From a08dc792b9b0d0ef1efc58e001e39780e281608d Mon Sep 17 00:00:00 2001
From: Antonio Sartori <antoniosartori@google.com>
Date: Wed, 17 Mar 2021 08:59:05 +0100
Subject: [PATCH] Add CSPs and fix some stuff

---
 source | 195 ++++++++++++++++++++++++++++++++++-----------------------
 1 file changed, 116 insertions(+), 79 deletions(-)

diff --git a/source b/source
index 47a859d3916..02e76131213 100644
--- a/source
+++ b/source
@@ -2470,7 +2470,7 @@ a.setAttribute('href', 'https://example.com/'); // change the content attribute
      <li><dfn data-x="header-abnf" data-x-href="https://fetch.spec.whatwg.org/#abnf">ABNF</dfn></li>
      <li><dfn><code>about:blank</code></dfn></li>
      <li>An <dfn data-x-href="https://fetch.spec.whatwg.org/#http-scheme">HTTP(S) scheme</dfn></li>
-     <li>A <dfn data-x="local-url" data-x-href="https://fetch.spec.whatwg.org/#is-local">local URL</dfn></li>
+     <li>A URL which <dfn data-x="is-local" data-x-href="https://fetch.spec.whatwg.org/#is-local">is local</dfn></li>
      <li>A <dfn data-x-href="https://fetch.spec.whatwg.org/#local-scheme">local scheme</dfn></li>
      <li>A <dfn data-x-href="https://fetch.spec.whatwg.org/#fetch-scheme">fetch scheme</dfn></li>
      <li><dfn data-x-href="https://fetch.spec.whatwg.org/#http-cors-protocol">CORS protocol</dfn></li>
@@ -3838,7 +3838,6 @@ a.setAttribute('href', 'https://example.com/'); // change the content attribute
      <li>The <dfn data-x-href="https://w3c.github.io/webappsec-csp/#grammardef-serialized-policy">Content Security Policy syntax</dfn></li>
      <li><dfn data-x-href="https://w3c.github.io/webappsec-csp/#enforced">enforce the policy</dfn></li>
      <li>The <dfn data-x-href="https://w3c.github.io/webappsec-csp/#parse-serialized-policy">parse a serialized Content Security Policy</dfn> algorithm</li>
-     <li>The <dfn data-x-href="https://w3c.github.io/webappsec-csp/#initialize-global-object-csp">Initialize a global object's CSP list</dfn> algorithm</li>
      <li>The <dfn data-x-href="https://w3c.github.io/webappsec-csp/#initialize-document-csp">Initialize a Document's CSP list</dfn> algorithm</li>
      <li>The <dfn data-x-href="https://w3c.github.io/webappsec-csp/#should-block-inline">Should element's inline behavior be blocked by Content Security Policy?</dfn> algorithm</li>
      <li>The <dfn data-x-href="https://w3c.github.io/webappsec-csp/#should-block-navigation-request">Should navigation request of type be blocked by Content Security Policy?</dfn> algorithm</li>
@@ -6821,8 +6820,8 @@ a.setAttribute('href', 'https://example.com/'); // change the content attribute
 
   <ol>
    <li><p>Let <var>CSP list</var> be <var>element</var>'s <span data-x="shadow-including
-   root">shadow-including root</span>'s <span data-x="concept-document-csp-list">CSP
-   list</span>.</p></li>
+   root">shadow-including root</span>'s <span data-x="concept-document-policy-container">policy
+   container</span>'s <span data-x="policy-container-csp-list">CSP list</span>.</p></li>
 
    <li>
     <p>If <var>CSP list</var> <span>contains a header-delivered Content Security Policy</span>, and
@@ -6846,11 +6845,13 @@ a.setAttribute('href', 'https://example.com/'); // change the content attribute
    </li>
   </ol>
 
-  <p class="note">As each <code>Document</code>'s <span data-x="concept-document-csp-list">CSP
-  list</span> is append-only, user agents can optimize away the <span>contains a header-delivered
-  Content Security Policy</span> check by, for example, holding a flag on the <code>Document</code>,
-  set during <span data-x="create-the-document-object"><code data-x="">Document</code>
-  creation and initialization</span>.</p>
+  <p class="note">As each <code>Document</code>'s <span
+  data-x="concept-document-policy-container">policy container</span>'s <span
+  data-x="policy-container-csp-list">CSP list</span> is append-only, user agents can optimize away
+  the <span>contains a header-delivered Content Security Policy</span> check by, for example,
+  holding a flag on the <span data-x="policy-container-csp-list">CSP list</span>, set when <span
+  data-x="creating a policy container for a fetch response">creating the policy container for the
+  fetch response</span>.</p>
 
   <p>The <span data-x="concept-node-clone-ext">cloning steps</span> for elements that
   <span>include</span> <code>HTMLOrSVGElement</code> must set the
@@ -9155,11 +9156,6 @@ partial interface <dfn id="document" data-lt="">Document</dfn> {
   <p>The <code>Document</code> has an <dfn data-x="concept-document-embedder-policy">embedder
   policy</dfn> (an <span>embedder policy</span>).</p>
 
-  <p>The <code>Document</code> has a <dfn data-x="concept-document-csp-list" export
-  for="Document">CSP list</dfn>, which is a <span data-x="concept-csp-list">CSP list</span>
-  containing all of the <span>Content Security Policy</span> objects active for the document. The
-  list is empty unless otherwise specified.</p>
-
   <p id="concept-document-feature-policy">The <code>Document</code> has a <dfn
   data-x="concept-document-permissions-policy" export for="Document">permissions policy</dfn>, which
   is a <span data-x="concept-permissions-policy">permissions policy</span>, which is initially
@@ -30247,7 +30243,8 @@ interface <dfn>HTMLIFrameElement</dfn> : <span>HTMLElement</span> {
       data-x="attr-iframe-srcdoc">srcdoc</code> attribute, and <span
       data-x="concept-response-csp-list">CSP list</span> is a <span data-x="list clone">clone</span>
       of <var>element</var>'s <span>node document</span>'s <span
-      data-x="concept-document-csp-list">CSP list</span>.</p>
+      data-x="concept-document-policy-container">policy container</span>'s <span
+      data-x="policy-container-csp-list">CSP list</span>.</p>
 
       <p>The resulting <code>Document</code> must be considered <span>an <code>iframe</code> <code
       data-x="attr-iframe-srcdoc">srcdoc</code> document</span>.</p>
@@ -77747,7 +77744,8 @@ popup4.close();</code></pre></div>
    <span data-x="concept-document-embedder-policy">embedder policy</span>.</p></li>
 
    <li><p>If <var>creator</var> is non-null, then set <var>document</var>'s <span>policy
-   container</span> to a clone of <var>creator</var>'s <span>policy container</span>.</p></li>
+   container</span> to a <span data-x="clone a policy container">clone</span> of
+   <var>creator</var>'s <span>policy container</span>.</p></li>
 
    <li><p>Add <var>document</var> to <var>browsingContext</var>'s <span>session
    history</span>.</p></li>
@@ -82679,29 +82677,50 @@ interface <dfn>BarProp</dfn> {
   <h3 id="policy-container">Policy container</h3>
 
   <p>A <dfn>policy container</dfn> is a <span>struct</span> containing policies that apply to a
-  document. It has the following <span data-x="struct item">items</span>:</p>
+  <code>Document</code> or <span>global object</span>. It has the following <span data-x="struct
+  item">items</span>:</p>
+
+  <ul>
+   <li><p>A <dfn data-x="policy-container-csp-list">CSP list</dfn>, which is a <span
+   data-x="concept-csp-list">CSP list</span>. It is initially empty.</p></li>
+  </ul>
 
   <div class="note">
-   <p>There are no items at the moment. Each item has to define a default value for creating a new
-   policy container.</p>
+   <p>Each item has to define a default value for creating a new policy container.</p>
   </div>
 
+  <p class="xxx">Move other policies into the policy container.</p>
+
   <p>To <dfn data-x="clone a policy container">clone a policy container</dfn> from a given
   <span>policy container</span> <var>policy container</var>:</p>
 
   <ol>
    <li><p>Let <var>clone</var> be a new <span>policy container</span>.</p></li>
 
-   <li><p>For each <span data-x="struct item">item</span> of <var>policy container</var>, set the
-   corresponding <span data-x="struct item">item</span> of <var>clone</var> to an equal
-   value.</p></li>
+   <li><p>For each <var>policy</var> in <var>policy container</var>'s <span
+   data-x="policy-container-csp-list">CSP list</span>, insert a copy of <var>policy</var> into
+   <var>clone</var>'s <span data-x="policy-container-csp-list">CSP list</span>.</p></li>
 
    <li><p>Return <var>clone</var>.</p></li>
   </ol>
 
+  <p>To determine whether a <span>URL</span> <var>URL</var> <dfn>requires storing the policy
+  container in history</dfn>:</p>
+
+  <ol>
+   <li><p>If <var>URL</var>'s <span data-x="concept-url-scheme">scheme</span> is "<code
+   data-x="">blob</code>", return false.<p></li>
+
+   <li><p>If <var>URL</var> is "<code data-x="">about:srcdoc</code>", return false.</p></li>
+
+   <li><p>If <var>URL</var> <span data-x="is-local">is local</span>, return true.</p></li>
+
+   <li><p>Return false.</p></li>
+  </ol>
+
   <p>To <dfn data-x="creating a policy container for a fetch response">create a policy container for
-  a fetch response</dfn> from a given <span>URL</span> <var>response URL</var> and <span
-  data-x="concept-response-header-list">header list</span> <var>header list</var>:</p>
+  a fetch response</dfn> from a given <span data-x="concept-response">response</span>
+  <var>response</var>:</p>
 
   <ol>
    <li><p>If <var>response URL</var>'s <span data-x="concept-url-scheme">scheme</span> is "<code
@@ -82711,31 +82730,46 @@ interface <dfn>BarProp</dfn> {
    data-x="blob-url-entry-environment">environment</span>'s <span>policy
    container</span>.</p></li>
 
-   <li><p>Let <var>result</var> be a new <span>policy container</span>.</p></li>
+   <li><p>Otherwise, let <var>result</var> be a new <span>policy container</span>.</p></li>
 
-   <li><p>For each <span data-x="struct item">item</span> of <var>result</var>, set <span
-   data-x="struct item">item</span> to be the result of parsing <var>header list</var> into <span
-   data-x="struct item">item</span>.</p></li>
+   <li><p>For each <var>policy</var> in <var>response</var>'s <span
+   data-x="concept-response-CSP-list">CSP list</span>, insert a copy of <var>policy</var> into
+   <var>result</var>'s <span data-x="policy-container-csp-list">CSP list</span>.</p></li>
 
    <li><p>Return <var>result</var>.</p></li>
   </ol>
 
   <p>To <dfn data-x="determining navigationParams policy container">determine navigationParams
-  policy container</dfn> from a given <span>URL</span> <var>response url</var> and four optional
+  policy container</dfn> from a given <span>URL</span> <var>response URL</var> and four optional
   <span data-x="policy container">policy containers</span> <var>history policy container</var>,
   <var>initiator policy container</var>, <var>parent policy container</var> and <var>response policy
   container</var>:</p>
 
   <ol>
-   <li><p>If <var>history policy container</var> is not null, then assert that <var>response
-   url</var> is <span data-x="local-url">local</span> and return a <span data-x="clone a policy
-   container">clone</span> of <var>history policy container</var>.</p></li>
+   <li>
+    <p>If <var>history policy container</var> is not null, then:</p>
+
+    <ol>
+     <li><p>Assert: <var>response URL</var> <span>requires storing the policy container in
+     history</span>.</p></li>
+
+     <li><p>Return a <span data-x="clone a policy container">clone</span> of <var>history policy
+     container</var>.</p></li>
+    </ol>
+   </li>
+
+   <li>
+    <p>If <var>response URL</var> is <code>about:srcdoc</code>, then:</p>
+
+    <ol>
+     <li><p>Assert: <var>parent policy container</var> is not null.</p></li>
 
-   <li><p>If <var>response url</var> is <code>about:srcdoc</code>, then assert that <var>parent
-   policy container</var> is not null and return a <span data-x="clone a policy
-   container">clone</span> of <var>parent policy container</var>.</p></li>
+     <li><p>Return a <span data-x="clone a policy container">clone</span> of <var>parent policy
+     container</var>.</p></li>
+    </ol>
+   </li>
 
-   <li><p>If <var>response url</var> is <span data-x="local-url">local</span> and <var>initiator
+   <li><p>If <var>response URL</var> <span data-x="is-local">is local</span> and <var>initiator
    policy container</var> is not null, then return a <span data-x="clone a policy
    container">clone</span> of <var>initiator policy container</var>.</p></li>
 
@@ -82745,13 +82779,33 @@ interface <dfn>BarProp</dfn> {
    <li><p>Otherwise, return a new <span>policy container</span>.</p></li>
   </ol>
 
-  <p>To <dfn data-x="determining worker policy container">determine a worker's policy
-  container</dfn> from a given <span>URL</span> <var>response url</var>, a <span>set</span> of
-  <code>Document</code> and <code>WorkerGlobalScope</code> objects <var>worker owner set</var> and a
-  <span data-x="concept-response-header-list">header list</span> <var>header list</var>:</p>
+  <p>To <dfn data-x="initialize worker policy container">initialize a worker global scope's policy
+  container</dfn> given a <code>WorkerGlobalScope</code> <var>worker global scope</var> and a <span
+  data-x="concept-response">response</span> <var>response</var>:</p>
 
   <ol>
-   <li><p>TODO: FILL.</p></li>
+   <li>
+    <p>If <var>worker global scope</var>'s <span data-x="concept-WorkerGlobalScope-url">url</span>
+    <span data-x="is-local">is local</span> but not "<code data-x="">blob</code>" or if <var>worker
+    global scope</var> is a <code>DedicatedWorkerGlobalScope</code>:</p>
+
+    <ol>
+     <li><p>Assert that <var>worker global scope</var>'s <span>owner set</span> contains exactly one
+     element.</p></li>
+
+     <li><p>For each <var>owner</var> in <var>worker global scope</var>'s <span>owner set</span> and
+     for each <var>policy</var> in <var>owner</var>'s <span
+     data-x="concept-WorkerGlobalScope-policy-container">policy container</span> <span
+     data-x="policy-container-csp-list">CSP list</span>, insert a copy of <var>policy</var> into
+     <var>worker global scope</var>'s <span
+     data-x="concept-WorkerGlobalScope-policy-container">policy container</span> <span
+     data-x="policy-container-csp-list">CSP list</span>.</p>
+    </ol>
+   </li>
+
+   <li><p>Otherwise, set <var>worker global scope</var>'s <span
+   data-x="concept-WorkerGlobalScope-policy-container">policy container</span> to the result of
+   <span>creating a policy container for a fetch response</span> given <var>response</var>.</p></li>
   </ol>
 
   <h3 split-filename="history" id="history">Session history and navigation</h3>
@@ -84766,8 +84820,8 @@ interface <dfn>Location</dfn> { // but see also <a href="#the-location-interface
        navigationParams policy container">determining navigationParams policy container</span> given
        <var>resource</var>'s <span data-x="concept-response-url">url</span>,
        <var>historyPolicyContainer</var>, <var>initiatorPolicyContainer</var>, <span>parent browsing
-       context</span>'s <span>active document</span>'s current <span>policy container</span> (if
-       any) and null.</p></li>
+       context</span>'s <span>active document</span>'s <span>policy container</span> and
+       null.</p></li>
 
        <li><p>Let <var>navigationParams</var> be a new <span>navigation params</span> whose <span
        data-x="navigation-params-request">request</span> is null, <span
@@ -85037,9 +85091,7 @@ interface <dfn>Location</dfn> { // but see also <a href="#the-location-interface
        <var>incumbentNavigationOrigin</var>, and <var>activeDocumentNavigationOrigin</var>.</p></li>
 
        <li><p>Set <var>responsePolicyContainer</var> to be the result of <span>creating a policy
-       container for a fetch response</span> given <var>response</var>'s <span
-       data-x="concept-response-url">URL</span> and <var>response</var>'s <span
-       data-x="concept-response-header-list">header list</span>.</p></li>
+       container for a fetch response</span> <var>response</var>.</p></li>
 
        <li>
         <p>If <var>browsingContext</var> is a <span>top-level browsing context</span>, then:</p>
@@ -85603,9 +85655,7 @@ interface <dfn>Location</dfn> { // but see also <a href="#the-location-interface
    data-x="coep-unsafe-none">unsafe-none</code>".</p></li>
 
    <li><p><span>Initialize a <code data-x="">Document</code>'s CSP list</span> given
-   <var>document</var>, <var>navigationParams</var>'s <span
-   data-x="navigation-params-response">response</span>, and <var>navigationParams</var>'s <span
-   data-x="navigation-params-request">request</span>. <ref spec="CSP"></p>
+   <var>document</var>. <ref spec="CSP"></p>
 
    <li>
     <p>If <var>navigationParams</var>'s <span data-x="navigation-params-request">request</span> is
@@ -85758,10 +85808,10 @@ new PaymentRequest(&hellip;); // Allowed to use
         more discussion on this.</p>
        </li>
 
-       <li><p>If <var>newDocument</var>'s <span data-x="concept-document-url">URL</span> is <span
-       data-x="local-url">local</span>, let <var>newEntry</var>'s <span
-       data-x="she-policy-container">policy container</span> be <var>navigationParams</var>'s <span
-       data-x="navigation-params-policy-container">policy container</span>.</p></li>
+       <li><p>If <var>newDocument</var>'s <span data-x="concept-document-url">URL</span>
+       <span>requires storing the policy container in history</span>, let <var>newEntry</var>'s
+       <span data-x="she-policy-container">policy container</span> be <var>navigationParams</var>'s
+       <span data-x="navigation-params-policy-container">policy container</span>.</p></li>
 
        <li><p>Insert <var>newEntry</var> into <var>sessionHistory</var> after its <span>current
        entry</span>.</p></li>
@@ -85789,10 +85839,10 @@ new PaymentRequest(&hellip;); // Allowed to use
        data-x="concept-document-url">URL</span> and <span data-x="she-document">document</span> is
        <var>newDocument</var>.</p></li>
 
-       <li><p>If <var>newDocument</var>'s <span data-x="concept-document-url">URL</span> is <span
-       data-x="local-url">local</span>, let <var>newEntry</var>'s <span
-       data-x="she-policy-container">policy container</span> be <var>navigationParams</var>'s <span
-       data-x="navigation-params-policy-container">policy container</span>.</p></li>
+       <li><p>If <var>newDocument</var>'s <span data-x="concept-document-url">URL</span>
+       <span>requires storing the policy container in history</span>, let <var>newEntry</var>'s
+       <span data-x="she-policy-container">policy container</span> be <var>navigationParams</var>'s
+       <span data-x="navigation-params-policy-container">policy container</span>.</p></li>
 
        <li><p><span data-x="list append">Append</span> <var>newEntry</var> to
        <var>sessionHistory</var>.</p></li>
@@ -87068,8 +87118,8 @@ interface <dfn>BeforeUnloadEvent</dfn> : <span>Event</span> {
   <div w-nodev>
 
   <p>To <dfn>check a navigation response's adherence to `<code>X-Frame-Options</code>`</dfn>, given
-  a <span data-x="concept-response">response</span> <var>response</var>, a <span>browsing
-  context</span> <var>browsingContext</var>, and an <span>origin</span>
+  <span data-x="navigation params">navigationParams</span> <var>navigationParams</var>, a
+  <span>browsing context</span> <var>browsingContext</var>, and an <span>origin</span>
   <var>destinationOrigin</var>:</p>
 
   <ol>
@@ -87077,8 +87127,9 @@ interface <dfn>BeforeUnloadEvent</dfn> : <span>Event</span> {
    true.</p></li>
 
    <li>
-    <p><span data-x="list iterate">For each</span> <var>policy</var> of <var>response</var>'s <span
-    data-x="concept-response-csp-list">CSP list</span>:</p>
+    <p><span data-x="list iterate">For each</span> <var>policy</var> of <var>navigationParams</var>'
+    <span data-x="navigation-params-policy-container">policy container</span>'s <span
+    data-x="policy-container-csp-list">CSP list</span>:</p>
 
     <ol>
      <li><p>If <var>policy</var>'s <span data-x="csp-disposition">disposition</span> is not "<code
@@ -87092,7 +87143,8 @@ interface <dfn>BeforeUnloadEvent</dfn> : <span>Event</span> {
 
    <li><p>Let <var>rawXFrameOptions</var> be the result of <span
    data-x="concept-header-list-get-decode-split">getting, decoding, and splitting</span>
-   `<code>X-Frame-Options</code>` from <var>response</var>'s <span
+   `<code>X-Frame-Options</code>` from <var>navigationParams</var>'s <span
+   data-x="navigation-params-response">response</span>'s <span
    data-x="concept-response-header-list">header list</span>.</p></li>
 
    <li><p>Let <var>xFrameOptions</var> be a new <span>set</span>.</p></li>
@@ -98978,11 +99030,6 @@ interface <dfn>WorkerGlobalScope</dfn> : <span>EventTarget</span> {
   data-x="concept-WorkerGlobalScope-embedder-policy">embedder policy</dfn> (an <span>embedder
   policy</span>).</p>
 
-  <p>A <code>WorkerGlobalScope</code> object has an associated <dfn export for="WorkerGlobalScope"
-  data-x="concept-WorkerGlobalScope-csp-list">CSP list</dfn>, which is a <span
-  data-x="concept-csp-list">CSP list</span> containing all of the <span>Content Security
-  Policy</span> objects active for the worker. It is initially an empty list.</p>
-
   <p>A <code>WorkerGlobalScope</code> object has an associated <dfn export for="WorkerGlobalScope"
   data-x="concept-WorkerGlobalScope-module-map">module map</dfn>.  It is a <span>module map</span>,
   initially empty.</p>
@@ -99415,12 +99462,8 @@ interface <dfn>SharedWorkerGlobalScope</dfn> : <span>WorkerGlobalScope</span> {
      data-x="concept-WorkerGlobalScope-url">url</span> to <var>response</var>'s <span
      data-x="concept-response-url">url</span>.</p></li>
 
-     <li><p>Set <var>worker global scope</var>'s <span
-     data-x="concept-WorkerGlobalScope-policy-container">policy container</span> to the result of
-     <span data-x="determining worker policy container">determining a worker's policy
-     container</span> given <var>url</var>, <var>worker global scope</var>'s <span>owner set</span>
-     and <var>response</var>'s <span data-x="concept-response-header-list">header
-     list</span>.</p></li>
+     <li><p><span data-x="initialize worker policy container">Initialize worker global scope's
+     policy container</span> given <var>worker global scope</var>, and <var>response</var>.</p></li>
 
      <li><p>Set <var>worker global scope</var>'s <span
      data-x="concept-WorkerGlobalScope-referrer-policy">referrer policy</span> to the result of
@@ -99485,9 +99528,6 @@ interface <dfn>SharedWorkerGlobalScope</dfn> : <span>WorkerGlobalScope</span> {
       issue #207</a> for more details.</p>
      </li>
 
-     <li><p><span>Initialize a global object's CSP list</span> given <var>worker global scope</var>
-     and <var>response</var>. <ref spec=CSP></p></li>
-
      <li><p>Asynchronously complete the <span data-x="fetching-scripts-perform-fetch">perform the
      fetch</span> steps with <var>response</var>.</p></li>
     </ol>
@@ -100813,9 +100853,6 @@ interface <dfn interface>WorkletGlobalScope</dfn> {};</code></pre>
    settings object">setting up a worklet environment settings object</span> given
    <var>realmExecutionContext</var> and <var>outsideSettings</var>.</p></li>
 
-   <li><p><span>Initialize a global object's CSP list</span> given <var>workletGlobalScope</var>.
-   <ref spec=CSP></p></li>
-
    <li>
     <p><span data-x="list iterate">For each</span> <var>moduleURL</var> of <var>worklet</var>'s
     <span data-x="concept-Worklet-added-modules-list">added modules list</span>:</p>