angler-fishThe Vulnerability History Project

CSP: &quotlocal schemes&quot should inherit policy when window.opened.

      https://w3c.github.io/webappsec-csp/#initialize-document-csp mandates
that resources with &quotlocal schemes&quot ('data:', 'blob:', 'filesystem:',
'about:') inherit the policy of their opening context when opened via
things like 'window.open'. We're not doing that, but we ought to.

BUG=669086
R=jochen@chromium.org

Review-Url: https://codereview.chromium.org/2530343006
Cr-Commit-Position: refs/heads/master@{#435233}
by Wallace the Slow Worm 2016-11-30 12:36:42 UTC
commit e598765e4822eac833a547abca92ce87a1287dc0
Chromium Fix CVE-2017-5033
third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/cascade/cross-origin-window-open.html
-30
third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/cascade/cross-origin-with-own-policy-window-open.html
-32
third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/cascade/same-origin-window-open.html
-55
third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/cascade/same-origin-with-own-policy-window-open.html
-61
third_party/WebKit/Source/core/dom/Document.cpp
+19 -27
expand_less