Google Git
Sign in
chromium / chromium / src.git / bfd0621af3f09557e9713d5c76108c7dddaa49a6
commitbfd0621af3f09557e9713d5c76108c7dddaa49a6[log] [tgz]
authorStefano Sanfilippo <[email protected]>Mon Nov 11 19:58:57 2019
committerCommit Bot <[email protected]>Mon Nov 11 19:58:57 2019
tree3b323b1bb7a870f658385a6aac353859b884c0f3
parente7d02d4014e56d01235f1edd92869d50a0b8148b [diff]
[Trusted Types] Support eval(TT) when TT Is enforced.

Reintroduce the modifying hook with the new signature. Scripts are executed if both TT and CSP allow them, otherwise throw an EvalError and send reports as side-effects.

Non-string, non-trusted values are passed through, and skip any TT default policy.

eval(TT) still returns the object if TT enforcement is disabled, for now. This is because unconditional codegen from strings overrides our callback.

Bug: 940927
Change-Id: I718694cc050cf071a2ccf9669543628cf568cbdc
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1768427
Commit-Queue: Stefano Sanfilippo <[email protected]>
Reviewed-by: Mike West <[email protected]>
Reviewed-by: Daniel Vogelheim <[email protected]>
Cr-Commit-Position: refs/heads/master@{#714283}
10 files changed
tree: 3b323b1bb7a870f658385a6aac353859b884c0f3
  1. android_webview/
  2. apps/
  3. ash/
  4. base/
  5. build/
  6. build_overrides/
  7. buildtools/
  8. cc/
  9. chrome/
  10. chromecast/
  11. chromeos/
  12. cloud_print/
  13. components/
  14. content/
  15. courgette/
  16. crypto/
  17. dbus/
  18. device/
  19. docs/
  20. extensions/
  21. fuchsia/
  22. gin/
  23. google_apis/
  24. google_update/
  25. gpu/
  26. headless/
  27. infra/
  28. ios/
  29. ipc/
  30. jingle/
  31. media/
  32. mojo/
  33. native_client_sdk/
  34. net/
  35. pdf/
  36. ppapi/
  37. printing/
  38. remoting/
  39. rlz/
  40. sandbox/
  41. services/
  42. skia/
  43. sql/
  44. storage/
  45. styleguide/
  46. testing/
  47. third_party/
  48. tools/
  49. ui/
  50. url/
  51. weblayer/
  52. .clang-format
  53. .clang-tidy
  54. .eslintrc.js
  55. .git-blame-ignore-revs
  56. .gitattributes
  57. .gitignore
  58. .gn
  59. .vpython
  60. .vpython3
  61. AUTHORS
  62. BUILD.gn
  63. CODE_OF_CONDUCT.md
  64. codereview.settings
  65. DEPS
  66. ENG_REVIEW_OWNERS
  67. LICENSE
  68. LICENSE.chromium_os
  69. OWNERS
  70. PRESUBMIT.py
  71. PRESUBMIT_test.py
  72. PRESUBMIT_test_mocks.py
  73. README.md
  74. WATCHLISTS
README.md

Logo Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.

The project's web site is https://www.chromium.org.

Documentation in the source is rooted in docs/README.md.

Learn how to Get Around the Chromium Source Code Directory Structure .