corysanin/tubestation
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Bug 1954869. Add CSP to downloadcert.xhtml r=tschuster

Browse Source 
Differential Revision: https://phabricator.services.mozilla.com/D242069
This commit is contained in:
Simon Friedberger
2025-03-19 16:44:45 +00:00
parent 7093ec86e9
commit dc32a811fb
3 changed files with 9 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
dom/security/nsContentSecurityUtils.cpp
View File

@@ -1291,6 +1291,7 @@ static nsLiteralCString sStyleSrcUnsafeInlineAllowList[] = {
"chrome://pippki/content/certManager.xhtml"_ns,
"chrome://pippki/content/deletecert.xhtml"_ns,
"chrome://pippki/content/device_manager.xhtml"_ns,
"chrome://pippki/content/downloadcert.xhtml"_ns,
};
// img-src data: blob:
static nsLiteralCString sImgSrcDataBlobAllowList[] = {
@@ -1933,7 +1934,6 @@ void nsContentSecurityUtils::AssertChromePageHasCSP(Document* aDocument) {
"chrome://global/content/win.xhtml"_ns,
"chrome://global/skin/in-content/info-pages.css"_ns,
"chrome://layoutdebug/content/layoutdebug.xhtml"_ns,
"chrome://pippki/content/downloadcert.xhtml"_ns,
"chrome://pippki/content/editcacert.xhtml"_ns,
"chrome://pippki/content/exceptionDialog.xhtml"_ns,
"chrome://pippki/content/load_device.xhtml"_ns,