[CSP] Fix WPT about worker violation event

antosart · chromium-wpt-export-bot · commit 4dbe5bcd69b1 · 2021-09-23T08:36:34.000-07:00
The WPT external/wpt/content-security-policy/connect-src/worker-from-guid.sub.html was expecting a securitypolicyviolation event for a Content Security Policy violation in a worker to be raised in the owner document. This is wrong: the securitypolicyviolation event should be triggered in the worker itself. Bug: 694525 Change-Id: I4285e6eee73e4629a6662a05fe2eb067782f6c8a Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3178905 Reviewed-by: Arthur Sonzogni <arthursonzogni@chromium.org> Commit-Queue: Antonio Sartori <antoniosartori@chromium.org> Cr-Commit-Position: refs/heads/main@{#924287}
diff --git a/content-security-policy/connect-src/worker-from-guid.sub.html b/content-security-policy/connect-src/worker-from-guid.sub.html
@@ -18,11 +18,11 @@
     with this resource.</p>
 <body>
     <script>
-        window.addEventListener('securitypolicyviolation', function(e) {
-            log("violated-directive=" + e.violatedDirective);
-        });
         try {
             var blob = new Blob([
+                "self.addEventListener('securitypolicyviolation', e => {" +
+                "  postMessage('violated-directive=' + e.violatedDirective);" +
+                "});" +
                 "var xhr = new XMLHttpRequest;" +
                 "xhr.onerror = function () {" +
                 "  postMessage('xhr blocked');" +
