Closed
Bug 1438817
Opened 6 years ago
Closed 6 years ago
[wpt-sync] PR 9557 - Implemented cascading of the RequiredCSP through nested contexts
Categories
(Core :: DOM: Security, enhancement, P3)
Core
DOM: Security
Tracking
()
RESOLVED
FIXED
mozilla61
| Tracking | Status | |
|---|---|---|
| firefox61 | --- | fixed |
People
(Reporter: mozilla.org, Unassigned)
Details
(Whiteboard: [wptsync downstream][domsecurity-backlog3])
An iframe that is inside another iframe that has as RequiredCSP should respect that RequiredCSP. Spec: https://w3c.github.io/webappsec-csp/embedded/#required-csp Bug: 779031 Change-Id: I9042d63a6d14f48fd3cf1caaccf22c5cd1aa6d7a Reviewed-on: https://chromium-review.googlesource.com/924064 WPT-Export-Revision: 627556217f7f62a63ac6de3e95a5e403680321d9
|
Reporter | |
Updated•6 years ago
|
Component: web-platform-tests → DOM: Security
Product: Testing → Core
|
|
Reporter | |
Comment 1•6 years ago
|
||
Pushed to try https://treeherder.mozilla.org/#/jobs?repo=try&revision=efc90d66344ff9dfac7cc4b21df7cabb7ab0de17
|
|
Reporter | |
Comment 2•6 years ago
|
||
Pushed to try (stability) https://treeherder.mozilla.org/#/jobs?repo=try&revision=a3a0e8741759bc4474b70172163d4b4b3acbe585
|
|
Reporter | |
Comment 3•6 years ago
|
||
Ran 16 tests and 221 subtests
OK : 16
PASS : 143
FAIL : 78
New tests that have failures or other problems:
/content-security-policy/embedded-enforcement/required-csp-header-cascade.html
Test same origin: Test less restrictive policy on second iframe: FAIL
Test same origin: Test more restrictive policy on second iframe: FAIL
Test same origin: Test no policy on first iframe: FAIL
Test same origin: Test no policy on second iframe: FAIL
Test same origin: Test same policy for both iframes: FAIL
|
||
Updated•6 years ago
|
Priority: -- → P3
Whiteboard: [wptsync downstream] → [wptsync downstream][domsecurity-backlog3]
Pushed by james@hoppipolla.co.uk: https://hg.mozilla.org/integration/mozilla-inbound/rev/5039137e5a10 [wpt PR 9557] - Implemented cascading of the RequiredCSP through nested contexts, a=testonly https://hg.mozilla.org/integration/mozilla-inbound/rev/d7836d190e01 [wpt PR 9557]- Update wpt metadata, a=testonly
|
||
Comment 5•6 years ago
|
||
| bugherder | ||
https://hg.mozilla.org/mozilla-central/rev/5039137e5a10 https://hg.mozilla.org/mozilla-central/rev/d7836d190e01
Status: NEW → RESOLVED
Closed: 6 years ago
status-firefox61:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla61
You need to log in
before you can comment on or make changes to this bug.
Description
•