js/xpconnect/tests/unit/test_bug813901.js@6474c204b198
js/xpconnect/tests/unit/test_bug813901.js
Wed, 31 Dec 2014 06:09:35 +0100
- author
- Michael Schloh von Bennewitz <michael@schloh.com>
- date
- Wed, 31 Dec 2014 06:09:35 +0100
- changeset 0
- 6474c204b198
- permissions
- -rw-r--r--
Cloned upstream origin tor-browser at tor-browser-31.3.0esr-4.5-1-build1
revision ID fc1c9ff7c1b2defdbc039f12214767608f46423f for hacking purpose.
1 /* This Source Code Form is subject to the terms of the Mozilla Public
2 * License, v. 2.0. If a copy of the MPL was not distributed with this
3 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
5 /* See https://bugzilla.mozilla.org/show_bug.cgi?id=813901 */
7 const Cu = Components.utils;
9 // Make sure that we can't inject __exposedProps__ via the proto of a COW-ed object.
11 function checkThrows(expression, sb, regexp) {
12 var result = Cu.evalInSandbox('(function() { try { ' + expression + '; return "allowed"; } catch (e) { return e.toString(); }})();', sb);
13 dump('result: ' + result + '\n\n\n');
14 do_check_true(!!regexp.exec(result));
15 }
17 function run_test() {
19 var sb = new Cu.Sandbox('http://www.example.org');
20 sb.obj = {foo: 2};
21 checkThrows('obj.foo = 3;', sb, /denied/);
22 Cu.evalInSandbox("var p = {__exposedProps__: {foo: 'rw'}};", sb);
23 sb.obj.__proto__ = sb.p;
24 checkThrows('obj.foo = 4;', sb, /__exposedProps__/);
25 }
