test/apisix
1
0
Fork 0
mirror of https://gitee.com/iresty/apisix.git synced 2024-12-02 20:17:35 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
1793b236c0
apisix/t/stream-node/sni.t

345 lines
7.6 KiB
Perl
Vendored
Raw Blame History

#
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements. See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License. You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
use t::APISIX 'no_plan';
log_level('info');
no_root_location();
worker_connections(1024);
no_shuffle();
add_block_preprocessor(sub {
my ($block) = @_;
if (!defined $block->no_error_log) {
$block->set_value("no_error_log", "[error]");
}
});
run_tests();
__DATA__
=== TEST 1: set stream / ssl
--- config
location /t {
content_by_lua_block {
local core = require("apisix.core")
local t = require("lib.test_admin")
local ssl_cert = t.read_file("t/certs/apisix.crt")
local ssl_key = t.read_file("t/certs/apisix.key")
local data = {
cert = ssl_cert, key = ssl_key,
sni = "*.test.com",
}
local code, body = t.test('/apisix/admin/ssl/1',
ngx.HTTP_PUT,
core.json.encode(data)
)
if code >= 300 then
ngx.status = code
return
end
local code, body = t.test('/apisix/admin/stream_routes/1',
ngx.HTTP_PUT,
[[{
"sni": "a.test.com",
"upstream": {
"nodes": {
"127.0.0.1:1995": 1
},
"type": "roundrobin"
}
}]]
)
if code >= 300 then
ngx.status = code
return
end
local code, body = t.test('/apisix/admin/stream_routes/2',
ngx.HTTP_PUT,
[[{
"sni": "*.test.com",
"upstream": {
"nodes": {
"127.0.0.2:1995": 1
},
"type": "roundrobin"
}
}]]
)
if code >= 300 then
ngx.status = code
return
end
local code, body = t.test('/apisix/admin/stream_routes/3',
ngx.HTTP_PUT,
[[{
"upstream": {
"nodes": {
"127.0.0.3:1995": 1
},
"type": "roundrobin"
}
}]]
)
if code >= 300 then
ngx.status = code
end
ngx.say(body)
}
}
--- request
GET /t
--- response_body
passed
=== TEST 2: hit route
--- stream_tls_request
mmm
--- stream_sni: a.test.com
--- response_body
hello world
--- error_log
proxy request to 127.0.0.1:1995
=== TEST 3: hit route (session reuse)
--- stream_tls_request
mmm
--- stream_sni: a.test.com
--- stream_session_reuse
--- response_body
hello world
hello world
--- grep_error_log eval
qr/proxy request to 127.0.0.\d:1995/
--- grep_error_log_out
proxy request to 127.0.0.1:1995
proxy request to 127.0.0.1:1995
=== TEST 4: hit route, wildcard SNI
--- stream_tls_request
mmm
--- stream_sni: b.test.com
--- response_body
hello world
--- error_log
proxy request to 127.0.0.2:1995
=== TEST 5: hit route, no TLS
--- stream_request
mmm
--- stream_response
hello world
--- error_log
proxy request to 127.0.0.3:1995
=== TEST 6: set different stream route with the same sni
--- config
location /t {
content_by_lua_block {
local t = require("lib.test_admin")
local code, body = t.test('/apisix/admin/stream_routes/1',
ngx.HTTP_PUT,
[[{
"sni": "a.test.com",
"remote_addr": "127.0.0.2",
"upstream": {
"nodes": {
"127.0.0.1:1995": 1
},
"type": "roundrobin"
}
}]]
)
if code >= 300 then
ngx.status = code
return
end
local code, body = t.test('/apisix/admin/stream_routes/4',
ngx.HTTP_PUT,
[[{
"sni": "a.test.com",
"remote_addr": "127.0.0.1",
"upstream": {
"nodes": {
"127.0.0.4:1995": 1
},
"type": "roundrobin"
}
}]]
)
if code >= 300 then
ngx.status = code
return
end
ngx.say(body)
}
}
--- request
GET /t
--- response_body
passed
=== TEST 7: hit route
--- stream_tls_request
mmm
--- stream_sni: a.test.com
--- response_body
hello world
--- error_log
proxy request to 127.0.0.4:1995
=== TEST 8: change a.test.com route to fall back to wildcard route
--- config
location /t {
content_by_lua_block {
local t = require("lib.test_admin")
local code, body = t.test('/apisix/admin/stream_routes/4',
ngx.HTTP_PUT,
[[{
"sni": "a.test.com",
"remote_addr": "127.0.0.3",
"upstream": {
"nodes": {
"127.0.0.4:1995": 1
},
"type": "roundrobin"
}
}]]
)
if code >= 300 then
ngx.status = code
return
end
ngx.say(body)
}
}
--- request
GET /t
--- response_body
passed
=== TEST 9: hit route
--- stream_tls_request
mmm
--- stream_sni: a.test.com
--- response_body
hello world
--- error_log
proxy request to 127.0.0.2:1995
=== TEST 10: use fallback sni to match route
--- yaml_config
apisix:
node_listen: 1984
stream_proxy:
tcp:
- 9100
ssl:
fallback_sni: a.test.com
--- stream_tls_request
mmm
--- response_body
hello world
--- error_log
proxy request to 127.0.0.2:1995
=== TEST 11: no sni matched, fall back to non-sni route
--- config
location /t {
content_by_lua_block {
local t = require("lib.test_admin")
local code, body = t.test('/apisix/admin/stream_routes/2',
ngx.HTTP_DELETE)
if code >= 300 then
ngx.status = code
return
end
ngx.say(body)
}
}
--- request
GET /t
--- response_body
passed
=== TEST 12: hit route
--- stream_tls_request
mmm
--- stream_sni: b.test.com
--- response_body
hello world
--- error_log
proxy request to 127.0.0.3:1995
=== TEST 13: clean up routes
--- config
location /t {
content_by_lua_block {
local t = require("lib.test_admin")
for i = 1, 4 do
t.test('/apisix/admin/stream_routes/' .. i, ngx.HTTP_DELETE)
end
}
}
--- request
GET /t
Reference in New Issue View Git Blame Copy Permalink