Replicate Content-Security-Policy into remote frame proxies.

content/browser/frame_host/frame_tree_node.h

Index: content/browser/frame_host/frame_tree_node.h
diff --git a/content/browser/frame_host/frame_tree_node.h b/content/browser/frame_host/frame_tree_node.h
index a8a9eedb88c3a255ca36b7418eb74607a396239d..b3ae3f1911fa68a229372927355df1e8af0f242b 100644
--- a/content/browser/frame_host/frame_tree_node.h
+++ b/content/browser/frame_host/frame_tree_node.h
@@ -27,6 +27,7 @@ class FrameTree;
 class NavigationRequest;
 class Navigator;
 class RenderFrameHostImpl;
+struct ContentSecurityPolicyHeader;
 
 // When a page contains iframes, its renderer process maintains a tree structure
 // of those frames. We are mirroring this tree in the browser process. This
@@ -145,6 +146,14 @@ class CONTENT_EXPORT FrameTreeNode {
   // Set the current name and notify proxies about the update.
   void SetFrameName(const std::string& name, const std::string& unique_name);
 
+  // Add CSP header to replication state and notify proxies about the update.
+  void AddContentSecurityPolicy(const ContentSecurityPolicyHeader& header);
+
+  // Discards previous CSP headers and notifies proxies about the update.
+  // Typically invoked after navigating to a new document (which comes with a
+  // fresh set of CSP http headers).
+  void ResetContentSecurityPolicy();
+
   // Sets the current enforcement of strict mixed content checking and
   // notifies proxies about the update.
   void SetEnforceStrictMixedContentChecking(bool should_enforce);