The Tor Browser / file diff

diff: extensions/cookie/test/unit/test_permmanager_idn.js

extensions/cookie/test/unit/test_permmanager_idn.js

changeset 0
6474c204b198
     1.1 --- /dev/null	Thu Jan 01 00:00:00 1970 +0000
     1.2 +++ b/extensions/cookie/test/unit/test_permmanager_idn.js	Wed Dec 31 06:09:35 2014 +0100
     1.3 @@ -0,0 +1,48 @@
     1.4 +/* Any copyright is dedicated to the Public Domain.
     1.5 +   http://creativecommons.org/publicdomain/zero/1.0/ */
     1.6 +
     1.7 +function getPrincipalFromDomain(aDomain) {
     1.8 +  return Cc["@mozilla.org/scriptsecuritymanager;1"]
     1.9 +           .getService(Ci.nsIScriptSecurityManager)
    1.10 +           .getNoAppCodebasePrincipal(NetUtil.newURI("http://" + aDomain));
    1.11 +}
    1.12 +
    1.13 +function run_test() {
    1.14 +  let profile = do_get_profile();
    1.15 +  let pm = Services.perms;
    1.16 +  let perm = 'test-idn';
    1.17 +
    1.18 +  // We create three principal linked to IDN.
    1.19 +  // One with just a domain, one with a subdomain and one with the TLD
    1.20 +  // containing a UTF-8 character.
    1.21 +  let mainDomainPrincipal = getPrincipalFromDomain("fôû.com");
    1.22 +  let subDomainPrincipal = getPrincipalFromDomain("fôô.bàr.com");
    1.23 +  let tldPrincipal = getPrincipalFromDomain("fôû.bàr.côm");
    1.24 +
    1.25 +  // We add those to the permission manager.
    1.26 +  pm.addFromPrincipal(mainDomainPrincipal, perm, pm.ALLOW_ACTION, 0, 0);
    1.27 +  pm.addFromPrincipal(subDomainPrincipal, perm, pm.ALLOW_ACTION, 0, 0);
    1.28 +  pm.addFromPrincipal(tldPrincipal, perm, pm.ALLOW_ACTION, 0, 0);
    1.29 +
    1.30 +  // They should obviously be there now..
    1.31 +  do_check_eq(pm.testPermissionFromPrincipal(mainDomainPrincipal, perm), pm.ALLOW_ACTION);
    1.32 +  do_check_eq(pm.testPermissionFromPrincipal(subDomainPrincipal, perm), pm.ALLOW_ACTION);
    1.33 +  do_check_eq(pm.testPermissionFromPrincipal(tldPrincipal, perm), pm.ALLOW_ACTION);
    1.34 +
    1.35 +  // We do the same thing with the puny-encoded versions of the IDN.
    1.36 +  let punyMainDomainPrincipal = getPrincipalFromDomain('xn--f-xgav.com');
    1.37 +  let punySubDomainPrincipal = getPrincipalFromDomain('xn--f-xgaa.xn--br-jia.com');
    1.38 +  let punyTldPrincipal = getPrincipalFromDomain('xn--f-xgav.xn--br-jia.xn--cm-8ja');
    1.39 +
    1.40 +  // Those principals should have the permission granted too.
    1.41 +  do_check_eq(pm.testPermissionFromPrincipal(punyMainDomainPrincipal, perm), pm.ALLOW_ACTION);
    1.42 +  do_check_eq(pm.testPermissionFromPrincipal(punySubDomainPrincipal, perm), pm.ALLOW_ACTION);
    1.43 +  do_check_eq(pm.testPermissionFromPrincipal(punyTldPrincipal, perm), pm.ALLOW_ACTION);
    1.44 +
    1.45 +  // However, those two principals shouldn't be allowed because they are like
    1.46 +  // the IDN but without the UT8-8 characters.
    1.47 +  let witnessPrincipal = getPrincipalFromDomain("foo.com");
    1.48 +  do_check_eq(pm.testPermissionFromPrincipal(witnessPrincipal, perm), pm.UNKNOWN_ACTION);
    1.49 +  witnessPrincipal = getPrincipalFromDomain("foo.bar.com");
    1.50 +  do_check_eq(pm.testPermissionFromPrincipal(witnessPrincipal, perm), pm.UNKNOWN_ACTION);
    1.51 +}
    1.52 \ No newline at end of file

Mercurial Repository: The Tor Browser

Europalab SCM Repository Server

mercurial