mirror/curl
2
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2025-02-05 14:30:10 +08:00
Code Issues Packages Projects Releases Wiki Activity

test440/441: verify HSTS with trailing dots

Browse Source
This commit is contained in:
Daniel Stenberg 2022-05-09 08:13:54 +02:00
parent cfa47974fe
commit ff3ee510c3
No known key found for this signature in database
GPG Key ID: 5CC908FDB71E12C2
3 changed files with 146 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
tests/data/Makefile.inc
View File

@ -72,6 +72,8 @@ test409 test410 test411 test412 test413 \
\
test430 test431 test432 test433 test434 test435 test436 \
\
test440 test441 \
\
test490 test491 test492 test493 test494 \
\
test500 test501 test502 test503 test504 test505 test506 test507 test508 \

72
tests/data/test440 Normal file
View File

@ -0,0 +1,72 @@
<testcase>
<info>
<keywords>
HTTP
HSTS
trailing-dot
</keywords>
</info>
<reply>
# we use this as response to a CONNECT
<connect nocheck="yes">
HTTP/1.1 403 not OK at all
Date: Tue, 09 Nov 2010 14:49:00 GMT
Server: test-server/fake
Content-Length: 6
Connection: close
Funny-head: yesyes
-foo-
</connect>
</reply>
<client>
<server>
http
</server>
<features>
HSTS
proxy
https
</features>
# no trailing dot in the file only in the URL
<file name="log/input%TESTNUMBER">
this.hsts.example "99991001 04:47:41"
</file>
<name>
HSTS with trailing-dot host name in URL but none in hsts file
</name>
<command>
-x http://%HOSTIP:%HTTPPORT http://this.hsts.example./%TESTNUMBER --hsts log/input%TESTNUMBER -w '%{url_effective}\n'
</command>
</client>
<verify>
# we let it CONNECT to the server to confirm HSTS but deny from there
<protocol>
CONNECT this.hsts.example.:443 HTTP/1.1
Host: this.hsts.example.:443
User-Agent: curl/%VERSION
Proxy-Connection: Keep-Alive
</protocol>
<stdout>
HTTP/1.1 403 not OK at all
Date: Tue, 09 Nov 2010 14:49:00 GMT
Server: test-server/fake
Content-Length: 6
Connection: close
Funny-head: yesyes
https://this.hsts.example./%TESTNUMBER
</stdout>
# Proxy CONNECT aborted
<errorcode>
56
</errorcode>
</verify>
</testcase>

72
tests/data/test441 Normal file
View File

@ -0,0 +1,72 @@
<testcase>
<info>
<keywords>
HTTP
HSTS
trailing-dot
</keywords>
</info>
<reply>
# we use this as response to a CONNECT
<connect nocheck="yes">
HTTP/1.1 403 not OK at all
Date: Tue, 09 Nov 2010 14:49:00 GMT
Server: test-server/fake
Content-Length: 6
Connection: close
Funny-head: yesyes
-foo-
</connect>
</reply>
<client>
<server>
http
</server>
<features>
HSTS
proxy
https
</features>
# no trailing dot in the file only in the URL
<file name="log/input%TESTNUMBER">
this.hsts.example. "99991001 04:47:41"
</file>
<name>
HSTS with no t-dot host name in URL but t-dot in file
</name>
<command>
-x http://%HOSTIP:%HTTPPORT http://this.hsts.example/%TESTNUMBER --hsts log/input%TESTNUMBER -w '%{url_effective}\n'
</command>
</client>
<verify>
# we let it CONNECT to the server to confirm HSTS but deny from there
<protocol>
CONNECT this.hsts.example:443 HTTP/1.1
Host: this.hsts.example:443
User-Agent: curl/%VERSION
Proxy-Connection: Keep-Alive
</protocol>
<stdout>
HTTP/1.1 403 not OK at all
Date: Tue, 09 Nov 2010 14:49:00 GMT
Server: test-server/fake
Content-Length: 6
Connection: close
Funny-head: yesyes
https://this.hsts.example/%TESTNUMBER
</stdout>
# Proxy CONNECT aborted
<errorcode>
56
</errorcode>
</verify>
</testcase>