File: child-navigates-parent-cross-origin.window.js

package info (click to toggle)
thunderbird 1%3A128.14.0esr-1~deb12u1
  • links: PTS, VCS
  • area: main
  • in suites: bookworm
  • size: 4,334,824 kB
  • sloc: cpp: 7,391,917; javascript: 5,617,271; ansic: 3,833,216; python: 1,230,742; xml: 619,690; asm: 456,022; java: 179,892; sh: 118,796; makefile: 21,908; perl: 14,825; objc: 12,399; yacc: 4,583; pascal: 2,973; lex: 1,720; ruby: 1,190; exp: 762; sql: 674; awk: 580; php: 436; lisp: 430; sed: 70; csh: 10
file content (90 lines) | stat: -rw-r--r-- 3,096 bytes parent folder | download | duplicates (18) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
 
// META: script=/common/get-host-info.sub.js
// META: script=resources/wait-for-messages.js

function testNavigationFails(params) {
  return async (t) => {
    // Start waiting for messages before inserting the child frame, to avoid any
    // race conditions. Note that this would be racy if we executed tests
    // concurrently, thankfully `promise_test` executes sequentially. See also:
    // https://github.com/web-platform-tests/rfcs/pull/75
    const messagesPromise = waitForMessages(1);

    // Execute the test in an iframe, so that the document executing the test
    // is not navigated away mid-test in case of failure.
    const child = document.createElement("iframe");
    document.body.appendChild(child);
    t.add_cleanup(() => { document.body.removeChild(child); });

    const url = new URL(
        "resources/child-navigates-parent-cross-origin-inner.html",
        window.location);

    // Load the grandchild iframe from a different origin.
    url.host = get_host_info().REMOTE_HOST;

    for (const key in params || {}) {
      url.searchParams.set(key, params[key]);
    }

    const grandchild = child.contentDocument.createElement("iframe");
    grandchild.src = url;
    child.contentDocument.body.appendChild(grandchild);

    const messages = await messagesPromise;
    assert_array_equals(messages, ["error: SecurityError"]);
  }
}

promise_test(
    testNavigationFails(),
    "Child document attempts to navigate cross-origin parent via location");

promise_test(
    testNavigationFails({ "property": "hash" }),
    "Child document attempts to navigate cross-origin parent via "+
    "location.hash");

promise_test(
    testNavigationFails({ "property": "host" }),
    "Child document attempts to navigate cross-origin parent via "+
    "location.host");

promise_test(
    testNavigationFails({ "property": "hostname" }),
    "Child document attempts to navigate cross-origin parent via "+
    "location.hostname");

promise_test(
    testNavigationFails({ "property": "href" }),
    "Child document attempts to navigate cross-origin parent via "+
    "location.href");

promise_test(
    testNavigationFails({ "property": "pathname" }),
    "Child document attempts to navigate cross-origin parent via "+
    "location.pathname");

promise_test(
    testNavigationFails({ "property": "protocol" }),
    "Child document attempts to navigate cross-origin parent via "+
    "location.protocol");

promise_test(
    testNavigationFails({ "property": "reload" }),
    "Child document attempts to navigate cross-origin parent via "+
    "location.reload()");

promise_test(
    testNavigationFails({ "property": "replace" }),
    "Child document attempts to navigate cross-origin parent via "+
    "location.replace()");

promise_test(
    testNavigationFails({ "property": "search" }),
    "Child document attempts to navigate cross-origin parent via "+
    "location.search");

promise_test(
    testNavigationFails({ "property": "xxxNonExistent" }),
    "Child document attempts to navigate cross-origin parent via non-standard "+
    "location property");