Tests for suhosin.log.use-x-forwarded-for

4 files changed, 82 insertions, 0 deletions

diff --git a/tests/logging/use_x_forwarded_for_off.phpt b/tests/logging/use_x_forwarded_for_off.phpt
new file mode 100644
index 0000000..6b31d53
--- /dev/null
+++ b/tests/logging/use_x_forwarded_for_off.phpt
@@ -0,0 +1,23 @@
+--TEST--
+Testing: suhosin.log.use-x-forwarded-for=Off
+--SKIPIF--
+<?php include "../skipifnotcli.inc"; ?>
+--INI--
+suhosin.log.sapi=0
+suhosin.log.stdout=255
+suhosin.log.script=0
+suhosin.log.syslog=0
+suhosin.executor.func.blacklist=max
+suhosin.log.use-x-forwarded-for=Off
+--ENV--
+return <<<END
+REMOTE_ADDR=101.102.103.104
+HTTP_X_FORWARDED_FOR=1.2.3.4
+END;
+--FILE--
+<?php
+        max(1,2);
+?>
+--EXPECTF--
+Warning: max() has been disabled for security reasons in %s on line 2
+ALERT - function within blacklist called: max() (attacker '101.102.103.104', file '%s', line 2)
\ No newline at end of file
diff --git a/tests/logging/use_x_forwarded_for_off_no_remote_addr.phpt b/tests/logging/use_x_forwarded_for_off_no_remote_addr.phpt
new file mode 100644
index 0000000..bd4c72b
--- /dev/null
+++ b/tests/logging/use_x_forwarded_for_off_no_remote_addr.phpt
@@ -0,0 +1,18 @@
+--TEST--
+Testing: suhosin.log.use-x-forwarded-for=Off (without REMOTE_ADDR set)
+--SKIPIF--
+<?php include "../skipifnotcli.inc"; ?>
+--INI--
+suhosin.log.sapi=0
+suhosin.log.stdout=255
+suhosin.log.script=0
+suhosin.log.syslog=0
+suhosin.executor.func.blacklist=max
+suhosin.log.use-x-forwarded-for=Off
+--FILE--
+<?php
+        max(1,2);
+?>
+--EXPECTF--
+Warning: max() has been disabled for security reasons in %s on line 2
+ALERT - function within blacklist called: max() (attacker 'REMOTE_ADDR not set', file '%s', line 2)
\ No newline at end of file
diff --git a/tests/logging/use_x_forwarded_for_on.phpt b/tests/logging/use_x_forwarded_for_on.phpt
new file mode 100644
index 0000000..5f37ca9
--- /dev/null
+++ b/tests/logging/use_x_forwarded_for_on.phpt
@@ -0,0 +1,23 @@
+--TEST--
+Testing: suhosin.log.use-x-forwarded-for=On
+--SKIPIF--
+<?php include "../skipifnotcli.inc"; ?>
+--INI--
+suhosin.log.sapi=0
+suhosin.log.stdout=255
+suhosin.log.script=0
+suhosin.log.syslog=0
+suhosin.executor.func.blacklist=max
+suhosin.log.use-x-forwarded-for=On
+--ENV--
+return <<<END
+REMOTE_ADDR=101.102.103.104
+HTTP_X_FORWARDED_FOR=1.2.3.4
+END;
+--FILE--
+<?php
+        max(1,2);
+?>
+--EXPECTF--
+Warning: max() has been disabled for security reasons in %s on line 2
+ALERT - function within blacklist called: max() (attacker '1.2.3.4', file '%s', line 2)
\ No newline at end of file
diff --git a/tests/logging/use_x_forwarded_for_on_no_x_forwarded.phpt b/tests/logging/use_x_forwarded_for_on_no_x_forwarded.phpt
new file mode 100644
index 0000000..aea6e06
--- /dev/null
+++ b/tests/logging/use_x_forwarded_for_on_no_x_forwarded.phpt
@@ -0,0 +1,18 @@
+--TEST--
+Testing: suhosin.log.use-x-forwarded-for=On (without X-Forwarded-For set)
+--SKIPIF--
+<?php include "../skipifnotcli.inc"; ?>
+--INI--
+suhosin.log.sapi=0
+suhosin.log.stdout=255
+suhosin.log.script=0
+suhosin.log.syslog=0
+suhosin.executor.func.blacklist=max
+suhosin.log.use-x-forwarded-for=On
+--FILE--
+<?php
+        max(1,2);
+?>
+--EXPECTF--
+Warning: max() has been disabled for security reasons in %s on line 2
+ALERT - function within blacklist called: max() (attacker 'X-FORWARDED-FOR not set', file '%s', line 2)
\ No newline at end of file