mozilla
/
gecko-dev
зеркало из https://github.com/mozilla/gecko-dev.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

Bug 1406278: Part 2b - Use subject principal as triggering principal in <img> "src" attribute. r=bz 

MozReview-Commit-ID: DrblTjP99WJ

--HG--
extra : rebase_source : 649cf6757266c9e08a3f5a621c3e9451a7ccef67
This commit is contained in:
Kris Maglione 2017-10-02 20:28:32 -07:00
Родитель 1e39590f6d
Коммит d72aa193c4
11 изменённых файлов: 661 добавлений и 16 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

55
dom/base/nsContentUtils.cpp
Просмотреть файл

@ -202,6 +202,7 @@
#include "nsTextNode.h"
#include "nsThreadUtils.h"
#include "nsUnicodeProperties.h"
#include "nsURLHelper.h"
#include "nsViewManager.h"
#include "nsViewportInfo.h"
#include "nsWidgetsCID.h"
@ -2333,6 +2334,54 @@ nsContentUtils::CallerHasPermission(JSContext* aCx, const nsAtom* aPerm)
return PrincipalHasPermission(SubjectPrincipal(aCx), aPerm);
}
// static
nsIPrincipal*
nsContentUtils::GetAttrTriggeringPrincipal(nsIContent* aContent, const nsAString& aAttrValue,
nsIPrincipal* aSubjectPrincipal)
{
nsIPrincipal* contentPrin = aContent ? aContent->NodePrincipal() : nullptr;
// If the subject principal is the same as the content principal, or no
// explicit subject principal was provided, we don't need to do any further
// checks. Just return the content principal.
if (contentPrin == aSubjectPrincipal || !aSubjectPrincipal) {
return contentPrin;
}
// If the attribute value is empty, it's not an absolute URL, so don't bother
// with more expensive checks.
if (!aAttrValue.IsEmpty() &&
IsAbsoluteURL(NS_ConvertUTF16toUTF8(aAttrValue))) {
return aSubjectPrincipal;
}
return contentPrin;
}
// static
bool
nsContentUtils::IsAbsoluteURL(const nsACString& aURL)
{
nsAutoCString scheme;
if (NS_FAILED(net_ExtractURLScheme(aURL, scheme))) {
// If we can't extract a scheme, it's not an absolute URL.
return false;
}
// If it parses as an absolute StandardURL, it's definitely an absolute URL,
// so no need to check with the IO service.
if (net_IsAbsoluteURL(aURL)) {
return true;
}
uint32_t flags;
if (NS_SUCCEEDED(sIOService->GetProtocolFlags(scheme.get(), &flags))) {
return flags & nsIProtocolHandler::URI_NORELATIVE;
}
return false;
}
//static
bool
nsContentUtils::InProlog(nsINode *aNode)
@ -10408,13 +10457,17 @@ nsContentUtils::AppendNativeAnonymousChildren(
/* static */ bool
nsContentUtils::GetLoadingPrincipalForXULNode(nsIContent* aLoadingNode,
nsIPrincipal* aDefaultPrincipal,
nsIPrincipal** aLoadingPrincipal)
{
MOZ_ASSERT(aLoadingNode);
MOZ_ASSERT(aLoadingPrincipal);
bool result = false;
nsCOMPtr<nsIPrincipal> loadingPrincipal = aLoadingNode->NodePrincipal();
nsCOMPtr<nsIPrincipal> loadingPrincipal = aDefaultPrincipal;
if (!loadingPrincipal) {
loadingPrincipal = aLoadingNode->NodePrincipal();
}
nsAutoString loadingStr;
aLoadingNode->GetAttr(kNameSpaceID_None, nsGkAtoms::loadingprincipal,
loadingStr);

44
dom/base/nsContentUtils.h
Просмотреть файл

@ -600,6 +600,40 @@ public:
// Check if the JS caller is chrome or an addon with the permission.
static bool CallerHasPermission(JSContext* aCx, const nsAtom* aPerm);
/**
* Returns the triggering principal which should be used for the given URL
* attribute value with the given subject principal.
*
* If the attribute value is not an absolute URL, the subject principal will
* be ignored, and the node principal of aContent will be used instead.
* If aContent is non-null, this function will always return a principal.
* Otherewise, it may return null if aSubjectPrincipal is null or is rejected
* based on the attribute value.
*
* @param aContent The content on which the attribute is being set.
* @param aAttrValue The URL value of the attribute. For parsed attribute
* values, such as `srcset`, this function should be called separately
* for each URL value it contains.
* @param aSubjectPrincipal The subject principal of the scripted caller
* responsible for setting the attribute, or null if no scripted caller
* can be determined.
*/
static nsIPrincipal* GetAttrTriggeringPrincipal(nsIContent* aContent,
const nsAString& aAttrValue,
nsIPrincipal* aSubjectPrincipal);
/**
* Returns true if the given string is guaranteed to be treated as an absolute
* URL, rather than a relative URL. In practice, this means any complete URL
* as supported by nsStandardURL, or any string beginning with a valid scheme
* which is known to the IO service, and has the URI_NORELATIVE flag.
*
* If the URL may be treated as absolute in some cases, but relative in others
* (for instance, "http:foo", which can be either an absolute or relative URL,
* depending on the context), this function returns false.
*/
static bool IsAbsoluteURL(const nsACString& aURL);
/**
* GetDocumentFromCaller gets its document by looking at the last called
* function and finding the document that the function itself relates to.
@ -3059,7 +3093,15 @@ public:
*/
static bool
GetLoadingPrincipalForXULNode(nsIContent* aLoadingNode,
nsIPrincipal** aLoadingPrincipal);
nsIPrincipal* aDefaultPrincipal,
nsIPrincipal** aTriggeringPrincipal);
static bool
GetLoadingPrincipalForXULNode(nsIContent* aLoadingNode,
nsIPrincipal** aTriggeringPrincipal)
{
return GetLoadingPrincipalForXULNode(aLoadingNode, nullptr, aTriggeringPrincipal);
}
/**
* Returns the content policy type that should be used for loading images

11
dom/base/nsImageLoadingContent.cpp
Просмотреть файл

@ -897,7 +897,8 @@ nsresult
nsImageLoadingContent::LoadImage(const nsAString& aNewURI,
bool aForce,
bool aNotify,
ImageLoadType aImageLoadType)
ImageLoadType aImageLoadType,
nsIPrincipal* aTriggeringPrincipal)
{
// First, get a document (needed for security checks and the like)
nsIDocument* doc = GetOurOwnerDoc();
@ -931,7 +932,8 @@ nsImageLoadingContent::LoadImage(const nsAString& aNewURI,
NS_TryToSetImmutable(imageURI);
return LoadImage(imageURI, aForce, aNotify, aImageLoadType, false, doc);
return LoadImage(imageURI, aForce, aNotify, aImageLoadType, false, doc,
nsIRequest::LOAD_NORMAL, aTriggeringPrincipal);
}
nsresult
@ -941,7 +943,8 @@ nsImageLoadingContent::LoadImage(nsIURI* aNewURI,
ImageLoadType aImageLoadType,
bool aLoadStart,
nsIDocument* aDocument,
nsLoadFlags aLoadFlags)
nsLoadFlags aLoadFlags,
nsIPrincipal* aTriggeringPrincipal)
{
MOZ_ASSERT(!mIsStartingImageLoad, "some evil code is reentering LoadImage.");
if (mIsStartingImageLoad) {
@ -1041,7 +1044,7 @@ nsImageLoadingContent::LoadImage(nsIURI* aNewURI,
nsCOMPtr<nsIPrincipal> triggeringPrincipal;
bool result =
nsContentUtils::GetLoadingPrincipalForXULNode(content,
nsContentUtils::GetLoadingPrincipalForXULNode(content, aTriggeringPrincipal,
getter_AddRefs(triggeringPrincipal));
// If result is true, which means this node has specified 'loadingprincipal'

19
dom/base/nsImageLoadingContent.h
Просмотреть файл

@ -103,9 +103,12 @@ protected:
* @param aNotify If true, nsIDocumentObserver state change notifications
* will be sent as needed.
* @param aImageLoadType The ImageLoadType for this request
* @param aTriggeringPrincipal Optional parameter specifying the triggering
* principal to use for the image load
*/
nsresult LoadImage(const nsAString& aNewURI, bool aForce,
bool aNotify, ImageLoadType aImageLoadType);
bool aNotify, ImageLoadType aImageLoadType,
nsIPrincipal* aTriggeringPrincipal = nullptr);
/**
* ImageState is called by subclasses that are computing their content state.
@ -135,11 +138,23 @@ protected:
* This is purely a performance optimization.
* @param aLoadFlags Optional parameter specifying load flags to use for
* the image load
* @param aTriggeringPrincipal Optional parameter specifying the triggering
* principal to use for the image load
*/
nsresult LoadImage(nsIURI* aNewURI, bool aForce, bool aNotify,
ImageLoadType aImageLoadType, bool aLoadStart = true,
nsIDocument* aDocument = nullptr,
nsLoadFlags aLoadFlags = nsIRequest::LOAD_NORMAL);
nsLoadFlags aLoadFlags = nsIRequest::LOAD_NORMAL,
nsIPrincipal* aTriggeringPrincipal = nullptr);
nsresult LoadImage(nsIURI* aNewURI, bool aForce, bool aNotify,
ImageLoadType aImageLoadType,
nsIPrincipal* aTriggeringPrincipal)
{
return LoadImage(aNewURI, aForce, aNotify, aImageLoadType,
true, nullptr, nsIRequest::LOAD_NORMAL,
aTriggeringPrincipal);
}
/**
* helpers to get the document for this content (from the nodeinfo

9
dom/html/HTMLImageElement.cpp
Просмотреть файл

@ -420,6 +420,9 @@ HTMLImageElement::AfterMaybeChangeAttr(int32_t aNamespaceID, nsAtom* aName,
// initaiated by a user interaction.
mUseUrgentStartForChannel = EventStateManager::IsHandlingUserInput();
mSrcTriggeringPrincipal = nsContentUtils::GetAttrTriggeringPrincipal(
this, aValue.String(), aMaybeScriptedPrincipal);
if (InResponsiveMode()) {
if (mResponsiveSelector &&
mResponsiveSelector->Content() == this) {
@ -445,7 +448,8 @@ HTMLImageElement::AfterMaybeChangeAttr(int32_t aNamespaceID, nsAtom* aName,
// when aNotify is true, and 2) When this function is called by
// OnAttrSetButNotChanged, SetAttrAndNotify will not subsequently call
// UpdateState.
LoadImage(aValue.String(), true, aNotify, eImageLoadType_Normal);
LoadImage(aValue.String(), true, aNotify, eImageLoadType_Normal,
mSrcTriggeringPrincipal);
mNewRequestsWillNeedAnimationReset = false;
}
@ -1004,7 +1008,8 @@ HTMLImageElement::LoadSelectedImage(bool aForce, bool aNotify, bool aAlwaysLoad)
// valid responsive sources from either, per spec.
rv = LoadImage(src, aForce, aNotify,
HaveSrcsetOrInPicture() ? eImageLoadType_Imageset
: eImageLoadType_Normal);
: eImageLoadType_Normal,
mSrcTriggeringPrincipal);
}
}
mLastSelectedSource = selectedSource;

7
dom/html/HTMLImageElement.h
Просмотреть файл

@ -142,13 +142,13 @@ public:
{
SetHTMLAttr(nsGkAtoms::alt, aAlt, aError);
}
void GetSrc(nsAString& aSrc)
void GetSrc(nsAString& aSrc, nsIPrincipal&)
{
GetURIAttr(nsGkAtoms::src, nullptr, aSrc);
}
void SetSrc(const nsAString& aSrc, ErrorResult& aError)
void SetSrc(const nsAString& aSrc, nsIPrincipal& aTriggeringPrincipal, ErrorResult& aError)
{
SetHTMLAttr(nsGkAtoms::src, aSrc, aError);
SetHTMLAttr(nsGkAtoms::src, aSrc, aTriggeringPrincipal, aError);
}
void GetSrcset(nsAString& aSrcset)
{
@ -426,6 +426,7 @@ private:
bool mInDocResponsiveContent;
RefPtr<ImageLoadTask> mPendingImageLoadTask;
nsCOMPtr<nsIPrincipal> mSrcTriggeringPrincipal;
// Last URL that was attempted to load by this element.
nsCOMPtr<nsIURI> mLastSelectedSource;

2
dom/webidl/HTMLImageElement.webidl
Просмотреть файл

@ -21,7 +21,7 @@ interface nsIStreamListener;
interface HTMLImageElement : HTMLElement {
[CEReactions, SetterThrows]
attribute DOMString alt;
[CEReactions, SetterThrows]
[CEReactions, NeedsSubjectPrincipal, SetterThrows]
attribute DOMString src;
[CEReactions, SetterThrows]
attribute DOMString srcset;

4
image/test/browser/browser_docshell_type_editor.js
Просмотреть файл

@ -109,7 +109,9 @@ add_task(async function() {
resolve();
}
doc.body.appendChild(image);
image.src = "chrome://test1/skin/privileged.png";
// Set the src via wrappedJSObject so the load is triggered with
// the content page's principal rather than ours.
image.wrappedJSObject.src = "chrome://test1/skin/privileged.png";
});
});
});

4
toolkit/components/extensions/test/mochitest/test_ext_web_accessible_resources.html
Просмотреть файл

@ -27,7 +27,9 @@ async function testImageLoading(src, expectedAction) {
let imageLoadingPromise = new Promise((resolve, reject) => {
let cleanupListeners;
let testImage = document.createElement("img");
testImage.setAttribute("src", src);
// Set the src via wrappedJSObject so the load is triggered with the
// content page's principal rather than ours.
testImage.wrappedJSObject.setAttribute("src", src);
let loadListener = () => {
cleanupListeners();

521
toolkit/components/extensions/test/xpcshell/test_ext_contentscript_triggeringPrincipal.js Normal file
Просмотреть файл

@ -0,0 +1,521 @@
/* -*- Mode: indent-tabs-mode: nil; js-indent-level: 2 -*- */
/* vim: set sts=2 sw=2 et tw=80: */
"use strict";
/**
* Tests that various types of inline content elements initiate requests
* with the triggering pringipal of the caller that requested the load.
*/
const {escaped} = Cu.import("resource://testing-common/AddonTestUtils.jsm", {});
Cu.importGlobalProperties(["URL"]);
// Make sure media pre-loading is enabled on Android so that our <audio> and
// <video> elements trigger the expected requests.
Services.prefs.setBoolPref("media.autoplay.enabled", true);
Services.prefs.setIntPref("media.preload.default", 3);
// ExtensionContent.jsm needs to know when it's running from xpcshell,
// to use the right timeout for content scripts executed at document_idle.
ExtensionTestUtils.mockAppInfo();
const server = createHttpServer();
server.registerDirectory("/data/", do_get_file("data"));
/**
* Registers a static HTML document with the given content at the given
* path in our test HTTP server.
*
* @param {string} path
* @param {string} content
*/
function registerStaticPage(path, content) {
server.registerPathHandler(path, (request, response) => {
response.setStatusLine(request.httpVersion, 200, "OK");
response.setHeader("Content-Type", "text/html");
response.write(content);
});
}
const BASE_URL = `http://localhost:${server.identity.primaryPort}`;
/**
* A set of tags which are automatically closed in HTML documents, and
* do not require an explicit closing tag.
*/
const AUTOCLOSE_TAGS = new Set(["img"]);
/**
* An object describing the elements to create for a specific test.
*
* @typedef {object} ElementTestCase
* @property {Array} element
* A recursive array, describing the element to create, in the
* following format:
*
* ["tagname", {attr: "attrValue"},
* ["child-tagname", {attr: "value"}],
* ...]
*
* For each test, a DOM tree will be created with this structure.
* A source attribute, with the name `test.srcAttr` and a value
* based on the values of `test.src` and `opts`, will be added to
* the first leaf node encountered.
* @property {string} src
* The relative URL to use as the source of the element. Each
* load of this URL will have a separate set of query parameters
* appended to it, based on the values in `opts`.
* @property {string} [srcAttr = "src"]
* The attribute in which to store the element's source URL.
* @property {string} [srcAttr = "src"]
* The attribute in which to store the element's source URL.
* @property {boolean} [liveSrc = false]
* If true, changing the source attribute after the element has
* been inserted into the document is expected to trigger a new
* load, and that configuration will be tested.
*/
/**
* Options for this specific configuration of an element test.
*
* @typedef {object} ElementTestOptions
* @property {string} origin
* The origin with which the content is expected to load. This
* may be either "page" or "extension". The actual load of the
* URL will be tested against the computed origin strings for
* those two contexts.
* @property {string} source
* An arbitrary string which uniquely identifies the source of
* the load. For instance, each of these should have separate
* origin strings:
*
* - An element present in the initial page HTML.
* - An element injected by a page script belonging to web
* content.
* - An element injected by an extension content script.
*/
/**
* Data describing a test element, which can be used to create a
* corresponding DOM tree.
*
* @typedef {object} ElementData
* @property {string} tagName
* The tag name for the element.
* @property {object} attrs
* A property containing key-value pairs for each of the
* attribute's elements.
* @property {Array<ElementData>} children
* A possibly empty array of element data for child elements.
*/
/**
* Returns data necessary to create test elements for the given test,
* with the given options.
*
* @param {ElementTestCase} test
* An object describing the elements to create for a specific
* test. This element will be created under various
* circumstances, as described by `opts`.
* @param {ElementTestOptions} opts
* Options for this specific configuration of the test.
* @returns {ElementData}
*/
function getElementData(test, opts) {
let baseURL = typeof BASE_URL !== "undefined" ? BASE_URL : location.href;
let {srcAttr, src} = test;
// Absolutify the URL, so it passes sanity checks that ignore
// triggering principals for relative URLs.
src = new URL(src + `?origin=${encodeURIComponent(opts.origin)}&source=${encodeURIComponent(opts.source)}`,
baseURL).href;
let haveSrc = false;
function rec(element) {
let [tagName, attrs, ...children] = element;
if (children.length) {
children = children.map(rec);
} else if (!haveSrc) {
attrs = Object.assign({[srcAttr]: src}, attrs);
haveSrc = true;
}
return {tagName, attrs, children};
}
return rec(test.element);
}
/**
* The result type of the {@see createElement} function.
*
* @typedef {object} CreateElementResult
* @property {Element} elem
* The root element of the created DOM tree.
* @property {Element} srcElem
* The element in the tree to which the source attribute must be
* added.
* @property {string} src
* The value of the source element.
*/
/**
* Creates a DOM tree for a given test, in a given configuration, as
* understood by {@see getElementData}, but without the `test.srcAttr`
* attribute having been set. The caller must set the value of that
* attribute to the returned `src` value.
*
* There are many different ways most source values can be set
* (DOM attribute, DOM property, ...) and many different contexts
* (content script verses page script). Each test should be run with as
* many variants of these as possible.
*
* @param {ElementTestCase} test
* A test object, as passed to {@see getElementData}.
* @param {ElementTestOptions} opts
* An options object, as passed to {@see getElementData}.
* @returns {CreateElementResult}
*/
function createElement(test, opts) {
let srcElem;
let src;
function rec({tagName, attrs, children}) {
let elem = document.createElement(tagName);
for (let [key, val] of Object.entries(attrs)) {
if (key === test.srcAttr) {
srcElem = elem;
src = val;
} else {
elem.setAttribute(key, val);
}
}
for (let child of children) {
elem.appendChild(rec(child));
}
return elem;
}
let elem = rec(getElementData(test, opts));
return {elem, srcElem, src};
}
/**
* Converts the given test data, as accepted by {@see getElementData},
* to an HTML representation.
*
* @param {ElementTestCase} test
* A test object, as passed to {@see getElementData}.
* @param {ElementTestOptions} opts
* An options object, as passed to {@see getElementData}.
* @returns {string}
*/
function toHTML(test, opts) {
function rec({tagName, attrs, children}) {
let html = [`<${tagName}`];
for (let [key, val] of Object.entries(attrs)) {
html.push(escaped` ${key}="${val}"`);
}
html.push(">");
if (!AUTOCLOSE_TAGS.has(tagName)) {
for (let child of children) {
html.push(rec(child));
}
html.push(`</${tagName}>`);
}
return html.join("");
}
return rec(getElementData(test, opts));
}
/**
* A function which will be stringified, and run both as a page script
* and an extension content script, to test element injection under
* various configurations.
*
* @param {Array<ElementTestCase>} tests
* A list of test objects, as understood by {@see getElementData}.
* @param {ElementTestOptions} baseOpts
* A base options object, as understood by {@see getElementData},
* which represents the default values for injections under this
* context.
*/
function injectElements(tests, baseOpts) {
window.addEventListener("load", () => {
let overrideOpts = opts => Object.assign({}, baseOpts, opts);
let opts = baseOpts;
// Build the full element with setAttr, then inject.
for (let test of tests) {
let {elem, srcElem, src} = createElement(test, opts);
srcElem.setAttribute(test.srcAttr, src);
document.body.appendChild(elem);
}
// Build the full element with a property setter.
opts = overrideOpts({source: `${baseOpts.source}-prop`});
for (let test of tests) {
let {elem, srcElem, src} = createElement(test, opts);
srcElem[test.srcAttr] = src;
document.body.appendChild(elem);
}
// Build the element without the source attribute, inject, then set
// it.
opts = overrideOpts({source: `${baseOpts.source}-attr-after-inject`});
for (let test of tests) {
let {elem, srcElem, src} = createElement(test, opts);
document.body.appendChild(elem);
srcElem.setAttribute(test.srcAttr, src);
}
// Build the element without the source attribute, inject, then set
// the corresponding property.
opts = overrideOpts({source: `${baseOpts.source}-prop-after-inject`});
for (let test of tests) {
let {elem, srcElem, src} = createElement(test, opts);
document.body.appendChild(elem);
srcElem[test.srcAttr] = src;
}
// Build the element with a relative, rather than absolute, URL, and
// make sure it always has the page origin.
opts = overrideOpts({source: `${baseOpts.source}-relative-url`,
origin: "page"});
for (let test of tests) {
let {elem, srcElem, src} = createElement(test, opts);
// Note: This assumes that the content page and the src URL are
// always at the server root. If that changes, the test will
// timeout waiting for matching requests.
src = src.replace(/.*\//, "");
srcElem.setAttribute(test.srcAttr, src);
document.body.appendChild(elem);
}
// If we're in an extension content script, do some additional checks.
if (typeof browser !== "undefined") {
// Build the element without the source attribute, inject, then
// have content set it.
opts = overrideOpts({source: `${baseOpts.source}-content-attr-after-inject`,
origin: "page"});
for (let test of tests) {
let {elem, srcElem, src} = createElement(test, opts);
document.body.appendChild(elem);
window.wrappedJSObject.elem = srcElem;
window.wrappedJSObject.eval(`elem.setAttribute(${uneval(test.srcAttr)}, ${uneval(src)})`);
}
// Build the full element, then let content inject.
opts = overrideOpts({source: `${baseOpts.source}-content-inject-after-attr`});
for (let test of tests) {
let {elem, srcElem, src} = createElement(test, opts);
srcElem.setAttribute(test.srcAttr, src);
window.wrappedJSObject.elem = elem;
window.wrappedJSObject.eval(`document.body.appendChild(elem)`);
}
// Build the element without the source attribute, let content set
// it, then inject.
opts = overrideOpts({source: `${baseOpts.source}-inject-after-content-attr`,
origin: "page"});
for (let test of tests) {
let {elem, srcElem, src} = createElement(test, opts);
window.wrappedJSObject.elem = srcElem;
window.wrappedJSObject.eval(`elem.setAttribute(${uneval(test.srcAttr)}, ${uneval(src)})`);
document.body.appendChild(elem);
}
// Build the element with a dummy source attribute, inject, then
// let content change it.
opts = overrideOpts({source: `${baseOpts.source}-content-change-after-inject`,
origin: "page"});
for (let test of tests) {
let {elem, srcElem, src} = createElement(test, opts);
srcElem.setAttribute(test.srcAttr, "meh.txt");
document.body.appendChild(elem);
window.wrappedJSObject.elem = srcElem;
window.wrappedJSObject.eval(`elem.setAttribute(${uneval(test.srcAttr)}, ${uneval(src)})`);
}
}
}, {once: true});
}
/**
* Stringifies the {@see injectElements} function for use as a page or
* content script.
*
* @param {Array<ElementTestCase>} tests
* A list of test objects, as understood by {@see getElementData}.
* @param {ElementTestOptions} opts
* A base options object, as understood by {@see getElementData},
* which represents the default values for injections under this
* context.
* @returns {string}
*/
function getInjectionScript(tests, opts) {
return `
${getElementData}
${createElement}
(${injectElements})(${JSON.stringify(tests)},
${JSON.stringify(opts)});
`;
}
/**
* Awaits the content loads for each of the given tests, with each of
* the given sources, and checks that their origin strings are as
* expected.
*
* @param {Array<ElementTestCase>} tests
* A list of tests, as understood by {@see getElementData}.
* @param {Object<string, object>} sources
* A set of sources for which each of the above tests is expected
* to generate one request, if each of the properties in the
* value object matches the value of the same property in the
* test object.
* @param {object<string, string>} origins
* A mapping of origin parameters as they appear in URL query
* strings to the origin strings returned by corresponding
* principals. These values are used to test requests against
* their expected origins.
* @returns {Promise}
* A promise which resolves when all requests have been
* processed.
*/
function awaitLoads(tests, sources, origins) {
let expectedURLs = new Set();
for (let test of tests) {
for (let [source, attrs] of Object.entries(sources)) {
if (Object.keys(attrs).every(attr => attrs[attr] === test[attr])) {
let urlPrefix = `${BASE_URL}/${test.src}?source=${source}`;
expectedURLs.add(urlPrefix);
}
}
}
return new Promise(resolve => {
let observer = (channel, topic, data) => {
channel.QueryInterface(Ci.nsIChannel);
let url = new URL(channel.URI.spec);
let origin = url.searchParams.get("origin");
url.searchParams.delete("origin");
if (expectedURLs.has(url.href)) {
expectedURLs.delete(url.href);
equal(channel.loadInfo.triggeringPrincipal.origin,
origins[origin],
`Got expected origin for URL ${channel.URI.spec}`);
if (!expectedURLs.size) {
Services.obs.removeObserver(observer, "http-on-modify-request");
resolve();
}
}
};
Services.obs.addObserver(observer, "http-on-modify-request");
});
}
add_task(async function test_contentscript_triggeringPrincipals() {
/**
* A list of tests to run in each context, as understood by
* {@see getElementData}.
*/
const TESTS = [
{
element: ["img", {}],
src: "img.png",
},
];
/**
* A set of sources for which each of the above tests is expected to
* generate one request, if each of the properties in the value object
* matches the value of the same property in the test object.
*/
const SOURCES = {
"contentScript": {},
"contentScript-attr-after-inject": {liveSrc: true},
"contentScript-content-attr-after-inject": {liveSrc: true},
"contentScript-content-change-after-inject": {liveSrc: true},
"contentScript-content-inject-after-attr": {},
"contentScript-inject-after-content-attr": {},
"contentScript-prop": {},
"contentScript-prop-after-inject": {},
"contentScript-relative-url": {},
"pageHTML": {},
"pageScript": {},
"pageScript-attr-after-inject": {},
"pageScript-prop": {},
"pageScript-prop-after-inject": {},
"pageScript-relative-url": {},
};
for (let test of TESTS) {
if (!test.srcAttr) {
test.srcAttr = "src";
}
if (!("liveSrc" in test)) {
test.liveSrc = true;
}
}
registerStaticPage("/page.html", `<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title></title>
<script>
${getInjectionScript(TESTS, {source: "pageScript", origin: "page"})}
</script>
</head>
<body>
${TESTS.map(test => toHTML(test, {source: "pageHTML", origin: "page"})).join("\n ")}
</body>
</html>`);
let extension = ExtensionTestUtils.loadExtension({
manifest: {
content_scripts: [{
"matches": ["http://*/page.html"],
"run_at": "document_start",
"js": ["content_script.js"],
}],
},
files: {
"content_script.js": getInjectionScript(TESTS, {source: "contentScript", origin: "extension"}),
},
});
await extension.startup();
const pageURL = `${BASE_URL}/page.html`;
const pageURI = Services.io.newURI(pageURL);
let origins = {
page: Services.scriptSecurityManager.createCodebasePrincipal(pageURI, {}).origin,
extension: Cu.getObjectPrincipal(Cu.Sandbox([extension.extension.principal, pageURL])).origin,
};
let finished = awaitLoads(TESTS, SOURCES, origins);
let contentPage = await ExtensionTestUtils.loadContentPage(pageURL);
await finished;
await extension.unload();
await contentPage.close();
});

1
toolkit/components/extensions/test/xpcshell/xpcshell-content.ini
Просмотреть файл

@ -3,4 +3,5 @@ skip-if = os == "android" || (os == "win" && debug)
[test_ext_i18n_css.js]
[test_ext_contentscript.js]
[test_ext_contentscript_scriptCreated.js]
[test_ext_contentscript_triggeringPrincipal.js]
[test_ext_contentscript_xrays.js]