63 lines
1.5 KiB
C
63 lines
1.5 KiB
C
#include "common.h"
|
|
#include <stdio.h>
|
|
|
|
static int test_traversal_blocked(void) {
|
|
char url[256];
|
|
snprintf(url, sizeof(url), "%s/../config.toml", BASE_URL);
|
|
|
|
http_result_s result;
|
|
if (!perform_request(url, "GET", &result)) {
|
|
fprintf(stderr, "[FAIL] traversal blocked: request failed (%s)\n",
|
|
result.error[0] ? result.error : "unknown curl error");
|
|
return 1;
|
|
}
|
|
|
|
fprintf(stdout, "[TEST] traversal blocked -> GET %s => %ld (expected 404 or 500)\n", url, result.code);
|
|
|
|
/* Accept either 404 (ideal) or 500 (still blocked but internal error path). */
|
|
if (result.code != 404 && result.code != 500) {
|
|
fprintf(stderr, "[FAIL] traversal blocked: expected 404/500, got %ld\n", result.code);
|
|
return 1;
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
int main(int argc, char **argv) {
|
|
if (argc < 2) {
|
|
fprintf(stderr, "Usage: %s <server_binary_path>\n", argv[0]);
|
|
return 1;
|
|
}
|
|
|
|
curl_global_init(CURL_GLOBAL_DEFAULT);
|
|
|
|
const char *server_path = argv[1];
|
|
fprintf(stdout, "[INFO] server path: %s\n", server_path);
|
|
|
|
pid_t server_pid = -1;
|
|
if (!start_server(server_path, &server_pid)) {
|
|
curl_global_cleanup();
|
|
return 1;
|
|
}
|
|
|
|
if (!wait_until_ready()) {
|
|
fprintf(stderr, "[FAIL] server did not become ready in time\n");
|
|
stop_server(server_pid);
|
|
curl_global_cleanup();
|
|
return 1;
|
|
}
|
|
|
|
int failures = test_traversal_blocked();
|
|
|
|
stop_server(server_pid);
|
|
curl_global_cleanup();
|
|
|
|
if (failures == 0) {
|
|
fprintf(stdout, "[PASS] test_traversal passed\n");
|
|
return 0;
|
|
}
|
|
|
|
fprintf(stderr, "[FAIL] test_traversal failed\n");
|
|
return 1;
|
|
}
|