1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
|
// Copyright 2013 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "base/command_line.h"
#include "chrome/common/extensions/extension_constants.h"
#include "chrome/renderer/extensions/chrome_extensions_dispatcher_delegate.h"
#include "chrome/renderer/extensions/renderer_permissions_policy_delegate.h"
#include "content/public/test/mock_render_process_host.h"
#include "content/public/test/mock_render_thread.h"
#include "extensions/common/constants.h"
#include "extensions/common/extension.h"
#include "extensions/common/extension_builder.h"
#include "extensions/common/permissions/permissions_data.h"
#include "extensions/renderer/dispatcher.h"
#include "extensions/renderer/test_extensions_renderer_client.h"
#include "testing/gtest/include/gtest/gtest.h"
namespace extensions {
namespace {
class RendererPermissionsPolicyDelegateTest : public testing::Test {
public:
RendererPermissionsPolicyDelegateTest() {
}
void SetUp() override {
testing::Test::SetUp();
render_thread_.reset(new content::MockRenderThread());
renderer_client_.reset(new TestExtensionsRendererClient);
ExtensionsRendererClient::Set(renderer_client_.get());
extension_dispatcher_delegate_.reset(
new ChromeExtensionsDispatcherDelegate());
extension_dispatcher_.reset(
new Dispatcher(extension_dispatcher_delegate_.get()));
policy_delegate_.reset(
new RendererPermissionsPolicyDelegate(extension_dispatcher_.get()));
}
protected:
scoped_ptr<content::MockRenderThread> render_thread_;
scoped_ptr<ExtensionsRendererClient> renderer_client_;
scoped_ptr<DispatcherDelegate> extension_dispatcher_delegate_;
scoped_ptr<Dispatcher> extension_dispatcher_;
scoped_ptr<RendererPermissionsPolicyDelegate> policy_delegate_;
};
scoped_refptr<const Extension> CreateTestExtension(const std::string& id) {
return ExtensionBuilder()
.SetManifest(DictionaryBuilder()
.Set("name", "Extension with ID " + id)
.Set("version", "1.0")
.Set("manifest_version", 2)
.Set("permissions", ListBuilder().Append("<all_urls>")))
.SetID(id)
.Build();
}
} // namespace
// Tests that CanAccessPage returns false for the any process
// which hosts the webstore.
TEST_F(RendererPermissionsPolicyDelegateTest, CannotScriptWebstore) {
GURL kAnyUrl("http://example.com/");
scoped_refptr<const Extension> extension(CreateTestExtension("a"));
std::string error;
EXPECT_TRUE(extension->permissions_data()->CanAccessPage(
extension.get(), kAnyUrl, -1, -1, &error)) << error;
// Pretend we are in the webstore process. We should not be able to execute
// script.
scoped_refptr<const Extension> webstore_extension(
CreateTestExtension(extensions::kWebStoreAppId));
RendererExtensionRegistry::Get()->Insert(webstore_extension.get());
extension_dispatcher_->OnActivateExtension(extensions::kWebStoreAppId);
EXPECT_FALSE(extension->permissions_data()->CanAccessPage(
extension.get(), kAnyUrl, -1, -1, &error))
<< error;
}
} // namespace extensions
|
