53 lines
1.7 KiB
JavaScript
53 lines
1.7 KiB
JavaScript
/* Any copyright is dedicated to the Public Domain.
|
|
http://creativecommons.org/publicdomain/zero/1.0/ */
|
|
|
|
/*
|
|
* Tests the "Is origin potentially trustworthy?" logic from
|
|
* <https://w3c.github.io/webappsec-secure-contexts/#is-origin-trustworthy>.
|
|
*/
|
|
|
|
const { NetUtil } = ChromeUtils.importESModule(
|
|
"resource://gre/modules/NetUtil.sys.mjs"
|
|
);
|
|
|
|
Services.prefs.setCharPref(
|
|
"dom.securecontext.allowlist",
|
|
"example.net,example.org"
|
|
);
|
|
|
|
Services.prefs.setBoolPref("dom.securecontext.allowlist_onions", false);
|
|
|
|
add_task(async function test_isOriginPotentiallyTrustworthy() {
|
|
for (let [uriSpec, expectedResult] of [
|
|
["http://example.com/", false],
|
|
["https://example.com/", true],
|
|
["http://localhost/", true],
|
|
["http://localhost.localhost/", true],
|
|
["http://127.0.0.1/", true],
|
|
["file:///", true],
|
|
["resource:///", true],
|
|
["moz-extension://", true],
|
|
["wss://example.com/", true],
|
|
["about:config", false],
|
|
["http://example.net/", true],
|
|
["ws://example.org/", true],
|
|
["chrome://example.net/content/messenger.xul", false],
|
|
["http://1234567890abcdef.onion/", false],
|
|
]) {
|
|
let uri = NetUtil.newURI(uriSpec);
|
|
let principal = Services.scriptSecurityManager.createContentPrincipal(
|
|
uri,
|
|
{}
|
|
);
|
|
Assert.equal(principal.isOriginPotentiallyTrustworthy, expectedResult);
|
|
}
|
|
// And now let's test whether .onion sites are properly treated when
|
|
// allowlisted, see bug 1382359.
|
|
Services.prefs.setBoolPref("dom.securecontext.allowlist_onions", true);
|
|
let uri = NetUtil.newURI("http://1234567890abcdef.onion/");
|
|
let principal = Services.scriptSecurityManager.createContentPrincipal(
|
|
uri,
|
|
{}
|
|
);
|
|
Assert.equal(principal.isOriginPotentiallyTrustworthy, true);
|
|
});
|