extensions/common/manifest_handlers/csp_info.cc - Issue 754713002: Allow arbitrary object-src CSP directives for component extensions

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: extensions/common/manifest_handlers/csp_info.cc

Issue 754713002: Allow arbitrary object-src CSP directives for component extensions (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Created 6 years, 1 month ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: extensions/common/manifest_handlers/csp_info.cc

diff --git a/extensions/common/manifest_handlers/csp_info.cc b/extensions/common/manifest_handlers/csp_info.cc

index 2fd74fb76b272a096eae2e8f215861835955aeb6..b33443c1281b530a7d1878cbd130d25660f22d89 100644

--- a/extensions/common/manifest_handlers/csp_info.cc

+++ b/extensions/common/manifest_handlers/csp_info.cc

@@ -44,6 +44,27 @@ const char kDefaultPlatformAppContentSecurityPolicy[] =

// streaming or partial buffering.

"media-src *;";

+int GetValidatorOptions(Extension* extension) {

+ int options = csp_validator::NO_OPTIONS;

+ // crbug.com/146487

+ if (extension->GetType() == Manifest::TYPE_EXTENSION ||

+ extension->GetType() == Manifest::TYPE_LEGACY_PACKAGED_APP) {

+ options |= csp_validator::ALLOW_UNSAFE_EVAL;

+ }

+ // Component extensions can specify an insecure object-src directive. This

+ // should be safe because non-NPAPI plugins should load in a sandboxed process

+ // and only allow communication via postMessage. Flash is an exception since

+ // it allows scripting into the embedder page, but even then it should

+ // disallow cross-origin scripting. At some point we may want to consider

+ // allowing this publicly.

+ if (extensions::Manifest::IsComponentLocation(extension->location()))

+ options |= csp_validator::ALLOW_INSECURE_OBJECT_SRC;

+ return options;

} // namespace

CSPInfo::CSPInfo(const std::string& security_policy)

@@ -88,7 +109,7 @@ bool CSPHandler::Parse(Extension* extension, base::string16* error) {

kDefaultContentSecurityPolicy;

CHECK(ContentSecurityPolicyIsSecure(content_security_policy,

- extension->GetType()));

+ GetValidatorOptions(extension)));

extension->SetManifestData(keys::kContentSecurityPolicy,

new CSPInfo(content_security_policy));

}

@@ -106,7 +127,7 @@ bool CSPHandler::Parse(Extension* extension, base::string16* error) {

}

if (extension->manifest_version() >= 2 &&

!ContentSecurityPolicyIsSecure(content_security_policy,

- extension->GetType())) {

+ GetValidatorOptions(extension))) {

*error = base::ASCIIToUTF16(errors::kInsecureContentSecurityPolicy);

return false;

}

« extensions/common/csp_validator_unittest.cc ('K') | « extensions/common/csp_validator_unittest.cc ('k') | no next file » | no next file with comments »