diff options
| author | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-04-07 19:33:14 +0000 |
|---|---|---|
| committer | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-04-07 19:33:14 +0000 |
| commit | 36d22d82aa202bb199967e9512281e9a53db42c9 (patch) | |
| tree | 105e8c98ddea1c1e4784a60a5a6410fa416be2de /dom/base/test/test_sanitize_xhr.html | |
| parent | Initial commit. (diff) | |
| download | firefox-esr-36d22d82aa202bb199967e9512281e9a53db42c9.tar.xz firefox-esr-36d22d82aa202bb199967e9512281e9a53db42c9.zip | |
Adding upstream version 115.7.0esr.upstream/115.7.0esr
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'dom/base/test/test_sanitize_xhr.html')
| -rw-r--r-- | dom/base/test/test_sanitize_xhr.html | 35 |
1 files changed, 35 insertions, 0 deletions
diff --git a/dom/base/test/test_sanitize_xhr.html b/dom/base/test/test_sanitize_xhr.html new file mode 100644 index 0000000000..3cc0845916 --- /dev/null +++ b/dom/base/test/test_sanitize_xhr.html @@ -0,0 +1,35 @@ +<!DOCTYPE html> +<!-- + https://bugzilla.mozilla.org/show_bug.cgi?id=1673164 +--> +<html> +<head> + <title>Test for sanitizing with XHR-loaded owner doc</title> + <script src="chrome://mochikit/content/tests/SimpleTest/SimpleTest.js"></script> + <link rel="stylesheet" + type="text/css" + href="chrome://mochikit/content/tests/SimpleTest/test.css"> + <script type="text/javascript" src="manifest.js"></script> +</head> +<body> +<pre id="test"> +<script class="testbody" type="text/javascript"> + +var url = "http://mochi.test:8888/chrome/dom/base/test/file_empty.html" +var req = new XMLHttpRequest(); +req.open("GET", url, false); +req.overrideMimeType("text/xml"); +req.send(null); +var doc = req.responseXML; +var pu = Cc["@mozilla.org/parserutils;1"].createInstance(Ci.nsIParserUtils); +var flags = pu.SanitizerDropForms | pu.SanitizerDropMedia; +var uri = SpecialPowers.Services.io.newURI(url); +var context = doc.createElement("div"); +var fragment = pu.parseFragment("<form><img onerror=alert(1)><p></p></form>", flags, false, uri, context); + +is(fragment.firstChild.localName, "p", "Should have only p."); + +</script> +</pre> +</body> +</html> |