1 files changed, 94 insertions, 0 deletions
diff --git a/browser/devtools/webconsole/test/browser_webconsole_certificate_messages.js b/browser/devtools/webconsole/test/browser_webconsole_certificate_messages.js
new file mode 100644
index 000000000..8a90876c0
--- /dev/null
+++ b/browser/devtools/webconsole/test/browser_webconsole_certificate_messages.js
@@ -0,0 +1,94 @@
+/* vim:set ts=2 sw=2 sts=2 et: */
+/* Any copyright is dedicated to the Public Domain.
+ * http://creativecommons.org/publicdomain/zero/1.0/ */
+
+// Tests that the Web Console shows weak crypto warnings (SHA-1 Certificate, SSLv3, and RC4)
+
+const TEST_URI = "data:text/html;charset=utf8,Web Console weak crypto warnings test";
+const TEST_URI_PATH = "/browser/browser/devtools/webconsole/test/test-certificate-messages.html";
+
+let gWebconsoleTests = [
+  {url: "https://sha1ee.example.com" + TEST_URI_PATH,
+   name: "SHA1 warning displayed successfully",
+   warning: ["SHA-1"], nowarning: ["SSL 3.0", "RC4"]},
+  {url: "https://ssl3.example.com" + TEST_URI_PATH,
+   name: "SSL3 warning displayed successfully",
+   pref: [["security.tls.version.min", 0]],
+   warning: ["SSL 3.0"], nowarning: ["SHA-1", "RC4"]},
+  {url: "https://rc4.example.com" + TEST_URI_PATH,
+   name: "RC4 warning displayed successfully",
+   pref: [["security.tls.insecure_fallback_hosts", "rc4.example.com"]],
+   warning: ["RC4"], nowarning: ["SHA-1", "SSL 3.0"]},
+  {url: "https://rc4.example.com" + TEST_URI_PATH + "?",
+   name: "Unrestricted RC4 fallback worked",
+   pref: [["security.tls.unrestricted_rc4_fallback", true]],
+   warning: ["RC4"], nowarning: ["SHA-1", "SSL 3.0"]},
+  {url: "https://ssl3rc4.example.com" + TEST_URI_PATH,
+   name: "SSL3 and RC4 warning displayed successfully",
+   pref: [["security.tls.version.min", 0],
+          ["security.tls.insecure_fallback_hosts", "ssl3rc4.example.com"]],
+   warning: ["SSL 3.0", "RC4"], nowarning: ["SHA-1"]},
+  {url: "https://sha256ee.example.com" + TEST_URI_PATH,
+   name: "SSL warnings appropriately not present",
+   warning: [], nowarning: ["SHA-1", "SSL 3.0", "RC4"]},
+];
+const TRIGGER_MSG = "If you haven't seen ssl warnings yet, you won't";
+
+let gHud = undefined, gContentBrowser;
+let gCurrentTest;
+
+function test() {
+  registerCleanupFunction(function () {
+    gHud = gContentBrowser = null;
+  });
+
+  loadTab(TEST_URI).then(({browser}) => {
+    gContentBrowser = browser;
+    openConsole().then(runTestLoop);
+  });
+}
+
+function runTestLoop(theHud) {
+  gCurrentTest = gWebconsoleTests.shift();
+  if (!gCurrentTest) {
+    finishTest();
+    return;
+  }
+  if (!gHud) {
+    gHud = theHud;
+  }
+  gHud.jsterm.clearOutput();
+  gContentBrowser.addEventListener("load", onLoad, true);
+  if (gCurrentTest.pref) {
+    SpecialPowers.pushPrefEnv({"set": gCurrentTest.pref},
+      function() {
+        content.location = gCurrentTest.url;
+      });
+  } else {
+    content.location = gCurrentTest.url;
+  }
+}
+
+function onLoad(aEvent) {
+  gContentBrowser.removeEventListener("load", onLoad, true);
+  let aOutputNode = gHud.outputNode;
+
+  waitForSuccess({
+      name: gCurrentTest.name,
+      validator: function() {
+        if (gHud.outputNode.textContent.indexOf(TRIGGER_MSG) >= 0) {
+          for (let warning of gCurrentTest.warning) {
+            if (gHud.outputNode.textContent.indexOf(warning) < 0) {
+              return false;
+            }
+          }
+          for (let nowarning of gCurrentTest.nowarning) {
+            if (gHud.outputNode.textContent.indexOf(nowarning) >= 0) {
+              return false;
+            }
+          }
+          return true;
+        }
+      }
+    }).then(runTestLoop);
+}