diff options
Diffstat (limited to 'testing/web-platform/meta/content-security-policy/navigate-to')
31 files changed, 146 insertions, 0 deletions
diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/__dir__.ini b/testing/web-platform/meta/content-security-policy/navigate-to/__dir__.ini new file mode 100644 index 0000000000..a2f3352956 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/__dir__.ini @@ -0,0 +1,4 @@ +prefs: [security.csp.enableNavigateTo:true] +disabled: + if os == "win": https://bugzilla.mozilla.org/show_bug.cgi?id=1450635 +lsan-allowed: [Alloc, AllocateProtoAndIfaceCache, CallFromStack, CallJSNative, CallResolveOp, DelazifyCanonicalScriptedFunction, EnterJit, InternalCall, JS::Call, JSFunction::delazifyLazilyInterpretedFunction, MakeLinearStringForAtomization, ProtoAndIfaceCache, addDataProperty, alloc::raw_vec::finish_grow, applyImpl, js::RunScript, js::frontend::CompilationStencil::instantiateStencilsAfterPreparation, js_new, js_pod_arena_malloc, maybeCreateCacheForLookup, mozilla::EventDispatcher::Dispatch, mozilla::EventListenerManager::HandleEventInternal, mozilla::TaskController::DoExecuteNextTaskOnlyMainThreadInternal, mozilla::detail::HashTable, mozilla::detail::RunnableFunction, mozilla::dom::PContentChild::OnMessageReceived, mozilla::dom::Performance::CreateForMainThread, mozilla::dom::PerformanceMainThread::CreateNavigationTimingEntry, mozilla::dom::ProtoAndIfaceCache::PageTableCache::EntrySlotOrCreate, mozilla::dom::ScriptLoader::CreateLoadRequest, mozilla::dom::ScriptLoader::EvaluateScript, mozilla::intl::FluentBundle::Constructor, mozilla::intl::FluentResource::Constructor, mozilla::ipc::MessageChannel::RunMessage, mozilla::net::nsStandardURL::TemplatedMutator, nsDocumentOpenInfo::TryContentListener, nsDynamicAtom::Create, nsPresContext::NotifyContentfulPaint, nsThread::ProcessNextEvent, operator, search, unknown stack] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/child-navigates-parent-allowed.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/child-navigates-parent-allowed.html.ini new file mode 100644 index 0000000000..d78f9d922d --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/child-navigates-parent-allowed.html.ini @@ -0,0 +1,8 @@ +[child-navigates-parent-allowed.html] + disabled: + if os == "linux": https://bugzilla.mozilla.org/show_bug.cgi?id=1450660 + + expected: TIMEOUT + + [Test that the child can navigate the parent because the relevant policy belongs to the navigation initiator (in this case the child, which has the policy `navigate-to 'self'`)] + expected: NOTRUN diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/child-navigates-parent-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/child-navigates-parent-blocked.sub.html.ini new file mode 100644 index 0000000000..1c5507d9a7 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/child-navigates-parent-blocked.sub.html.ini @@ -0,0 +1,8 @@ +[child-navigates-parent-blocked.sub.html] + expected: TIMEOUT + [Violation report status OK.] + expected: FAIL + + [Test that the child can't navigate the parent because the relevant policy belongs to the navigation initiator (in this case the child which has the policy `navigate-to 'none'`)] + expected: NOTRUN + diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/form-action/form-action-blocks-navigate-to-allows.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/form-action/form-action-blocks-navigate-to-allows.sub.html.ini new file mode 100644 index 0000000000..9e2a1d94a3 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/form-action/form-action-blocks-navigate-to-allows.sub.html.ini @@ -0,0 +1,4 @@ +[form-action-blocks-navigate-to-allows.sub.html] + [Test that form-action overrides navigate-to when present.] + expected: FAIL + diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/form-action/form-action-blocks-navigate-to-blocks.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/form-action/form-action-blocks-navigate-to-blocks.sub.html.ini new file mode 100644 index 0000000000..60129ed9d5 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/form-action/form-action-blocks-navigate-to-blocks.sub.html.ini @@ -0,0 +1,5 @@ +[form-action-blocks-navigate-to-blocks.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] + [Test that form-action overrides navigate-to when present.] + expected: FAIL diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/form-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/form-blocked.sub.html.ini new file mode 100644 index 0000000000..2f1bbca0b8 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/form-blocked.sub.html.ini @@ -0,0 +1,9 @@ +[form-blocked.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] + [Test that the child iframe navigation is not allowed] + expected: FAIL + + [Violation report status OK.] + expected: + if (os == "android") and not debug: [PASS, FAIL] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/form-cross-origin-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/form-cross-origin-blocked.sub.html.ini new file mode 100644 index 0000000000..31c50b2880 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/form-cross-origin-blocked.sub.html.ini @@ -0,0 +1,5 @@ +[form-cross-origin-blocked.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] + [Test that the child iframe navigation is not allowed] + expected: FAIL diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/form-redirected-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/form-redirected-blocked.sub.html.ini new file mode 100644 index 0000000000..e13832a880 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/form-redirected-blocked.sub.html.ini @@ -0,0 +1,3 @@ +[form-redirected-blocked.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/href-location-allowed.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-allowed.html.ini new file mode 100644 index 0000000000..0416d153e3 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-allowed.html.ini @@ -0,0 +1,3 @@ +[href-location-allowed.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/href-location-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-blocked.sub.html.ini new file mode 100644 index 0000000000..a5b8511658 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-blocked.sub.html.ini @@ -0,0 +1,6 @@ +[href-location-blocked.sub.html] + [Violation report status OK.] + expected: + if (os == "android") and debug and swgl: [PASS, FAIL] + if (os == "android") and debug and not swgl: [FAIL, PASS] + if (os == "android") and not debug: [PASS, FAIL] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/href-location-cross-origin-allowed.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-cross-origin-allowed.sub.html.ini new file mode 100644 index 0000000000..8958f54dde --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-cross-origin-allowed.sub.html.ini @@ -0,0 +1,3 @@ +[href-location-cross-origin-allowed.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/href-location-cross-origin-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-cross-origin-blocked.sub.html.ini new file mode 100644 index 0000000000..809f776856 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-cross-origin-blocked.sub.html.ini @@ -0,0 +1,3 @@ +[href-location-cross-origin-blocked.sub.html] + disabled: + if os == "android": Passes on debug but fails on optimized diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/href-location-redirected-allowed.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-redirected-allowed.html.ini new file mode 100644 index 0000000000..56897589aa --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-redirected-allowed.html.ini @@ -0,0 +1,3 @@ +[href-location-redirected-allowed.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/href-location-redirected-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-redirected-blocked.sub.html.ini new file mode 100644 index 0000000000..e65075322e --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/href-location-redirected-blocked.sub.html.ini @@ -0,0 +1,3 @@ +[href-location-redirected-blocked.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/link-click-allowed.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-allowed.html.ini new file mode 100644 index 0000000000..31bdc49265 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-allowed.html.ini @@ -0,0 +1,3 @@ +[link-click-allowed.html] + expected: + if (os == "android") and fission: [TIMEOUT, OK] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/link-click-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-blocked.sub.html.ini new file mode 100644 index 0000000000..69decb5e51 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-blocked.sub.html.ini @@ -0,0 +1,11 @@ +[link-click-blocked.sub.html] + expected: + if fission and (os == "linux") and not debug: [OK, TIMEOUT] + if fission and (os == "android"): [OK, TIMEOUT] + [Test that the child iframe navigation is not allowed] + expected: + if (os == "linux") and not debug and fission: [PASS, NOTRUN] + + [Violation report status OK.] + expected: + if (os == "linux") and not debug and fission: [PASS, FAIL] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/link-click-cross-origin-allowed.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-cross-origin-allowed.sub.html.ini new file mode 100644 index 0000000000..13f2647975 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-cross-origin-allowed.sub.html.ini @@ -0,0 +1,3 @@ +[link-click-cross-origin-allowed.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/link-click-cross-origin-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-cross-origin-blocked.sub.html.ini new file mode 100644 index 0000000000..ce667bffc4 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-cross-origin-blocked.sub.html.ini @@ -0,0 +1,3 @@ +[link-click-cross-origin-blocked.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/link-click-redirected-allowed.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-redirected-allowed.html.ini new file mode 100644 index 0000000000..3d09bedd57 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-redirected-allowed.html.ini @@ -0,0 +1,5 @@ +[link-click-redirected-allowed.html] + disabled: + if os == "win": Bug 1440584 + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/link-click-redirected-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-redirected-blocked.sub.html.ini new file mode 100644 index 0000000000..dead79e0d0 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/link-click-redirected-blocked.sub.html.ini @@ -0,0 +1,4 @@ +[link-click-redirected-blocked.sub.html] + [Violation report status OK.] + expected: + if debug and (os == "linux") and not fission and not swgl: [PASS, FAIL] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-allowed.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-allowed.html.ini new file mode 100644 index 0000000000..6398d9b5f8 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-allowed.html.ini @@ -0,0 +1,3 @@ +[meta-refresh-allowed.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-blocked.sub.html.ini new file mode 100644 index 0000000000..d54aa48aaf --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-blocked.sub.html.ini @@ -0,0 +1,3 @@ +[meta-refresh-blocked.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-cross-origin-allowed.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-cross-origin-allowed.sub.html.ini new file mode 100644 index 0000000000..6c67fc19ce --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-cross-origin-allowed.sub.html.ini @@ -0,0 +1,3 @@ +[meta-refresh-cross-origin-allowed.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-cross-origin-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-cross-origin-blocked.sub.html.ini new file mode 100644 index 0000000000..07ff849d4d --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-cross-origin-blocked.sub.html.ini @@ -0,0 +1,3 @@ +[meta-refresh-cross-origin-blocked.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-redirected-allowed.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-redirected-allowed.html.ini new file mode 100644 index 0000000000..5beb83a1c4 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-redirected-allowed.html.ini @@ -0,0 +1,3 @@ +[meta-refresh-redirected-allowed.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-redirected-blocked.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-redirected-blocked.sub.html.ini new file mode 100644 index 0000000000..35264132b1 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/meta-refresh-redirected-blocked.sub.html.ini @@ -0,0 +1,3 @@ +[meta-refresh-redirected-blocked.sub.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/parent-navigates-child-allowed.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/parent-navigates-child-allowed.html.ini new file mode 100644 index 0000000000..b169d939dc --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/parent-navigates-child-allowed.html.ini @@ -0,0 +1,3 @@ +[parent-navigates-child-allowed.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/parent-navigates-child-blocked.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/parent-navigates-child-blocked.html.ini new file mode 100644 index 0000000000..d4c0fa1e3c --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/parent-navigates-child-blocked.html.ini @@ -0,0 +1,3 @@ +[parent-navigates-child-blocked.html] + expected: + if (os == "android") and fission: [OK, TIMEOUT] diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/spv-only-sent-to-initiator.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/spv-only-sent-to-initiator.sub.html.ini new file mode 100644 index 0000000000..d7d5d787aa --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/spv-only-sent-to-initiator.sub.html.ini @@ -0,0 +1,17 @@ +[spv-only-sent-to-initiator.sub.html] + expected: + if fission and (os == "linux") and debug and not swgl: [TIMEOUT, OK] + if fission and (os == "linux") and debug and swgl: [TIMEOUT, OK] + if fission and (os == "linux") and not debug and (processor == "x86_64"): [TIMEOUT, OK] + if fission and (os == "mac") and debug: [TIMEOUT, OK] + [OK, TIMEOUT] + [Test that no spv event is raised] + expected: + if fission and (os == "linux") and not debug and (processor == "x86_64"): [NOTRUN, FAIL] + if fission and (os == "linux") and debug and not swgl: [NOTRUN, FAIL] + if fission and (os == "linux") and debug and swgl: [NOTRUN, FAIL] + if fission and (os == "mac") and debug: [NOTRUN, FAIL] + [FAIL, NOTRUN] + + [Violation report status OK.] + expected: FAIL diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/unsafe-allow-redirects/allowed-end-of-chain-because-of-same-origin.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/unsafe-allow-redirects/allowed-end-of-chain-because-of-same-origin.sub.html.ini new file mode 100644 index 0000000000..50b6964711 --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/unsafe-allow-redirects/allowed-end-of-chain-because-of-same-origin.sub.html.ini @@ -0,0 +1,3 @@ +[allowed-end-of-chain-because-of-same-origin.sub.html] + disabled: + if (os == "android"): https://bugzilla.mozilla.org/show_bug.cgi?id=1511193 diff --git a/testing/web-platform/meta/content-security-policy/navigate-to/unsafe-allow-redirects/blocked-end-of-chain.sub.html.ini b/testing/web-platform/meta/content-security-policy/navigate-to/unsafe-allow-redirects/blocked-end-of-chain.sub.html.ini new file mode 100644 index 0000000000..d912e96f1d --- /dev/null +++ b/testing/web-platform/meta/content-security-policy/navigate-to/unsafe-allow-redirects/blocked-end-of-chain.sub.html.ini @@ -0,0 +1,6 @@ +[blocked-end-of-chain.sub.html] + expected: TIMEOUT + + [Test that the child iframe navigation is blocked] + expected: NOTRUN + |