Merge remote-tracking branch 'origin/5.212' into devHEADdev

Change-Id: I2b773e6958cf1d3699ff7887f2807572f1dafa8d

4 files changed, 252 insertions, 0 deletions

diff --git a/tests/webkitwidgets/qwebsecurityorigin/qwebsecurityorigin.pro b/tests/webkitwidgets/qwebsecurityorigin/qwebsecurityorigin.pro
new file mode 100644
index 000000000..ff6c49628
--- /dev/null
+++ b/tests/webkitwidgets/qwebsecurityorigin/qwebsecurityorigin.pro
@@ -0,0 +1,2 @@
+include(../tests.pri)
+exists($${TARGET}.qrc):RESOURCES += $${TARGET}.qrc
diff --git a/tests/webkitwidgets/qwebsecurityorigin/resources/test.html b/tests/webkitwidgets/qwebsecurityorigin/resources/test.html
new file mode 100644
index 000000000..43e25f26d
--- /dev/null
+++ b/tests/webkitwidgets/qwebsecurityorigin/resources/test.html
@@ -0,0 +1,53 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
+<html>
+   <head>
+       <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
+       <title>QWebSecurityOrigin test page</title>
+       <script Language="JavaScript">
+           function runTest(url)
+           {
+               var result = "";
+                function trace(point)
+                {
+                    var el = document.createElement("P");
+                     el.innerHTML = point + ": Result is:\"" + result + "\""
+                     document.getElementById("Console").appendChild(el);
+                 }
+                 try {
+                     var xmlhttp = new XMLHttpRequest();
+                     xmlhttp.open('GET',url, false);
+                     xmlhttp.onreadystatechange = done;
+                     xmlhttp.onerror = error;
+                     xmlhttp.send(null);
+                     result = xmlhttp.responseText;
+                 } catch (e) {
+                     if (result == "") {
+                         result = e;
+                         trace("Catch1");
+                     } else
+                         trace("Catch2");
+                 }
+ 
+                 function done()
+                 {
+                     if (result.length < 5) {
+                         result = "" + xmlhttp.readyState;
+                         trace("Done1");
+                     } else
+                         trace("Done2");
+                 }
+                 function error()
+                 {
+                     result = "FAILED";
+                     trace("Error");
+                 }
+                 trace("Exit");
+                 return result == "Test";
+             }
+         </script>
+     </head>
+     <body>
+         <input type="button" onclick="javascript:alert(runTest('http://www.google.com/'))" value="Run Test"/><br/>
+         <div id="Console"/>
+     </body>
+ </html>
\ No newline at end of file
diff --git a/tests/webkitwidgets/qwebsecurityorigin/tst_qwebsecurityorigin.cpp b/tests/webkitwidgets/qwebsecurityorigin/tst_qwebsecurityorigin.cpp
new file mode 100644
index 000000000..225c42d0a
--- /dev/null
+++ b/tests/webkitwidgets/qwebsecurityorigin/tst_qwebsecurityorigin.cpp
@@ -0,0 +1,191 @@
+/*
+    Copyright (C) 2008 Nokia Corporation and/or its subsidiary(-ies)
+    Copyright (C) 2013 Cisco Systems, Inc. All rights reserved.
+
+    This library is free software; you can redistribute it and/or
+    modify it under the terms of the GNU Library General Public
+    License as published by the Free Software Foundation; either
+    version 2 of the License, or (at your option) any later version.
+
+    This library is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+    Library General Public License for more details.
+
+    You should have received a copy of the GNU Library General Public License
+    along with this library; see the file COPYING.LIB.  If not, write to
+    the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
+    Boston, MA 02110-1301, USA.
+*/
+
+
+#include <QNetworkReply>
+#include <QtTest>
+#include <qwebframe.h>
+#include <qwebpage.h>
+#include <qwebsecurityorigin.h>
+#include <qwebview.h>
+
+class tst_QWebSecurityOrigin : public QObject {
+    Q_OBJECT
+public:
+    tst_QWebSecurityOrigin();
+    virtual ~tst_QWebSecurityOrigin();
+
+private slots:
+    void init();
+    void cleanup();
+    void whiteList_data();
+    void whiteList();
+private:
+    QWebView* m_view { nullptr };
+    QWebPage* m_page { nullptr };
+};
+
+tst_QWebSecurityOrigin::tst_QWebSecurityOrigin()
+{
+}
+
+tst_QWebSecurityOrigin::~tst_QWebSecurityOrigin()
+{
+}
+
+void tst_QWebSecurityOrigin::init()
+{
+    m_view = new QWebView();
+    m_page = m_view->page();
+}
+
+void tst_QWebSecurityOrigin::cleanup()
+{
+    delete m_view;
+}
+
+void tst_QWebSecurityOrigin::whiteList_data()
+{
+    QTest::addColumn<QString>("source");
+    QTest::addColumn<QString>("scheme");
+    QTest::addColumn<QString>("host");
+    QTest::addColumn<bool>("includeSubDomains");
+    QTest::addColumn<QString>("testUrl");
+    QTest::addColumn<bool>("successBeforeAdd");
+    QTest::addColumn<bool>("successAfterAdd");
+    QTest::addColumn<bool>("successAfterRemove");
+
+    QTest::newRow("scheme") << "http://www.source.com/" << "https" << "www.target.com" << false << "https://www.target.com/other" << false << true << false;
+    QTest::newRow("schemeFail") << "http://www.source.com/" << "https" << "www.target.com" << false << "http://www.target.com/other" << false << false << false;
+    QTest::newRow("schemeSubDom") << "http://www.source.com/" << "https" << "target.com" << true << "https://www.target.com/other" << false << true << false;
+    QTest::newRow("schemeSubDomFail") << "http://www.source.com/" << "https" << "target.com" << true << "https://wwwtarget.com/other" << false << false << false;
+    QTest::newRow("schemeSubDomFail") << "http://www.source.com/" << "https" << "target.com" << true << "http://www.target.com/other" << false << false << false;
+    QTest::newRow("host") << "http://www.source.com/" << "http" << "www.target.com" << false << "http://www.target.com/target" << false << true << false;
+    QTest::newRow("hostFail") << "http://www.source.com/" << "http" << "www.target.com" << false << "http://www.newtarget.com/" << false << false << false;
+    QTest::newRow("hostSubDom") << "http://www.source.com/" << "http" << "target.com" << true << "http://www.new.target.com/" << false << true << false;
+    QTest::newRow("hostSubDomFail") << "http://www.source.com/" << "http" << "target.com" << false << "http://www.new.target.com/" << false << false << false;
+    QTest::newRow("hostSubDomFailCountry") << "http://www.source.com/" << "http" << "target.com" << true << "http://www.target.com.tw/" << false << false << false;
+}
+
+class CannedResponseNetworkReply: public QNetworkReply {
+    Q_OBJECT
+public:
+    CannedResponseNetworkReply(QObject* parent, QNetworkAccessManager::Operation op, const QNetworkRequest& req, const QBuffer& body): QNetworkReply(parent)
+    {
+        setRequest(req);
+        setUrl(req.url());
+        setOperation(op);
+        m_buffer.setData(body.data());
+        connect(&m_buffer, SIGNAL(readyRead()), SLOT(emitReadyRead()));
+        connect(&m_buffer, SIGNAL(readChannelFinished()), SLOT(emitReadChannelFinished()));
+        connect(&m_buffer, SIGNAL(readChannelFinished()), SLOT(emitReadChannelFinished()));
+        m_buffer.open(QIODevice::ReadOnly);
+        open(QIODevice::ReadOnly);
+        QTimer::singleShot(10, this, SLOT(update()));
+    }
+protected:
+    qint64 readData(char * data, qint64 maxSize)
+    {
+        qint64 result = m_buffer.read(data, maxSize);
+        if (!m_buffer.bytesAvailable())
+            QTimer::singleShot(10, this, SLOT(emitReadChannelFinished()));
+        return result;
+    }
+
+    virtual qint64 bytesAvailable() const
+    {
+        return m_buffer.bytesAvailable();
+    }
+
+private slots:
+    void emitReadyRead()
+    {
+        emit readyRead();
+    }
+
+    void emitReadChannelFinished()
+    {
+        emit readChannelFinished();
+        emit finished();
+    }
+    void abort() { };
+
+    void update()
+    {
+        setHeader(QNetworkRequest::ContentTypeHeader, "text/plain");
+        setHeader(QNetworkRequest::ContentLengthHeader, m_buffer.size());
+        setError(QNetworkReply::NoError, "");
+        setAttribute(QNetworkRequest::HttpStatusCodeAttribute, 200);
+        setAttribute(QNetworkRequest::HttpReasonPhraseAttribute, QString("Ok").toLatin1());
+        emit metaDataChanged();
+        emit readyRead();
+    }
+public:
+    QBuffer m_buffer;
+};
+
+class CannedResponseNetworkAccessManager: public QNetworkAccessManager {
+    Q_OBJECT
+protected:
+    virtual QNetworkReply* createRequest(Operation op, const QNetworkRequest& req, QIODevice* outgoingData = 0)
+    {
+        return new CannedResponseNetworkReply(this, op, req, *m_buffer);
+    };
+public:
+    QBuffer* m_buffer;
+};
+
+static const char cannedResponse[] = "Test";
+
+void tst_QWebSecurityOrigin::whiteList()
+{
+    QFETCH(QString, source);
+    QFETCH(QString, scheme);
+    QFETCH(QString, host);
+    QFETCH(bool, includeSubDomains);
+    QFETCH(QString, testUrl);
+    QFETCH(bool, successBeforeAdd);
+    QFETCH(bool, successAfterAdd);
+    QFETCH(bool, successAfterRemove);
+
+    QWebSecurityOrigin* origin = new QWebSecurityOrigin(source);
+    CannedResponseNetworkAccessManager manager;
+    QBuffer buffer;
+    QWebSecurityOrigin::SubdomainSetting subdomainSetting = includeSubDomains ? QWebSecurityOrigin::AllowSubdomains : QWebSecurityOrigin::DisallowSubdomains;
+    buffer.setData(cannedResponse, sizeof(cannedResponse)-1);
+    manager.m_buffer = &buffer;
+    QFile testPageFile(":/resources/test.html");
+    QVERIFY(testPageFile.open(QIODevice::ReadOnly));
+    uchar* testPage = testPageFile.map(0, testPageFile.size());
+    QVERIFY(testPage);
+    m_view->setHtml(QString((const char*)testPage), QUrl(source));
+    m_view->page()->setNetworkAccessManager(&manager);
+    QString testJS="runTest(\"" + testUrl + "\")";
+    QCOMPARE(m_view->page()->mainFrame()->evaluateJavaScript(testJS), QVariant(successBeforeAdd));
+    origin->addAccessWhitelistEntry(scheme, host, subdomainSetting);
+    QCOMPARE(m_view->page()->mainFrame()->evaluateJavaScript(testJS), QVariant(successAfterAdd));
+    origin->removeAccessWhitelistEntry(scheme, host, subdomainSetting);
+    QCOMPARE(m_view->page()->mainFrame()->evaluateJavaScript(testJS), QVariant(successAfterRemove));
+    m_view->page()->setNetworkAccessManager(0);
+}
+
+QTEST_MAIN(tst_QWebSecurityOrigin)
+#include "tst_qwebsecurityorigin.moc"
+
diff --git a/tests/webkitwidgets/qwebsecurityorigin/tst_qwebsecurityorigin.qrc b/tests/webkitwidgets/qwebsecurityorigin/tst_qwebsecurityorigin.qrc
new file mode 100644
index 000000000..ec8d9c02d
--- /dev/null
+++ b/tests/webkitwidgets/qwebsecurityorigin/tst_qwebsecurityorigin.qrc
@@ -0,0 +1,6 @@
+<!DOCTYPE RCC><RCC version="1.0">
+<qresource>
+    <file>resources/test.html</file>
+</qresource>
+</RCC>
+