File Manager

X7ROOT File Manager

Current Path: /home/cbholdings/pasukulu/lib/tests

home / cbholdings / pasukulu / lib / tests /

📁 ..
📄 accesslib_has_capability_test.php(29.72 KB)
📄 accesslib_test.php(240.86 KB)
📄 adminlib_test.php(4.29 KB)
📄 admintree_test.php(18.01 KB)
📄 ajaxlib_test.php(4.4 KB)
📄 analysers_test.php(12.79 KB)
📁 analytics
📄 antivirus_test.php(11.81 KB)
📄 authlib_test.php(19.04 KB)
📁 behat
📄 behat_lib_test.php(3.25 KB)
📄 blocklib_test.php(36.13 KB)
📄 check_test.php(1.77 KB)
📄 client_test.php(4.34 KB)
📄 collator_test.php(12.06 KB)
📄 completionlib_test.php(84.19 KB)
📄 component_test.php(44.1 KB)
📄 componentlib_test.php(6.91 KB)
📄 configonlylib_test.php(5.93 KB)
📁 content
📄 content_test.php(4.77 KB)
📁 context
📄 context_block_test.php(4.14 KB)
📄 context_helper_test.php(22.27 KB)
📄 context_test.php(3.38 KB)
📄 core_media_player_native_test.php(6.4 KB)
📄 core_renderer_template_exploit_test.php(16.56 KB)
📄 coverage.php(3.55 KB)
📄 cron_test.php(6.86 KB)
📄 csslib_test.php(1.56 KB)
📄 csvclass_test.php(5.62 KB)
📄 curl_security_helper_test.php(14.79 KB)
📄 customcontext_test.php(4.66 KB)
📄 dataformat_test.php(3.74 KB)
📄 datalib_test.php(48.36 KB)
📄 datalib_update_with_unique_index_test.php(6.06 KB)
📄 date_legacy_test.php(13.62 KB)
📄 date_test.php(25.77 KB)
📁 db
📄 editorlib_test.php(1.95 KB)
📄 encryption_test.php(8.68 KB)
📄 environment_test.php(8.49 KB)
📁 event
📄 event_course_module_instance_list_viewed.php(2.54 KB)
📄 event_course_module_viewed.php(3.14 KB)
📄 exporter_test.php(11.26 KB)
📁 external
📄 externallib_test.php(2.02 KB)
📄 filelib_test.php(77.16 KB)
📄 filestorage_zip_archive_test.php(2.55 KB)
📄 filetypes_test.php(10.06 KB)
📄 filter_manager_test.php(3.31 KB)
📄 filterlib_test.php(36.76 KB)
📁 fixtures
📄 formslib_test.php(39.94 KB)
📄 gdlib_test.php(5.68 KB)
📄 googlelib_test.php(1.6 KB)
📄 gradelib_test.php(11.96 KB)
📄 grades_external_test.php(15.04 KB)
📄 grading_external_test.php(26.33 KB)
📄 graphlib_test.php(4.61 KB)
📄 grouplib_test.php(109.11 KB)
📄 h5p_clean_orphaned_records_task_test.php(3.16 KB)
📄 html2text_test.php(7.54 KB)
📄 html_writer_test.php(9.65 KB)
📄 htmlpurifier_test.php(23.01 KB)
📄 http_client_test.php(14.94 KB)
📁 hub
📄 ip_utils_test.php(14.13 KB)
📄 jquery_test.php(1.58 KB)
📄 ldaplib_test.php(17.73 KB)
📄 licenselib_test.php(11.58 KB)
📁 lock
📄 lock_config_test.php(3.47 KB)
📄 lock_test.php(5.3 KB)
📄 markdown_test.php(2.24 KB)
📄 mathslib_test.php(13.42 KB)
📄 medialib_test.php(19.63 KB)
📄 message_test.php(12.25 KB)
📄 messageinbound_test.php(5.96 KB)
📄 messagelib_test.php(56.36 KB)
📄 minify_test.php(3.12 KB)
📄 modinfolib_test.php(54.43 KB)
📄 moodle_page_test.php(31.59 KB)
📄 moodle_url_test.php(15.64 KB)
📄 moodlelib_current_language_test.php(7.68 KB)
📄 moodlelib_test.php(237.46 KB)
📁 moodlenet
📄 myprofilelib_test.php(12.36 KB)
📁 navigation
📄 navigationlib_test.php(31.79 KB)
📄 notification_test.php(4.35 KB)
📁 oauth2
📄 oauth2_test.php(23.06 KB)
📁 other
📁 output
📄 outputcomponents_test.php(33.25 KB)
📄 outputfactories_test.php(6.78 KB)
📄 outputrenderers_test.php(1.62 KB)
📄 outputrequirementslib_test.php(16.29 KB)
📄 pdflib_test.php(3.18 KB)
📁 performance
📄 persistent_test.php(30.53 KB)
📄 phpxmlrpc_test.php(2.04 KB)
📄 plugin_manager_test.php(27.4 KB)
📁 plugininfo
📄 portfoliolib_test.php(8.4 KB)
📄 progress_display_test.php(3.75 KB)
📄 progress_test.php(14.48 KB)
📄 qrcode_test.php(1.68 KB)
📄 questionlib_test.php(100.67 KB)
📄 regex_test.php(1.55 KB)
📄 report_helper_test.php(2.62 KB)
📄 requirejs_test.php(2.22 KB)
📄 rsslib_test.php(7.35 KB)
📄 rtlcss_test.php(56.86 KB)
📄 sample_questions.ser(141.76 KB)
📄 sample_questions.xml(102.62 KB)
📄 sample_questions_with_old_image_tag.ser(4.85 KB)
📄 sample_questions_with_old_image_tag.xml(4.08 KB)
📄 sample_questions_wrong.xml(102.57 KB)
📄 scss_test.php(4.26 KB)
📄 session_manager_test.php(34.79 KB)
📄 session_redis_test.php(13.56 KB)
📄 sessionlib_test.php(12.32 KB)
📄 setuplib_test.php(20.17 KB)
📄 statslib_test.php(26.68 KB)
📄 string_manager_standard_test.php(10.18 KB)
📄 tablelib_test.php(25.12 KB)
📁 task
📄 text_test.php(26.53 KB)
📄 theme_config_test.php(9.94 KB)
📄 update_api_test.php(6.62 KB)
📄 update_checker_test.php(10.82 KB)
📄 update_code_manager_test.php(8.88 KB)
📄 update_validator_test.php(18.28 KB)
📄 upgrade_util_test.php(5.32 KB)
📄 upgradelib_test.php(69.6 KB)
📄 user_menu_test.php(3.75 KB)
📄 user_test.php(34.34 KB)
📄 useragent_test.php(83.82 KB)
📄 weblib_format_text_test.php(11.91 KB)
📄 weblib_test.php(43.44 KB)
📄 xhprof_test.php(3.14 KB)
📄 xhtml_container_stack_test.php(4.05 KB)
📄 xmlize_test.php(2.55 KB)

Editing: curl_security_helper_test.php

<?php
// This file is part of Moodle - http://moodle.org/
//
// Moodle is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// Moodle is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with Moodle.  If not, see <http://www.gnu.org/licenses/>.

namespace core;

/**
 * cURL security test suite.
 *
 * Note: The curl_security_helper class performs forward and reverse DNS look-ups in some cases. This class will not attempt to test
 * this functionality as look-ups can vary from machine to machine. Instead, human testing with known inputs/outputs is recommended.
 *
 * @package    core
 * @copyright  2016 Jake Dallimore <jrhdallimore@gmail.com>
 * @license    http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
 */
class curl_security_helper_test extends \advanced_testcase {
    /**
     * Test for \core\files\curl_security_helper::url_is_blocked().
     *
     * @param array $dns a mapping between hosts and IPs to be used instead of a real DNS lookup. The values must be arrays.
     * @param string $url the url to validate.
     * @param string $blockedhosts the list of blocked hosts.
     * @param string $allowedports the list of allowed ports.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_url_data_provider
     */
    public function test_curl_security_helper_url_is_blocked($dns, $url, $blockedhosts, $allowedports, $expected) {
        $this->resetAfterTest(true);
        $helper = $this->getMockBuilder('\core\files\curl_security_helper')
            ->onlyMethods(['get_host_list_by_name'])
            ->getMock();

// Override the get host list method to return hard coded values based on a mapping provided by $dns.
        $helper->method('get_host_list_by_name')->will(
            $this->returnCallback(
                function($host) use ($dns) {
                    return isset($dns[$host]) ? $dns[$host] : [];
                }
            )
        );

set_config('curlsecurityblockedhosts', $blockedhosts);
        set_config('curlsecurityallowedport', $allowedports);
        $this->assertEquals($expected, $helper->url_is_blocked($url));
    }

/**
     * Data provider for test_curl_security_helper_url_is_blocked().
     *
     * @return array
     */
    public function curl_security_url_data_provider() {
        $simpledns = ['localhost' => ['127.0.0.1']];
        $multiplerecorddns = [
            'sub.example.com' => ['1.2.3.4', '5.6.7.8']
        ];
        // Format: url, blocked hosts, allowed ports, expected result.
        return [
            // Base set without the blocklist enabled - no checking takes place.
            [$simpledns, "http://localhost/x.png", "", "", false],       // IP=127.0.0.1, Port=80 (port inferred from http).
            [$simpledns, "http://localhost:80/x.png", "", "", false],    // IP=127.0.0.1, Port=80 (specific port overrides http scheme).
            [$simpledns, "https://localhost/x.png", "", "", false],      // IP=127.0.0.1, Port=443 (port inferred from https).
            [$simpledns, "http://localhost:443/x.png", "", "", false],   // IP=127.0.0.1, Port=443 (specific port overrides http scheme).
            [$simpledns, "localhost/x.png", "", "", false],              // IP=127.0.0.1, Port=80 (port inferred from http fallback).
            [$simpledns, "localhost:443/x.png", "", "", false],          // IP=127.0.0.1, Port=443 (port hard specified, despite http fallback).
            [$simpledns, "http://127.0.0.1/x.png", "", "", false],       // IP=127.0.0.1, Port=80 (port inferred from http).
            [$simpledns, "127.0.0.1/x.png", "", "", false],              // IP=127.0.0.1, Port=80 (port inferred from http fallback).
            [$simpledns, "http://localhost:8080/x.png", "", "", false],  // IP=127.0.0.1, Port=8080 (port hard specified).
            [$simpledns, "http://192.168.1.10/x.png", "", "", false],    // IP=192.168.1.10, Port=80 (port inferred from http).
            [$simpledns, "https://192.168.1.10/x.png", "", "", false],   // IP=192.168.1.10, Port=443 (port inferred from https).
            [$simpledns, "http://sub.example.com/x.png", "", "", false], // IP=::1, Port = 80 (port inferred from http).
            [$simpledns, "http://s-1.d-1.com/x.png", "", "", false],     // IP=::1, Port = 80 (port inferred from http).

// Test set using domain name filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "localhost", "", true],
            [$simpledns, "localhost/x.png", "localhost", "", true],
            [$simpledns, "localhost:0/x.png", "localhost", "", true],
            [$simpledns, "ftp://localhost/x.png", "localhost", "", true],
            [$simpledns, "http://sub.example.com/x.png", "localhost", "", false],
            [$simpledns, "http://example.com/x.png", "example.com", "", true],
            [$simpledns, "http://sub.example.com/x.png", "example.com", "", false],

// Test set using wildcard domain name filters but with all ports allowed (empty).
            [$simpledns, "http://sub.example.com/x.png", "*.com", "", true],
            [$simpledns, "http://example.com/x.png", "*.example.com", "", false],
            [$simpledns, "http://sub.example.com/x.png", "*.example.com", "", true],
            [$simpledns, "http://sub.example.com/x.png", "*.sub.example.com", "", false],
            [$simpledns, "http://sub.example.com/x.png", "*.example", "", false],

// Test set using IP address filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "127.0.0.1", "", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.1", "", true],

// Test set using CIDR IP range filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "127.0.0.0/24", "", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.0/24", "", true],

// Test set using last-group range filters but with all ports allowed (empty).
            [$simpledns, "http://localhost/x.png", "127.0.0.0-30", "", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.0-30", "", true],

// Test set using port filters but with all hosts allowed (empty).
            [$simpledns, "http://localhost/x.png", "", "80\n443", false],
            [$simpledns, "http://localhost:80/x.png", "", "80\n443", false],
            [$simpledns, "https://localhost/x.png", "", "80\n443", false],
            [$simpledns, "http://localhost:443/x.png", "", "80\n443", false],
            [$simpledns, "http://sub.example.com:8080/x.png", "", "80\n443", true],
            [$simpledns, "http://sub.example.com:-80/x.png", "", "80\n443", true],
            [$simpledns, "http://sub.example.com:aaa/x.png", "", "80\n443", true],

// Test set using port filters and hosts filters.
            [$simpledns, "http://localhost/x.png", "127.0.0.1", "80\n443", true],
            [$simpledns, "http://127.0.0.1/x.png", "127.0.0.1", "80\n443", true],

// Test using multiple A records.
            // Multiple record DNS gives two IPs for the same host, we want to make
            // sure that if we block one of those (doesn't matter which one)
            // the request is blocked.
            [$multiplerecorddns, "http://sub.example.com", '1.2.3.4', "", true],
            [$multiplerecorddns, "http://sub.example.com", '5.6.7.8', "", true],

// Test when DNS resolution fails.
            [[], "http://example.com", "127.0.0.1", "", true],

// Test ensures that the default value of getremoteaddr() 0.0.0.0 will check against the provided blocked list.
            [$simpledns, "http://0.0.0.0/x.png", "0.0.0.0", "", true],
            // Test set using IPV4 with integer format.
            [$simpledns, "http://2852039166/x.png", "169.254.169.254", "", true],

// Test some freaky deaky Unicode domains. Should be blocked always.
            [$simpledns, "http://169。254。169。254/", "127.0.0.1", "", true],
            [$simpledns, "http://169。254。169。254/", "1.2.3.4", "", true],
            [$simpledns, "http://169。254。169。254/", "127.0.0.1", "80\n443", true]

// Note on testing URLs using IPv6 notation:
            // At present, the curl_security_helper class doesn't support IPv6 url notation.
            // E.g.  http://[ad34::dddd]:port/resource
            // This is because it uses clean_param(x, PARAM_URL) as part of parsing, which won't validate urls having IPv6 notation.
            // The underlying IPv6 address and range support is in place, however, so if clean_param is changed in future,
            // please add the following test sets.
            // 1. ["http://[::1]/x.png", "", "", false]
            // 2. ["http://[::1]/x.png", "::1", "", true]
            // 3. ["http://[::1]/x.png", "::1/64", "", true]
            // 4. ["http://[fe80::dddd]/x.png", "fe80::cccc-eeee", "", true]
            // 5. ["http://[fe80::dddd]/x.png", "fe80::dddd/128", "", true].
        ];
    }

/**
     * Test for \core\files\curl_security_helper->is_enabled().
     *
     * @param string $blockedhosts the list of blocked hosts.
     * @param string $allowedports the list of allowed ports.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_settings_data_provider
     */
    public function test_curl_security_helper_is_enabled($blockedhosts, $allowedports, $expected) {
        $this->resetAfterTest(true);
        $helper = new \core\files\curl_security_helper();
        set_config('curlsecurityblockedhosts', $blockedhosts);
        set_config('curlsecurityallowedport', $allowedports);
        $this->assertEquals($expected, $helper->is_enabled());
    }

/**
     * Data provider for test_curl_security_helper_is_enabled().
     *
     * @return array
     */
    public function curl_security_settings_data_provider() {
        // Format: blocked hosts, allowed ports, expected result.
        return [
            ["", "", false],
            ["127.0.0.1", "", true],
            ["localhost", "", true],
            ["127.0.0.0/24\n192.0.0.0/24", "", true],
            ["", "80\n443", true],
        ];
    }

/**
     * Test for \core\files\curl_security_helper::host_is_blocked().
     *
     * @param string $host the host to validate.
     * @param string $blockedhosts the list of blocked hosts.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_host_data_provider
     */
    public function test_curl_security_helper_host_is_blocked($host, $blockedhosts, $expected) {
        $this->resetAfterTest(true);
        $helper = new \core\files\curl_security_helper();
        set_config('curlsecurityblockedhosts', $blockedhosts);
        $this->assertEquals($expected, \phpunit_util::call_internal_method($helper, 'host_is_blocked', [$host],
                                                                          '\core\files\curl_security_helper'));
    }

/**
     * Data provider for test_curl_security_helper_host_is_blocked().
     *
     * @return array
     */
    public function curl_security_host_data_provider() {
        return [
            // IPv4 hosts.
            ["127.0.0.1", "127.0.0.1", true],
            ["127.0.0.1", "127.0.0.0/24", true],
            ["127.0.0.1", "127.0.0.0-40", true],
            ["", "127.0.0.0/24", false],

// IPv6 hosts.
            // Note: ["::", "::", true], - should match but 'address_in_subnet()' has trouble with fully collapsed IPv6 addresses.
            ["::1", "::1", true],
            ["::1", "::0-cccc", true],
            ["::1", "::0/64", true],
            ["FE80:0000:0000:0000:0000:0000:0000:0000", "fe80::/128", true],
            ["fe80::eeee", "fe80::ddde/64", true],
            ["fe80::dddd", "fe80::cccc-eeee", true],
            ["fe80::dddd", "fe80::ddde-eeee", false],

// Domain name hosts.
            ["example.com", "example.com", true],
            ["sub.example.com", "example.com", false],
            ["example.com", "*.com", true],
            ["example.com", "*.example.com", false],
            ["sub.example.com", "*.example.com", true],
            ["sub.sub.example.com", "*.example.com", true],
            ["sub.example.com", "*example.com", false],
            ["sub.example.com", "*.example", false],

// International domain name hosts.
            ["xn--nw2a.xn--j6w193g", "xn--nw2a.xn--j6w193g", true], // The domain 見.香港 is ace-encoded to xn--nw2a.xn--j6w193g.
        ];
    }

/**
     * Test for \core\files\curl_security_helper->port_is_blocked().
     *
     * @param int|string $port the port to validate.
     * @param string $allowedports the list of allowed ports.
     * @param bool $expected the expected result.
     * @dataProvider curl_security_port_data_provider
     */
    public function test_curl_security_helper_port_is_blocked($port, $allowedports, $expected) {
        $this->resetAfterTest(true);
        $helper = new \core\files\curl_security_helper();
        set_config('curlsecurityallowedport', $allowedports);
        $this->assertEquals($expected, \phpunit_util::call_internal_method($helper, 'port_is_blocked', [$port],
                                                                          '\core\files\curl_security_helper'));
    }

/**
     * Data provider for test_curl_security_helper_port_is_blocked().
     *
     * @return array
     */
    public function curl_security_port_data_provider() {
        return [
            ["", "80\n443", true],
            [" ", "80\n443", true],
            ["-1", "80\n443", true],
            [-1, "80\n443", true],
            ["n", "80\n443", true],
            [0, "80\n443", true],
            ["0", "80\n443", true],
            [8080, "80\n443", true],
            ["8080", "80\n443", true],
            ["80", "80\n443", false],
            [80, "80\n443", false],
            [443, "80\n443", false],
            [0, "", true], // Port 0 and below are always invalid, even when the admin hasn't set allowed entries.
            [-1, "", true], // Port 0 and below are always invalid, even when the admin hasn't set allowed entries.
            [null, "", true], // Non-string, non-int values are invalid.
        ];
    }

/**
     * Test for \core\files\curl_security_helper::get_blocked_url_string().
     */
    public function test_curl_security_helper_get_blocked_url_string() {
        $helper = new \core\files\curl_security_helper();
        $this->assertEquals(get_string('curlsecurityurlblocked', 'admin'), $helper->get_blocked_url_string());
    }
}

X7ROOT File Manager

Editing: curl_security_helper_test.php

Upload File

Create Folder