1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
|
using System.IO;
using System.Text;
using MonoForks.System.Windows.Browser.Net;
using NUnit.Framework;
namespace CrossDomainPolicyParserTests
{
[TestFixture]
public class FlashPolicyParserSocketTests
{
[Test]
public void AllDomains_AllPorts_IsAllowed()
{
string policy = @"<?xml version='1.0'?>
<cross-domain-policy>
<allow-access-from domain=""*"" to-ports=""*"" />
</cross-domain-policy>";
Assert.IsTrue(RequestAllowed(policy, 123));
}
[Test]
public void AllDomains_AllPorts_Trailing0_IsAllowed()
{
string policy = @"<?xml version='1.0'?>
<cross-domain-policy>
<allow-access-from domain=""*"" to-ports=""*"" />
</cross-domain-policy>" + "\0";
Assert.IsTrue(RequestAllowed(policy, 123));
}
[Test]
public void AllDomains_UsingSpecificPorts_IsAllowed()
{
string policy = @"<?xml version='1.0'?>
<cross-domain-policy>
<allow-access-from domain=""*"" to-ports=""1010,1020"" />
</cross-domain-policy>";
Assert.IsTrue(RequestAllowed(policy, 1020));
}
[Test]
public void AllDomains_OutsideSpecificPorts_IsDisAllowed()
{
string policy = @"<?xml version='1.0'?>
<cross-domain-policy>
<allow-access-from domain=""*"" to-ports=""1010,1030"" />
</cross-domain-policy>";
Assert.IsFalse(RequestAllowed(policy, 1020));
}
[Test]
public void AllDomains_OutsidePortRange_IsDisAllowed()
{
string policy = @"<?xml version='1.0'?>
<cross-domain-policy>
<allow-access-from domain=""*"" to-ports=""1030-1040"" />
</cross-domain-policy>";
Assert.IsFalse(RequestAllowed(policy, 1020));
}
[Test]
public void AllDomains_InsidePortRange_IsAllowed()
{
string policy = @"<?xml version='1.0'?>
<cross-domain-policy>
<allow-access-from domain=""*"" to-ports=""1030-1040"" />
</cross-domain-policy>";
Assert.IsTrue(RequestAllowed(policy, 1035));
}
[Test]
public void PolicyReceivedFromHigherThan1024_DisallowsAccessToBelow1024Ports()
{
string policy = @"<?xml version='1.0'?>
<cross-domain-policy>
<allow-access-from domain=""*"" to-ports=""1000-1040"" />
</cross-domain-policy>";
Assert.IsFalse(RequestAllowed(policy, 1010, 1300));
}
[Test]
public void PolicyReceivedFromHigherThan1024_AllowsAccessToAbove1024Ports()
{
string policy = @"<?xml version='1.0'?>
<cross-domain-policy>
<allow-access-from domain=""*"" to-ports=""1000-1040"" />
</cross-domain-policy>";
Assert.IsTrue(RequestAllowed(policy, 1035, 1300));
}
[Test]
public void PolicyReceivedFromLowerThan1024_AllowsAccessToBelow1024Ports()
{
string policy = @"<?xml version='1.0'?>
<cross-domain-policy>
<allow-access-from domain=""*"" to-ports=""1000-1040"" />
</cross-domain-policy>";
Assert.IsTrue(RequestAllowed(policy, 1010, 1000));
}
[Test]
public void PolicyReceivedFromLowerThan1024_AllowsAccessToAbove1024Ports()
{
string policy = @"<?xml version='1.0'?>
<cross-domain-policy>
<allow-access-from domain=""*"" to-ports=""1000-1040"" />
</cross-domain-policy>";
Assert.IsTrue(RequestAllowed(policy, 1030, 1000));
}
private bool RequestAllowed(string xdomain, int port)
{
return RequestAllowed(xdomain, port, 843);
}
private bool RequestAllowed(string xdomain, int port, int policyport)
{
var ms = new MemoryStream(Encoding.UTF8.GetBytes(xdomain));
var policy = FlashCrossDomainPolicy.FromStream(ms);
policy.PolicyPort = policyport;
return policy.IsSocketConnectionAllowed(port);
}
}
}
|
