Hippolyzer/tests/proxy/test_httpflows.py

import unittest

from mitmproxy.test import tflow, tutils

from hippolyzer.lib.base.datatypes import UUID
from hippolyzer.lib.proxy.http_flow import HippoHTTPFlow
from hippolyzer.lib.proxy.http_proxy import SerializedCapData
from hippolyzer.lib.proxy.message_logger import HTTPMessageLogEntry
from hippolyzer.lib.proxy.sessions import SessionManager


class TestHTTPFlows(unittest.TestCase):
    def setUp(self) -> None:
        self.session_manager = SessionManager()
        self.session = self.session = self.session_manager.create_session({
            "session_id": UUID.random(),
            "secure_session_id": UUID.random(),
            "agent_id": UUID.random(),
            "circuit_code": 0,
            "sim_ip": "127.0.0.1",
            "sim_port": "1",
            "seed_capability": "https://test.localhost:4/foo",
        })

    def test_request_formatting(self):
        req = tutils.treq(host="example.com", port=80)
        resp = tutils.tresp()
        fake_flow = tflow.tflow(req=req, resp=resp)
        fake_flow.metadata["cap_data_ser"] = SerializedCapData(
            cap_name="FakeCap",
            session_id=str(self.session.id),
            base_url="http://example.com",
        )
        flow = HippoHTTPFlow.from_state(fake_flow.get_state(), self.session_manager)
        entry = HTTPMessageLogEntry(flow)
        self.assertEqual(entry.request(beautify=True), """GET [[FakeCap]]/path HTTP/1.1\r
# http://example.com/path\r
header: qvalue\r
content-length: 7\r
\r
content""")

    def test_binary_request_formatting(self):
        req = tutils.treq(host="example.com", port=80)
        resp = tutils.tresp()
        fake_flow = tflow.tflow(req=req, resp=resp)
        flow = HippoHTTPFlow.from_state(fake_flow.get_state(), self.session_manager)
        # This should trigger the escaped body path without changing content-length
        flow.request.content = b"c\x00ntent"
        entry = HTTPMessageLogEntry(flow)
        self.assertEqual(entry.request(beautify=True), """GET http://example.com/path HTTP/1.1\r
header: qvalue\r
content-length: 7\r
X-Hippo-Escaped-Body: 1\r
\r
c\\x00ntent""")

    def test_llsd_response_formatting(self):
        req = tutils.treq(host="example.com", port=80)
        resp = tutils.tresp()
        fake_flow = tflow.tflow(req=req, resp=resp)
        flow = HippoHTTPFlow.from_state(fake_flow.get_state(), self.session_manager)
        # Half the time LLSD is sent with a random Content-Type and no PI indicating
        # what flavor of LLSD it is. Make sure the sniffing works correctly.
        flow.response.content = b"<llsd><integer>1</integer></llsd>"
        entry = HTTPMessageLogEntry(flow)
        self.assertEqual(entry.response(beautify=True), """HTTP/1.1 200 OK\r
header-response: svalue\r
content-length: 33\r
\r
<?xml version="1.0" ?>
<llsd>
<integer>1</integer>
</llsd>
""")