content/renderer/render_frame_proxy.cc - Issue 1957783002: Replicate Content-Security-Policy into remote frame proxies.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/renderer/render_frame_proxy.cc

Issue 1957783002: Replicate Content-Security-Policy into remote frame proxies. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Rebasing + small self-review tweaks (comments + assert->dcheck). Created 4 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: content/renderer/render_frame_proxy.cc

diff --git a/content/renderer/render_frame_proxy.cc b/content/renderer/render_frame_proxy.cc

index 0b550b90874b74b6cd89dccea9a1fd1ca36a5890..5d3ec1de97c41e6e226cc347c4f420fe764859c7 100644

--- a/content/renderer/render_frame_proxy.cc

+++ b/content/renderer/render_frame_proxy.cc

@@ -11,6 +11,7 @@

#include "base/command_line.h"

#include "base/lazy_instance.h"

#include "content/child/webmessageportchannel_impl.h"

+#include "content/common/content_security_policy_header.h"

#include "content/common/frame_messages.h"

#include "content/common/frame_replication_state.h"

#include "content/common/input_messages.h"

@@ -224,6 +225,10 @@ void RenderFrameProxy::SetReplicatedState(const FrameReplicationState& state) {

state.should_enforce_strict_mixed_content_checking);

web_frame_->setReplicatedPotentiallyTrustworthyUniqueOrigin(

state.has_potentially_trustworthy_unique_origin);

+ web_frame_->resetReplicatedContentSecurityPolicy();

+ for (const auto& header : state.accumulated_csp_headers)

+ OnAddContentSecurityPolicy(header);

}

// Update the proxy's SecurityContext and FrameOwner with new sandbox flags

@@ -267,6 +272,10 @@ bool RenderFrameProxy::OnMessageReceived(const IPC::Message& msg) {

IPC_MESSAGE_HANDLER(FrameMsg_DidUpdateSandboxFlags, OnDidUpdateSandboxFlags)

IPC_MESSAGE_HANDLER(FrameMsg_DispatchLoad, OnDispatchLoad)

IPC_MESSAGE_HANDLER(FrameMsg_DidUpdateName, OnDidUpdateName)

+ IPC_MESSAGE_HANDLER(FrameMsg_AddContentSecurityPolicy,

+ OnAddContentSecurityPolicy)

+ IPC_MESSAGE_HANDLER(FrameMsg_ResetContentSecurityPolicy,

+ OnResetContentSecurityPolicy)

IPC_MESSAGE_HANDLER(FrameMsg_EnforceStrictMixedContentChecking,

OnEnforceStrictMixedContentChecking)

IPC_MESSAGE_HANDLER(FrameMsg_DidUpdateOrigin, OnDidUpdateOrigin)

@@ -337,6 +346,17 @@ void RenderFrameProxy::OnDidUpdateName(const std::string& name,

blink::WebString::fromUTF8(unique_name));

}

+void RenderFrameProxy::OnAddContentSecurityPolicy(

+ const ContentSecurityPolicyHeader& header) {

+ web_frame_->addReplicatedContentSecurityPolicyHeader(

+ blink::WebString::fromUTF8(header.header_value), header.type,

+ header.source);

+void RenderFrameProxy::OnResetContentSecurityPolicy() {

+ web_frame_->resetReplicatedContentSecurityPolicy();

void RenderFrameProxy::OnEnforceStrictMixedContentChecking(

bool should_enforce) {

web_frame_->setReplicatedShouldEnforceStrictMixedContentChecking(

« content/browser/site_per_process_browsertest.cc ('K') | « content/renderer/render_frame_proxy.h ('k') | content/test/data/frame-src-self-and-b.html » ('j') | no next file with comments »