CSP: Use PolicyContainerHost for browser checks #27774
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
wpt-pr-bot
approved these changes
Feb 25, 2021
chromium-wpt-export-bot
force-pushed
the
chromium-export-cl-2684857
branch
3 times, most recently
from
63c90b9
to
53dc7d2
Compare
chromium-wpt-export-bot
force-pushed
the
chromium-export-cl-2684857
branch
2 times, most recently
from
f6de675
to
2edd4df
Compare
Content Security Policies are now synced into the PolicyContainerHost. This CL used the policies from the PolicyContainerHost for the CSP checks in the browser, i.e. for 'frame-src', 'form-action', 'navigate-to', 'upgrade-insecure-requests'. This CL also stops storing separately in the RenderFrameHost the parsed Content Security Policies. Bug: 1149272 Change-Id: I1eb3ab42138a86ae4e0c261d9e6a9b4b67124f99 Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2684857 Commit-Queue: Antonio Sartori <antoniosartori@chromium.org> Reviewed-by: Mike West <mkwst@chromium.org> Reviewed-by: Arthur Sonzogni <arthursonzogni@chromium.org> Cr-Commit-Position: refs/heads/master@{#860146}
chromium-wpt-export-bot
force-pushed
the
chromium-export-cl-2684857
branch
from
2edd4df
to
314a448
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Content Security Policies are now synced into the
PolicyContainerHost. This CL used the policies from the
PolicyContainerHost for the CSP checks in the browser, i.e. for
'frame-src', 'form-action', 'navigate-to',
'upgrade-insecure-requests'. This CL also stops storing separately in
the RenderFrameHost the parsed Content Security Policies.
Bug: 1149272
Change-Id: I1eb3ab42138a86ae4e0c261d9e6a9b4b67124f99
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2684857
Commit-Queue: Antonio Sartori <antoniosartori@chromium.org>
Reviewed-by: Mike West <mkwst@chromium.org>
Reviewed-by: Arthur Sonzogni <arthursonzogni@chromium.org>
Cr-Commit-Position: refs/heads/master@{#860146}