forked from web-platform-tests/wpt
-
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Test webrtc/content-security-policy integration
...as specified in: - w3c/webappsec-csp#457 - w3c/webrtc-extensions#81
- Loading branch information
Showing
6 changed files
with
158 additions
and
0 deletions.
There are no files selected for viewing
21 changes: 21 additions & 0 deletions
21
content-security-policy/webrtc/webrtc-allowed-default-src-none.html
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,21 @@ | ||
| <!DOCTYPE html> | ||
| <html> | ||
|
|
||
| <head> | ||
| <meta | ||
| http-equiv="Content-Security-Policy" | ||
| content="default-src 'none'; script-src 'self' 'unsafe-inline'"> | ||
| <title>webrtc allowed with default-src 'none'</title> | ||
| <script src="/resources/testharness.js"></script> | ||
| <script src="/resources/testharnessreport.js"></script> | ||
| <script src="webrtc.js"></script> | ||
| </head> | ||
|
|
||
| <body> | ||
| <script> | ||
| expectAllow(); | ||
| </script> | ||
| <div id="log"></div> | ||
| </body> | ||
|
|
||
| </html> |
19 changes: 19 additions & 0 deletions
19
content-security-policy/webrtc/webrtc-allowed-explicit.html
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,19 @@ | ||
| <!DOCTYPE html> | ||
| <html> | ||
|
|
||
| <head> | ||
| <meta http-equiv="Content-Security-Policy" content="webrtc 'allow';"> | ||
| <title>webrtc allowed with an explicit webrtc allowed policy</title> | ||
| <script src="/resources/testharness.js"></script> | ||
| <script src="/resources/testharnessreport.js"></script> | ||
| <script src="webrtc.js"></script> | ||
| </head> | ||
|
|
||
| <body> | ||
| <script> | ||
| expectAllow(); | ||
| </script> | ||
| <div id="log"></div> | ||
| </body> | ||
|
|
||
| </html> |
18 changes: 18 additions & 0 deletions
18
content-security-policy/webrtc/webrtc-allowed-nopolicy.html
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,18 @@ | ||
| <!DOCTYPE html> | ||
| <html> | ||
|
|
||
| <head> | ||
| <title>webrtc allowed with no policy</title> | ||
| <script src="/resources/testharness.js"></script> | ||
| <script src="/resources/testharnessreport.js"></script> | ||
| <script src="webrtc.js"></script> | ||
| </head> | ||
|
|
||
| <body> | ||
| <script> | ||
| expectAllow(); | ||
| </script> | ||
| <div id="log"></div> | ||
| </body> | ||
|
|
||
| </html> |
19 changes: 19 additions & 0 deletions
19
content-security-policy/webrtc/webrtc-blocked-explicit.html
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,19 @@ | ||
| <!DOCTYPE html> | ||
| <html> | ||
|
|
||
| <head> | ||
| <meta http-equiv="Content-Security-Policy" content="webrtc 'block';"> | ||
| <title>webrtc blocked with an explicit webrtc blocked policy</title> | ||
| <script src="/resources/testharness.js"></script> | ||
| <script src="/resources/testharnessreport.js"></script> | ||
| <script src="webrtc.js"></script> | ||
| </head> | ||
|
|
||
| <body> | ||
| <script> | ||
| expectBlock(); | ||
| </script> | ||
| <div id="log"></div> | ||
| </body> | ||
|
|
||
| </html> |
19 changes: 19 additions & 0 deletions
19
content-security-policy/webrtc/webrtc-blocked-unknown.html
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,19 @@ | ||
| <!DOCTYPE html> | ||
| <html> | ||
|
|
||
| <head> | ||
| <meta http-equiv="Content-Security-Policy" content="webrtc 'unrecognized';"> | ||
| <title>webrtc blocked with an unrecognized explicit webrtc policy</title> | ||
| <script src="/resources/testharness.js"></script> | ||
| <script src="/resources/testharnessreport.js"></script> | ||
| <script src="webrtc.js"></script> | ||
| </head> | ||
|
|
||
| <body> | ||
| <script> | ||
| expectBlock(); | ||
| </script> | ||
| <div id="log"></div> | ||
| </body> | ||
|
|
||
| </html> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,62 @@ | ||
|
|
||
| // Creates two RTCPeerConnection and tries to connect them. Returns | ||
| // "allowed" if the connection is permitted, "blocked" if it is | ||
| // blocked on both sides and "inconsistent" in the even that the | ||
| // result is the same on both sides (should never happen). | ||
| async function tryConnect() { | ||
| const iceServers = [{urls: "stun:stun.l.google.com:19302"}]; | ||
| const pc1 = new RTCPeerConnection({iceServers}); | ||
| const pc2 = new RTCPeerConnection({iceServers}); | ||
|
|
||
| // Returns a promise which resolves to a boolean which is true | ||
| // if and only if pc.iceConnectionState settles in the "failed" | ||
| // state, and never transitions to any state other than "new" | ||
| // or "failed." | ||
| const pcFailed = (pc) => { | ||
| pc.onicecandidate = ({candidate}) => { | ||
| pc.addIceCandidate(candidate); | ||
| }; | ||
| return new Promise((resolve, _reject) => { | ||
| pc.onicegatheringstatechange = (e) => { | ||
| if(pc.iceGatheringState === "complete") { | ||
| resolve(pc.iceConnectionState === "failed"); | ||
| } else if(pc.iceConnectionState !== "new") { | ||
| resolve(false); | ||
| } | ||
| }; | ||
| }); | ||
| } | ||
| pc1Failed = pcFailed(pc1); | ||
| pc2Failed = pcFailed(pc2); | ||
|
|
||
| // Creating a data channel is necessary to induce negotiation: | ||
| const channel = pc1.createDataChannel('test'); | ||
|
|
||
| // Usual webrtc signaling dance: | ||
| const offer = await pc1.createOffer(); | ||
| await pc1.setLocalDescription(offer); | ||
| await pc2.setRemoteDescription(pc1.localDescription); | ||
| const answer = await pc2.createAnswer(); | ||
| await pc2.setLocalDescription(answer); | ||
| await pc1.setRemoteDescription(pc2.localDescription); | ||
|
|
||
| const failed1 = await pc1Failed; | ||
| const failed2 = await pc2Failed; | ||
| if(failed1 && failed2) { | ||
| return 'blocked'; | ||
| } else if(!failed1 && !failed2) { | ||
| return 'allowed'; | ||
| } else { | ||
| return 'inconsistent'; | ||
| } | ||
| } | ||
|
|
||
| async function expectAllow() { | ||
| promise_test(async () => assert_equals(await tryConnect(), 'allowed')); | ||
| } | ||
|
|
||
| async function expectBlock() { | ||
| promise_test(async () => assert_equals(await tryConnect(), 'blocked')); | ||
| } | ||
|
|
||
| // vim: set ts=4 sw=4 et : |