Stop supporting invalid CSP directives in meta tags

third_party/WebKit/LayoutTests/http/tests/navigation/pushstate-at-unique-origin-denied.php

Index: third_party/WebKit/LayoutTests/http/tests/navigation/pushstate-at-unique-origin-denied.php
diff --git a/third_party/WebKit/LayoutTests/http/tests/navigation/pushstate-at-unique-origin-denied.html b/third_party/WebKit/LayoutTests/http/tests/navigation/pushstate-at-unique-origin-denied.php
similarity index 89%
rename from third_party/WebKit/LayoutTests/http/tests/navigation/pushstate-at-unique-origin-denied.html
rename to third_party/WebKit/LayoutTests/http/tests/navigation/pushstate-at-unique-origin-denied.php
index ee8c324c85de624a6f4ddb60f25f5067e0143ae1..629b65f05f916392579632bcc20428bfa9c48054 100644
--- a/third_party/WebKit/LayoutTests/http/tests/navigation/pushstate-at-unique-origin-denied.html
+++ b/third_party/WebKit/LayoutTests/http/tests/navigation/pushstate-at-unique-origin-denied.php
@@ -1,4 +1,6 @@
-<meta http-equiv="Content-Security-Policy" content="sandbox allow-scripts">
+<?php
+header("Content-Security-Policy: sandbox allow-scripts");
+?>
 <script src="../resources/testharness.js"></script>
 <script src="../resources/testharnessreport.js"></script>
 <script>