Google Git
Sign in
chromium / chromium / src.git / ebdd6c2a1567b09457dd6088d03bbc49d4412e46
commitebdd6c2a1567b09457dd6088d03bbc49d4412e46[log] [tgz]
authorHiroki Nakagawa <nhiroki@chromium.org>Wed May 08 23:57:21 2019
committerCommit Bot <commit-bot@chromium.org>Wed May 08 23:57:21 2019
tree04b9cb347c540da7c99d1969411b60e8959b7c75
parent3eac1795e4c3e46a65bebd8daebeaeb8894ad4d6 [diff]
Worker: Respect CSP for eval() on workers when off-the-main-thread script fetch is enabled

This CL allows to call WorkerOrWorkletScriptController::DisableEval() after
WorkerOrWorkletScriptController::Initialize() to make it possible to disallow
JS's eval() by CSP headers when off-the-main-thread worker script fetch is
enabled.

=== Details ===

WorkerOrWorkletScriptContoller::DisableEval() just stashes a request to disable
`eval()`, and Initialize() actually disables it. Therefore, DisableEval() must
be called before Initialize().

In the current implementation, Initialize() is called from
WorkerThread::InitializeOnWorkerThread() during worker thread startup. This
works well for on-the-main-thread script fetch because the worker script is
fetched before the worker thread startup, and DisableEval() is called based on
worker script's CSP headers before Initialize().

On the other hand, with off-the-main-thread script fetch, the worker script is
fetched on the worker thread after InitializeOnWorkerThread(), and DisableEval()
is also called after InitializeOnWorkerThread(), so eval() is not affected by
the CSP headers. This CL fixes it.

In addition, this CL fixes failing tests for installed service workers that
behave like off-the-main-thread worker script fetch.

Design doc:
https://docs.google.com/document/d/1JCv8TD2nPLNC2iRCp_D1OM4I3uTS0HoEobuTymaMqgw/edit?usp=sharing

Bug: 940316, 937168, 960770
Change-Id: Iba46ad5b67f4013753c061241bd35aafc68ae680
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1514337
Reviewed-by: Hiroshige Hayashizaki <hiroshige@chromium.org>
Reviewed-by: Kenichi Ishibashi <bashi@chromium.org>
Commit-Queue: Hiroki Nakagawa <nhiroki@chromium.org>
Cr-Commit-Position: refs/heads/master@{#657928}
6 files changed
tree: 04b9cb347c540da7c99d1969411b60e8959b7c75
  1. android_webview/
  2. apps/
  3. ash/
  4. base/
  5. build/
  6. build_overrides/
  7. buildtools/
  8. cc/
  9. chrome/
  10. chrome_elf/
  11. chromecast/
  12. chromeos/
  13. cloud_print/
  14. components/
  15. content/
  16. courgette/
  17. crypto/
  18. dbus/
  19. device/
  20. docs/
  21. extensions/
  22. fuchsia/
  23. gin/
  24. google_apis/
  25. google_update/
  26. gpu/
  27. headless/
  28. infra/
  29. ios/
  30. ipc/
  31. jingle/
  32. media/
  33. mojo/
  34. native_client_sdk/
  35. net/
  36. pdf/
  37. ppapi/
  38. printing/
  39. remoting/
  40. rlz/
  41. sandbox/
  42. services/
  43. skia/
  44. sql/
  45. storage/
  46. styleguide/
  47. testing/
  48. third_party/
  49. tools/
  50. ui/
  51. url/
  52. .clang-format
  53. .eslintrc.js
  54. .git-blame-ignore-revs
  55. .gitattributes
  56. .gitignore
  57. .gn
  58. .vpython
  59. AUTHORS
  60. BUILD.gn
  61. CODE_OF_CONDUCT.md
  62. codereview.settings
  63. DEPS
  64. ENG_REVIEW_OWNERS
  65. LICENSE
  66. LICENSE.chromium_os
  67. OWNERS
  68. PRESUBMIT.py
  69. PRESUBMIT_test.py
  70. PRESUBMIT_test_mocks.py
  71. README.md
  72. WATCHLISTS
README.md

Logo Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.

The project's web site is https://www.chromium.org.

Documentation in the source is rooted in docs/README.md.

Learn how to Get Around the Chromium Source Code Directory Structure .