зеркало из https://github.com/mozilla/gecko-dev.git
Bug 1595762: Make type object loads subject to CSP frame ancestors. r=jkt,annevk
Differential Revision: https://phabricator.services.mozilla.com/D52806 --HG-- extra : moz-landing-system : lando
This commit is contained in:
Родитель
0eaca3ad9b
Коммит
515d2c1cdb
|
@ -121,9 +121,10 @@ nsresult DOMSecurityManager::ParseCSPAndEnforceFrameAncestorCheck(
|
|||
|
||||
nsCOMPtr<nsILoadInfo> loadInfo = aChannel->LoadInfo();
|
||||
nsContentPolicyType contentType = loadInfo->GetExternalContentPolicyType();
|
||||
// frame-ancestor check only makes sense for subdocument loads, if this is
|
||||
// not a load of such type, there is nothing to do here.
|
||||
if (contentType != nsIContentPolicy::TYPE_SUBDOCUMENT) {
|
||||
// frame-ancestor check only makes sense for subdocument and object loads,
|
||||
// if this is not a load of such type, there is nothing to do here.
|
||||
if (contentType != nsIContentPolicy::TYPE_SUBDOCUMENT &&
|
||||
contentType != nsIContentPolicy::TYPE_OBJECT) {
|
||||
return NS_OK;
|
||||
}
|
||||
|
||||
|
|
Загрузка…
Ссылка в новой задаче