summaryrefslogtreecommitdiffstats
path: root/testing/web-platform/tests/cookies/domain/support
diff options
context:
space:
mode:
Diffstat (limited to 'testing/web-platform/tests/cookies/domain/support')
-rw-r--r--testing/web-platform/tests/cookies/domain/support/idn-child.sub.https.html72
-rw-r--r--testing/web-platform/tests/cookies/domain/support/idn.py61
2 files changed, 133 insertions, 0 deletions
diff --git a/testing/web-platform/tests/cookies/domain/support/idn-child.sub.https.html b/testing/web-platform/tests/cookies/domain/support/idn-child.sub.https.html
new file mode 100644
index 0000000000..d3510959fb
--- /dev/null
+++ b/testing/web-platform/tests/cookies/domain/support/idn-child.sub.https.html
@@ -0,0 +1,72 @@
+<!DOCTYPE html>
+<html>
+<head>
+ <script src="/resources/testharness.js"></script>
+ <script src="/resources/testdriver.js"></script>
+ <script src="/resources/testdriver-vendor.js"></script>
+ <script src="/cookies/resources/cookie-test.js"></script>
+</head>
+<body>
+ <script>
+ async function assert_cookie(response, cookie) {
+ const get = await response.text();
+ assert_equals(get, cookie);
+ assert_equals(document.cookie, cookie);
+ }
+
+ async function assert_no_cookie(response) {
+ const get = await response.text();
+ assert_equals(get, "no cookies");
+ assert_equals(document.cookie, "");
+ }
+
+ promise_test(async t => {
+ t.add_cleanup(async () => { await fetch("idn.py?delete-utf8&host={{host}}") });
+ let response = await fetch("idn.py?set-utf8&host={{host}}");
+ assert_equals(await response.text(), "set");
+ response = await fetch("idn.py?get&host={{host}}");
+ await assert_no_cookie(response);
+ }, "UTF8-encoded IDN in domain attribute");
+
+ promise_test(async t => {
+ t.add_cleanup(async () => { await fetch("idn.py?delete-utf8-dot&host={{host}}") });
+ let response = await fetch("idn.py?set-utf8-dot&host={{host}}");
+ assert_equals(await response.text(), "set");
+ response = await fetch("idn.py?get&host={{host}}");
+ await assert_no_cookie(response);
+ }, "UTF8-encoded IDN with non-ASCII dot in domain attribute");
+
+ promise_test(async t => {
+ t.add_cleanup(async () => { await fetch("idn.py?delete-wrong-utf8&host={{host}}") });
+ let response = await fetch("idn.py?set-wrong-utf8&host={{host}}");
+ assert_equals(await response.text(), "set");
+ response = await fetch("idn.py?get&host={{host}}");
+ await assert_no_cookie(response);
+ }, "wrong UTF8-encoded IDN in domain attribute");
+
+ promise_test(async t => {
+ t.add_cleanup(async () => { await fetch("idn.py?delete-punycode&host={{host}}") });
+ let response = await fetch("idn.py?set-punycode&host={{host}}");
+ assert_equals(await response.text(), "set");
+ response = await fetch("idn.py?get&host={{host}}");
+ await assert_cookie(response, "punycode=set");
+ }, "punycode IDN in domain attribute");
+
+ promise_test(async t => {
+ t.add_cleanup(async () => { await fetch("idn.py?delete-wrong-punycode&host={{host}}") });
+ let response = await fetch("idn.py?set-wrong-punycode&host={{host}}");
+ assert_equals(await response.text(), "set");
+ response = await fetch("idn.py?get&host={{host}}");
+ await assert_no_cookie(response);
+ }, "wrong punycode IDN in domain attribute");
+
+ promise_test(async t => {
+ t.add_cleanup(async () => { await fetch("idn.py?delete-invalid-byte&host={{host}}") });
+ let response = await fetch("idn.py?set-invalid-byte&host={{host}}");
+ assert_equals(await response.text(), "set");
+ response = await fetch("idn.py?get&host={{host}}");
+ await assert_no_cookie(response);
+ }, "IDN with invalid UTF-8 bytes in domain attribute");
+ </script>
+</body>
+</html>
diff --git a/testing/web-platform/tests/cookies/domain/support/idn.py b/testing/web-platform/tests/cookies/domain/support/idn.py
new file mode 100644
index 0000000000..d75ed056f5
--- /dev/null
+++ b/testing/web-platform/tests/cookies/domain/support/idn.py
@@ -0,0 +1,61 @@
+# élève.
+utf8_subdomain = b"Domain=\xC3\xA9\x6C\xC3\xA8\x76\x65."
+# élève。
+utf8_dot_subdomain = b"Domain=\xC3\xA9\x6C\xC3\xA8\x76\x65\xE3\x80\x82"
+# élève.
+punycode_subdomain = b"Domain=xn--lve-6lad."
+# ÿlève.
+wrong_utf8_subdomain = b"Domain=\xC3\xBF\x6C\xC3\xA8\x76\x65."
+# ÿlève.
+wrong_punycode_subdomain = b"Domain=xn--lve-6la7i."
+# élève with invalid FF byte at the end
+invalid_byte_subdomain = b"Domain=\xC3\xA9\x6C\xC3\xA8\x76\x65\xFF."
+
+def main(request, response):
+ host = request.GET.get(b"host")
+
+ if b"set-utf8" in request.GET:
+ response.headers.append(b"Set-Cookie", b"utf8=set;" + utf8_subdomain + host)
+ response.content = "set"
+ if b"set-utf8-dot" in request.GET:
+ response.headers.append(b"Set-Cookie", b"utf8-dot=set;" + utf8_dot_subdomain + host)
+ response.content = "set"
+ elif b"set-wrong-utf8" in request.GET:
+ response.headers.append(b"Set-Cookie", b"wrong-utf8=set;" + wrong_utf8_subdomain + host)
+ response.content = "set"
+ elif b"set-punycode" in request.GET:
+ response.headers.append(b"Set-Cookie", b"punycode=set;" + punycode_subdomain + host)
+ response.content = "set"
+ elif b"set-wrong-punycode" in request.GET:
+ response.headers.append(b"Set-Cookie", b"wrong-punycode=set;" + wrong_punycode_subdomain + host)
+ response.content = "set"
+ elif b"set-invalid-byte" in request.GET:
+ response.headers.append(b"Set-Cookie", b"invalid-byte=set;" + invalid_byte_subdomain + host)
+ response.content = "set"
+
+ elif b"get" in request.GET:
+ if b"Cookie" in request.headers:
+ response.content = request.headers[b"Cookie"]
+ else:
+ response.content = "no cookies"
+
+ elif b"delete-utf8" in request.GET:
+ response.headers.append(b"Set-Cookie", b"utf8=unset;Max-Age=0;" + utf8_subdomain + host)
+ response.content = "delete"
+ elif b"delete-utf8-dot" in request.GET:
+ response.headers.append(b"Set-Cookie", b"utf8-dot=unset;Max-Age=0;" + utf8_dot_subdomain + host)
+ response.content = "delete"
+ elif b"delete-wrong-utf8" in request.GET:
+ response.headers.append(b"Set-Cookie", b"wrong-utf8=unset;Max-Age=0;" + wrong_utf8_subdomain + host)
+ response.content = "delete"
+ elif b"delete-punycode" in request.GET:
+ response.headers.append(b"Set-Cookie", b"punycode=unset;Max-Age=0;" + punycode_subdomain + host)
+ response.content = "delete"
+ elif b"delete-wrong-punycode" in request.GET:
+ response.headers.append(b"Set-Cookie", b"wrong-punycode=unset;Max-Age=0;" + wrong_punycode_subdomain + host)
+ response.content = "delete"
+ elif b"delete-invalid-byte" in request.GET:
+ response.headers.append(b"Set-Cookie", b"invalid-byte=unset;Max-Age=0;" + invalid_byte_subdomain + host)
+ response.content = "delete"
+
+ response.headers.append(b"Content-Type", b"text/plain")
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-18 04:42:08 +0000