Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(462)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: Source/core/frame/csp/ContentSecurityPolicy.cpp

Issue 550223002: CSP: Separate side-effects of parsing from the parsing code. (Closed) Base URL: svn://svn.chromium.org/blink/trunk
Patch Set: Feedback. Created 6 years, 3 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « Source/core/frame/csp/ContentSecurityPolicy.h ('k') | no next file » | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: Source/core/frame/csp/ContentSecurityPolicy.cpp
diff --git a/Source/core/frame/csp/ContentSecurityPolicy.cpp b/Source/core/frame/csp/ContentSecurityPolicy.cpp
index d4777e18e99cfbdfb3432fbbf47b17607e03be6f..db0e080d148adb6b2ee50aba9e02997fc669c148 100644
--- a/Source/core/frame/csp/ContentSecurityPolicy.cpp
+++ b/Source/core/frame/csp/ContentSecurityPolicy.cpp
@@ -136,8 +136,28 @@ ContentSecurityPolicy::ContentSecurityPolicy(ExecutionContext* executionContext)
, m_overrideInlineStyleAllowed(false)
, m_scriptHashAlgorithmsUsed(ContentSecurityPolicyHashAlgorithmNone)
, m_styleHashAlgorithmsUsed(ContentSecurityPolicyHashAlgorithmNone)
+ , m_sandboxMask(0)
+ , m_referrerPolicy(ReferrerPolicyDefault)
{
+}
+
+void ContentSecurityPolicy::applyPolicySideEffectsToExecutionContext()
+{
+ // Ensure that 'self' processes correctly.
m_selfSource = adoptPtr(new CSPSource(this, securityOrigin()->protocol(), securityOrigin()->host(), securityOrigin()->port(), String(), false, false));
+
+ // If we're in a Document, set the referrer policy and sandbox flags.
+ if (Document* document = this->document()) {
+ document->enforceSandboxFlags(m_sandboxMask);
+ if (didSetReferrerPolicy())
+ document->setReferrerPolicy(m_referrerPolicy);
+ }
+
+ // We disable 'eval()' even in the case of report-only policies, and rely on the check in the
+ // V8Initializer::codeGenerationCheckCallbackInMainThread callback to determine whether the
+ // call should execute or not.
+ if (!m_disableEvalErrorMessage.isNull())
+ executionContext()->disableEval(m_disableEvalErrorMessage);
}
ContentSecurityPolicy::~ContentSecurityPolicy()
@@ -154,19 +174,29 @@ void ContentSecurityPolicy::copyStateFrom(const ContentSecurityPolicy* other)
ASSERT(m_policies.isEmpty());
for (CSPDirectiveListVector::const_iterator iter = other->m_policies.begin(); iter != other->m_policies.end(); ++iter)
addPolicyFromHeaderValue((*iter)->header(), (*iter)->headerType(), (*iter)->headerSource());
+
+ // FIXME: This ought to be a step distinct from copyStateFrom(). https://crbug.com/411889
+ applyPolicySideEffectsToExecutionContext();
}
void ContentSecurityPolicy::didReceiveHeaders(const ContentSecurityPolicyResponseHeaders& headers)
{
if (!headers.contentSecurityPolicy().isEmpty())
- didReceiveHeader(headers.contentSecurityPolicy(), ContentSecurityPolicyHeaderTypeEnforce, ContentSecurityPolicyHeaderSourceHTTP);
+ didReceiveHeader(headers.contentSecurityPolicy(), ContentSecurityPolicyHeaderTypeEnforce, ContentSecurityPolicyHeaderSourceHTTP, DoNotApplySideEffectsToExecutionContext);
if (!headers.contentSecurityPolicyReportOnly().isEmpty())
- didReceiveHeader(headers.contentSecurityPolicyReportOnly(), ContentSecurityPolicyHeaderTypeReport, ContentSecurityPolicyHeaderSourceHTTP);
+ didReceiveHeader(headers.contentSecurityPolicyReportOnly(), ContentSecurityPolicyHeaderTypeReport, ContentSecurityPolicyHeaderSourceHTTP, DoNotApplySideEffectsToExecutionContext);
+
+ // FIXME: This ought to be a step distinct from didReceiveHeaders(). https://crbug.com/411889
+ applyPolicySideEffectsToExecutionContext();
}
-void ContentSecurityPolicy::didReceiveHeader(const String& header, ContentSecurityPolicyHeaderType type, ContentSecurityPolicyHeaderSource source)
+void ContentSecurityPolicy::didReceiveHeader(const String& header, ContentSecurityPolicyHeaderType type, ContentSecurityPolicyHeaderSource source, SideEffectDisposition sideEffectDisposition)
{
addPolicyFromHeaderValue(header, type, source);
+
+ // FIXME: This ought to be a step distinct from didReceiveHeader(). https://crbug.com/411889
+ if (sideEffectDisposition == ApplySideEffectsToExecutionContext)
+ applyPolicySideEffectsToExecutionContext();
}
void ContentSecurityPolicy::addPolicyFromHeaderValue(const String& header, ContentSecurityPolicyHeaderType type, ContentSecurityPolicyHeaderSource source)
@@ -185,7 +215,6 @@ void ContentSecurityPolicy::addPolicyFromHeaderValue(const String& header, Conte
}
}
-
Vector<UChar> characters;
header.appendTo(characters);
@@ -203,9 +232,13 @@ void ContentSecurityPolicy::addPolicyFromHeaderValue(const String& header, Conte
// ^ ^
OwnPtr<CSPDirectiveList> policy = CSPDirectiveList::create(this, begin, position, type, source);
- // We disable 'eval()' even in the case of report-only policies, and rely on the check in the V8Initializer::codeGenerationCheckCallbackInMainThread callback to determine whether the call should execute or not.
- if (!policy->allowEval(0, SuppressReport))
- m_executionContext->disableEval(policy->evalDisabledErrorMessage());
+ if (type != ContentSecurityPolicyHeaderTypeReport && policy->didSetReferrerPolicy()) {
+ // FIXME: We need a 'ReferrerPolicyUnset' enum to avoid confusing code like this.
+ m_referrerPolicy = didSetReferrerPolicy() ? mergeReferrerPolicies(m_referrerPolicy, policy->referrerPolicy()) : policy->referrerPolicy();
+ }
+
+ if (!policy->allowEval(0, SuppressReport) && m_disableEvalErrorMessage.isNull())
+ m_disableEvalErrorMessage = policy->evalDisabledErrorMessage();
m_policies.append(policy.release());
@@ -214,9 +247,6 @@ void ContentSecurityPolicy::addPolicyFromHeaderValue(const String& header, Conte
skipExactly<UChar>(position, end, ',');
begin = position;
}
-
- if (document && type != ContentSecurityPolicyHeaderTypeReport && didSetReferrerPolicy())
- document->setReferrerPolicy(referrerPolicy());
}
void ContentSecurityPolicy::setOverrideAllowInlineStyle(bool value)
@@ -546,10 +576,9 @@ KURL ContentSecurityPolicy::completeURL(const String& url) const
return m_executionContext->contextCompleteURL(url);
}
-void ContentSecurityPolicy::enforceSandboxFlags(SandboxFlags mask) const
+void ContentSecurityPolicy::enforceSandboxFlags(SandboxFlags mask)
{
- if (Document* document = this->document())
- document->enforceSandboxFlags(mask);
+ m_sandboxMask |= mask;
}
static String stripURLForUseInReport(Document* document, const KURL& url)
« no previous file with comments | « Source/core/frame/csp/ContentSecurityPolicy.h ('k') | no next file » | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698