mozilla
/
gecko-dev
зеркало из https://github.com/mozilla/gecko-dev.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

Backed out changeset 26e162e72ae1 (bug 1045891)

This commit is contained in:
Carsten "Tomcat" Book 2015-11-02 10:37:52 +01:00
Родитель deb9310786
Коммит 30ff2fd956
22 изменённых файлов: 18 добавлений и 889 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

61
dom/security/test/csp/file_child-src_iframe.html
Просмотреть файл

@ -1,61 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
</head>
<body>
<iframe id="testframe"> </iframe>
<script type="text/javascript">
page_id = window.location.hash.substring(1);
function executeTest(ev) {
testframe = document.getElementById('testframe');
testframe.contentWindow.postMessage({id:page_id, message:"execute"}, 'http://mochi.test:8888');
}
function reportError(ev) {
window.parent.postMessage({id:page_id, message:"blocked"}, 'http://mochi.test:8888');
cleanup();
}
function recvMessage(ev) {
if (ev.data.id == page_id) {
window.parent.postMessage({id:ev.data.id, message:ev.data.message}, 'http://mochi.test:8888');
cleanup();
}
}
function cleanup() {
testframe = document.getElementById('testframe');
window.removeEventListener('message', recvMessage);
testframe.removeEventListener('load', executeTest);
testframe.removeEventListener('error', reportError);
}
window.addEventListener('message', recvMessage, false);
try {
// Please note that file_testserver.sjs?foo does not return a response.
// For testing purposes this is not necessary because we only want to check
// whether CSP allows or blocks the load.
src = "file_testserver.sjs";
src += "?file=" + escape("tests/dom/security/test/csp/file_child-src_inner_frame.html");
src += "#" + escape(page_id);
testframe = document.getElementById('testframe');
testframe.addEventListener('load', executeTest, false);
testframe.addEventListener('error', reportError, false);
testframe.src = src;
}
catch (e) {
if (e.message.match(/Failed to load script/)) {
window.parent.postMessage({id:page_id, message:"blocked"}, 'http://mochi.test:8888');
} else {
window.parent.postMessage({id:page_id, message:"exception"}, 'http://mochi.test:8888');
}
}
</script>
</body>
</html>

21
dom/security/test/csp/file_child-src_inner_frame.html
Просмотреть файл

@ -1,21 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
</head>
<body>
<iframe id="innermosttestframe"> </iframe>
<script type="text/javascript">
page_id = window.location.hash.substring(1);
function recvMessage(ev) {
if (ev.data.id == page_id) {
window.parent.postMessage({id:ev.data.id, message:'allowed'}, 'http://mochi.test:8888');
window.removeEventListener('message', recvMessage);
}
}
window.addEventListener('message', recvMessage, false);
</script>
</body>
</html>

29
dom/security/test/csp/file_child-src_service_worker.html
Просмотреть файл

@ -1,29 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
</head>
<body>
<script type="text/javascript">
page_id = window.location.hash.substring(1);
try {
if ('serviceWorker' in navigator) {
navigator.serviceWorker.register(
'file_child-src_service_worker.js'
+ "#"
+ page_id
).then(function(reg)
{
// registration worked
window.parent.postMessage({id:page_id, message:"allowed"}, 'http://mochi.test:8888');
}).catch(function(error) {
// registration failed
window.parent.postMessage({id:page_id, message:"blocked"}, 'http://mochi.test:8888');
});
};
} catch(ex) {
window.parent.postMessage({id:page_id, message:"exception"}, 'http://mochi.test:8888');
}
</script>
</body>
</html>

3
dom/security/test/csp/file_child-src_service_worker.js
Просмотреть файл

@ -1,3 +0,0 @@
this.addEventListener('install', function(event) {
close();
});

41
dom/security/test/csp/file_child-src_shared_worker-redirect.html
Просмотреть файл

@ -1,41 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
</head>
<body>
<script type="text/javascript">
page_id = window.location.hash.substring(1);
var redir = 'none';
page_id.split('_').forEach(function (val) {
var [name, value] = val.split('-');
if (name == 'redir') {
redir = unescape(value);
}
});
try {
worker = new SharedWorker('file_redirect_worker.sjs?path='
+ escape("/tests/dom/security/test/csp/file_child-src_shared_worker.js")
+ "&redir=" + redir
+ "&page_id=" + page_id,
page_id);
worker.port.start();
worker.port.onmessage = function(ev) {
window.parent.postMessage({id:page_id, message:"allowed"}, 'http://mochi.test:8888');
};
worker.onerror = function() {
window.parent.postMessage({id:page_id, message:"blocked"}, 'http://mochi.test:8888');
};
worker.port.postMessage('foo');
}
catch (e) {
window.parent.postMessage({id:page_id, message:"blocked"}, 'http://mochi.test:8888');
}
</script>
</body>
</html>

28
dom/security/test/csp/file_child-src_shared_worker.html
Просмотреть файл

@ -1,28 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
</head>
<body>
<script type="text/javascript">
page_id = window.location.hash.substring(1);
try {
worker = new SharedWorker(
'file_testserver.sjs?file='+
escape("tests/dom/security/test/csp/file_child-src_shared_worker.js"),
page_id);
worker.port.start();
worker.port.onmessage = function(ev) {
window.parent.postMessage({id:page_id, message:"allowed"},
'http://mochi.test:8888');
};
worker.port.postMessage('foo');
}
catch (e) {
window.parent.postMessage({id:page_id, message:"blocked"},
'http://mochi.test:8888');
}
</script>
</body>
</html>

8
dom/security/test/csp/file_child-src_shared_worker.js
Просмотреть файл

@ -1,8 +0,0 @@
onconnect = function(e) {
var port = e.ports[0];
port.addEventListener('message', function(e) {
port.postMessage('success');
});
port.start();
}

32
dom/security/test/csp/file_child-src_shared_worker_data.html
Просмотреть файл

@ -1,32 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
</head>
<body>
<script type="text/javascript">
var page_id = window.location.hash.substring(1);
var shared_worker = "onconnect = function(e) { " +
"var port = e.ports[0];" +
"port.addEventListener('message'," +
"function(e) { port.postMessage('success'); });" +
"port.start(); }";
try {
var worker = new SharedWorker('data:application/javascript;charset=UTF-8,'+
escape(shared_worker), page_id);
worker.port.start();
worker.port.onmessage = function(ev) {
window.parent.postMessage({id:page_id, message:"allowed"}, 'http://mochi.test:8888');
};
worker.port.postMessage('foo');
}
catch (e) {
window.parent.postMessage({id:page_id, message:"blocked"}, 'http://mochi.test:8888');
}
</script>
</body>
</html>

49
dom/security/test/csp/file_child-src_worker-redirect.html
Просмотреть файл

@ -1,49 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
</head>
<body>
<script type="text/javascript">
var page_id = window.location.hash.substring(1);
var redir = 'none';
page_id.split('_').forEach(function (val) {
var [name, value] = val.split('-');
if (name == 'redir') {
redir = unescape(value);
}
});
try {
worker = new Worker('file_redirect_worker.sjs?path='
+ escape("/tests/dom/security/test/csp/file_child-src_worker.js")
+ "&redir=" + redir
+ "&page_id=" + page_id
);
worker.onerror = function(error) {
var msg = error.message;
if (msg.match(/^: NetworkError/)) {
// this means CSP blocked it
msg = "blocked";
}
window.parent.postMessage({id:page_id, message:msg}, 'http://mochi.test:8888');
};
worker.onmessage = function(ev) {
window.parent.postMessage({id:page_id, message:"allowed"}, 'http://mochi.test:8888');
};
worker.postMessage('foo');
}
catch (e) {
if (e.message.match(/Failed to load script/)) {
window.parent.postMessage({id:page_id, message:"blocked"}, 'http://mochi.test:8888');
} else {
window.parent.postMessage({id:page_id, message:"exception"}, 'http://mochi.test:8888');
}
}
</script>
</body>
</html>

25
dom/security/test/csp/file_child-src_worker.html
Просмотреть файл

@ -1,25 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
</head>
<body>
<script type="text/javascript">
page_id = window.location.hash.substring(1);
try {
worker = new Worker('file_testserver.sjs?file='+escape("tests/dom/security/test/csp/file_child-src_worker.js"));
worker.onmessage = function(ev) {
window.parent.postMessage({id:page_id, message:"allowed"}, 'http://mochi.test:8888');
};
worker.postMessage('foo');
}
catch (e) {
if (e.message.match(/Failed to load script/)) {
window.parent.postMessage({id:page_id, message:"blocked"}, 'http://mochi.test:8888');
} else {
window.parent.postMessage({id:page_id, message:"exception"}, 'http://mochi.test:8888');
}
}
</script>
</body>
</html>

4
dom/security/test/csp/file_child-src_worker.js
Просмотреть файл

@ -1,4 +0,0 @@
onmessage = function(e) {
postMessage('worker');
};

26
dom/security/test/csp/file_child-src_worker_data.html
Просмотреть файл

@ -1,26 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
</head>
<body>
<script type="text/javascript">
page_id = window.location.hash.substring(1);
try {
worker = new Worker('data:application/javascript;charset=UTF-8,'+escape('onmessage = function(e) { postMessage("worker"); };'));
worker.onmessage = function(ev) {
window.parent.postMessage({id:page_id, message:"allowed"}, 'http://mochi.test:8888');
};
worker.postMessage('foo');
}
catch (e) {
if (e.message.match(/Failed to load script/)) {
window.parent.postMessage({id:page_id, message:"blocked"}, 'http://mochi.test:8888');
} else {
console.log(e);
window.parent.postMessage({id:page_id, message:"exception"}, 'http://mochi.test:8888');
}
}
</script>
</body>
</html>

34
dom/security/test/csp/file_redirect_worker.sjs
Просмотреть файл

@ -1,34 +0,0 @@
// SJS file to serve resources for CSP redirect tests
// This file redirects to a specified resource.
const THIS_SITE = "http://mochi.test:8888";
const OTHER_SITE = "http://example.com";
function handleRequest(request, response)
{
var query = {};
request.queryString.split('&').forEach(function (val) {
var [name, value] = val.split('=');
query[name] = unescape(value);
});
var resource = query['path'];
response.setHeader("Cache-Control", "no-cache", false);
var loc = '';
// redirect to a resource on this site
if (query["redir"] == "same") {
loc = THIS_SITE+resource+"#"+query['page_id']
}
// redirect to a resource on a different site
else if (query["redir"] == "other") {
loc = OTHER_SITE+resource+"#"+query['page_id']
}
response.setStatusLine("1.1", 302, "Found");
response.setHeader("Location", loc, false);
response.write('<html><head><meta http-equiv="refresh" content="0; url='+loc+'">');
return;
}

12
dom/security/test/csp/file_redirects_page.sjs
Просмотреть файл

@ -15,13 +15,7 @@ function handleRequest(request, response)
// CSP header value
if (query["csp"] == 1) {
var additional = ""
if (query['testid'] == "worker") {
additional = "; script-src 'self' 'unsafe-inline'";
}
response.setHeader("Content-Security-Policy",
"default-src 'self' ; style-src 'self' 'unsafe-inline'" + additional,
false);
response.setHeader("Content-Security-Policy", "default-src 'self' ; style-src 'self' 'unsafe-inline'", false);
}
// downloadable font that redirects to another site
@ -67,13 +61,13 @@ function handleRequest(request, response)
// external stylesheet that redirects to another site
if (query["testid"] == "style-src") {
response.write('<link rel="stylesheet" type="text/css" href="'+resource+'?res=style&redir=other&id=style-src-redir"></link>');
response.write('<link rel="stylesheet" type="text/css" href="'+resource+'?res=style&redir=other&id=style-src-redir"></script>');
return;
}
// worker script resource that redirects to another site
if (query["testid"] == "worker") {
response.write('<script>var worker = new Worker("'+resource+'?res=worker&redir=other&id=worker-redir");</script>');
response.write('<script src="'+resource+'?res=worker&redir=other&id=worker-redir"></script>');
return;
}

15
dom/security/test/csp/file_redirects_resource.sjs
Просмотреть файл

@ -122,9 +122,18 @@ function handleRequest(request, response)
// script that invokes XHR
if (query["res"] == "xhr") {
response.setHeader("Content-Type", "application/javascript", false);
var resp = 'var x = new XMLHttpRequest();x.open("GET", "' + otherSite +
resource+'?res=xhr-resp&testid=xhr-src-redir", false);\n' +
response.setHeader("Content-Type", "text/html", false);
var resp = 'var x = new XMLHttpRequest(); x.open("GET", "' + otherSite +
resource+'?res=xhr-resp&testid=xhr-src-redir", false); ' +
'x.send(null);';
response.write(resp);
return;
}
if (query["res"] == "xhr") {
response.setHeader("Content-Type", "text/html", false);
var resp = 'var x = new XMLHttpRequest(); x.open("GET", "' + otherSite +
resource+'?res=xhr-resp&testid=xhr-src-redir", false); ' +
'x.send(null);';
response.write(resp);
return;

17
dom/security/test/csp/mochitest.ini
Просмотреть файл

@ -132,19 +132,6 @@ support-files =
file_report_for_import_server.sjs
file_service_worker.html
file_service_worker.js
file_child-src_iframe.html
file_child-src_inner_frame.html
file_child-src_worker.html
file_child-src_worker_data.html
file_child-src_worker-redirect.html
file_child-src_worker.js
file_child-src_service_worker.html
file_child-src_service_worker.js
file_child-src_shared_worker.html
file_child-src_shared_worker_data.html
file_child-src_shared_worker-redirect.html
file_child-src_shared_worker.js
file_redirect_worker.sjs
[test_base-uri.html]
[test_blob_data_schemes.html]
@ -214,7 +201,3 @@ skip-if = buildapp == 'b2g' || buildapp == 'mulet' || toolkit == 'gonk' || toolk
skip-if = e10s || buildapp == 'b2g' # http-on-opening-request observer not supported in child process (bug 1009632)
[test_service_worker.html]
skip-if = buildapp == 'b2g' #no ssl support
[test_child-src_worker.html]
[test_child-src_worker_data.html]
[test_child-src_worker-redirect.html]
[test_child-src_iframe.html]

114
dom/security/test/csp/test_child-src_iframe.html
Просмотреть файл

@ -1,114 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
<!-- Including SimpleTest.js so we can use waitForExplicitFinish !-->
<script type="text/javascript" src="/tests/SimpleTest/SimpleTest.js"></script>
<link rel="stylesheet" type="text/css" href="/tests/SimpleTest/test.css" />
</head>
<body>
<p id="display"></p>
<div id="content" style="visibility: hidden">
</div>
<script class="testbody" type="text/javascript">
/*
* Description of the test:
* We load a page with a given CSP and verify that child frames and workers are correctly
* evaluated through the "child-src" directive.
*/
SimpleTest.waitForExplicitFinish();
var IFRAME_SRC="file_child-src_iframe.html"
var tests = {
'same-src': {
id: "same-src",
file: IFRAME_SRC,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src http://mochi.test:8888"
},
'star-src': {
id: "star-src",
file: IFRAME_SRC,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src *"
},
'other-src': {
id: "other-src",
file: IFRAME_SRC,
result : "blocked",
policy : "default-src http://mochi.test:8888; script-src 'unsafe-inline'; child-src http://www.example.com"
},
'same-src-by-frame-src': {
id: "same-src-by-frame-src",
file: IFRAME_SRC,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src 'none'; frame-src http://mochi.test:8888"
},
'star-src-by-frame-src': {
id: "star-src-by-frame-src",
file: IFRAME_SRC,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src 'none'; frame-src *"
},
'other-src-by-frame-src': {
id: "other-src-by-frame-src",
file: IFRAME_SRC,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src http://mochi.test:8888; frame-src http://www.example.com"
},
'none-src-by-frame-src': {
id: "none-src-by-frame-src",
file: "file_child-src_iframe.html",
file: IFRAME_SRC,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src http://mochi.test:8888; frame-src 'none'"
}
};
finished = {};
function checkFinished() {
if (Object.keys(finished).length == Object.keys(tests).length) {
window.removeEventListener('message', recvMessage);
SimpleTest.finish();
}
}
function recvMessage(ev) {
is(ev.data.message, tests[ev.data.id].result, "CSP child-src test " + ev.data.id);
finished[ev.data.id] = ev.data.message;
checkFinished();
}
window.addEventListener('message', recvMessage, false);
function loadNextTest() {
for (item in tests) {
test = tests[item];
var src = "file_testserver.sjs";
// append the file that should be served
src += "?file=" + escape("tests/dom/security/test/csp/" + test.file);
// append the CSP that should be used to serve the file
src += "&csp=" + escape(test.policy);
// add our identifier
src += "#" + escape(test.id);
content = document.getElementById('content');
testframe = document.createElement("iframe");
testframe.setAttribute('id', test.id);
content.appendChild(testframe);
testframe.src = src;
}
}
// start running the tests
loadNextTest();
</script>
</body>
</html>

125
dom/security/test/csp/test_child-src_worker-redirect.html
Просмотреть файл

@ -1,125 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
<!-- Including SimpleTest.js so we can use waitForExplicitFinish !-->
<script type="text/javascript" src="/tests/SimpleTest/SimpleTest.js"></script>
<link rel="stylesheet" type="text/css" href="/tests/SimpleTest/test.css" />
</head>
<body>
<p id="display"></p>
<div id="content" style="visibility: hidden">
</div>
<script class="testbody" type="text/javascript">
/*
* Description of the test:
* We load a page with a given CSP and verify that child frames and workers are correctly
* evaluated through the "child-src" directive.
*/
SimpleTest.waitForExplicitFinish();
var WORKER_REDIRECT_TEST_FILE = "file_child-src_worker-redirect.html";
var SHARED_WORKER_REDIRECT_TEST_FILE = "file_child-src_shared_worker-redirect.html";
var tests = {
'same-src-worker_redir-same': {
id: "same-src-worker_redir-same",
file: WORKER_REDIRECT_TEST_FILE,
result : "allowed",
redir: "same",
policy : "default-src 'none'; script-src 'self' 'unsafe-inline'; child-src http://mochi.test:8888"
},
'same-src-worker_redir-other': {
id: "same-src-worker_redir-other",
file: WORKER_REDIRECT_TEST_FILE,
result : "blocked",
redir: "other",
policy : "default-src 'none'; script-src 'self' 'unsafe-inline'; child-src http://mochi.test:8888"
},
'star-src-worker_redir-same': {
id: "star-src-worker_redir-same",
file: WORKER_REDIRECT_TEST_FILE,
redir: "same",
result : "allowed",
policy : "default-src 'none'; script-src 'self' 'unsafe-inline'; child-src *"
},
'other-src-worker_redir-same': {
id: "other-src-worker_redir-same",
file: WORKER_REDIRECT_TEST_FILE,
redir: "same",
result : "blocked",
policy : "default-src 'none'; script-src 'self' 'unsafe-inline'; child-src https://www.example.org"
},
/* shared workers */
'same-src-shared_worker_redir-same': {
id: "same-src-shared_worker_redir-same",
file: SHARED_WORKER_REDIRECT_TEST_FILE,
result : "allowed",
redir: "same",
policy : "default-src 'none'; script-src 'self' 'unsafe-inline'; child-src http://mochi.test:8888"
},
'same-src-shared_worker_redir-other': {
id: "same-src-shared_worker_redir-other",
file: SHARED_WORKER_REDIRECT_TEST_FILE,
result : "blocked",
redir: "other",
policy : "default-src 'none'; script-src 'self' 'unsafe-inline'; child-src http://mochi.test:8888"
},
'star-src-shared_worker_redir-same': {
id: "star-src-shared_worker_redir-same",
file: SHARED_WORKER_REDIRECT_TEST_FILE,
redir: "same",
result : "allowed",
policy : "default-src 'none'; script-src 'self' 'unsafe-inline'; child-src *"
},
'other-src-shared_worker_redir-same': {
id: "other-src-shared_worker_redir-same",
file: SHARED_WORKER_REDIRECT_TEST_FILE,
redir: "same",
result : "blocked",
policy : "default-src 'none'; script-src 'self' 'unsafe-inline'; child-src https://www.example.org"
},
};
finished = {};
function recvMessage(ev) {
is(ev.data.message, tests[ev.data.id].result, "CSP child-src worker test " + ev.data.id);
finished[ev.data.id] = ev.data.message;
if (Object.keys(finished).length == Object.keys(tests).length) {
window.removeEventListener('message', recvMessage);
SimpleTest.finish();
}
}
window.addEventListener('message', recvMessage, false);
function loadNextTest() {
for (item in tests) {
test = tests[item];
var src = "file_testserver.sjs";
// append the file that should be served
src += "?file=" + escape("tests/dom/security/test/csp/" + test.file);
// append the CSP that should be used to serve the file
src += "&csp=" + escape(test.policy);
// add whether redirect is to same or different
src += "&redir=" + escape(test.policy);
// add our identifier
src += "#" + escape(test.id);
content = document.getElementById('content');
testframe = document.createElement("iframe");
testframe.setAttribute('id', test.id);
content.appendChild(testframe);
testframe.src = src;
}
}
// start running the tests
loadNextTest();
</script>
</body>
</html>

131
dom/security/test/csp/test_child-src_worker.html
Просмотреть файл

@ -1,131 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
<!-- Including SimpleTest.js so we can use waitForExplicitFinish !-->
<script type="text/javascript" src="/tests/SimpleTest/SimpleTest.js"></script>
<link rel="stylesheet" type="text/css" href="/tests/SimpleTest/test.css" />
</head>
<body>
<p id="display"></p>
<div id="content" style="visibility: hidden">
</div>
<script class="testbody" type="text/javascript">
/*
* Description of the test:
* We load a page with a given CSP and verify that child frames and workers are correctly
* evaluated through the "child-src" directive.
*/
SimpleTest.waitForExplicitFinish();
var WORKER_TEST_FILE = "file_child-src_worker.html";
var SERVICE_WORKER_TEST_FILE = "file_child-src_service_worker.html";
var SHARED_WORKER_TEST_FILE = "file_child-src_shared_worker.html";
var tests = {
'same-src-worker': {
id: "same-src-worker",
file: WORKER_TEST_FILE,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src http://mochi.test:8888"
},
'same-src-service_worker': {
id: "same-src-service_worker",
file: SERVICE_WORKER_TEST_FILE,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src http://mochi.test:8888"
},
'same-src-shared_worker': {
id: "same-src-shared_worker",
file: SHARED_WORKER_TEST_FILE,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src http://mochi.test:8888"
},
'star-src-worker': {
id: "star-src-worker",
file: WORKER_TEST_FILE,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src *"
},
'star-src-service_worker': {
id: "star-src-service_worker",
file: SERVICE_WORKER_TEST_FILE,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src *"
},
'star-src-shared_worker': {
id: "star-src-shared_worker",
file: SHARED_WORKER_TEST_FILE,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src *"
},
'other-src-worker': {
id: "other-src-worker",
file: WORKER_TEST_FILE,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src https://www.example.org"
},
'other-src-service_worker': {
id: "other-src-service_worker",
file: SERVICE_WORKER_TEST_FILE,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src https://www.example.org"
},
'other-src-shared_worker': {
id: "other-src-shared_worker",
file: SHARED_WORKER_TEST_FILE,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src https://www.example.org"
},
};
finished = {};
function recvMessage(ev) {
is(ev.data.message, tests[ev.data.id].result, "CSP child-src worker test " + ev.data.id);
finished[ev.data.id] = ev.data.message;
if (Object.keys(finished).length == Object.keys(tests).length) {
window.removeEventListener('message', recvMessage);
SimpleTest.finish();
}
}
window.addEventListener('message', recvMessage, false);
function loadNextTest() {
for (item in tests) {
test = tests[item];
var src = "file_testserver.sjs";
// append the file that should be served
src += "?file=" + escape("tests/dom/security/test/csp/" + test.file);
// append the CSP that should be used to serve the file
src += "&csp=" + escape(test.policy);
// add our identifier
src += "#" + escape(test.id);
content = document.getElementById('content');
testframe = document.createElement("iframe");
testframe.setAttribute('id', test.id);
content.appendChild(testframe);
testframe.src = src;
}
}
onload = function() {
SpecialPowers.pushPrefEnv({"set": [
["dom.serviceWorkers.exemptFromPerDomainMax", true],
["dom.serviceWorkers.interception.enabled", true],
["dom.serviceWorkers.enabled", true],
["dom.serviceWorkers.testing.enabled", true],
["dom.caches.enabled", true]
]}, loadNextTest);
};
// start running the tests
//loadNextTest();
</script>
</body>
</html>

126
dom/security/test/csp/test_child-src_worker_data.html
Просмотреть файл

@ -1,126 +0,0 @@
<!DOCTYPE HTML>
<html>
<head>
<title>Bug 1045891</title>
<!-- Including SimpleTest.js so we can use waitForExplicitFinish !-->
<script type="text/javascript" src="/tests/SimpleTest/SimpleTest.js"></script>
<link rel="stylesheet" type="text/css" href="/tests/SimpleTest/test.css" />
</head>
<body>
<p id="display"></p>
<div id="content" style="visibility: hidden">
</div>
<script class="testbody" type="text/javascript">
/*
* Description of the test:
* We load a page with a given CSP and verify that child frames and workers are correctly
* evaluated through the "child-src" directive.
*/
SimpleTest.waitForExplicitFinish();
var WORKER_TEST_FILE = "file_child-src_worker_data.html";
var SHARED_WORKER_TEST_FILE = "file_child-src_shared_worker_data.html";
var tests = {
'same-src-worker-no-data': {
id: "same-src-worker-no-data",
file: WORKER_TEST_FILE,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src 'self'"
},
'same-src-worker': {
id: "same-src-worker",
file: WORKER_TEST_FILE,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src 'self' data:"
},
'same-src-shared_worker-no-data': {
id: "same-src-shared_worker-no-data",
file: SHARED_WORKER_TEST_FILE,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src 'self'"
},
'same-src-shared_worker': {
id: "same-src-shared_worker",
file: SHARED_WORKER_TEST_FILE,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src 'self' data:"
},
'star-src-worker': {
id: "star-src-worker",
file: WORKER_TEST_FILE,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src * data:"
},
'star-src-worker-no-data': {
id: "star-src-worker-no-data",
file: WORKER_TEST_FILE,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src *"
},
'star-src-shared_worker-no-data': {
id: "star-src-shared_worker-no-data",
file: SHARED_WORKER_TEST_FILE,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src *"
},
'star-src-shared_worker': {
id: "star-src-shared_worker",
file: SHARED_WORKER_TEST_FILE,
result : "allowed",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src * data:"
},
'other-src-worker-no-data': {
id: "other-src-worker-no-data",
file: WORKER_TEST_FILE,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src https://www.example.org"
},
'other-src-shared_worker-no-data': {
id: "other-src-shared_worker-no-data",
file: SHARED_WORKER_TEST_FILE,
result : "blocked",
policy : "default-src 'none'; script-src 'unsafe-inline'; child-src https://www.example.org"
},
};
finished = {};
function recvMessage(ev) {
is(ev.data.message, tests[ev.data.id].result, "CSP child-src worker test " + ev.data.id);
finished[ev.data.id] = ev.data.message;
if (Object.keys(finished).length == Object.keys(tests).length) {
window.removeEventListener('message', recvMessage);
SimpleTest.finish();
}
}
window.addEventListener('message', recvMessage, false);
function loadNextTest() {
for (item in tests) {
test = tests[item];
var src = "file_testserver.sjs";
// append the file that should be served
src += "?file=" + escape("tests/dom/security/test/csp/" + test.file);
// append the CSP that should be used to serve the file
src += "&csp=" + escape(test.policy);
// add our identifier
src += "#" + escape(test.id);
content = document.getElementById('content');
testframe = document.createElement("iframe");
testframe.setAttribute('id', test.id);
content.appendChild(testframe);
testframe.src = src;
}
}
// start running the tests
loadNextTest();
</script>
</body>
</html>

2
dom/security/test/csp/test_service_worker.html
Просмотреть файл

@ -19,7 +19,7 @@ SimpleTest.waitForExplicitFinish();
var tests = [
{
policy: "default-src 'self'; script-src 'unsafe-inline'; child-src test1.example.com;",
policy: "default-src 'self'; script-src test1.example.com 'unsafe-inline'",
expected: "blocked"
},
];

4
dom/security/test/csp/test_worker_redirect.html
Просмотреть файл

@ -37,11 +37,11 @@
var tests = [
{
policy: "default-src 'self'; script-src 'self' 'unsafe-eval'; child-src 'self' http://test1.example.com;",
policy: "default-src 'self'; script-src 'self' 'unsafe-eval' http://test1.example.com;",
expected: "allowed"
},
{
policy: "default-src 'self'; script-src 'self' 'unsafe-eval'; child-src 'self';",
policy: "default-src 'self'; script-src 'self' 'unsafe-eval';",
expected: "blocked",
},
];