use strict; use warnings FATAL => 'all'; use Apache::Test; use Apache::TestRequest; use Apache::TestUtil; use Apache::TestConfig (); use Misc; my $num_tests = 31; plan tests => $num_tests, need need_module 'proxy', need_module 'setenvif'; Apache::TestRequest::module("proxy_http_reverse"); Apache::TestRequest::user_agent(requests_redirectable => 0); my $r = GET("/reverse/"); ok t_cmp($r->code, 200, "reverse proxy to index.html"); ok t_cmp($r->content, qr/^welcome to /, "reverse proxied body"); if (have_min_apache_version('2.4.0')) { $r = GET("/reverse/locproxy/"); ok t_cmp($r->code, 200, "reverse Location-proxy to index.html"); ok t_cmp($r->content, qr/^welcome to /, "reverse Location-proxied body"); } else { skip "skipping per-location test with httpd <2.4" foreach (1..2); } if (have_min_apache_version('2.4.26')) { # This location should get trapped by the SetEnvIf and NOT be # proxied, hence should get a 404. $r = GET("/reverse/locproxy/index.html"); ok t_cmp($r->code, 404, "reverse Location-proxy blocked by no-proxy env"); } else { skip "skipping no-proxy test with httpd <2.4.26"; } if (have_cgi) { $r = GET("/reverse/modules/cgi/env.pl"); ok t_cmp($r->code, 200, "reverse proxy to env.pl"); ok t_cmp($r->content, qr/^APACHE_TEST_HOSTNAME = /, "reverse proxied env.pl response"); ok t_cmp($r->content, qr/HTTP_X_FORWARDED_FOR = /, "X-Forwarded-For enabled"); if (have_min_apache_version('2.4.28')) { Apache::TestRequest::module("proxy_http_nofwd"); $r = GET("/reverse/modules/cgi/env.pl"); ok t_cmp($r->code, 200, "reverse proxy to env.pl without X-F-F"); ok !t_cmp($r->content, qr/HTTP_X_FORWARDED_FOR = /, "reverse proxied env.pl w/o X-F-F"); Apache::TestRequest::module("proxy_http_reverse"); } else { skip "skipping tests with httpd < 2.4.28" foreach (1..2); } $r = GET("/reverse/modules/cgi/env.pl?reverse-proxy"); ok t_cmp($r->code, 200, "reverse proxy with query string"); ok t_cmp($r->content, qr/QUERY_STRING = reverse-proxy\n/s, "reverse proxied query string OK"); $r = GET("/reverse/modules/cgi/nph-dripfeed.pl"); ok t_cmp($r->code, 200, "reverse proxy to dripfeed CGI"); ok t_cmp($r->content, "abcdef", "reverse proxied to dripfeed CGI content OK"); if (have_min_apache_version('2.1.0')) { $r = GET("/reverse/modules/cgi/nph-102.pl"); ## Uncomment next 2 lines and comment out the subsequant 2 lines ## when LWP is fixed to work w/ 1xx ##ok t_cmp($r->code, 200, "reverse proxy to nph-102"); ##ok t_cmp($r->content, "this is nph-stdout", "reverse proxy 102 response"); ok t_cmp($r->code, 102, "reverse proxy to nph-102"); ok t_cmp($r->content, "", "reverse proxy 102 response"); } else { skip "skipping tests with httpd <2.1.0" foreach (1..2); } } else { skip "skipping tests without CGI module" foreach (1..11); } if (have_min_apache_version('2.0.55')) { # trigger the "proxy decodes abs_path issue": with the bug present, the # proxy URI-decodes on the way through, so the origin server receives # an abs_path of "/reverse/nonesuch/file%", which it fails to parse and # returns a 400 response. $r = GET("/reverse/nonesuch/file%25"); ok t_cmp($r->code, 404, "reverse proxy URI decoding issue, PR 15207"); } else { skip "skipping PR 15207 test with httpd < 2.0.55"; } $r = GET("/reverse/notproxy/local.html"); ok t_cmp($r->code, 200, "ProxyPass not-proxied request"); my $c = $r->content; chomp $c; ok t_cmp($c, "hello world", "ProxyPass not-proxied content OK"); # Testing ProxyPassReverseCookieDomain and ProxyPassReverseCookiePath if (have_min_apache_version('2.4.34') && have_module('lua')) { # '/' is escaped as %2F # ';' is escaped as %3B # '=' is escaped as %3D $r = GET("/reverse/modules/lua/setheaderfromparam.lua?HeaderName=Set-Cookie&HeaderValue=fakedomain%3Dlocal%3Bdomain%3Dlocal"); ok t_cmp($r->code, 200, "Lua executed"); ok t_cmp($r->header("Set-Cookie"), "fakedomain=local;domain=remote", "'Set-Cookie domain=' wrongly updated by ProxyPassReverseCookieDomain, PR 61560"); $r = GET("/reverse/modules/lua/setheaderfromparam.lua?HeaderName=Set-Cookie&HeaderValue=fakepath%3D%2Flocal%3Bpath%3D%2Flocal"); ok t_cmp($r->code, 200, "Lua executed"); ok t_cmp($r->header("Set-Cookie"), "fakepath=/local;path=/remote", "'Set-Cookie path=' wrongly updated by ProxyPassReverseCookiePath, PR 61560"); $r = GET("/reverse/modules/lua/setheaderfromparam.lua?HeaderName=Set-Cookie&HeaderValue=domain%3Dlocal%3Bpath%3D%2Flocal%3bfoo%3Dbar"); ok t_cmp($r->code, 200, "Lua executed"); ok t_cmp($r->header("Set-Cookie"), "domain=remote;path=/remote;foo=bar", "'Set-Cookie path=' wrongly updated by ProxyPassReverseCookiePath and/or ProxyPassReverseCookieDomain"); } else { skip "skipping tests which need mod_lua" foreach (1..6); } if (have_module('alias')) { $r = GET("/reverse/perm"); ok t_cmp($r->code, 301, "reverse proxy of redirect"); ok t_cmp($r->header("Location"), qr{http://[^/]*/reverse/alias}, "reverse proxy rewrote redirect"); if (have_module('proxy_balancer')) { # More complex reverse mapping case with the balancer, PR 45434 Apache::TestRequest::module("proxy_http_balancer"); my $hostport = Apache::TestRequest::hostport(); $r = GET("/pr45434/redirect-me"); ok t_cmp($r->code, 301, "reverse proxy of redirect via balancer"); ok t_cmp($r->header("Location"), "http://$hostport/pr45434/5.html", "reverse proxy via balancer rewrote redirect"); Apache::TestRequest::module("proxy_http_reverse"); # flip back } else { skip "skipping tests without mod_proxy_balancer" foreach (1..2); } } else { skip "skipping tests without mod_alias" foreach (1..4); } sub uds_script { use Socket; use strict; my $socket_path = shift; my $sock_addr = sockaddr_un($socket_path); socket(my $server, PF_UNIX, SOCK_STREAM, 0) || die "socket: $!"; bind($server, $sock_addr) || die "bind: $!"; listen($server,1024) || die "listen: $!"; open(MARKER, '>', $socket_path.'.marker') or die "Unable to open file $socket_path.marker : $!"; close(MARKER); if (accept(my $new_sock, $server)) { my $data = <$new_sock>; print $new_sock "HTTP/1.0 200 OK\r\n"; print $new_sock "Content-Type: text/plain\r\n\r\n"; print $new_sock "hello world\n"; close $new_sock; } unlink($socket_path); unlink($socket_path.'.marker'); } if (have_min_apache_version('2.4.7')) { my $socket_path = '/tmp/test-ptf.sock'; unlink($socket_path); my $pid = fork(); unless (defined $pid) { t_debug "couldn't fork UDS script"; ok 0; exit; } if ($pid == 0) { uds_script($socket_path); exit; } unless (Misc::cwait('-e "'.$socket_path.'.marker"', 10, 50)) { ok 0; exit; } sleep(1); $r = GET("/uds/"); ok t_cmp($r->code, 200, "ProxyPass UDS path"); my $c = $r->content; chomp $c; ok t_cmp($c, "hello world", "UDS content OK"); } else { skip "skipping UDS tests with httpd < 2.4.7" foreach (1..2); }