0x30, "NETNS"); |
126 like($r, qr/X-SSL-CN: ABC45-ABC45\x0d/, 'SSL_CN - tlv named variable'); | 101 $tlv .= pp2_create_tlv(0xae, "12345"); |
127 like($r, qr/X-SSL-CIPHER: ECDHE-RSA-AES128-GCM-SHA256/, | 102 my $p = pp2_create($tlv); |
128 'SSL_CIPHER - tlv named variable (part 1)'); | 103 |
129 like ($r, qr/-ECDHE-RSA-AES128-GCM-SHA256\x0d/, | 104 my $r = pp_get('/t1', $p); |
130 'SSL_CIPHER - tlv named variable (part 2)'); | 105 like($r, qr/X-ALPN: ALPN1-ALPN1\x0d?$/m, 'ALPN'); |
131 like($r, qr/X-SSL-SIG-ALG: SHA1024-SHA1024\x0d/, | 106 like($r, qr/X-AUTHORITY: localhost-localhost\x0d?$/m, 'AUTHORITY'); |
132 'SSL_SIG_ALG - tlv named variable'); | 107 like($r, qr/X-TLV-CRC32C: 4321\x0d?$/m, 'CRC32C'); |
133 like($r, qr/X-SSL-KEY-ALG: RSA2048-RSA2048\x0d/, | 108 like($r, qr/X-UNIQUE-ID: UNIQQ-UNIQQ\x0d?$/m, 'UNIQUE_ID'); |
134 'SSL_KEY_ALG - tlv named variable'); | 109 like($r, qr/X-SSL-BINARY: true/, 'SSL_BINARY'); |
135 like($r, qr/X-TLV-CRC32C: 43210\x0d/, 'CRC32C - tlv numeric variable'); | 110 like($r, qr/X-SSL-VERIFY: 255\x0d?$/m, 'SSL_VERIFY'); |
136 like($r, qr/X-TLV-CUSTOM: 12345\x0d/, | 111 like($r, qr/X-SSL-VERSION: TLSv1.2-TLSv1.2\x0d?$/m, 'SSL_VERSION'); |
137 'custom - tlv numeric variable'); | 112 like($r, qr/X-SSL-CN: example.com-example.com\x0d?$/m, 'SSL_CN'); |
138 like($r, qr/X-TLV-X: -\x0d/, 'non-existent - tlv numeric variable'); | 113 like($r, qr/X-SSL-CIPHER: AES256-SHA-AES256-SHA\x0d?$/m, 'SSL_CIPHER'); |
114 like($r, qr/X-SSL-SIG-ALG: SHA1-SHA1\x0d?$/m, 'SSL_SIG_ALG'); | |
115 like($r, qr/X-SSL-KEY-ALG: RSA512-RSA512\x0d?$/m, 'SSL_KEY_ALG'); | |
116 like($r, qr/X-NETNS: NETNS-NETNS\x0d?$/m, 'NETNS'); | |
117 like($r, qr/X-TLV-CUSTOM: 12345\x0d?$/m, 'custom'); | |
118 like($r, qr/X-TLV-X: -\x0d?$/m, 'non-existent'); | |
139 | 119 |
140 ############################################################################### | 120 ############################################################################### |
141 | 121 |
142 sub pp_get { | 122 sub pp_get { |
143 my ($url, $proxy) = @_; | 123 my ($url, $proxy) = @_; |
146 Host: localhost | 126 Host: localhost |
147 | 127 |
148 EOF | 128 EOF |
149 } | 129 } |
150 | 130 |
131 sub pp2_create { | |
132 my ($tlv) = @_; | |
133 | |
134 my $pp2_sig = pack("N3", 0x0D0A0D0A, 0x000D0A51, 0x5549540A); | |
135 my $ver_cmd = pack('C', 0x21); | |
136 my $family = pack('C', 0x11); | |
137 my $packet = $pp2_sig . $ver_cmd . $family; | |
138 | |
139 my $ip1 = pack('N', 0xc0000201); # 192.0.2.1 | |
140 my $ip2 = pack('N', 0xc0000202); # 192.0.2.2 | |
141 my $port1 = pack('n', 123); | |
142 my $port2 = pack('n', 5678); | |
143 my $addrs = $ip1 . $ip2 . $port1 . $port2; | |
144 | |
145 my $len = length($addrs) + length($tlv); | |
146 | |
147 $packet .= pack('n', $len) . $addrs . $tlv; | |
148 | |
149 return $packet; | |
150 } | |
151 | |
152 sub pp2_create_tlv { | |
153 my ($type, $content) = @_; | |
154 | |
155 my $len = length($content); | |
156 | |
157 return pack("CnA*", $type, $len, $content); | |
158 } | |
159 | |
160 sub pp2_create_ssl { | |
161 my ($client, $verify, $content) = @_; | |
162 | |
163 return pack("CNA*", $client, $verify, $content); | |
164 } | |
165 | |
151 ############################################################################### | 166 ############################################################################### |