CSP: Use PolicyContainerHost for browser checks #27774
Merged
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Content Security Policies are now synced into the
PolicyContainerHost. This CL used the policies from the
PolicyContainerHost for the CSP checks in the browser, i.e. for
'frame-src', 'form-action', 'navigate-to',
'upgrade-insecure-requests'. This CL also stops storing separately in
the RenderFrameHost the parsed Content Security Policies.
Bug: 1149272
Change-Id: I1eb3ab42138a86ae4e0c261d9e6a9b4b67124f99
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2684857
Commit-Queue: Antonio Sartori <antoniosartori@chromium.org>
Reviewed-by: Mike West <mkwst@chromium.org>
Reviewed-by: Arthur Sonzogni <arthursonzogni@chromium.org>
Cr-Commit-Position: refs/heads/master@{#860146}