Source code
Revision control
Copy as Markdown
Other Tools
Test Info: Warnings
- This test runs only with pattern: os != 'android'
- Manifest: security/manager/ssl/tests/unit/xpcshell-smartcards.toml
/* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
"use strict";
// In safe mode, PKCS#11 modules should not be loaded. This test tests this by
// simulating starting in safe mode and then attempting to load a module.
add_task(async function run_test() {
do_get_profile();
Services.fog.initializeFOG();
// Simulate starting in safe mode.
let xulRuntime = {
inSafeMode: true,
logConsoleErrors: true,
OS: "XPCShell",
XPCOMABI: "noarch-spidermonkey",
invalidateCachesOnRestart: function invalidateCachesOnRestart() {
// Do nothing
},
QueryInterface: ChromeUtils.generateQI(["nsIXULRuntime"]),
};
let xulRuntimeFactory = {
createInstance(iid) {
return xulRuntime.QueryInterface(iid);
},
};
let registrar = Components.manager.QueryInterface(Ci.nsIComponentRegistrar);
const XULRUNTIME_CONTRACTID = "@mozilla.org/xre/runtime;1";
const XULRUNTIME_CID = Components.ID(
"{f0f0b230-5525-4127-98dc-7bca39059e70}"
);
registrar.registerFactory(
XULRUNTIME_CID,
"XULRuntime",
XULRUNTIME_CONTRACTID,
xulRuntimeFactory
);
// When starting in safe mode, the test module should fail to load.
let pkcs11ModuleDB = Cc["@mozilla.org/security/pkcs11moduledb;1"].getService(
Ci.nsIPKCS11ModuleDB
);
let libraryName = ctypes.libraryName("pkcs11testmodule");
let libraryFile = Services.dirsvc.get("CurWorkD", Ci.nsIFile);
libraryFile.append("pkcs11testmodule");
libraryFile.append(libraryName);
ok(libraryFile.exists(), "The pkcs11testmodule file should exist");
let caughtException = false;
try {
await pkcs11ModuleDB.addModule(
"PKCS11 Test Module",
libraryFile.path,
0,
0
);
} catch (e) {
caughtException = true;
ok(/NS_ERROR_FAILURE/.test(e), "expecting NS_ERROR_FAILURE");
}
ok(caughtException, "addModule should throw when in safe mode");
// Though we loaded in safe mode, no NSS initialization fallbacks should have been used.
ok(!Glean.nss.initializationFallbacks.READ_ONLY.testGetValue());
ok(!Glean.nss.initializationFallbacks.RENAME_MODULE_DB.testGetValue());
ok(
!Glean.nss.initializationFallbacks.RENAME_MODULE_DB_READ_ONLY.testGetValue()
);
ok(!Glean.nss.initializationFallbacks.NO_DB_INIT.testGetValue());
});