netwerk/test/unit/test_bug380994.js


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22

/* check resource: protocol for traversal problems */

const specs = [
  "resource:///chrome/../plugins",
  "resource:///chrome%2f../plugins",
  "resource:///chrome/..%2fplugins",
  "resource:///chrome%2f%2e%2e%2fplugins",
  "resource:///../../../..",
  "resource:///..%2f..%2f..%2f..",
  "resource:///%2e%2e"
];

function run_test() {
  var ios = Cc["@mozilla.org/network/io-service;1"].
            getService(Ci.nsIIOService);

  for (var spec of specs) {
    var uri = ios.newURI(spec, null, null);
    if (uri.spec.indexOf("..") != -1)
      do_throw("resource: traversal remains: '"+spec+"' ==> '"+uri.spec+"'");
  }
}