Are HTTP_PROXY, HTTPS_PROXY and NO_PROXY environment variables standard?

24

6

It seems that a lot of programs are designed to read these environment variables to decide what proxy to go through in order to connect to a resource on the internet. Those programs may also have their own, individual proxy settings, but if those are not set, they'll happily use these environment variables...

  • HTTP_PROXY
  • HTTPS_PROXY
  • NO_PROXY

I just want to know:

  • Are these environment variables standard?
  • Is there a written specification (may be by the OS manufacturers?) that recommends the use of these environment variables?

Niko Bellic

Posted 2015-07-24T19:44:26.000

Reputation: 862

1I do not know no_proxy, but http_proxy (written lowercase ) is standard – Uwe Burger – 2015-07-24T20:21:26.193

@UweBurger perhaps you can state which programs use it.. And that goes for the questioner too. I've seen it used on wget – barlop – 2015-07-25T03:23:35.210

Answers

17

I agree with BillThor's statement that This is more a convention than a standard.
I don't know the origin of these variables but in case of HTTP on *nix many conventions seem to originate from behavior of libcurl HTTP library and curl command line program.

At https://curl.haxx.se/docs/manual.html there's description of environment variables related to using HTTP proxy which libcurl/curl understands:

ENVIRONMENT VARIABLES

Curl reads and understands the following environment variables:
http_proxy, HTTPS_PROXY, FTP_PROXY

They should be set for protocol-specific proxies. General proxy should be set with
ALL_PROXY

A comma-separated list of host names that shouldn't go through any proxy is set in (only an asterisk, '*' matches all hosts)
NO_PROXY

If the host name matches one of these strings, or the host is within the domain of one of these strings, transactions with that node will not be proxied.

Please notice that http_proxy is spelled lowercase as the only one among these variables. Some libraries/programs look for lowercase names of these variables whereas others look for upppercase names. To be safe one should define both lowercase and uppercase versions of each variable.

Another issue is that cited description of how host names are matched against NO_PROXY is not precise and does not answer the following questions:

  • Should values be fully qualified domain names (FQDN) thus ending with a dot like foo.example.com. or not?
  • Should foo.example.com match only this one domain or should it also match any subdomain like bar.foo.example.com? If the latter then should it also match any subdomain in any subdomain like bar.baz.foo.example.com?
  • Is .foo.example.com (dot at the beginning) allowed and if so then what should it match ?
  • Is asterisk (*) allowed as part of value (*.example.com, *example.com) and if so then how is it treated?

Lack of formal specification leads to confusion and bugs. Here one has to mention libproxy library which aims to provide correct and consistent support for proxy configuration. From project's home page:

libproxy exists to answer the question: Given a network resource, how do I reach it? It handles all the details, enabling you to get back to programming.

Further reading:

Piotr Dobrogost

Posted 2015-07-24T19:44:26.000

Reputation: 4 413

What does libproxy have to say about the questions you raise? The one I'm interested in: "Should .foo.example.com match foo.example.com or not?" – Robin Winslow – 2018-03-05T14:30:17.993

I have no idea. I encourage you to ask at https://github.com/libproxy/libproxy/issues

– Piotr Dobrogost – 2018-03-05T21:01:44.443

13

This is more a convention than a standard. It is likely supported by one or more protocol handler libraries which actually make the connections. Java uses similar properties in its protocol libraries.

Understanding and using common conventions makes development much simpler. It also helps implement the principle of least surprise and make programs more likely to just work.

BillThor

Posted 2015-07-24T19:44:26.000

Reputation: 9 384

Asked: 2015-07-24T19:44:26.000

Viewed: 35 252 times

Active: 2018-03-05T20:59:41.820