123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238 |
- -module(rfc7230_SUITE).
- -compile(export_all).
- -compile(nowarn_export_all).
- -import(ct_helper, [doc/1]).
- -import(cowboy_test, [gun_open/1]).
- -import(cowboy_test, [gun_down/1]).
- -import(cowboy_test, [raw_open/1]).
- -import(cowboy_test, [raw_send/2]).
- -import(cowboy_test, [raw_recv_head/1]).
- -import(cowboy_test, [raw_recv/3]).
- suite() ->
- [{timetrap, 30000}].
- all() -> [{group, http}].
- groups() -> [{http, [parallel], ct_helper:all(?MODULE)}].
- init_per_group(Name = http, Config) ->
- cowboy_test:init_http(Name = http, #{
- env => #{dispatch => cowboy_router:compile(init_routes(Config))},
- max_keepalive => 100
- }, Config).
- end_per_group(Name, _) ->
- ok = cowboy:stop_listener(Name).
- init_routes(_) -> [
- {"localhost", [
- {"/", hello_h, []},
- {"/echo/:key[/:arg]", echo_h, []},
- {"/full/:key[/:arg]", echo_h, []},
- {"/length/echo/:key", echo_h, []},
- {"/resp/:key[/:arg]", resp_h, []},
- {"/send_message", send_message_h, []},
- {"*", asterisk_h, []}
- ]},
- {"127.0.0.1", [{"/echo/:key", echo_h, []}]},
- {"example.org", [{"/echo/:key", echo_h, []}]}
- ].
- do_raw(Config, Data) ->
- Client = raw_open(Config),
- ok = raw_send(Client, Data),
- {Version, Code, Reason, Rest} = cow_http:parse_status_line(raw_recv_head(Client)),
- {Headers, Rest2} = cow_http:parse_headers(Rest),
- case lists:keyfind(<<"content-length">>, 1, Headers) of
- {_, LengthBin} when LengthBin =/= <<"0">> ->
- Length = binary_to_integer(LengthBin),
- Body = if
- byte_size(Rest2) =:= Length -> Rest2;
- true ->
- {ok, Body0} = raw_recv(Client, Length - byte_size(Rest2), 5000),
- << Rest2/bits, Body0/bits >>
- end,
- #{client => Client, version => Version, code => Code, reason => Reason, headers => Headers, body => Body};
- _ ->
- #{client => Client, version => Version, code => Code, reason => Reason, headers => Headers, body => <<>>}
- end.
- accept_at_least_1_empty_line(Config) ->
- doc("A configurable number of empty lines (CRLF) preceding the request "
- "must be ignored. At least 1 empty line must be ignored. (RFC7230 3.5)"),
- #{code := 200} = do_raw(Config,
- "\r\n"
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- reject_response(Config) ->
- doc("When receiving a response instead of a request, identified by the "
- "status-line which starts with the HTTP version, the server must "
- "reject the message with a 400 status code and close the connection. (RFC7230 3.1)"),
- #{code := 400, client := Client} = do_raw(Config,
- "HTTP/1.1 200 OK\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- only_parse_necessary_elements(Config) ->
- doc("It is only necessary to parse elements required to process the request. (RFC7230 2.5)"),
- #{code := 200} = do_raw(Config,
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-type: purposefully bad header value\r\n"
- "\r\n").
- no_empty_line_after_request_line(Config) ->
- doc("The general format of HTTP requests is strict. No empty line is "
- "allowed in-between components except for the empty line "
- "indicating the end of the list of headers."),
- #{code := 400} = do_raw(Config,
- "GET / HTTP/1.1\r\n"
- "\r\n"
- "Host: localhost\r\n"
- "\r\n").
- no_empty_line_in_headers(Config) ->
- doc("The general format of HTTP requests is strict. No empty line is "
- "allowed in-between components except for the empty line "
- "indicating the end of the list of headers."),
- #{code := 400} = do_raw(Config,
- "GET / HTTP/1.1\r\n"
- "User-Agent: RFC7230\r\n"
- "\r\n"
- "Host: localhost\r\n"
- "\r\n").
- timeout_before_request_line(Config) ->
- doc("The time the request (request line and headers) takes to be "
- "received by the server must be limited and subject to configuration. "
- "No response must be sent before closing if no request was initiated "
- "by the reception of a complete request-line."),
- Client = raw_open(Config),
- ok = raw_send(Client, "GET / HTTP/1.1\r"),
- {error, closed} = raw_recv(Client, 0, 6000).
- timeout_after_request_line(Config) ->
- doc("The time the request (request line and headers) takes to be "
- "received by the server must be limited and subject to configuration. "
- "A 408 status code must be sent if the request line was received."),
- #{code := 408, client := Client1} = do_raw(Config, "GET / HTTP/1.1\r\n"),
- {error, closed} = raw_recv(Client1, 0, 6000).
- timeout_after_request_line_host(Config) ->
- doc("The time the request (request line and headers) takes to be "
- "received by the server must be limited and subject to configuration. "
- "A 408 status code must be sent if the request line was received."),
- #{code := 408, client := Client2} = do_raw(Config, "GET / HTTP/1.1\r\nHost: localhost"),
- {error, closed} = raw_recv(Client2, 0, 6000).
- timeout_after_request_line_host_crlf(Config) ->
- doc("The time the request (request line and headers) takes to be "
- "received by the server must be limited and subject to configuration. "
- "A 408 status code must be sent if the request line was received."),
- #{code := 408, client := Client3} = do_raw(Config, "GET / HTTP/1.1\r\nHost: localhost\r\n"),
- {error, closed} = raw_recv(Client3, 0, 6000).
- timeout_after_request_line_host_crlfcr(Config) ->
- doc("The time the request (request line and headers) takes to be "
- "received by the server must be limited and subject to configuration. "
- "A 408 status code must be sent if the request line was received."),
- #{code := 408, client := Client4} = do_raw(Config, "GET / HTTP/1.1\r\nHost: localhost\r\n\r"),
- {error, closed} = raw_recv(Client4, 0, 6000).
- limit_request_line_8000(Config) ->
- doc("It is recommended to limit the request-line length to a configurable "
- "limit of at least 8000 octets."),
- LongPath = ["/long-path" || _ <- lists:seq(1, 799)],
- #{code := 200} = do_raw(Config, [
- "GET /?qs=", LongPath, " HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]).
- limit_request_line_9000(Config) ->
- doc("It is recommended to limit the request-line length to a configurable "
- "limit of at least 8000 octets. A request line too long must be rejected "
- "with a 414 status code and the closing of the connection. (RFC7230 3.1.1)"),
- LongPath = ["/long-path" || _ <- lists:seq(1, 899)],
- #{code := 414, client := Client} = do_raw(Config, [
- "GET /very", LongPath, " HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_invalid_method(Config) ->
- doc("The request method is defined as 1+ token characters. An invalid "
- "method must be rejected with a 400 status code and the "
- "closing of the connection. (RFC7230 3.1.1, RFC7230 3.2.6)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET\0 / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_empty_method(Config) ->
- doc("The request method is defined as 1+ token characters. An empty "
- "method must be rejected with a 400 status code and the "
- "closing of the connection. (RFC7230 3.1.1, RFC7230 3.2.6)"),
- #{code := 400, client := Client} = do_raw(Config,
- " / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- limit_method_name(Config) ->
- doc("The length of the method must be subject to a configurable limit. "
- "A method too long must be rejected with a 501 status code and the "
- "closing of the connection. A good default for the method length limit "
- "is the longest method length the server implements. (RFC7230 3.1.1)"),
- LongMethod = [$G || _ <- lists:seq(1, 1000)],
- #{code := 501, client := Client} = do_raw(Config, [
- LongMethod, " / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_tab_between_method_and_request_target(Config) ->
- doc("A request that uses anything other than SP as separator between "
- "the method and the request-target must be rejected with a 400 "
- "status code and the closing of the connection. (RFC7230 3.1.1, RFC7230 3.5)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET\t/ HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_two_sp_between_method_and_request_target(Config) ->
- doc("A request that uses anything other than SP as separator between "
- "the method and the request-target must be rejected with a 400 "
- "status code and the closing of the connection. (RFC7230 3.1.1, RFC7230 3.5)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- ignore_uri_fragment_after_path(Config) ->
- doc("The fragment part of the target URI is not sent. It must be "
- "ignored by a server receiving it. (RFC7230 5.1)"),
- Echo = <<"http://localhost/echo/uri">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET /echo/uri#fragment HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- ignore_uri_fragment_after_query(Config) ->
- doc("The fragment part of the target URI is not sent. It must be "
- "ignored by a server receiving it. (RFC7230 5.1)"),
- Echo = <<"http://localhost/echo/uri?key=value">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET /echo/uri?key=value#fragment HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- must_understand_origin_form(Config) ->
- doc("A server must be able to handle at least origin-form and absolute-form. (RFC7230 5.3.2)"),
- #{code := 200} = do_raw(Config,
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- origin_form_tcp_scheme(Config) ->
- doc("The scheme is either resolved from configuration or is \"https\" "
- "when on a TLS connection and \"http\" otherwise. (RFC7230 5.5)"),
- Echo = <<"http://localhost/echo/uri">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET /echo/uri HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- origin_form_path(Config) ->
- doc("The absolute-path always starts with \"/\" and ends with either \"?\", \"#\" "
- "or the end of the URI. (RFC3986 3.3)"),
- Echo = <<"/echo/path">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET /echo/path HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- origin_form_path_query(Config) ->
- doc("The absolute-path always starts with \"/\" and ends with either \"?\", \"#\" "
- "or the end of the URI. (RFC3986 3.3)"),
- Echo = <<"/echo/path">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET /echo/path?key=value HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- origin_form_path_fragment(Config) ->
- doc("The absolute-path always starts with \"/\" and ends with either \"?\", \"#\" "
- "or the end of the URI. (RFC3986 3.3)"),
- Echo = <<"/echo/path">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET /echo/path#fragment HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- origin_form_query(Config) ->
- doc("The query starts with \"?\" and ends with \"#\" or the end of the URI. (RFC3986 3.4)"),
- Echo = <<"key=value">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET /echo/qs?key=value HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- origin_form_query_fragment(Config) ->
- doc("The query starts with \"?\" and ends with \"#\" or the end of the URI. (RFC3986 3.4)"),
- Echo = <<"key=value">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET /echo/qs?key=value#fragment HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- must_understand_absolute_form(Config) ->
- doc("A server must be able to handle at least origin-form and absolute-form. (RFC7230 5.3.2)"),
- #{code := 200} = do_raw(Config,
- "GET http://localhost HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- absolute_form_case_insensitive_scheme(Config) ->
- doc("The scheme is case insensitive and normally provided in lowercase. (RFC7230 2.7.3)"),
- Echo = <<"http://localhost/echo/uri">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET HttP://localhost/echo/uri HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- absolute_form_case_insensitive_host(Config) ->
- doc("The host is case insensitive and normally provided in lowercase. (RFC7230 2.7.3)"),
- Echo = <<"http://localhost/echo/uri">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET http://LoCaLHOsT/echo/uri HTTP/1.1\r\n"
- "Host: LoCaLHOsT\r\n"
- "\r\n").
- absolute_form_reject_unknown_schemes(Config) ->
- doc("Unknown schemes must be rejected with a 400 status code and the closing of the connection."),
- #{code := 400, client := Client} = do_raw(Config,
- "GET bad://localhost/ HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- absolute_form_drop_scheme_tcp(Config) ->
- doc("The scheme provided with the request must be dropped. The effective "
- "scheme is either resolved from configuration or is \"https\" when on "
- "a TLS connection and \"http\" otherwise. (RFC7230 5.5)"),
- Echo = <<"http://localhost/echo/uri">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET https://localhost/echo/uri HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- absolute_form_reject_userinfo(Config) ->
- doc("An authority component with a userinfo component (and its "
- "\"@\" delimiter) is invalid. The request must be rejected with "
- "a 400 status code and the closing of the connection. (RFC7230 2.7.1)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET http://username:password@localhost HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- absolute_form_reject_missing_host_without_path(Config) ->
- doc("A URI with a missing host identifier is invalid. The request must "
- "be rejected with a 400 status code and the closing of the connection. (RFC7230 2.7.1)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET http:// HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- absolute_form_reject_missing_host_with_path(Config) ->
- doc("A URI with a missing host identifier is invalid. The request must "
- "be rejected with a 400 status code and the closing of the connection. (RFC7230 2.7.1)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET http:/// HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- absolute_form_ipv4(Config) ->
- doc("Absolute form with an IPv4 address for the host. (RFC3986 3.2.2)"),
- Echo = <<"127.0.0.1">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET http://127.0.0.1/echo/host HTTP/1.1\r\n"
- "Host: 127.0.0.1\r\n"
- "\r\n").
- absolute_form_ipv4_port(Config) ->
- doc("Absolute form with an IPv4 address for the host and a port number. (RFC3986 3.2.2)"),
- Host = <<"127.0.0.1">>,
- #{code := 200, body := Host} = do_raw(Config,
- "GET http://127.0.0.1:8080/echo/host HTTP/1.1\r\n"
- "Host: 127.0.0.1:8080\r\n"
- "\r\n"),
- Port = <<"8080">>,
- #{code := 200, body := Port} = do_raw(Config,
- "GET http://127.0.0.1:8080/echo/port HTTP/1.1\r\n"
- "Host: 127.0.0.1:8080\r\n"
- "\r\n").
- absolute_form_reg_name(Config) ->
- doc("Absolute form with a regular name for the host. (RFC3986 3.2.2)"),
- Echo = <<"example.org">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET http://example.org/echo/host HTTP/1.1\r\n"
- "Host: example.org\r\n"
- "\r\n").
- absolute_form_reg_name_port(Config) ->
- doc("Absolute form with an IPv4 address for the host and a port number. (RFC3986 3.2.2)"),
- Host = <<"example.org">>,
- #{code := 200, body := Host} = do_raw(Config,
- "GET http://example.org:8080/echo/host HTTP/1.1\r\n"
- "Host: example.org:8080\r\n"
- "\r\n"),
- Port = <<"8080">>,
- #{code := 200, body := Port} = do_raw(Config,
- "GET http://example.org:8080/echo/port HTTP/1.1\r\n"
- "Host: example.org:8080\r\n"
- "\r\n").
- absolute_form_limit_host(Config) ->
- doc("The maximum length for the host component of the URI must be subject "
- "to a configurable limit. A good default is 255 characters. "
- "(RFC7230 3.1.1, RFC3986 3.2.2, RFC1034 3.1)"),
- LongHost = ["host." || _ <- lists:seq(1, 100)],
- #{code := 414, client := Client} = do_raw(Config, [
- "GET http://", LongHost, "/ HTTP/1.1\r\n"
- "Host: ", LongHost, "\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- absolute_form_invalid_port_0(Config) ->
- doc("Port number 0 is reserved. The request must be rejected and the connection closed."),
- #{code := 400, client := Client} = do_raw(Config,
- "GET http://localhost:0/ HTTP/1.1\r\n"
- "Host: localhost:0\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- absolute_form_invalid_port_65536(Config) ->
- doc("Port numbers above 65535 are invalid. The request must be rejected "
- "and the connection closed."),
- #{code := 400, client := Client} = do_raw(Config,
- "GET http://localhost:65536/ HTTP/1.1\r\n"
- "Host: localhost:65536\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- absolute_form_path(Config) ->
- doc("The path always starts with \"/\" and ends with either \"?\", \"#\" "
- "or the end of the URI. (RFC3986 3.3)"),
- Echo = <<"/echo/path">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET http://localhost/echo/path HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- absolute_form_path_query(Config) ->
- doc("The path always starts with \"/\" and ends with either \"?\", \"#\" "
- "or the end of the URI. (RFC3986 3.3)"),
- Echo = <<"/echo/path">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET http://localhost/echo/path?key=value HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- absolute_form_path_fragment(Config) ->
- doc("The path always starts with \"/\" and ends with either \"?\", \"#\" "
- "or the end of the URI. (RFC3986 3.3)"),
- Echo = <<"/echo/path">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET http://localhost/echo/path#fragment HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- absolute_form_no_path(Config) ->
- doc("An empty path component is equivalent to \"/\". (RFC7230 2.7.3)"),
- #{code := 200, body := <<"Hello world!">>} = do_raw(Config,
- "GET http://localhost HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- absolute_form_no_path_then_query(Config) ->
- doc("An empty path component is equivalent to \"/\". (RFC7230 2.7.3)"),
- #{code := 200, body := <<"Hello world!">>} = do_raw(Config,
- "GET http://localhost?key=value HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- absolute_form_no_path_then_fragment(Config) ->
- doc("An empty path component is equivalent to \"/\". (RFC7230 2.7.3)"),
- #{code := 200, body := <<"Hello world!">>} = do_raw(Config,
- "GET http://localhost#fragment HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- absolute_form_query(Config) ->
- doc("The query starts with \"?\" and ends with \"#\" or the end of the URI. (RFC3986 3.4)"),
- Echo = <<"key=value">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET http://localhost/echo/qs?key=value HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- absolute_form_query_fragment(Config) ->
- doc("The query starts with \"?\" and ends with \"#\" or the end of the URI. (RFC3986 3.4)"),
- Echo = <<"key=value">>,
- #{code := 200, body := Echo} = do_raw(Config,
- "GET http://localhost/echo/qs?key=value#fragment HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n").
- authority_form_reject_if_not_connect(Config) ->
- doc("When the method is CONNECT, authority-form must be used. This "
- "form does not apply to any other methods which must reject the "
- "request with a 400 status code and the closing of the connection. (RFC7230 5.3.3)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET localhost:80 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- asterisk_form_reject_if_not_options(Config) ->
- doc("asterisk-form is used for server-wide OPTIONS requests. "
- "It is invalid with any other methods which must reject the "
- "request with a 400 status code and the closing of the connection. (RFC7230 5.3.4)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET * HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- asterisk_form_empty_path_query(Config) ->
- doc("The path and query components are empty when using asterisk-form. (RFC7230 5.5)"),
- #{code := 200, body := <<"http://localhost">>} = do_raw(Config,
- "OPTIONS * HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "X-Echo: uri\r\n"
- "\r\n").
- invalid_request_target(Config) ->
- doc("Any other form is invalid and must be rejected with a 400 status code "
- "and the closing of the connection."),
- #{code := 400, client := Client} = do_raw(Config,
- "GET \0 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- missing_request_target(Config) ->
- doc("The lack of request target must be rejected with a 400 status code "
- "and the closing of the connection."),
- #{code := 400, client := Client} = do_raw(Config,
- "GET HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_tab_between_request_target_and_version(Config) ->
- doc("A request that uses anything other than SP as separator between "
- "the request-target and the version must be rejected with a 400 "
- "status code and the closing of the connection. (RFC7230 3.1.1, RFC7230 3.5)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET /\tHTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_two_sp_between_request_target_and_version(Config) ->
- doc("A request that uses anything other than SP as separator between "
- "the request-target and the version must be rejected with a 400 "
- "status code and the closing of the connection. (RFC7230 3.1.1, RFC7230 3.5)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_invalid_version_http09(Config) ->
- doc("Any version number other than HTTP/1.0 or HTTP/1.1 must be "
- "rejected by a server or intermediary with a 505 status code. (RFC7230 2.6, RFC7230 A.2)"),
- #{code := 505} = do_raw(Config,
- "GET / HTTP/0.9\r\n"
- "Host: localhost\r\n"
- "\r\n").
- reject_invalid_version_http100(Config) ->
- doc("Any version number other than HTTP/1.0 or HTTP/1.1 must be "
- "rejected by a server or intermediary with a 505 status code. (RFC7230 2.6, RFC7230 A.2)"),
- #{code := 505} = do_raw(Config,
- "GET / HTTP/1.00\r\n"
- "Host: localhost\r\n"
- "\r\n").
- reject_invalid_version_http111(Config) ->
- doc("Any version number other than HTTP/1.0 or HTTP/1.1 must be "
- "rejected by a server or intermediary with a 505 status code. (RFC7230 2.6, RFC7230 A.2)"),
- #{code := 505} = do_raw(Config,
- "GET / HTTP/1.11\r\n"
- "Host: localhost\r\n"
- "\r\n").
- reject_invalid_version_http12(Config) ->
- doc("Any version number other than HTTP/1.0 or HTTP/1.1 must be "
- "rejected by a server or intermediary with a 505 status code. (RFC7230 2.6, RFC7230 A.2)"),
- #{code := 505} = do_raw(Config,
- "GET / HTTP/1.2\r\n"
- "Host: localhost\r\n"
- "\r\n").
- reject_invalid_version_http2(Config) ->
- doc("Any version number other than HTTP/1.0 or HTTP/1.1 must be "
- "rejected by a server or intermediary with a 505 status code. (RFC7230 2.6, RFC7230 A.2)"),
- #{code := 505} = do_raw(Config,
- "GET / HTTP/2\r\n"
- "Host: localhost\r\n"
- "\r\n").
- reject_empty_version(Config) ->
- doc("Any version number other than HTTP/1.0 or HTTP/1.1 must be "
- "rejected by a server or intermediary with a 505 status code. "
- "(RFC7230 2.6, RFC7230 A, RFC7230 A.2)"),
- #{code := 505} = do_raw(Config,
- "GET / \r\n"
- "Host: localhost\r\n"
- "\r\n").
- reject_invalid_whitespace_after_version(Config) ->
- doc("A request that has whitespace different than CRLF following the "
- "version must be rejected with a 400 status code and the closing "
- "of the connection. (RFC7230 3.1.1)"),
- #{code := 400, client := Client} = do_raw(Config,
- "GET / HTTP/1.1 \r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {error, closed} = raw_recv(Client, 0, 1000).
- invalid_header_name(Config) ->
- doc("Header field names are tokens. (RFC7230 3.2)"),
- #{code := 400} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host\0: localhost\r\n"
- "\r\n"]).
- invalid_header_value(Config) ->
- doc("Header field values are made of printable characters, "
- "horizontal tab or space. (RFC7230 3.2)"),
- #{code := 400} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\0rm rf the world\r\n"
- "\r\n"]).
- lower_case_header(Config) ->
- doc("The header field name is case insensitive. (RFC7230 3.2)"),
- #{code := 200} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "host: localhost\r\n"
- "\r\n"]).
- upper_case_header(Config) ->
- doc("The header field name is case insensitive. (RFC7230 3.2)"),
- #{code := 200} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "HOST: localhost\r\n"
- "\r\n"]).
- mixed_case_header(Config) ->
- doc("The header field name is case insensitive. (RFC7230 3.2)"),
- #{code := 200} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "hOsT: localhost\r\n"
- "\r\n"]).
- reject_whitespace_before_header_name(Config) ->
- doc("Messages that contain whitespace before the header name must "
- "be rejected with a 400 status code and the closing of the "
- "connection. (RFC7230 3.2.4)"),
- #{code := 400, client := Client1} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- " Host: localhost\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client1, 0, 1000),
- #{code := 400, client := Client2} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "\tHost: localhost\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client2, 0, 1000).
- reject_whitespace_between_header_name_and_colon(Config) ->
- doc("Messages that contain whitespace between the header name and "
- "colon must be rejected with a 400 status code and the closing "
- "of the connection. (RFC7230 3.2.4)"),
- #{code := 400, client := Client1} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host : localhost\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client1, 0, 1000),
- #{code := 400, client := Client2} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host\t: localhost\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client2, 0, 1000).
- reject_header_name_without_colon(Config) ->
- doc("Messages that contain a header name that is not followed by a "
- "colon must be rejected with a 400 status code and the closing "
- "of the connection. (RFC7230 3.2.4)"),
- #{code := 400, client := Client1} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client1, 0, 1000),
- #{code := 400, client := Client2} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host localhost\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client2, 0, 1000),
- #{code := 400, client := Client3} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host\r\n"
- " : localhost\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client3, 0, 1000).
- limit_header_name(Config) ->
- doc("The header name must be subject to a configurable limit. A "
- "good default is 50 characters, well above the longest registered "
- "header. Such a request must be rejected with a 431 status code "
- "and the closing of the connection. "
- "(RFC7230 3.2.5, RFC6585 5, IANA Message Headers registry)"),
- #{code := 431, client := Client} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n",
- binary:copy(<<$a>>, 32768), ": bad\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- limit_header_value(Config) ->
- doc("The header value and the optional whitespace around it must be "
- "subject to a configurable limit. There is no recommendations "
- "for the default. 4096 characters is known to work well. Such "
- "a request must be rejected with a 431 status code and the closing "
- "of the connection. (RFC7230 3.2.5, RFC6585 5)"),
- #{code := 431, client := Client} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "bad: ", binary:copy(<<$a>>, 32768), "\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- drop_whitespace_before_header_value(Config) ->
- doc("Optional whitespace before and after the header value is not "
- "part of the value and must be dropped."),
- #{code := 200} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-length: \t 12\r\n"
- "\r\n"
- "Hello world!"]).
- drop_whitespace_after_header_value(Config) ->
- doc("Optional whitespace before and after the header value is not "
- "part of the value and must be dropped."),
- #{code := 200} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-length: 12 \t \r\n"
- "\r\n"
- "Hello world!"]).
- reject_lf_line_breaks(Config) ->
- doc("A server may accept header names separated by a single LF, instead of "
- "CRLF. Cowboy rejects all requests that use LF as separator. (RFC7230 3.5)"),
- #{code := 400, client := Client} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_duplicate_content_length_header(Config) ->
- doc("Requests with duplicate content-length headers must be rejected "
- "with a 400 status code and the closing of the connection. (RFC7230 3.3.2)"),
- #{code := 400, client := Client} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-length: 12\r\n"
- "Content-length: 12\r\n"
- "\r\n"
- "Hello world!"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_duplicate_host_header(Config) ->
- doc("Requests with duplicate host headers must be rejected "
- "with a 400 status code and the closing of the connection. (RFC7230 3.3.2)"),
- #{code := 400, client := Client} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Host: localhost\r\n"
- "\r\n"
- "Hello world!"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- combine_duplicate_headers(Config) ->
- doc("Other duplicate header fields must be combined by inserting a comma "
- "between the values in the order they were received. (RFC7230 3.2.2)"),
- #{code := 200, body := Body} = do_raw(Config, [
- "GET /echo/headers HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Accept-encoding: gzip\r\n"
- "Accept-encoding: brotli\r\n"
- "\r\n"]),
- <<"#{<<\"accept-encoding\">> => <<\"gzip, brotli\">>,", _/bits>> = Body,
- ok.
- limit_headers(Config) ->
- doc("The number of headers allowed in a request must be subject to "
- "a configurable limit. There is no recommendations for the default. "
- "100 headers is known to work well. Such a request must be rejected "
- "with a 431 status code and the closing of the connection. (RFC7230 3.2.5, RFC6585 5)"),
-
- #{code := 200} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n",
- [["H-", integer_to_list(N), ": value\r\n"] || N <- lists:seq(1, 99)],
- "\r\n"]),
-
- #{code := 431, client := Client} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n",
- [["H-", integer_to_list(N), ": value\r\n"] || N <- lists:seq(1, 100)],
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- no_request_body(Config) ->
- doc("A request has a message body only if it includes a transfer-encoding "
- "header or a non-zero content-length header. (RFC7230 3.3)"),
- #{code := 200, body := <<"false">>} = do_raw(Config, [
- "POST /echo/has_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- #{code := 200, body := <<>>} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- ok.
- no_request_body_content_length_zero(Config) ->
- doc("A request has a message body only if it includes a transfer-encoding "
- "header or a non-zero content-length header. (RFC7230 3.3)"),
- #{code := 200, body := <<"false">>} = do_raw(Config, [
- "POST /echo/has_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-length: 0\r\n"
- "\r\n"]),
- #{code := 200, body := <<>>} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-length: 0\r\n"
- "\r\n"]),
- ok.
- request_body_content_length(Config) ->
- doc("A request has a message body only if it includes a transfer-encoding "
- "header or a non-zero content-length header. (RFC7230 3.3)"),
- #{code := 200, body := <<"true">>} = do_raw(Config, [
- "POST /echo/has_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-length: 12\r\n"
- "\r\n"
- "Hello world!"]),
- #{code := 200, body := <<"Hello world!">>} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-length: 12\r\n"
- "\r\n"
- "Hello world!"]),
- ok.
- request_body_transfer_encoding(Config) ->
- doc("A request has a message body only if it includes a transfer-encoding "
- "header or a non-zero content-length header. (RFC7230 3.3)"),
- #{code := 200, body := <<"true">>} = do_raw(Config, [
- "POST /echo/has_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- #{code := 200, body := <<"Hello world!">>} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- ok.
- case_insensitive_transfer_encoding(Config) ->
- doc("The transfer-coding is case insensitive. (RFC7230 4)"),
- #{code := 200, body := <<"Hello world!">>} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: ChUnKeD\r\n"
- "\r\n"
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- ok.
- must_understand_chunked(Config) ->
- doc("A server must be able to handle at least chunked transfer-encoding. "
- "This is also the only coding that sees widespread use. (RFC7230 3.3.1, RFC7230 4.1)"),
- #{code := 200, body := <<"Hello world!">>} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- ok.
- reject_double_chunked_encoding(Config) ->
- doc("Messages encoded more than once with chunked transfer-encoding "
- "must be rejected with a 400 status code and the closing of the "
- "connection. (RFC7230 3.3.1)"),
- #{code := 400, client := Client} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked, chunked\r\n"
- "\r\n"
- "20\r\n6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_non_terminal_chunked(Config) ->
- doc("Messages where chunked, when present, is not the last "
- "transfer-encoding must be rejected with a 400 status code "
- "and the closing of the connection. (RFC7230 3.3.3)"),
- #{code := 400, client := Client1} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked, gzip\r\n"
- "\r\n",
- zlib:gzip(<<"6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n">>)]),
- {error, closed} = raw_recv(Client1, 0, 1000),
- #{code := 400, client := Client2} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "Transfer-encoding: gzip\r\n"
- "\r\n",
- zlib:gzip(<<"6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n">>)]),
- {error, closed} = raw_recv(Client2, 0, 1000).
- reject_unknown_transfer_encoding(Config) ->
- doc("Messages encoded with a transfer-encoding the server does not "
- "understand must be rejected with a 501 status code and the "
- "closing of the connection. (RFC7230 3.3.1)"),
- #{code := 400, client := Client1} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: unknown, chunked\r\n"
- "\r\n",
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client1, 0, 1000),
- #{code := 400, client := Client2} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: unknown\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n",
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client2, 0, 1000).
- reject_invalid_content_length(Config) ->
- doc("A request with an invalid content-length header must be rejected "
- "with a 400 status code and the closing of the connection. (RFC7230 3.3.3)"),
- #{code := 400, client := Client1} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-length: 12,12\r\n"
- "\r\n"
- "Hello world!"]),
- {error, closed} = raw_recv(Client1, 0, 1000),
- #{code := 400, client := Client2} = do_raw(Config, [
- "POST / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-length: NaN\r\n"
- "\r\n"
- "Hello world!"]),
- {error, closed} = raw_recv(Client2, 0, 1000).
- ignore_content_length_when_transfer_encoding(Config) ->
- doc("When a message includes both transfer-encoding and content-length "
- "headers, the content-length header must be removed before processing "
- "the request. (RFC7230 3.3.3)"),
- #{code := 200, body := <<"Hello world!">>} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "Content-length: 12\r\n"
- "\r\n"
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- ok.
- body_length_chunked_before(Config) ->
- doc("The length of a message with a transfer-encoding header can "
- "only be determined on decoding completion. (RFC7230 3.3.3)"),
- #{code := 200, body := <<"undefined">>} = do_raw(Config, [
- "POST /echo/body_length HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- ok.
- body_length_chunked_after(Config) ->
- doc("Upon completion of chunk decoding the server must add a content-length "
- "header with the value set to the total length of data read. (RFC7230 4.1.3)"),
- #{code := 200, body := <<"12">>} = do_raw(Config, [
- "POST /length/echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- ok.
- body_length_content_length(Config) ->
- doc("The length of a message with a content-length header is "
- "the numeric value in octets found in the header. (RFC7230 3.3.3)"),
- #{code := 200, body := <<"12">>} = do_raw(Config, [
- "POST /echo/body_length HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Content-length: 12\r\n"
- "\r\n"
- "Hello world!"]),
- ok.
- body_length_zero(Config) ->
- doc("A message with no transfer-encoding or content-length header "
- "has a body length of 0. (RFC7230 3.3.3)"),
- #{code := 200, body := <<"0">>} = do_raw(Config, [
- "POST /echo/body_length HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- ok.
- reject_invalid_chunk_size(Config) ->
- doc("A request with an invalid chunk size must be rejected "
- "with a 400 status code and the closing of the connection. (RFC7230 4.1)"),
- #{code := 400, client := Client} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello \r\nFIVE\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- ignore_unknown_chunk_extensions(Config) ->
- doc("Unknown chunk extensions must be ignored. (RFC7230 4.1.1)"),
- #{code := 200, body := <<"Hello world!">>} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6; hello=\"cool world\"\r\nHello \r\n"
- "5 ; one ; two ; three;four;five\r\nworld"
- "\r\n1;ok\r\n!\r\n0\r\n\r\n"]),
- ok.
- limit_chunk_size_line(Config) ->
- doc("A request with chunk extensions larger than the server allows must be rejected "
- "with a 400 status code and the closing of the connection. (RFC7230 4.1.1)"),
- #{code := 200, body := <<"Hello world!">>} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6; hello=\"cool world\"\r\nHello \r\n"
- "5;", lists:duplicate(128, $a), "\r\nworld"
- "\r\n1;ok\r\n!\r\n0\r\n\r\n"]),
- #{code := 400, client := Client} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6; hello=\"cool world\"\r\nHello \r\n"
- "5;", lists:duplicate(129, $a), "\r\nworld"
- "\r\n1;ok\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_invalid_chunk_size_crlf(Config) ->
- doc("A request with an invalid line break after the chunk size must be rejected "
- "with a 400 status code and the closing of the connection. (RFC7230 4.1)"),
- #{code := 400, client := Client1} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\rHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client1, 0, 1000),
- #{code := 400, client := Client2} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client2, 0, 1000),
- #{code := 400, client := Client3} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6Hello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client3, 0, 1000).
- reject_invalid_chunk_ext_crlf(Config) ->
- doc("A request with an invalid line break after chunk extensions must be rejected "
- "with a 400 status code and the closing of the connection. (RFC7230 4.1)"),
- #{code := 400, client := Client1} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6; extensions\rHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client1, 0, 1000),
- #{code := 400, client := Client2} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6; extensions\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client2, 0, 1000),
- #{code := 400, client := Client3} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6; extensionsHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client3, 0, 1000).
- reject_invalid_chunk_data_crlf(Config) ->
- doc("A request with an invalid line break after the chunk data must be rejected "
- "with a 400 status code and the closing of the connection. (RFC7230 4.1)"),
- #{code := 400, client := Client1} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello \r5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client1, 0, 1000),
- #{code := 400, client := Client2} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello \n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client2, 0, 1000),
- #{code := 400, client := Client3} = do_raw(Config, [
- "POST /echo/read_body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello 5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- {error, closed} = raw_recv(Client3, 0, 1000).
- remove_transfer_encoding_chunked_after_body_read(Config) ->
- doc("Upon completion of chunk decoding the server must remove \"chunked\" "
- "from the transfer-encoding header. This header must be removed if "
- "it becomes empty following this removal. (RFC7230 4.1.3)"),
- #{code := 200, body := <<"undefined">>} = do_raw(Config, [
- "POST /echo/header/transfer-encoding HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Transfer-encoding: chunked\r\n"
- "\r\n"
- "6\r\nHello \r\n5\r\nworld\r\n1\r\n!\r\n0\r\n\r\n"]),
- ok.
- no_connection_header_keepalive(Config) ->
- doc("HTTP/1.1 requests with no \"close\" option "
- "indicate the connection will persist. (RFC7230 6.1, RFC7230 6.3)"),
- #{code := 200, headers := RespHeaders, client := Client} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- false = lists:keyfind(<<"connection">>, 1, RespHeaders),
- {error, timeout} = raw_recv(Client, 0, 1000).
- http10_connection_keepalive(Config) ->
- doc("HTTP/1.0 requests with the \"keep-alive\" option "
- "indicate the connection will persist. "
- "(RFC7230 6.1, RFC7230 6.3, RFC7230 A.1.2)"),
- #{code := 200, headers := RespHeaders, client := Client} = do_raw(Config, [
- "GET / HTTP/1.0\r\n"
- "Host: localhost\r\n"
- "Connection: keep-alive\r\n"
- "\r\n"]),
- {_, <<"keep-alive">>} = lists:keyfind(<<"connection">>, 1, RespHeaders),
- {error, timeout} = raw_recv(Client, 0, 1000).
- connection_close(Config) ->
- doc("HTTP/1.1 requests with the \"close\" option and HTTP/1.0 with no "
- "\"keep-alive\" option indicate the connection will be closed "
- "upon reception of the response by the client. (RFC7230 6.1, RFC7230 6.3)"),
- #{code := 200, headers := RespHeaders, client := Client} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Connection: close\r\n"
- "\r\n"]),
- {_, <<"close">>} = lists:keyfind(<<"connection">>, 1, RespHeaders),
- {error, closed} = raw_recv(Client, 0, 1000).
- http10_no_connection_header_close(Config) ->
- doc("HTTP/1.0 with no \"keep-alive\" option indicate "
- "the connection will be closed upon reception of "
- "the response by the client. (RFC7230 6.1, RFC7230 6.3, RFC7230 A.1.2)"),
- #{code := 200, headers := RespHeaders, client := Client} = do_raw(Config, [
- "GET / HTTP/1.0\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
-
-
- {_, <<"close">>} = lists:keyfind(<<"connection">>, 1, RespHeaders),
- {error, closed} = raw_recv(Client, 0, 1000).
- limit_requests_keepalive(Config) ->
- doc("The maximum number of requests sent using a persistent connection "
- "must be subject to configuration. The connection must be closed "
- "when the limit is reached. (RFC7230 6.3)"),
- ConnPid = gun_open(Config),
- _ = [begin
- Ref = gun:get(ConnPid, "/"),
- {response, nofin, 200, RespHeaders} = gun:await(ConnPid, Ref),
- {ok, <<"Hello world!">>} = gun:await_body(ConnPid, Ref),
- false = lists:keyfind(<<"connection">>, 1, RespHeaders)
- end || _ <- lists:seq(1,99)],
-
- Ref = gun:get(ConnPid, "/"),
- {response, nofin, 200, RespHeaders} = gun:await(ConnPid, Ref),
- {ok, <<"Hello world!">>} = gun:await_body(ConnPid, Ref),
- {_, <<"close">>} = lists:keyfind(<<"connection">>, 1, RespHeaders),
- gun_down(ConnPid).
- accept_at_least_1_empty_line_keepalive(Config) ->
- doc("A configurable number of empty lines (CRLF) preceding the request "
- "must be ignored. At least 1 empty line must be ignored. (RFC7230 3.5)"),
- #{code := 200, client := Client} = do_raw(Config,
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"
-
- "\r\n"),
- ok = raw_send(Client,
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"),
- {'HTTP/1.1', 200, _, _} = cow_http:parse_status_line(raw_recv_head(Client)),
- ok.
- pipeline(Config) ->
- doc("A server can receive more than one request before any response "
- "is sent. This is called pipelining. Responses must be sent "
- "in the same order as the requests. (RFC7230 6.3.2)"),
- ConnPid = gun_open(Config),
- Refs = [{
- gun:get(ConnPid, "/"),
- gun:post(ConnPid, "/full/read_body", [], <<0:80000>>)
- } || _ <- lists:seq(1, 25)],
- _ = [begin
- {response, nofin, 200, _} = gun:await(ConnPid, Ref1, infinity),
- {ok, <<"Hello world!">>} = gun:await_body(ConnPid, Ref1, infinity),
- {response, nofin, 200, _} = gun:await(ConnPid, Ref2, infinity),
- {ok, <<0:80000>>} = gun:await_body(ConnPid, Ref2, infinity)
- end || {Ref1, Ref2} <- Refs],
- ok.
- close_inactive_connections(Config) ->
- doc("The server must close inactive connections. The timeout "
- "must be subject to configuration. (RFC7230 6.5)"),
- Client = raw_open(Config),
- {error, closed} = raw_recv(Client, 0, 6000).
- ignore_requests_after_request_connection_close(Config) ->
- doc("The server must not process any request after "
- "receiving the \"close\" connection option. (RFC7230 6.6)"),
- Self = self(),
- #{code := 200, client := Client} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Connection: close\r\n"
- "\r\n"
- "GET /send_message HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "x-test-pid: ", pid_to_list(Self), "\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000),
-
- receive
- {Self, _, init, Req, Opts} ->
- error({init, Req, Opts})
- after 1000 ->
- ok
- end.
- ignore_requests_after_response_connection_close(Config) ->
- doc("The server must not process any request after "
- "sending the \"close\" connection option. (RFC7230 6.6)"),
- Self = self(),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"
- || _ <- lists:seq(1, 100)],
- "GET /send_message HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "x-test-pid: ", pid_to_list(Self), "\r\n"
- "\r\n"]),
-
-
-
- receive
- {Self, _, init, Req, Opts} ->
- error({init, Req, Opts})
- after 1000 ->
- ok
- end.
- reject_missing_host(Config) ->
- doc("An HTTP/1.1 request that lacks a host header must be rejected with "
- "a 400 status code and the closing of the connection. (RFC7230 5.4)"),
- #{code := 400, client := Client} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- http10_allow_missing_host(Config0) ->
- doc("An HTTP/1.0 request that lacks a host header may be accepted. "
- "(RFC7230 5.4, RFC7230 5.5, RFC7230 A.1.1)"),
- Routes = [{'_', [{"/echo/:key[/:arg]", echo_h, []}]}],
- Config = cowboy_test:init_http(?FUNCTION_NAME, #{
- env => #{dispatch => cowboy_router:compile(Routes)}
- }, Config0),
- try
- #{code := 200, body := <<>>} = do_raw(Config, [
- "GET /echo/host HTTP/1.0\r\n"
- "\r\n"])
- after
- cowboy:stop_listener(?FUNCTION_NAME)
- end.
- reject_invalid_host(Config) ->
- doc("A request with an invalid host header must be rejected with a "
- "400 status code and the closing of the connection. (RFC7230 5.4)"),
- #{code := 400, client := Client} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost:port\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_userinfo(Config) ->
- doc("An authority component with a userinfo component (and its "
- "\"@\" delimiter) is invalid. The request must be rejected with "
- "a 400 status code and the closing of the connection. (RFC7230 2.7.1)"),
- #{code := 400, client := Client} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: user@localhost\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- reject_absolute_form_different_host(Config) ->
- doc("When using absolute-form the URI authority component must be "
- "identical to the host header. Invalid requests must be rejected "
- "with a 400 status code and the closing of the connection. (RFC7230 5.4)"),
- #{code := 400, client := Client} = do_raw(Config, [
- "GET http://example.org/ HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {error, closed} = raw_recv(Client, 0, 1000).
- empty_host(Config0) ->
- doc("The host header is empty when the authority component is undefined. (RFC7230 5.4)"),
- Routes = [{'_', [{"/echo/:key[/:arg]", echo_h, []}]}],
- Config = cowboy_test:init_http(?FUNCTION_NAME, #{
- env => #{dispatch => cowboy_router:compile(Routes)}
- }, Config0),
- try
- #{code := 200, body := <<>>} = do_raw(Config, [
- "GET /echo/host HTTP/1.1\r\n"
- "Host:\r\n"
- "\r\n"]),
- #{code := 200, body := <<>>} = do_raw(Config, [
- "GET /echo/host HTTP/1.1\r\n"
- "Host: \r\n"
- "\r\n"])
- after
- cowboy:stop_listener(?FUNCTION_NAME)
- end.
- reject_non_authoritative_host(Config) ->
- doc("A request with a host header for which the origin server is "
- "not authoritative must be rejected with a 400 status code. "
- "(RFC7230 5.5, RFC7230 9.1)"),
- #{code := 400} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: ninenines.eu\r\n"
- "\r\n"]),
- ok.
- http10_request_http11_response(Config) ->
- doc("A server must send its own HTTP version in responses. (RFC7230 2.6)"),
- #{code := 200, version := 'HTTP/1.1'} = do_raw(Config, [
- "GET / HTTP/1.0\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- ok.
- special_set_cookie_handling(Config) ->
- doc("The set-cookie header must be handled as a special case. There "
- "must be exactly one set-cookie header field per cookie. (RFC7230 3.2.2)"),
- #{code := 200, headers := RespHeaders} = do_raw(Config, [
- "GET /resp/set_resp_cookie3/multiple HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- [_, _] = [H || H={<<"set-cookie">>, _} <- RespHeaders],
- ok.
- close_request_close_response(Config) ->
- doc("A server must send a \"close\" in a response to a request "
- "containing a \"close\". (RFC7230 6.6)"),
- #{code := 200, headers := RespHeaders} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Connection: close\r\n"
- "\r\n"]),
- {_, <<"close">>} = lists:keyfind(<<"connection">>, 1, RespHeaders),
- ok.
- no_body_in_head_response(Config) ->
- doc("Responses to HEAD requests never include a message body. (RFC7230 3.3)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "HEAD / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 200, _, Rest} = cow_http:parse_status_line(raw_recv_head(Client)),
- {Headers, <<>>} = cow_http:parse_headers(Rest),
- {_, LengthBin} = lists:keyfind(<<"content-length">>, 1, Headers),
- Length = binary_to_integer(LengthBin),
- {error, timeout} = raw_recv(Client, Length, 1000),
- ok.
- no_body_in_204_response(Config) ->
- doc("204 responses never include a message body. Cowboy produces "
- "a 500 error response when attempting to do so. (RFC7230 3.3)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "GET /resp/reply4/204body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 500, _, _} = cow_http:parse_status_line(raw_recv_head(Client)),
- ok.
- no_body_in_204_response_stream(Config) ->
- doc("204 responses never include a message body. Attempting to "
- "stream the body produces a crash on the server-side. (RFC7230 3.3)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "GET /resp/stream_reply2/204body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 204, _, Rest} = cow_http:parse_status_line(raw_recv_head(Client)),
- {_, <<>>} = cow_http:parse_headers(Rest),
- {error, timeout} = raw_recv(Client, 1, 1000),
- ok.
- no_body_in_304_response(Config) ->
- doc("304 responses never include a message body. Cowboy produces "
- "a 500 error response when attempting to do so. (RFC7230 3.3)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "GET /resp/reply4/304body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 500, _, _} = cow_http:parse_status_line(raw_recv_head(Client)),
- ok.
- no_body_in_304_response_stream(Config) ->
- doc("304 responses never include a message body. Attempting to "
- "stream the body produces a crash on the server-side. (RFC7230 3.3)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "GET /resp/stream_reply2/304body HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 304, _, Rest} = cow_http:parse_status_line(raw_recv_head(Client)),
- {_, <<>>} = cow_http:parse_headers(Rest),
- {error, timeout} = raw_recv(Client, 1, 1000),
- ok.
- same_content_length_as_get_in_head_response(Config) ->
- doc("Responses to HEAD requests can include a content-length header. "
- "Its value must be the same as if the request was an unconditional "
- "GET. (RFC7230 3.3, RFC7230 3.3.1, RFC7230 3.3.2)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "HEAD / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 200, _, Rest} = cow_http:parse_status_line(raw_recv_head(Client)),
- {Headers, <<>>} = cow_http:parse_headers(Rest),
- {_, <<"12">>} = lists:keyfind(<<"content-length">>, 1, Headers),
- ok.
- same_transfer_encoding_as_get_in_head_response(Config) ->
- doc("Responses to HEAD requests can include a transfer-encoding header. "
- "Its value must be the same as if the request was an unconditional "
- "GET. (RFC7230 3.3, RFC7230 3.3.1, RFC7230 3.3.2)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "HEAD /resp/stream_reply2/200 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 200, _, Rest} = cow_http:parse_status_line(raw_recv_head(Client)),
- {Headers, <<>>} = cow_http:parse_headers(Rest),
- {_, <<"chunked">>} = lists:keyfind(<<"transfer-encoding">>, 1, Headers),
- ok.
- no_content_length_in_204_response(Config) ->
- doc("204 responses must not include a content-length header. "
- "(RFC7230 3.3.1, RFC7230 3.3.2)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "GET /resp/reply3/204 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 204, _, Rest} = cow_http:parse_status_line(raw_recv_head(Client)),
- {Headers, <<>>} = cow_http:parse_headers(Rest),
- false = lists:keyfind(<<"content-length">>, 1, Headers),
- ok.
- no_content_length_in_empty_304_response(Config) ->
- doc("304 responses should not include a content-length header, "
- "unless it matches the resource's and was therefore set "
- "explicitly by the user. (RFC7230 3.3.1, RFC7230 3.3.2)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "GET /resp/reply3/304 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 304, _, Rest} = cow_http:parse_status_line(raw_recv_head(Client)),
- {Headers, <<>>} = cow_http:parse_headers(Rest),
- false = lists:keyfind(<<"content-length">>, 1, Headers),
- ok.
- no_transfer_encoding_in_204_response(Config) ->
- doc("204 responses must not include a transfer-encoding header. "
- "(RFC7230 3.3.1, RFC7230 3.3.2)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "GET /resp/stream_reply2/204 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 204, _, Rest} = cow_http:parse_status_line(raw_recv_head(Client)),
- {Headers, <<>>} = cow_http:parse_headers(Rest),
- false = lists:keyfind(<<"transfer-encoding">>, 1, Headers),
- ok.
- content_length_0_when_no_body(Config) ->
- doc("When the length is known in advance, the server must send a "
- "content-length header, including if the length is 0. (RFC7230 3.3.2, RFC7230 3.3.3)"),
- #{code := 200, headers := RespHeaders} = do_raw(Config, [
- "GET /resp/reply2/200 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, <<"0">>} = lists:keyfind(<<"content-length">>, 1, RespHeaders),
- ok.
- content_length_response(Config) ->
- doc("When the length is known in advance, the server must send a "
- "content-length header. (RFC7230 3.3.2, RFC7230 3.3.3)"),
- #{code := 200, headers := RespHeaders} = do_raw(Config, [
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, <<"12">>} = lists:keyfind(<<"content-length">>, 1, RespHeaders),
- ok.
- chunked_response(Config) ->
- doc("When the length is not known in advance, the chunked transfer-encoding "
- "must be used. (RFC7230 3.3.2, RFC7230 3.3.3)"),
- #{code := 200, headers := RespHeaders} = do_raw(Config, [
- "GET /resp/stream_reply2/200 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, <<"chunked">>} = lists:keyfind(<<"transfer-encoding">>, 1, RespHeaders),
-
- ok.
- no_content_length_if_transfer_encoding(Config) ->
- doc("The content-length header must not be sent when a transfer-encoding "
- "header already exists. (RFC7230 3.3.2)"),
- #{code := 200, headers := RespHeaders} = do_raw(Config, [
- "GET /resp/stream_reply2/200 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- false = lists:keyfind(<<"content-length">>, 1, RespHeaders),
- ok.
- http10_request_no_transfer_encoding_in_response(Config) ->
- doc("The transfer-encoding header must not be sent in responses to "
- "HTTP/1.0 requests, or in responses that use the HTTP/1.0 version. "
- "No transfer codings must be applied in these cases. "
- "(RFC7230 3.3.1, RFC7230 A.1.3)"),
- Client = raw_open(Config),
- ok = raw_send(Client, [
- "GET /resp/stream_reply2/200 HTTP/1.0\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, 200, _, Rest} = cow_http:parse_status_line(raw_recv_head(Client)),
- {RespHeaders, Body0} = cow_http:parse_headers(Rest),
- false = lists:keyfind(<<"content-length">>, 1, RespHeaders),
- false = lists:keyfind(<<"transfer-encoding">>, 1, RespHeaders),
- Body = <<0:8000000>>,
- {ok, Body1} = raw_recv(Client, byte_size(Body) - byte_size(Body0), 5000),
- Body = << Body0/binary, Body1/binary >>,
-
- {error, closed} = raw_recv(Client, 0, 1000),
- ok.
- no_te_no_trailers(Config) ->
- doc("Trailers can only be sent if the request includes a TE header "
- "containing \"trailers\". (RFC7230 4.1.2)"),
- #{code := 200, headers := RespHeaders} = do_raw(Config, [
- "GET /resp/stream_trailers HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "\r\n"]),
- {_, <<"chunked">>} = lists:keyfind(<<"transfer-encoding">>, 1, RespHeaders),
- false = lists:keyfind(<<"trailer">>, 1, RespHeaders),
-
- ok.
- te_trailers(Config) ->
- doc("Trailers can only be sent if the request includes a TE header "
- "containing \"trailers\". (RFC7230 4.1.2)"),
- #{code := 200, headers := RespHeaders} = do_raw(Config, [
- "GET /resp/stream_trailers HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "TE: trailers\r\n"
- "\r\n"]),
- {_, <<"chunked">>} = lists:keyfind(<<"transfer-encoding">>, 1, RespHeaders),
- {_, <<"grpc-status">>} = lists:keyfind(<<"trailer">>, 1, RespHeaders),
-
- ok.
- te_ignore_chunked(Config) ->
- doc("The presence of \"chunked\" in a TE header must be ignored as it "
- "is always acceptable with HTTP/1.1. (RFC7230 4.3)"),
- #{code := 200, headers := RespHeaders} = do_raw(Config, [
- "GET /resp/stream_reply2/200 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "TE: chunked\r\n"
- "\r\n"]),
- {_, <<"chunked">>} = lists:keyfind(<<"transfer-encoding">>, 1, RespHeaders),
-
- ok.
- te_ignore_chunked_0(Config) ->
- doc("The presence of \"chunked\" in a TE header must be ignored as it "
- "is always acceptable with HTTP/1.1. (RFC7230 4.3)"),
- #{code := 200, headers := RespHeaders} = do_raw(Config, [
- "GET /resp/stream_reply2/200 HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "TE: chunked;q=0\r\n"
- "\r\n"]),
- {_, <<"chunked">>} = lists:keyfind(<<"transfer-encoding">>, 1, RespHeaders),
-
- ok.
- upgrade_safely_ignored(Config) ->
- doc("The upgrade header can be safely ignored. (RFC7230 6.7)"),
- #{code := 200} = do_raw(Config,
- "GET / HTTP/1.1\r\n"
- "Host: localhost\r\n"
- "Connection: upgrade\r\n"
- "Upgrade: websocket\r\n"
- "\r\n").
|