gecko/parser/xml/test/unit/test_sanitizer.js

function run_test() {
  var Ci = Components.interfaces;
  var Cc = Components.classes;

  // vectors by the html5security project (https://code.google.com/p/html5security/ & Creative Commons 3.0 BY), see CC-BY-LICENSE for the full license
  load("results.js");   // gives us a `vectors' array

  var ParserUtils =  Cc["@mozilla.org/parserutils;1"].getService(Ci.nsIParserUtils);
  var sanitizeFlags = ParserUtils.SanitizerCidEmbedsOnly|ParserUtils.SanitizerDropForms|ParserUtils.SanitizerDropNonCSSPresentation;
  // flags according to 
  // http://mxr.mozilla.org/comm-central/source/mailnews/mime/src/mimemoz2.cpp#2218
  // and default settings


  for (var item in vectors) {
    var evil = vectors[item].data;
    var sanitized = vectors[item].sanitized;
    var out = ParserUtils.sanitize(evil, sanitizeFlags);
    do_check_eq(sanitized, out);
  }
}
Bug 750436 - Tests for the HTML sanitizer. r=hsivonen 2013-08-13 01:21:55 -07:00			`function run_test() {`
			`var Ci = Components.interfaces;`
			`var Cc = Components.classes;`

			`// vectors by the html5security project (https://code.google.com/p/html5security/ & Creative Commons 3.0 BY), see CC-BY-LICENSE for the full license`
			load("results.js"); // gives us a `vectors' array

			`var ParserUtils = Cc["@mozilla.org/parserutils;1"].getService(Ci.nsIParserUtils);`
			`var sanitizeFlags = ParserUtils.SanitizerCidEmbedsOnly\|ParserUtils.SanitizerDropForms\|ParserUtils.SanitizerDropNonCSSPresentation;`
			`// flags according to`
			`// http://mxr.mozilla.org/comm-central/source/mailnews/mime/src/mimemoz2.cpp#2218`
			`// and default settings`


			`for (var item in vectors) {`
			`var evil = vectors[item].data;`
			`var sanitized = vectors[item].sanitized;`
			`var out = ParserUtils.sanitize(evil, sanitizeFlags);`
			`do_check_eq(sanitized, out);`
			`}`
			`}`