RepoMirrors
/
haproxy
mirror of http://git.haproxy.org/git/haproxy.git/
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
haproxy/reg-tests/http-messaging/h1_to_h1.vtc

302 lines
6.3 KiB
Plaintext
Raw Permalink Normal View History

REGTEST: Add option to use HTX prefixed by the macro 'no-htx' So some tests have been removed.
2018-12-19 10:49:39 +00:00
varnishtest "HTTP request tests: H1 to H1 (HTX mode supported only for HAProxy >= 1.9)"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
# Run it with HAPROXY_PROGRAM=$PWD/haproxy varnishtest -l -k -t 1 "$1"
feature ignore_unknown_macro
server s1 {
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
##
## Handle GET requests
##
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
rxreq
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect req.bodylen == 0
expect req.body == ""
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
txresp \
-status 200 \
-body "response 1"
rxreq
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect req.bodylen == 0
expect req.body == ""
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
txresp \
-status 200 \
-body "response 2"
rxreq
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect req.bodylen == 38
expect req.body == "this must be delivered, like it or not"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
txresp \
-status 200 \
-body "response 3"
rxreq
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect req.bodylen == 0
expect req.body == ""
txresp \
-status 200 \
-body "response 4"
accept
##
## Handle HEAD requests
##
rxreq
expect req.bodylen == 0
expect req.body == ""
txresp \
-status 200 \
-body "response 1"
accept
rxreq
expect req.bodylen == 0
expect req.body == ""
txresp \
-status 200 \
-body "response 2"
accept
rxreq
expect req.bodylen == 38
expect req.body == "this must be delivered, like it or not"
txresp \
-status 200 \
-body "response 3"
accept
rxreq
expect req.bodylen == 0
expect req.body == ""
txresp \
-status 200 \
-body "response 4"
accept
##
## Handle POST requests
##
# POST request without body
rxreq
expect req.bodylen == 0
expect req.body == ""
txresp \
-status 200 \
-body "response 1"
# POST request without body
rxreq
expect req.bodylen == 0
expect req.body == ""
txresp \
-status 200 \
-body "response 2"
# POST request with a body
rxreq
expect req.bodylen == 12
expect req.body == "this is sent"
txresp \
-status 200 \
-body "response 3"
# POST request without body
rxreq
expect req.bodylen == 0
expect req.body == ""
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
txresp \
-status 200 \
-body "response 4"
REGTEST: Enable again reg tests with HEAD HTTP method usage. These reg tests have been disabled because they required a version of vtest including a bug fix supposed to make these ones work without breaking others. But reg-tests for compression were broken. This issue has been fixed by 525ef0f vtest commit. So, to make all the reg tests work you must update your vtest program to include 525ef0f commit. (see https://github.com/vtest/VTest/commit/525ef0f for more information.
2019-03-26 10:06:29 +00:00
} -repeat 3 -start
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
haproxy h1 -conf {
REGTESTS: disable inter-thread idle connection sharing on sensitive tests Some regtests involve multiple requests from multiple clients, which can be dispatched as multiple requests to a server. It turns out that the idle connection sharing works so well that very quickly few connections are used, and regularly some of the remaining idle server connections time out at the moment they were going to be reused, causing those random "HTTP header incomplete" traces in the logs that make them fail often. In the end this is only an artefact of the test environment. And indeed, some tests like normalize-uri which perform a lot of reuse fail very often, about 20-30% of the times in the CI, and 100% of the time in local when running 1000 tests in a row. Others like ubase64, sample_fetches or vary_* fail less often but still a lot in tests. This patch addresses this by adding "tune.idle-pool.shared off" to all tests which have at least twice as many requests as clients. It proves very effective as no single error happens on normalize-uri anymore after 10000 tests. Also 100 full runs of all tests yield no error anymore. One test is tricky, http_abortonclose, it used to fail ~10 times per 1000 runs and with this workaround still fails once every 1000 runs. But the test is complex and there's a warning in it mentioning a possible issue when run in parallel due to a port reuse.
2021-05-09 12:41:41 +00:00
global
# WT: limit false-positives causing "HTTP header incomplete" due to
# idle server connections being randomly used and randomly expiring
# under us.
tune.idle-pool.shared off
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
defaults
mode http
REGTESTS: extend the default I/O timeouts and make them overridable With the CI occasionally slowing down, we're starting to see again some spurious failures despite the long 1-second timeouts. This reports false positives that are disturbing and doesn't provide as much value as this could. However at this delay it already becomes a pain for developers to wait for the tests to complete. This commit adds support for the new environment variable HAPROXY_TEST_TIMEOUT that will allow anyone to modify the connect, client and server timeouts. It was set to 5 seconds by default, which should be plenty for quite some time in the CI. All relevant values that were 200ms or above were replaced by this one. A few larger values were left as they are special. One test for the set-timeout action that used to rely on a fixed 1-sec value was extended to a fixed 5-sec, as the timeout is normally not reached, but it needs to be known to compare the old and new values.
2021-11-18 16:46:22 +00:00
timeout connect "${HAPROXY_TEST_TIMEOUT-5s}"
timeout client "${HAPROXY_TEST_TIMEOUT-5s}"
timeout server "${HAPROXY_TEST_TIMEOUT-5s}"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
listen feh1
bind "fd@${feh1}"
#bind "fd@${feh2}" proto h2
server s1 ${s1_addr}:${s1_port}
} -start
# GET requests
client c1h1 -connect ${h1_feh1_sock} {
# first request is valid
txreq \
-req "GET" \
-url "/test1.html"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == "response 1"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
# second request is valid and advertises C-L:0
txreq \
-req "GET" \
-url "/test2.html" \
-hdr "content-length: 0"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == "response 2"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
# third request sends a body with a GET
txreq \
-req "GET" \
-url "/test3.html" \
-body "this must be delivered, like it or not"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == "response 3"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
# fourth request is valid and advertises C-L:0, and close, and is
# followed by a string "this is not sent\r\n\r\n" which must be
# dropped.
txreq \
-req "GET" \
-url "/test4.html" \
-hdr "content-length: 0" \
-hdr "connection: close"
# "this is not sent"
sendhex "74787973207973206E6F742073656E740D0A0D0A"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == "response 4"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
# the connection is expected to be closed and no more response must
# arrive here.
expect_close
} -run
# HEAD requests
# Note: for now they fail with varnishtest, which expects the amount of
# data advertised in the content-length response.
REGTEST: Enable again reg tests with HEAD HTTP method usage. These reg tests have been disabled because they required a version of vtest including a bug fix supposed to make these ones work without breaking others. But reg-tests for compression were broken. This issue has been fixed by 525ef0f vtest commit. So, to make all the reg tests work you must update your vtest program to include 525ef0f commit. (see https://github.com/vtest/VTest/commit/525ef0f for more information.
2019-03-26 10:06:29 +00:00
client c2h1 -connect ${h1_feh1_sock} {
# first request is valid
txreq \
-req "HEAD" \
-url "/test11.html"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == ""
REGTEST: Enable again reg tests with HEAD HTTP method usage. These reg tests have been disabled because they required a version of vtest including a bug fix supposed to make these ones work without breaking others. But reg-tests for compression were broken. This issue has been fixed by 525ef0f vtest commit. So, to make all the reg tests work you must update your vtest program to include 525ef0f commit. (see https://github.com/vtest/VTest/commit/525ef0f for more information.
2019-03-26 10:06:29 +00:00
# second request is valid and advertises C-L:0
txreq \
-req "HEAD" \
-url "/test12.html" \
-hdr "content-length: 0"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == ""
REGTEST: Enable again reg tests with HEAD HTTP method usage. These reg tests have been disabled because they required a version of vtest including a bug fix supposed to make these ones work without breaking others. But reg-tests for compression were broken. This issue has been fixed by 525ef0f vtest commit. So, to make all the reg tests work you must update your vtest program to include 525ef0f commit. (see https://github.com/vtest/VTest/commit/525ef0f for more information.
2019-03-26 10:06:29 +00:00
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
# third request sends a body with a HEAD
REGTEST: Enable again reg tests with HEAD HTTP method usage. These reg tests have been disabled because they required a version of vtest including a bug fix supposed to make these ones work without breaking others. But reg-tests for compression were broken. This issue has been fixed by 525ef0f vtest commit. So, to make all the reg tests work you must update your vtest program to include 525ef0f commit. (see https://github.com/vtest/VTest/commit/525ef0f for more information.
2019-03-26 10:06:29 +00:00
txreq \
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
-req "HEAD" \
REGTEST: Enable again reg tests with HEAD HTTP method usage. These reg tests have been disabled because they required a version of vtest including a bug fix supposed to make these ones work without breaking others. But reg-tests for compression were broken. This issue has been fixed by 525ef0f vtest commit. So, to make all the reg tests work you must update your vtest program to include 525ef0f commit. (see https://github.com/vtest/VTest/commit/525ef0f for more information.
2019-03-26 10:06:29 +00:00
-url "/test13.html" \
-body "this must be delivered, like it or not"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == ""
REGTEST: Enable again reg tests with HEAD HTTP method usage. These reg tests have been disabled because they required a version of vtest including a bug fix supposed to make these ones work without breaking others. But reg-tests for compression were broken. This issue has been fixed by 525ef0f vtest commit. So, to make all the reg tests work you must update your vtest program to include 525ef0f commit. (see https://github.com/vtest/VTest/commit/525ef0f for more information.
2019-03-26 10:06:29 +00:00
# fourth request is valid and advertises C-L:0, and close, and is
# followed by a string "this is not sent\r\n\r\n" which must be
# dropped.
txreq \
-req "HEAD" \
-url "/test14.html" \
-hdr "content-length: 0" \
-hdr "connection: close"
# "this is not sent"
sendhex "74787973207973206E6F742073656E740D0A0D0A"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == ""
REGTEST: Enable again reg tests with HEAD HTTP method usage. These reg tests have been disabled because they required a version of vtest including a bug fix supposed to make these ones work without breaking others. But reg-tests for compression were broken. This issue has been fixed by 525ef0f vtest commit. So, to make all the reg tests work you must update your vtest program to include 525ef0f commit. (see https://github.com/vtest/VTest/commit/525ef0f for more information.
2019-03-26 10:06:29 +00:00
# the connection is expected to be closed and no more response must
# arrive here.
expect_close
} -run
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
client c3h1 -connect ${h1_feh1_sock} {
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
# first request is valid
txreq \
-req "POST" \
-url "/test21.html"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == "response 1"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
# second request is valid and advertises C-L:0
txreq \
-req "POST" \
-url "/test22.html" \
-hdr "content-length: 0"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == "response 2"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
CLEANUP: assorted typo fixes in the code and comments This is 10th iteration of typo fixes
2020-06-21 16:42:57 +00:00
# third request is valid and advertises (and sends) some contents
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
txreq \
-req "POST" \
-url "/test23.html" \
-body "this is sent"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == "response 3"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
# fourth request is valid and advertises C-L:0, and close, and is
# followed by a string "this is not sent\r\n\r\n" which must be
# dropped.
txreq \
-req "POST" \
-url "/test24.html" \
-hdr "content-length: 0" \
-hdr "connection: close"
# "this is not sent"
sendhex "74787973207973206E6F742073656E740D0A0D0A"
rxresp
expect resp.status == 200
REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled The way unexpected bodies are handled for responses to HEAD requests differs from the legacy HTTP to the HTX. While it is dropped wih the legacy HTTP, in HTX, it is parsed as the response to the next request. So, in HTX, a 502 error is returned to the client and the connexion is closed. This test has been modified to pass in both mode.
2019-04-01 09:26:25 +00:00
expect resp.body == "response 4"
REGTEST: add a few HTTP messaging tests These tests send GET/HEAD/POST requests in H1 and H2, with and without HTX, with and without a body, and verify that the behaviour is the expected one. For now HEAD requests have been commented out because in H1 they are not really testable as varnishtest expects to read a body, and in H2 the behaviour depends on HTX/legacy, indicating a bug in haproxy (it looks like we can deliver some data in response to HEAD in legacy mode).
2018-12-13 18:35:29 +00:00
# the connection is expected to be closed and no more response must
# arrive here.
expect_close
} -run
BUG/MAJOR: http: reject any empty content-length header value The content-length header parser has its dedicated function, in order to take extreme care about invalid, unparsable, or conflicting values. But there's a corner case in it, by which it stops comparing values when reaching the end of the header. This has for a side effect that an empty value or a value that ends with a comma does not deserve further analysis, and it acts as if the header was absent. While this is not necessarily a problem for the value ending with a comma as it will be cause a header folding and will disappear, it is a problem for the first isolated empty header because this one will not be recontructed when next ones are seen, and will be passed as-is to the backend server. A vulnerable HTTP/1 server hosted behind haproxy that would just use this first value as "0" and ignore the valid one would then not be protected by haproxy and could be attacked this way, taking the payload for an extra request. In field the risk depends on the server. Most commonly used servers already have safe content-length parsers, but users relying on haproxy to protect a known-vulnerable server might be at risk (and the risk of a bug even in a reputable server should never be dismissed). A configuration-based work-around consists in adding the following rule in the frontend, to explicitly reject requests featuring an empty content-length header that would have not be folded into an existing one: http-request deny if { hdr_len(content-length) 0 } The real fix consists in adjusting the parser so that it always expects a value at the beginning of the header or after a comma. It will now reject requests and responses having empty values anywhere in the C-L header. This needs to be backported to all supported versions. Note that the modification was made to functions h1_parse_cont_len_header() and http_parse_cont_len_header(). Prior to 2.8 the latter was in h2_parse_cont_len_header(). One day the two should be refused but the former is also used by Lua. The HTTP messaging reg-tests were completed to test these cases. Thanks to Ben Kallus of Dartmouth College and Narf Industries for reporting this! (this is in GH #2237).
2023-08-09 06:32:48 +00:00
client c4h1 -connect ${h1_feh1_sock} {
# this request is invalid and advertises an invalid C-L ending with an
# empty value, which results in a stream error.
txreq \
-req "GET" \
-url "/test31.html" \
-hdr "content-length: 0," \
-hdr "connection: close"
rxresp
expect resp.status == 400
expect_close
} -run
client c5h1 -connect ${h1_feh1_sock} {
# this request is invalid and advertises an empty C-L, which results
# in a stream error.
txreq \
-req "GET" \
-url "/test41.html" \
-hdr "content-length:" \
-hdr "connection: close"
rxresp
expect resp.status == 400
expect_close
} -run