Mercurial > mozreview > gecko / changeset / f49109de9292dec31b72d87819dd52b5a6b659ed
summary | shortlog | changelog | pushlog | graph | tags | bookmarks | branches | files | changeset | raw | zip | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Bug 1350868 - Make HSTS preload script preload test domains for use in tests. r=keeler draft
authorCykesiopka <cykesiopka.bmo@gmail.com>
Wed, 29 Mar 2017 07:21:01 +0800
changeset 552751 f49109de9292dec31b72d87819dd52b5a6b659ed
parent 552750 d2d1f1a8aca16264de48bcd9a38cdf74b76633e8
child 552752 bc5880af95dc9934132d0e9251d9060ad9c6871a
push id51444
push usercykesiopka.bmo@gmail.com
push dateTue, 28 Mar 2017 23:22:36 +0000
reviewerskeeler
bugs1350868
milestone55.0a1
Bug 1350868 - Make HSTS preload script preload test domains for use in tests. r=keeler This lets us migrate off depending on real preloaded domains and onto domains that are guaranteed to have the correct characteristics. MozReview-Commit-ID: 4TyOfdIA9I7
security/manager/tools/getHSTSPreloadList.js file | annotate | diff | comparison | revisions 
--- a/security/manager/tools/getHSTSPreloadList.js
+++ b/security/manager/tools/getHSTSPreloadList.js
@@ -428,34 +428,65 @@ function combineLists(newHosts, currentH
       }
     }
     if (!found) {
       newHosts.push({ name: currentHost, retries: MAX_RETRIES });
     }
   }
 }
 
+const TEST_ENTRIES = [
+  { name: "includesubdomains.preloaded.test", includeSubdomains: true },
+  { name: "includesubdomains2.preloaded.test", includeSubdomains: true },
+  { name: "noincludesubdomains.preloaded.test", includeSubdomains: false },
+];
+
+function deleteTestHosts(currentHosts) {
+  for (let testEntry of TEST_ENTRIES) {
+    delete currentHosts[testEntry.name];
+  }
+}
+
+function insertTestHosts(hstsStatuses) {
+  for (let testEntry of TEST_ENTRIES) {
+    hstsStatuses.push({
+      name: testEntry.name,
+      maxAge: MINIMUM_REQUIRED_MAX_AGE,
+      includeSubdomains: testEntry.includeSubdomains,
+      error: ERROR_NONE,
+      // This deliberately doesn't have a value for `retries` (because we should
+      // never attempt to connect to this host).
+      forceInclude: true,
+      originalIncludeSubdomains: testEntry.includeSubdomains,
+    });
+  }
+}
+
 // ****************************************************************************
 // This is where the action happens:
 if (arguments.length != 1) {
   throw new Error("Usage: getHSTSPreloadList.js " +
                   "<absolute path to current nsSTSPreloadList.inc>");
 }
 // get the current preload list
 var currentHosts = readCurrentList(arguments[0]);
+// delete any hosts we use in tests so we don't actually connect to them
+deleteTestHosts(currentHosts);
 // disable the current preload list so it won't interfere with requests we make
 Services.prefs.setBoolPref("network.stricttransportsecurity.preloadlist", false);
 // download and parse the raw json file from the Chromium source
 var rawdata = download();
 // get just the hosts with mode: "force-https"
 var hosts = getHosts(rawdata);
 // add hosts in the current list to the new list (avoiding duplicates)
 combineLists(hosts, currentHosts);
 // get the HSTS status of each host
 var hstsStatuses = [];
 getHSTSStatuses(hosts, hstsStatuses);
+// add the hosts we use in tests
+insertTestHosts(hstsStatuses);
 // sort the hosts alphabetically
 hstsStatuses.sort(compareHSTSStatus);
 // write the results to a file (this is where we filter out hosts that we
 // either couldn't connect to, didn't receive an HSTS header from, couldn't
 // parse the header, or had a header with too short a max-age)
 output(hstsStatuses, currentHosts);
 // ****************************************************************************
gecko
Deployed from af051c2a8da7 at 2024-04-29T16:08:03Z.