File: cross-partition-self-fetch.https.html

package info (click to toggle)
firefox 149.0-1
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 4,767,760 kB
  • sloc: cpp: 7,416,064; javascript: 6,752,859; ansic: 3,774,850; python: 1,250,473; xml: 641,578; asm: 439,191; java: 186,617; sh: 56,634; makefile: 18,856; objc: 13,092; perl: 12,763; pascal: 5,960; yacc: 4,583; cs: 3,846; lex: 1,720; ruby: 1,002; php: 436; lisp: 258; awk: 105; sql: 66; sed: 53; csh: 10; exp: 6
file content (76 lines) | stat: -rw-r--r-- 3,016 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
 
<!DOCTYPE html>
<meta charset=utf-8>
<meta name="timeout" content="long">
<script src="/resources/testharness.js"></script>
<script src="/resources/testharnessreport.js"></script>
<script src="/common/get-host-info.sub.js"></script>
<script src="/common/utils.js"></script>
<script src="/common/dispatcher/dispatcher.js"></script>
<!-- Pull in executor_path needed by newPopup / newIframe -->
<script src="/html/cross-origin-embedder-policy/credentialless/resources/common.js"></script>
<!-- Pull in importScript / newPopup / newIframe -->
<script src="/html/anonymous-iframe/resources/common.js"></script>
<script src="resources/common.js"></script>
<body>
<script>

// Creates a Blob URL for an HTML document that fetches itself and sends the result to the
// specified response queue UUID. This is somewhat contrived but aims to test a more common
// scenario where a Blob URL with a video/audio mime type is navigated to and has an HTML document
// created for to allow media controls to be present. In that scenario the Blob URL will be used
// via a "src" attribute, resulting in a first-party resource load.
const create_blob_url_and_send_js = (fetch_response_uuid, iframe_response_uuid) => `
  const blob_url_iframe_html = \`
    <!doctype html>
    <base href="\${window.location.href}">
    <script src="/html/cross-origin-embedder-policy/credentialless/resources/common.js"><\/script>
    <script src="/html/anonymous-iframe/resources/common.js"><\/script>
    <script src="/common/utils.js"><\/script>
    <script src="/common/dispatcher/dispatcher.js"><\/script>
    <script>
      (async () => {
        try {
          const response = await fetch(window.location.href);
          await response.text();
          send("${fetch_response_uuid}", "success");
        } catch (e) {
          send("${fetch_response_uuid}", "failure");
        }
      })();
    <\/script>
  \`;
  const blob = new Blob([blob_url_iframe_html], {type: 'text/html'});
  const blob_url = URL.createObjectURL(blob);
  send("${iframe_response_uuid}", blob_url);
`;

promise_test(t => {
  return new Promise(async (resolve, reject) => {
    try {
      const iframe_response_uuid = token();
      const fetch_response_uuid = token();
      const response_queue_uuid = token();

      const [cross_site_iframe_uuid, same_site_iframe_uuid] =
            await create_test_iframes(t, response_queue_uuid);

      await send(cross_site_iframe_uuid,
                 create_blob_url_and_send_js(fetch_response_uuid, iframe_response_uuid));

      const blob_url = await receive(iframe_response_uuid);

      window.open(blob_url);

      const fetch_result = await receive(fetch_response_uuid);

      assert_equals(fetch_result, "success", "Blob URL created in a cross-partition context should be able to fetch itself in a same-partition context.");

      resolve();
    } catch (e) {
      reject(e);
    }
  });
}, "Blob URL created in a cross-partition context can fetch itself in a same-partition context.");

</script>
</body>