1 files changed, 36 insertions, 0 deletions

diff --git a/testing/web-platform/tests/trusted-types/eval-csp-tt-no-default-policy.tentative.html b/testing/web-platform/tests/trusted-types/eval-csp-tt-no-default-policy.tentative.html
new file mode 100644
index 0000000000..8c4aba11ec
--- /dev/null
+++ b/testing/web-platform/tests/trusted-types/eval-csp-tt-no-default-policy.tentative.html
@@ -0,0 +1,36 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <script nonce="abc" src="/resources/testharness.js"></script>
+  <script nonce="abc" src="/resources/testharnessreport.js"></script>
+  <script nonce="abc" src="support/helper.sub.js"></script>
+  <meta http-equiv="Content-Security-Policy" content="require-trusted-types-for 'script';">
+</head>
+<body>
+<script>
+  const p = trustedTypes.createPolicy("p", {createScript: s => s});
+
+  test(t => {
+    assert_equals(eval(p.createScript('1+1')), 2);
+  }, "eval of TrustedScript works.");
+
+  test(t => {
+    assert_throws_js(EvalError, _ => eval('1+1'));
+  }, "eval of string fails.");
+
+  test(t => {
+    assert_equals(eval(42), 42);
+    assert_object_equals(eval({}), {});
+    assert_equals(eval(null), null);
+    assert_equals(eval(undefined), undefined);
+   }, "eval of !TrustedScript and !string works.");
+
+  test(t => {
+    assert_equals(new Function(p.createScript('return 1+1'))(), 2);
+  }, "Function constructor of TrustedScript works.");
+
+  test(t => {
+    assert_throws_js(EvalError, _ => new Function('return 1+1')());
+  }, "Function constructor of string fails.");
+</script>
+