Add CSP header for resources with an active policy

Source/core/loader/FrameFetchContext.cpp

Index: Source/core/loader/FrameFetchContext.cpp
diff --git a/Source/core/loader/FrameFetchContext.cpp b/Source/core/loader/FrameFetchContext.cpp
index 2ff4516d9dd31350df7f2432cb91f7a2a676147a..49461f8c58f31fd5eae9fe16ae7d03a4a4bb77d2 100644
--- a/Source/core/loader/FrameFetchContext.cpp
+++ b/Source/core/loader/FrameFetchContext.cpp
@@ -662,6 +662,16 @@ void FrameFetchContext::addClientHintsIfNecessary(FetchRequest& fetchRequest)
         fetchRequest.mutableResourceRequest().addHTTPHeaderField("RW", AtomicString(String::number(frame()->view()->viewportWidth())));
 }
 
+void FrameFetchContext::addCSPHeaderIfNecessary(Resource::Type type, FetchRequest& fetchRequest)
+{
+    if (!document() || !frame())
+        return;
+
+    const ContentSecurityPolicy* csp = document()->contentSecurityPolicy();
+    if (csp->shouldSendCSPHeader(type))
+        fetchRequest.mutableResourceRequest().addHTTPHeaderField("CSP", "active");

[Mike West, 2015/03/20 14:53:54]

Nit: Whoever wrote that spec should have used something shorter than `active`.
:/

+}
+
 DEFINE_TRACE(FrameFetchContext)
 {
     visitor->trace(m_document);