browser/base/content/test/siteIdentity/browser_getSecurityInfo.js


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77

/* Any copyright is dedicated to the Public Domain.
 * http://creativecommons.org/publicdomain/zero/1.0/ */

const MOZILLA_PKIX_ERROR_BASE = Ci.nsINSSErrorsService.MOZILLA_PKIX_ERROR_BASE;
const MOZILLA_PKIX_ERROR_SELF_SIGNED_CERT = MOZILLA_PKIX_ERROR_BASE + 14;

const IFRAME_PAGE =
  getRootDirectory(gTestPath).replace(
    "chrome://mochitests/content",
    "http://example.com"
  ) + "dummy_iframe_page.html";

// Tests the getSecurityInfo() function exposed on WindowGlobalParent.
add_task(async function test() {
  await BrowserTestUtils.withNewTab("about:blank", async function(browser) {
    let loaded = BrowserTestUtils.waitForErrorPage(browser);
    BrowserTestUtils.loadURI(browser, "https://self-signed.example.com");
    await loaded;

    let securityInfo = await browser.browsingContext.currentWindowGlobal.getSecurityInfo();
    securityInfo.QueryInterface(Ci.nsITransportSecurityInfo);
    ok(securityInfo, "Found some security info");
    ok(securityInfo.failedCertChain, "Has a failed cert chain");
    is(
      securityInfo.errorCode,
      MOZILLA_PKIX_ERROR_SELF_SIGNED_CERT,
      "Has the correct error code"
    );
    is(
      securityInfo.serverCert.commonName,
      "self-signed.example.com",
      "Has the correct certificate"
    );

    loaded = BrowserTestUtils.browserLoaded(browser);
    BrowserTestUtils.loadURI(browser, "http://example.com");
    await loaded;

    securityInfo = await browser.browsingContext.currentWindowGlobal.getSecurityInfo();
    ok(!securityInfo, "Found no security info");

    loaded = BrowserTestUtils.browserLoaded(browser);
    BrowserTestUtils.loadURI(browser, "https://example.com");
    await loaded;

    securityInfo = await browser.browsingContext.currentWindowGlobal.getSecurityInfo();
    securityInfo.QueryInterface(Ci.nsITransportSecurityInfo);
    ok(securityInfo, "Found some security info");
    ok(securityInfo.succeededCertChain, "Has a succeeded cert chain");
    is(securityInfo.errorCode, 0, "Has no error code");
    is(
      securityInfo.serverCert.commonName,
      "example.com",
      "Has the correct certificate"
    );

    loaded = BrowserTestUtils.browserLoaded(browser);
    BrowserTestUtils.loadURI(browser, IFRAME_PAGE);
    await loaded;

    // Get the info of the parent, which is HTTP.
    securityInfo = await browser.browsingContext.currentWindowGlobal.getSecurityInfo();
    ok(!securityInfo, "Found no security info");

    // Get the info of the frame, which is HTTPS.
    securityInfo = await browser.browsingContext.children[0].currentWindowGlobal.getSecurityInfo();
    securityInfo.QueryInterface(Ci.nsITransportSecurityInfo);
    ok(securityInfo, "Found some security info");
    ok(securityInfo.succeededCertChain, "Has a succeeded cert chain");
    is(securityInfo.errorCode, 0, "Has no error code");
    is(
      securityInfo.serverCert.commonName,
      "example.com",
      "Has the correct certificate"
    );
  });
});