content/renderer/render_frame_impl.cc - Issue 1957783002: Replicate Content-Security-Policy into remote frame proxies.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/renderer/render_frame_impl.cc

Issue 1957783002: Replicate Content-Security-Policy into remote frame proxies. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Fixing CSP inheritance for srcdoc. Created 4 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« content/browser/site_per_process_browsertest.cc ('K') | « content/renderer/render_frame_impl.h ('k') | content/renderer/render_frame_proxy.h » ('j') | content/test/data/frame-src-self-and-b.html » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: content/renderer/render_frame_impl.cc

diff --git a/content/renderer/render_frame_impl.cc b/content/renderer/render_frame_impl.cc

index bb9f4224bfa0bfddb207eccc3d55e86e6f3a136c..6c173e4c8cc63df4b0aa03d0157f62c7c2a2213d 100644

--- a/content/renderer/render_frame_impl.cc

+++ b/content/renderer/render_frame_impl.cc

@@ -50,6 +50,7 @@

#include "content/child/weburlresponse_extradata_impl.h"

#include "content/common/accessibility_messages.h"

#include "content/common/clipboard_messages.h"

+#include "content/common/content_security_policy_header.h"

#include "content/common/frame_messages.h"

#include "content/common/frame_replication_state.h"

#include "content/common/gpu/client/context_provider_command_buffer.h"

@@ -2814,6 +2815,20 @@ void RenderFrameImpl::didChangeSandboxFlags(blink::WebFrame* child_frame,

routing_id_, GetRoutingIdForFrameOrProxy(child_frame), flags));

}

+void RenderFrameImpl::didAddContentSecurityPolicy(

+ const blink::WebString& header_value,

+ blink::WebContentSecurityPolicyType type,

+ blink::WebContentSecurityPolicySource source) {

+ if (!SiteIsolationPolicy::AreCrossProcessFramesPossible())

+ return;

+ ContentSecurityPolicyHeader header;

+ header.header_value = base::UTF16ToUTF8(base::StringPiece16(header_value));

+ header.type = type;

+ header.source = source;

+ Send(new FrameHostMsg_DidAddContentSecurityPolicy(routing_id_, header));

void RenderFrameImpl::didChangeFrameOwnerProperties(

blink::WebFrame* child_frame,

const blink::WebFrameOwnerProperties& frame_owner_properties) {