-
Notifications
You must be signed in to change notification settings - Fork 3.3k
/
Copy patheval-csp-tt-default-policy.html
127 lines (102 loc) · 4.18 KB
/
eval-csp-tt-default-policy.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
<!DOCTYPE html>
<html>
<head>
<script nonce="abc" src="/resources/testharness.js"></script>
<script nonce="abc" src="/resources/testharnessreport.js"></script>
<script nonce="abc" src="support/helper.sub.js"></script>
<meta http-equiv="Content-Security-Policy" content="require-trusted-types-for 'script'">
</head>
<body>
<script>
trustedTypes.createPolicy("default", {
createScript: ((s, _, sink) => {
// eval's source string is "1+1", the Function constructor's source string is "return 1+1"
// so we can distinguish between the two.
if (s === "1+1") {
assert_equals(sink, "eval");
} else {
assert_equals(sink, "Function");
}
return s
})
});
const p = trustedTypes.createPolicy("p", {createScript: s => s});
test(t => {
assert_equals(eval(p.createScript('1+1')), 2);
}, "eval of TrustedScript works.");
test(t => {
assert_equals(eval?.(p.createScript('1+1')), 2);
}, "indirect eval of TrustedScript works.");
test(t => {
assert_equals(eval('1+1'), 2);
}, "eval of string works.");
test(t => {
assert_equals(eval(42), 42);
assert_object_equals(eval({}), {});
assert_equals(eval(null), null);
assert_equals(eval(undefined), undefined);
}, "eval of !TrustedScript and !string works.");
test(t => {
assert_equals(new Function(p.createScript('return 1+1'))(), 2);
}, "Function constructor of TrustedScript works.");
test(t => {
assert_equals(new Function('return 1+1')(), 2);
}, "Function constructor of string works.");
test(t => {
assert_equals(new Function(p.createScript('val'),p.createScript('return val+1'))(1), 2);
}, "Function constructor of all TrustedScripts works.");
test(t => {
assert_equals(new Function('val', 'return val+1')(1), 2);
}, "Function constructor of all strings works.");
test(t => {
assert_equals(new Function('val', p.createScript('return val+1'))(1), 2);
}, "Function constructor of string and TrustedScript works.");
const AsyncFunction = async function() {}.constructor;
test(t => {
new AsyncFunction(p.createScript('return 1+1'))
}, "Async Function constructor of TrustedScript works.");
test(t => {
new AsyncFunction('return 1+1')
}, "AsyncFunction constructor of string works.");
test(t => {
new AsyncFunction(p.createScript('val'),p.createScript('return val+1'))
}, "AsyncFunction constructor of all TrustedScripts works.");
test(t => {
new AsyncFunction('val', 'return val+1')
}, "AsyncFunction constructor of all strings works.");
test(t => {
new AsyncFunction('val', p.createScript('return val+1'))
}, "AsyncFunction constructor of string and TrustedScript works.");
const GeneratorFunction = function*() {}.constructor;
test(t => {
new GeneratorFunction(p.createScript('return 1+1'))
}, "GeneratorFunction constructor of TrustedScript works.");
test(t => {
new GeneratorFunction('return 1+1')
}, "GeneratorFunction constructor of string works.");
test(t => {
new GeneratorFunction(p.createScript('val'),p.createScript('return val+1'))
}, "GeneratorFunction constructor of all TrustedScripts works.");
test(t => {
new GeneratorFunction('val', 'return val+1')
}, "GeneratorFunction constructor of all strings works.");
test(t => {
new GeneratorFunction('val', p.createScript('return val+1'))
}, "GeneratorFunction constructor of string and TrustedScript works.");
const AsyncGeneratorFunction = async function*() {}.constructor;
test(t => {
new AsyncGeneratorFunction(p.createScript('return 1+1'));
}, "AsyncGeneratorFunction constructor of TrustedScript works.");
test(t => {
new AsyncGeneratorFunction('return 1+1');
}, "AsyncGeneratorFunction constructor of string works.");
test(t => {
new AsyncGeneratorFunction(p.createScript('val'),p.createScript('return val+1'));
}, "AsyncGeneratorFunction constructor of all TrustedScripts works.");
test(t => {
new AsyncGeneratorFunction('val', 'return val+1');
}, "AsyncGeneratorFunction constructor of all strings works.");
test(t => {
new AsyncGeneratorFunction('val', p.createScript('return val+1'));
}, "AsyncGeneratorFunction constructor of string and TrustedScript works.");
</script>