mirror of
https://github.com/classilla/tenfourfox.git
synced 2024-10-22 02:25:05 +00:00
54 lines
2.5 KiB
JavaScript
54 lines
2.5 KiB
JavaScript
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/.
|
|
*/
|
|
"use strict";
|
|
|
|
function run_test() {
|
|
let SSService = Cc["@mozilla.org/ssservice;1"]
|
|
.getService(Ci.nsISiteSecurityService);
|
|
ok(!SSService.isSecureHost(Ci.nsISiteSecurityService.HEADER_HSTS,
|
|
"example.com", 0));
|
|
ok(!SSService.isSecureHost(Ci.nsISiteSecurityService.HEADER_HSTS,
|
|
"example.com.", 0));
|
|
// These cases are only relevant as long as bug 1118522 hasn't been fixed.
|
|
ok(!SSService.isSecureHost(Ci.nsISiteSecurityService.HEADER_HSTS,
|
|
"example.com..", 0));
|
|
|
|
let uri = Services.io.newURI("https://example.com", null, null);
|
|
let sslStatus = new FakeSSLStatus();
|
|
SSService.processHeader(Ci.nsISiteSecurityService.HEADER_HSTS, uri,
|
|
"max-age=1000;includeSubdomains", sslStatus, 0);
|
|
ok(SSService.isSecureHost(Ci.nsISiteSecurityService.HEADER_HSTS,
|
|
"example.com", 0));
|
|
ok(SSService.isSecureHost(Ci.nsISiteSecurityService.HEADER_HSTS,
|
|
"example.com.", 0));
|
|
ok(SSService.isSecureHost(Ci.nsISiteSecurityService.HEADER_HSTS,
|
|
"example.com..", 0));
|
|
|
|
ok(SSService.isSecureURI(Ci.nsISiteSecurityService.HEADER_HSTS, uri, 0));
|
|
uri = Services.io.newURI("https://example.com.", null, null);
|
|
ok(SSService.isSecureURI(Ci.nsISiteSecurityService.HEADER_HSTS, uri, 0));
|
|
uri = Services.io.newURI("https://example.com..", null, null);
|
|
ok(SSService.isSecureURI(Ci.nsISiteSecurityService.HEADER_HSTS, uri, 0));
|
|
|
|
SSService.removeState(Ci.nsISiteSecurityService.HEADER_HSTS, uri, 0);
|
|
ok(!SSService.isSecureHost(Ci.nsISiteSecurityService.HEADER_HSTS,
|
|
"example.com", 0));
|
|
ok(!SSService.isSecureHost(Ci.nsISiteSecurityService.HEADER_HSTS,
|
|
"example.com.", 0));
|
|
ok(!SSService.isSecureHost(Ci.nsISiteSecurityService.HEADER_HSTS,
|
|
"example.com..", 0));
|
|
|
|
// Somehow creating this malformed URI succeeds - we need to handle it
|
|
// gracefully.
|
|
uri = Services.io.newURI("https://../foo", null, null);
|
|
equal(uri.host, "..");
|
|
try {
|
|
SSService.isSecureURI(Ci.nsISiteSecurityService.HEADER_HSTS, uri, 0);
|
|
ok(false); // this shouldn't run
|
|
} catch (e) {
|
|
equal(e.result, Cr.NS_ERROR_UNEXPECTED);
|
|
}
|
|
}
|