Address @ghostwords comments and combine canvas suites

EFForg · Aug 14, 2020 · aef17af · aef17af
1 parent 165d12b
commit aef17af
Show file tree

Hide file tree

Showing 3 changed files with 28 additions and 44 deletions.
diff --git a/src/js/contentscripts/fingerprinting.js b/src/js/contentscripts/fingerprinting.js
@@ -207,7 +207,7 @@ function getFpPageScript() {
         // set to true after the first write, if the method is not
         // restorable. Happens if another library also overwrites
         // this method.
-        var skipMonitoring = false;
+        var skip_monitoring = false;
 
         function wrapped() {
           var args = arguments;
@@ -216,7 +216,7 @@ function getFpPageScript() {
             // to avoid false positives,
             // bail if the text being written is too short,
             // of if we've already sent a monitoring payload
-            if (skipMonitoring || !args[0] || args[0].length < 5) {
+            if (skip_monitoring || !args[0] || args[0].length < 5) {
               return orig.apply(this, args);
             }
           }
@@ -247,7 +247,7 @@ function getFpPageScript() {
             if (this[item.propName] === wrapped) {
               this[item.propName] = orig;
             } else {
-              skipMonitoring = true;
+              skip_monitoring = true;
             }
           }
 

diff --git a/tests/selenium/fingerprinting_canvas_hidpi_test.py b/tests/selenium/fingerprinting_canvas_hidpi_test.py
diff --git a/tests/selenium/fingerprinting_test.py b/tests/selenium/fingerprinting_test.py
@@ -36,6 +36,13 @@ def detected_tracking(self, domain, page_url):
     map[tracker_origin].indexOf(site_origin) != -1
 );""".format(domain, page_url))
 
+    def get_fillText_source(self):
+        return self.js("""
+            const canvas = document.getElementById("writetome");
+            const ctx = canvas.getContext("2d");
+            return ctx.fillText.toString();
+        """)
+
     # TODO can fail because our content script runs too late: https://crbug.com/478183
     @pbtest.repeat_if_failed(3)
     def test_canvas_fingerprinting_detection(self):
@@ -69,6 +76,24 @@ def test_canvas_fingerprinting_detection(self):
             "Canvas fingerprinting resource was detected as a fingerprinter."
         )
 
+    # Privacy Badger overrides a few functions on canvas contexts to check for fingerprinting.
+    # In previous versions, it would restore the native function after a single call. Unfortunately,
+    # this would wipe out polyfills that had also overridden the same functions, such as the very
+    # popular "hidpi-canvas-polyfill".
+    def test_canvas_polyfill_clobbering(self):
+        FIXTURE_URL = (
+            "https://efforg.github.io/privacybadger-test-fixtures/html/"
+            "fingerprinting_canvas_hidpi.html"
+        )
+
+        # visit the page
+        self.load_url(FIXTURE_URL)
+
+        # check that we did not restore the native function (should be hipdi polyfill)
+        self.assertNotIn("[native code]", self.get_fillText_source(),
+            "Canvas context fillText is not native version (polyfill has been retained)."
+        )
+
 
 if __name__ == "__main__":
     unittest.main()