1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
|
# frozen_string_literal: true
require_relative "abstract_unit"
require "active_support/core_ext/string/inflections"
require "yaml"
class SafeBufferTest < ActiveSupport::TestCase
def setup
@buffer = ActiveSupport::SafeBuffer.new
end
def test_titleize
assert_equal "Foo", "foo".html_safe.titleize
end
test "Should look like a string" do
assert @buffer.is_a?(String)
assert_equal "", @buffer
end
test "Should escape a raw string which is passed to them" do
@buffer << "<script>"
assert_equal "<script>", @buffer
end
test "Should NOT escape a safe value passed to it" do
@buffer << "<script>".html_safe
@buffer << "hello & goodbye".html_safe
assert_equal("<script>hello & goodbye", @buffer)
end
test "Should not mess with an innocuous string" do
@buffer << "Hello"
assert_equal "Hello", @buffer
end
test "Should not mess with a previously escape test" do
@buffer << ERB::Util.html_escape("<script>")
assert_equal "<script>", @buffer
end
test "Should be considered safe" do
assert_predicate @buffer, :html_safe?
end
test "Should return a safe buffer when calling to_s" do
new_buffer = @buffer.to_s
assert_equal ActiveSupport::SafeBuffer, new_buffer.class
end
test "Should be converted to_yaml" do
str = "hello!"
buf = ActiveSupport::SafeBuffer.new str
yaml = buf.to_yaml
assert_match(/^--- #{str}/, yaml)
assert_equal "hello!", YAML.load(yaml)
end
test "Should work in nested to_yaml conversion" do
str = "hello!"
data = { "str" => ActiveSupport::SafeBuffer.new(str) }
yaml = YAML.dump data
assert_equal({ "str" => str }, YAML.load(yaml))
end
test "Should work with primitive-like-strings in to_yaml conversion" do
assert_equal "true", YAML.load(ActiveSupport::SafeBuffer.new("true").to_yaml)
assert_equal "false", YAML.load(ActiveSupport::SafeBuffer.new("false").to_yaml)
assert_equal "1", YAML.load(ActiveSupport::SafeBuffer.new("1").to_yaml)
assert_equal "1.1", YAML.load(ActiveSupport::SafeBuffer.new("1.1").to_yaml)
end
test "Should work with underscore" do
str = "MyTest".html_safe.underscore
assert_equal "my_test", str
end
{
capitalize: nil,
chomp: nil,
chop: nil,
delete: "foo",
delete_prefix: "foo",
delete_suffix: "foo",
downcase: nil,
gsub: ["foo", "bar"],
lstrip: nil,
next: nil,
reverse: nil,
rstrip: nil,
scrub: nil,
squeeze: nil,
strip: nil,
sub: ["foo", "bar"],
succ: nil,
swapcase: nil,
tr: ["foo", "bar"],
tr_s: ["foo", "bar"],
unicode_normalize: nil,
upcase: nil,
}.each do |unsafe_method, dummy_args|
test "Should not return safe buffer from #{unsafe_method}" do
skip unless String.method_defined?(unsafe_method)
altered_buffer = @buffer.public_send(unsafe_method, *dummy_args)
assert_not_predicate altered_buffer, :html_safe?
end
test "Should not return safe buffer from #{unsafe_method}!" do
skip unless String.method_defined?("#{unsafe_method}!")
@buffer.public_send("#{unsafe_method}!", *dummy_args)
assert_not_predicate @buffer, :html_safe?
end
end
test "can assign value into zero-index" do
buffer = ActiveSupport::SafeBuffer.new("012345")
buffer[0] = "<"
assert_equal "<12345", buffer
end
test "can assign value into non zero-index" do
buffer = ActiveSupport::SafeBuffer.new("012345")
buffer[2] = "<"
assert_equal "01<345", buffer
end
test "can assign value into slice" do
buffer = ActiveSupport::SafeBuffer.new("012345")
buffer[0, 3] = "<"
assert_equal "<345", buffer
end
test "can assign value into offset slice" do
buffer = ActiveSupport::SafeBuffer.new("012345")
buffer[1, 3] = "<"
assert_equal "0<45", buffer
end
test "Should escape dirty buffers on add" do
clean = "hello".html_safe
@buffer.gsub!("", "<>")
assert_equal "hello<>", clean + @buffer
end
test "Should preserve html_safe? status on multiplication" do
multiplied_safe_buffer = "<br />".html_safe * 2
assert_predicate multiplied_safe_buffer, :html_safe?
multiplied_unsafe_buffer = @buffer.gsub("", "<>") * 2
assert_not_predicate multiplied_unsafe_buffer, :html_safe?
end
test "Should concat as a normal string when safe" do
clean = "hello".html_safe
@buffer.gsub!("", "<>")
assert_equal "<>hello", @buffer + clean
end
test "Should preserve html_safe? status on copy" do
@buffer.gsub!("", "<>")
assert_not_predicate @buffer.dup, :html_safe?
end
test "Can call html_safe on a safe buffer" do
@buffer = "hello".html_safe
extra_safe = @buffer.html_safe
assert_equal "hello", extra_safe
assert_predicate extra_safe, :html_safe?
end
test "Should return safe buffer when added with another safe buffer" do
clean = "<script>".html_safe
result_buffer = @buffer + clean
assert_predicate result_buffer, :html_safe?
assert_equal "<script>", result_buffer
end
test "Should raise an error when safe_concat is called on unsafe buffers" do
@buffer.gsub!("", "<>")
assert_raise ActiveSupport::SafeBuffer::SafeConcatError do
@buffer.safe_concat "BUSTED"
end
end
test "Should not fail if the returned object is not a string" do
assert_kind_of NilClass, @buffer.slice("chipchop")
end
test "Should be safe when sliced if original value was safe" do
new_buffer = @buffer[0, 0]
assert_not_nil new_buffer
assert_predicate new_buffer, :html_safe?, "should be safe"
end
test "Should continue unsafe on slice" do
safe_string = "foo".html_safe.gsub!("f", '<script>alert("lolpwnd");</script>')
# calling gsub! makes the dirty flag true
assert_not safe_string.html_safe?, "should not be safe"
# should still be unsafe
assert_not safe_string[0..-1].html_safe?, "should not be safe"
assert_not safe_string.slice(0..-1).html_safe?, "should not be safe"
assert_not safe_string.slice!(0..-1).html_safe?, "should not be safe"
# even after slice! safe_string is still unsafe
assert_not safe_string.html_safe?, "should not be safe"
end
test "Should continue safe on slice" do
safe_string = "<div>foo</div>".html_safe
assert_predicate safe_string, :html_safe?
# should still be safe
assert_predicate safe_string[0..-1], :html_safe?
assert_predicate safe_string.slice(0..-1), :html_safe?
assert_predicate safe_string.slice!(0...1), :html_safe?
# even after slice! safe_string is still safe
assert_predicate safe_string, :html_safe?
end
test "Should continue safe on chr" do
safe_string = "<div>foo</div>".html_safe
assert_predicate safe_string, :html_safe?
assert_predicate safe_string.chr, :html_safe?
end
test "Should continue unsafe on chr" do
safe_string = "<div>foo</div>"
assert_not safe_string.html_safe?, "should not be safe"
assert_not safe_string.chr.html_safe?, "should not be safe"
end
test "Should return a SafeBuffer on slice! if original value was safe" do
safe_string = "<div>foo</div>".html_safe
assert safe_string.slice!(0...1).is_a?(ActiveSupport::SafeBuffer)
end
test "Should return a String on slice! if original value was not safe" do
unsafe_string = +'<script>alert("XSS");</script>'
sliced_string = unsafe_string.slice!(0...1)
assert_not sliced_string.is_a?(ActiveSupport::SafeBuffer)
assert sliced_string.is_a?(String)
end
test "Should work with interpolation (array argument)" do
x = "foo %s bar".html_safe % ["qux"]
assert_equal "foo qux bar", x
end
test "Should work with interpolation (hash argument)" do
x = "foo %{x} bar".html_safe % { x: "qux" }
assert_equal "foo qux bar", x
end
test "Should escape unsafe interpolated args" do
x = "foo %{x} bar".html_safe % { x: "<br/>" }
assert_equal "foo <br/> bar", x
end
test "Should not escape safe interpolated args" do
x = "foo %{x} bar".html_safe % { x: "<br/>".html_safe }
assert_equal "foo <br/> bar", x
end
test "Should interpolate to a safe string" do
x = "foo %{x} bar".html_safe % { x: "qux" }
assert_predicate x, :html_safe?, "should be safe"
end
test "Should not affect frozen objects when accessing characters" do
x = "Hello".html_safe
assert_nil x[/a/, 1]
end
test "Should set back references" do
a = "foo123".html_safe
a2 = a.sub(/([a-z]+)([0-9]+)/) { $2 + $1 }
assert_equal "123foo", a2
assert_not_predicate a2, :html_safe?
a.sub!(/([a-z]+)([0-9]+)/) { $2 + $1 }
assert_equal "123foo", a
assert_not_predicate a, :html_safe?
b = "foo123 bar456".html_safe
b2 = b.gsub(/([a-z]+)([0-9]+)/) { $2 + $1 }
assert_equal "123foo 456bar", b2
assert_not_predicate b2, :html_safe?
b.gsub!(/([a-z]+)([0-9]+)/) { $2 + $1 }
assert_equal "123foo 456bar", b
assert_not_predicate b, :html_safe?
end
test "Should support Enumerator" do
a = "aaa".html_safe.gsub!(/a/).with_index { |m, i| i }
assert_equal "012", a
end
end
|
