cosmopolitan/test/net/http/isreasonablepath_test.c

/*-*- mode:c;indent-tabs-mode:nil;c-basic-offset:2;tab-width:8;coding:utf-8 -*-│
│vi: set net ft=c ts=2 sts=2 sw=2 fenc=utf-8                                :vi│
╞══════════════════════════════════════════════════════════════════════════════╡
│ Copyright 2021 Justine Alexandra Roberts Tunney                              │
│                                                                              │
│ Permission to use, copy, modify, and/or distribute this software for         │
│ any purpose with or without fee is hereby granted, provided that the         │
│ above copyright notice and this permission notice appear in all copies.      │
│                                                                              │
│ THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL                │
│ WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED                │
│ WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE             │
│ AUTHOR BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL         │
│ DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR        │
│ PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER               │
│ TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR             │
│ PERFORMANCE OF THIS SOFTWARE.                                                │
╚─────────────────────────────────────────────────────────────────────────────*/
#include "libc/testlib/ezbench.h"
#include "libc/testlib/testlib.h"
#include "net/http/http.h"

TEST(IsReasonablePath, test) {
  EXPECT_TRUE(IsReasonablePath("/", 1));
  EXPECT_TRUE(IsReasonablePath("index.html", 10));
  EXPECT_TRUE(IsReasonablePath("/index.html", 11));
  EXPECT_TRUE(IsReasonablePath("/index.html", -1));
  EXPECT_TRUE(IsReasonablePath("/redbean.png", -1));
  EXPECT_TRUE(IsReasonablePath("/.ca.key", -1));
  EXPECT_TRUE(IsReasonablePath(".ca.key", -1));
}

TEST(IsReasonablePath, testEmptyString_allowedIfYouLikeImplicitLeadingSlash) {
  EXPECT_TRUE(IsReasonablePath(0, 0));
  EXPECT_TRUE(IsReasonablePath(0, -1));
  EXPECT_TRUE(IsReasonablePath("", 0));
}

TEST(IsReasonablePath, testHiddenFiles_areAllowed) {
  EXPECT_TRUE(IsReasonablePath("/.index.html", 12));
  EXPECT_TRUE(IsReasonablePath("/x/.index.html", 14));
}

TEST(IsReasonablePath, testDoubleSlash_isAllowed) {
  EXPECT_TRUE(IsReasonablePath("//", 2));
  EXPECT_TRUE(IsReasonablePath("foo//", 5));
  EXPECT_TRUE(IsReasonablePath("/foo//", 6));
  EXPECT_TRUE(IsReasonablePath("/foo//bar", 9));
}

TEST(IsReasonablePath, testNoncanonicalDirectories_areForbidden) {
  EXPECT_FALSE(IsReasonablePath(".", 1));
  EXPECT_FALSE(IsReasonablePath("..", 2));
  EXPECT_FALSE(IsReasonablePath("/.", 2));
  EXPECT_FALSE(IsReasonablePath("/..", 3));
  EXPECT_FALSE(IsReasonablePath("./", 2));
  EXPECT_FALSE(IsReasonablePath("../", 3));
  EXPECT_FALSE(IsReasonablePath("/./", 3));
  EXPECT_FALSE(IsReasonablePath("/../", 4));
  EXPECT_FALSE(IsReasonablePath("x/.", 3));
  EXPECT_FALSE(IsReasonablePath("x/..", 4));
  EXPECT_FALSE(IsReasonablePath("x/./", 4));
  EXPECT_FALSE(IsReasonablePath("x/../", 5));
  EXPECT_FALSE(IsReasonablePath("/x/./", 5));
  EXPECT_FALSE(IsReasonablePath("/x/../", 6));
}

TEST(IsReasonablePath, testNoncanonicalWindowsDirs_areForbidden) {
  EXPECT_FALSE(IsReasonablePath(".", 1));
  EXPECT_FALSE(IsReasonablePath("..", 2));
  EXPECT_FALSE(IsReasonablePath("\\.", 2));
  EXPECT_FALSE(IsReasonablePath("\\..", 3));
  EXPECT_FALSE(IsReasonablePath(".\\", 2));
  EXPECT_FALSE(IsReasonablePath("..\\", 3));
  EXPECT_FALSE(IsReasonablePath("\\.\\", 3));
  EXPECT_FALSE(IsReasonablePath("\\..\\", 4));
  EXPECT_FALSE(IsReasonablePath("x\\.", 3));
  EXPECT_FALSE(IsReasonablePath("x\\..", 4));
  EXPECT_FALSE(IsReasonablePath("x\\.\\", 4));
  EXPECT_FALSE(IsReasonablePath("x\\..\\", 5));
  EXPECT_FALSE(IsReasonablePath("\\x\\.\\", 5));
  EXPECT_FALSE(IsReasonablePath("\\x\\..\\", 6));
}

TEST(IsReasonablePath, testOverlongSlashDot_isDetected) {
  EXPECT_FALSE(IsReasonablePath("/\300\256", 3));        /* /. */
  EXPECT_TRUE(IsReasonablePath("/\300\257", 3));         /* // */
  EXPECT_FALSE(IsReasonablePath("\300\256\300\256", 4)); /* .. */
}

BENCH(IsReasonablePath, bench) {
  EZBENCH2("IsReasonablePath", donothing, IsReasonablePath("/index.html", 11));
}
Add /statusz page to redbean plus other enhancements redbean improvements: - Explicitly disable corking - Simulate Python regex API for Lua - Send warmup requests in main process on startup - Add Class-A granular IPv4 network classification - Add /statusz page so you can monitor your redbean's health - Fix regressions on OpenBSD/NetBSD caused by recent changes - Plug Authorization header into Lua GetUser and GetPass APIs - Recognize X-Forwarded-{For,Host} from local reverse proxies - Add many additional functions to redbean Lua server page API - Report resource usage of child processes on `/` listing page - Introduce `-a` flag for logging child process resource usage - Introduce `-t MILLIS` flag and `ProgramTimeout(ms)` init API - Introduce `-H "Header: value"` flag and `ProgramHeader(k,v)` API Cosmopolitan Libc improvements: - Make strerror() simpler - Make inet_pton() not depend on sscanf() - Fix OpenExecutable() which broke .data section earlier - Fix stdio in cases where it overflows kernel tty buffer - Fix bugs in crash reporting w/o .com.dbg binary present - Add polyfills for SO_LINGER, SO_RCVTIMEO, and SO_SNDTIMEO - Polyfill TCP_CORK on BSD and XNU using TCP_NOPUSH magnums New netcat clone in examples/nc.c: While testing some of the failure conditions for redbean, I noticed that BusyBox's `nc` command is pretty busted, if you use it as an interactive tool, rather than having it be part of a pipeline. Unfortunately this'll only work on UNIX since Windows doesn't let us poll on stdio and sockets at the same time because I don't think they want tools like this running on their platform. So if you want forbidden fruit, it's here so enjoy it 2021-04-23 17:45:19 +00:00			`/-- mode:c;indent-tabs-mode:nil;c-basic-offset:2;tab-width:8;coding:utf-8 -*-│`
			`│vi: set net ft=c ts=2 sts=2 sw=2 fenc=utf-8 :vi│`
			`╞══════════════════════════════════════════════════════════════════════════════╡`
			`│ Copyright 2021 Justine Alexandra Roberts Tunney │`
			`│ │`
			`│ Permission to use, copy, modify, and/or distribute this software for │`
			`│ any purpose with or without fee is hereby granted, provided that the │`
			`│ above copyright notice and this permission notice appear in all copies. │`
			`│ │`
			`│ THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL │`
			`│ WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED │`
			`│ WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE │`
			`│ AUTHOR BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL │`
			`│ DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR │`
			`│ PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER │`
			`│ TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR │`
			`│ PERFORMANCE OF THIS SOFTWARE. │`
			`╚─────────────────────────────────────────────────────────────────────────────*/`
			`#include "libc/testlib/ezbench.h"`
			`#include "libc/testlib/testlib.h"`
			`#include "net/http/http.h"`

			`TEST(IsReasonablePath, test) {`
			`EXPECT_TRUE(IsReasonablePath("/", 1));`
			`EXPECT_TRUE(IsReasonablePath("index.html", 10));`
			`EXPECT_TRUE(IsReasonablePath("/index.html", 11));`
			`EXPECT_TRUE(IsReasonablePath("/index.html", -1));`
			`EXPECT_TRUE(IsReasonablePath("/redbean.png", -1));`
Add SSL to redbean Your redbean can now interoperate with clients that require TLS crypto. This is accomplished using a protocol polyglot that lets us distinguish between HTTP and HTTPS regardless of the port number. Certificates will be generated automatically, if none are supplied by the user. Footprint increases by only a few hundred kb so redbean in MODY=tiny is now 1.0mb - Add lseek() polyfills for ZIP executable - Automatically polyfill /tmp/FOO paths on NT - Fix readdir() / ftw() / nftw() bugs on Windows - Introduce -B flag for slower SSL that's stronger - Remove mbedtls features Cosmopolitan doesn't need - Have base64 decoder support the uri-safe alternative - Remove Truncated HMAC because it's forbidden by the IETF - Add all the mbedtls test suites and make them go 3x faster - Support opendir() / readdir() / closedir() on ZIP executable - Use Everest for ECDHE-ECDSA because it's so good it's so good - Add tinier implementation of sha1 since it's not worth the rom - Add chi-square monte-carlo mean correlation tests for getrandom() - Source entropy on Windows from the proper interface everyone uses We're continuing to outperform NGINX and other servers on raw message throughput. Using SSL means that instead of 1,000,000 qps you can get around 300,000 qps. However redbean isn't as fast as NGINX yet at SSL handshakes, since redbean can do 2,627 per second and NGINX does 4.3k Right now, the SSL UX story works best if you give your redbean a key signing key since that can be easily generated by openssl using a one liner then redbean will do all the things that are impossibly hard to do like signing ecdsa and rsa certificates that'll work in chrome. We should integrate the let's encrypt acme protocol in the future. Live Demo: https://redbean.justine.lol/ Root Cert: https://redbean.justine.lol/redbean1.crt 2021-06-24 19:31:26 +00:00			`EXPECT_TRUE(IsReasonablePath("/.ca.key", -1));`
			`EXPECT_TRUE(IsReasonablePath(".ca.key", -1));`
Add /statusz page to redbean plus other enhancements redbean improvements: - Explicitly disable corking - Simulate Python regex API for Lua - Send warmup requests in main process on startup - Add Class-A granular IPv4 network classification - Add /statusz page so you can monitor your redbean's health - Fix regressions on OpenBSD/NetBSD caused by recent changes - Plug Authorization header into Lua GetUser and GetPass APIs - Recognize X-Forwarded-{For,Host} from local reverse proxies - Add many additional functions to redbean Lua server page API - Report resource usage of child processes on `/` listing page - Introduce `-a` flag for logging child process resource usage - Introduce `-t MILLIS` flag and `ProgramTimeout(ms)` init API - Introduce `-H "Header: value"` flag and `ProgramHeader(k,v)` API Cosmopolitan Libc improvements: - Make strerror() simpler - Make inet_pton() not depend on sscanf() - Fix OpenExecutable() which broke .data section earlier - Fix stdio in cases where it overflows kernel tty buffer - Fix bugs in crash reporting w/o .com.dbg binary present - Add polyfills for SO_LINGER, SO_RCVTIMEO, and SO_SNDTIMEO - Polyfill TCP_CORK on BSD and XNU using TCP_NOPUSH magnums New netcat clone in examples/nc.c: While testing some of the failure conditions for redbean, I noticed that BusyBox's `nc` command is pretty busted, if you use it as an interactive tool, rather than having it be part of a pipeline. Unfortunately this'll only work on UNIX since Windows doesn't let us poll on stdio and sockets at the same time because I don't think they want tools like this running on their platform. So if you want forbidden fruit, it's here so enjoy it 2021-04-23 17:45:19 +00:00			`}`

			`TEST(IsReasonablePath, testEmptyString_allowedIfYouLikeImplicitLeadingSlash) {`
			`EXPECT_TRUE(IsReasonablePath(0, 0));`
			`EXPECT_TRUE(IsReasonablePath(0, -1));`
			`EXPECT_TRUE(IsReasonablePath("", 0));`
			`}`

			`TEST(IsReasonablePath, testHiddenFiles_areAllowed) {`
			`EXPECT_TRUE(IsReasonablePath("/.index.html", 12));`
			`EXPECT_TRUE(IsReasonablePath("/x/.index.html", 14));`
			`}`

			`TEST(IsReasonablePath, testDoubleSlash_isAllowed) {`
			`EXPECT_TRUE(IsReasonablePath("//", 2));`
			`EXPECT_TRUE(IsReasonablePath("foo//", 5));`
			`EXPECT_TRUE(IsReasonablePath("/foo//", 6));`
			`EXPECT_TRUE(IsReasonablePath("/foo//bar", 9));`
			`}`

			`TEST(IsReasonablePath, testNoncanonicalDirectories_areForbidden) {`
			`EXPECT_FALSE(IsReasonablePath(".", 1));`
			`EXPECT_FALSE(IsReasonablePath("..", 2));`
			`EXPECT_FALSE(IsReasonablePath("/.", 2));`
			`EXPECT_FALSE(IsReasonablePath("/..", 3));`
			`EXPECT_FALSE(IsReasonablePath("./", 2));`
			`EXPECT_FALSE(IsReasonablePath("../", 3));`
			`EXPECT_FALSE(IsReasonablePath("/./", 3));`
			`EXPECT_FALSE(IsReasonablePath("/../", 4));`
			`EXPECT_FALSE(IsReasonablePath("x/.", 3));`
			`EXPECT_FALSE(IsReasonablePath("x/..", 4));`
			`EXPECT_FALSE(IsReasonablePath("x/./", 4));`
			`EXPECT_FALSE(IsReasonablePath("x/../", 5));`
			`EXPECT_FALSE(IsReasonablePath("/x/./", 5));`
			`EXPECT_FALSE(IsReasonablePath("/x/../", 6));`
			`}`

			`TEST(IsReasonablePath, testNoncanonicalWindowsDirs_areForbidden) {`
			`EXPECT_FALSE(IsReasonablePath(".", 1));`
			`EXPECT_FALSE(IsReasonablePath("..", 2));`
			`EXPECT_FALSE(IsReasonablePath("\\.", 2));`
			`EXPECT_FALSE(IsReasonablePath("\\..", 3));`
			`EXPECT_FALSE(IsReasonablePath(".\\", 2));`
			`EXPECT_FALSE(IsReasonablePath("..\\", 3));`
			`EXPECT_FALSE(IsReasonablePath("\\.\\", 3));`
			`EXPECT_FALSE(IsReasonablePath("\\..\\", 4));`
			`EXPECT_FALSE(IsReasonablePath("x\\.", 3));`
			`EXPECT_FALSE(IsReasonablePath("x\\..", 4));`
			`EXPECT_FALSE(IsReasonablePath("x\\.\\", 4));`
			`EXPECT_FALSE(IsReasonablePath("x\\..\\", 5));`
			`EXPECT_FALSE(IsReasonablePath("\\x\\.\\", 5));`
			`EXPECT_FALSE(IsReasonablePath("\\x\\..\\", 6));`
			`}`

			`TEST(IsReasonablePath, testOverlongSlashDot_isDetected) {`
			`EXPECT_FALSE(IsReasonablePath("/\300\256", 3)); /* /. */`
			`EXPECT_TRUE(IsReasonablePath("/\300\257", 3)); /* // */`
			`EXPECT_FALSE(IsReasonablePath("\300\256\300\256", 4)); /* .. */`
			`}`

			`BENCH(IsReasonablePath, bench) {`
			`EZBENCH2("IsReasonablePath", donothing, IsReasonablePath("/index.html", 11));`
			`}`