test: add test of policy about parse error
PR-URL: https://github.com/nodejs/node/pull/26873 Reviewed-By: Ruben Bridgewater <ruben@bridgewater.de> Reviewed-By: Rich Trott <rtrott@gmail.com>
This commit is contained in:
Daiki Ihara
Rich Trott
parent
723d5c058f
commit
a565853ddd
86
test/parallel/test-policy-parse-integrity.js
Normal file
86
test/parallel/test-policy-parse-integrity.js
Normal file
@ -0,0 +1,86 @@
|
||||
'use strict';
|
||||
|
||||
const common = require('../common');
|
||||
if (!common.hasCrypto) common.skip('missing crypto');
|
||||
|
||||
const tmpdir = require('../common/tmpdir');
|
||||
const assert = require('assert');
|
||||
const { spawnSync } = require('child_process');
|
||||
const crypto = require('crypto');
|
||||
const fs = require('fs');
|
||||
const path = require('path');
|
||||
const { pathToFileURL } = require('url');
|
||||
|
||||
tmpdir.refresh();
|
||||
|
||||
function hash(algo, body) {
|
||||
const h = crypto.createHash(algo);
|
||||
h.update(body);
|
||||
return h.digest('base64');
|
||||
}
|
||||
|
||||
const policyFilepath = path.join(tmpdir.path, 'policy');
|
||||
|
||||
const parentFilepath = path.join(tmpdir.path, 'parent.js');
|
||||
const parentBody = "require('./dep.js')";
|
||||
|
||||
const depFilepath = path.join(tmpdir.path, 'dep.js');
|
||||
const depURL = pathToFileURL(depFilepath);
|
||||
const depBody = '';
|
||||
|
||||
fs.writeFileSync(parentFilepath, parentBody);
|
||||
fs.writeFileSync(depFilepath, depBody);
|
||||
|
||||
const tmpdirURL = pathToFileURL(tmpdir.path);
|
||||
if (!tmpdirURL.pathname.endsWith('/')) {
|
||||
tmpdirURL.pathname += '/';
|
||||
}
|
||||
|
||||
function test({ shouldFail, integrity }) {
|
||||
const resources = {
|
||||
[depURL]: {
|
||||
body: depBody,
|
||||
integrity
|
||||
}
|
||||
};
|
||||
const manifest = {
|
||||
resources: {},
|
||||
};
|
||||
for (const [url, { body, integrity }] of Object.entries(resources)) {
|
||||
manifest.resources[url] = {
|
||||
integrity,
|
||||
};
|
||||
fs.writeFileSync(new URL(url, tmpdirURL.href), body);
|
||||
}
|
||||
fs.writeFileSync(policyFilepath, JSON.stringify(manifest, null, 2));
|
||||
const { status } = spawnSync(process.execPath, [
|
||||
'--experimental-policy',
|
||||
policyFilepath,
|
||||
depFilepath
|
||||
]);
|
||||
if (shouldFail) {
|
||||
assert.notStrictEqual(status, 0);
|
||||
} else {
|
||||
assert.strictEqual(status, 0);
|
||||
}
|
||||
}
|
||||
|
||||
test({
|
||||
shouldFail: false,
|
||||
integrity: `sha256-${hash('sha256', depBody)}`,
|
||||
});
|
||||
test({
|
||||
shouldFail: true,
|
||||
integrity: `1sha256-${hash('sha256', depBody)}`,
|
||||
});
|
||||
test({
|
||||
shouldFail: true,
|
||||
integrity: 'hoge',
|
||||
});
|
||||
test({
|
||||
shouldFail: true,
|
||||
integrity: `sha256-${hash('sha256', depBody)}sha256-${hash(
|
||||
'sha256',
|
||||
depBody
|
||||
)}`,
|
||||
});
|
||||
Loading…
x
Reference in New Issue
Block a user