Changeset 198292 in webkit

Timestamp:

Mar 16, 2016 12:46:49 PM (8 years ago)

Author:

dbates@webkit.org

Message:

<video> and <audio> elements do not obey Content Security Policy on redirect
​https://bugs.webkit.org/show_bug.cgi?id=155509
<rdar://problem/10234844>

Reviewed by Alex Christensen.

Source/WebCore:

Fixes an issue where the Content Security Policy of the page was not enforced
on redirects when loading a media subresource via an HTML video or HTML audio
element.

Tests: http/tests/security/contentSecurityPolicy/audio-redirect-allowed.html

http/tests/security/contentSecurityPolicy/audio-redirect-blocked.html
http/tests/security/contentSecurityPolicy/font-redirect-allowed.html
http/tests/security/contentSecurityPolicy/font-redirect-blocked.html
http/tests/security/contentSecurityPolicy/image-redirect-allowed.html
http/tests/security/contentSecurityPolicy/image-redirect-blocked.html
http/tests/security/contentSecurityPolicy/script-redirect-allowed.html
http/tests/security/contentSecurityPolicy/script-redirect-blocked.html
http/tests/security/contentSecurityPolicy/stylesheet-redirect-allowed.html
http/tests/security/contentSecurityPolicy/stylesheet-redirect-blocked.html
http/tests/security/contentSecurityPolicy/svg-font-redirect-allowed.html
http/tests/security/contentSecurityPolicy/svg-font-redirect-blocked.html
http/tests/security/contentSecurityPolicy/svg-image-redirect-allowed.html
http/tests/security/contentSecurityPolicy/svg-image-redirect-blocked.html
http/tests/security/contentSecurityPolicy/track-redirect-allowed.html
http/tests/security/contentSecurityPolicy/track-redirect-blocked.html
http/tests/security/contentSecurityPolicy/video-redirect-allowed.html
http/tests/security/contentSecurityPolicy/video-redirect-blocked.html
http/tests/security/contentSecurityPolicy/xsl-redirect-allowed.html
http/tests/security/contentSecurityPolicy/xsl-redirect-blocked.html

• inspector/InspectorPageAgent.cpp:

(WebCore::InspectorPageAgent::cachedResourceContent): Treat media resources as raw resources just as we do currently.
(WebCore::InspectorPageAgent::cachedResourceType): Ditto.

• loader/MediaResourceLoader.cpp:

(WebCore::MediaResourceLoader::requestResource): Modified to use CachedResourceLoader::requestMedia() instead
of CachedResourceLoader::requestRawResource() so that we can differentiate between a media resource and a raw
resource in CachedResourceLoader. Added FIXME comment to skip checking the Content Security Policy for loads
initiated by an element in a user agent shadow tree. See <​https://bugs.webkit.org/show_bug.cgi?id=155505> for
more details.

• loader/ResourceLoadInfo.cpp:

(WebCore::toResourceType): Treat media resources as raw resources just as we do currently. Also, add cases for
CachedResource::LinkPrefetch and CachedResource::LinkSubresource (when ENABLE(LINK_PREFETCH) is enabled) and
remove the default statement to force a compile-time error when a new CachedResource enumerator is added and
the switch block in this function is not updated.

• loader/SubresourceLoader.cpp:

(WebCore::logResourceLoaded): Ditto.

• loader/cache/CachedRawResource.cpp:

(WebCore::CachedRawResource::CachedRawResource): Substitute CachedResource::isMainOrMediaOrRawResource() for
CachedResource::isMainOrRawResource() as the latter was renamed to the former.

• loader/cache/CachedRawResource.h:

(isType): Ditto.

• loader/cache/CachedResource.cpp:

(WebCore::defaultPriorityForResourceType): Use priority ResourceLoadPriority::Medium for media resources just as
we do currently.

• loader/cache/CachedResource.h:

(WebCore::CachedResource::isMainOrMediaOrRawResource): Formerly named isMainOrRawResource. Returns true if the type
of this resource is a main resource, media resource, or raw resource.
(WebCore::CachedResource::isMainOrRawResource): Deleted.

• loader/cache/CachedResourceLoader.cpp:

(WebCore::createResource): Treat media resources as raw resources just as we do currently.
(WebCore::CachedResourceLoader::requestMedia): Added.
(WebCore::contentTypeFromResourceType): Consider media resources as MixedContentChecker::ContentType::Active
just as we do currently.
(WebCore::CachedResourceLoader::checkInsecureContent): Apply the mixed content policy to media resources
just as we do currently.
(WebCore::CachedResourceLoader::canRequest): Apply the Same Origin Policy to media resources just as we
do currently. Query the Content Security Policy of the page to determine if the media resource can be
requested.
(WebCore::CachedResourceLoader::determineRevalidationPolicy): Substitute CachedResource::isMainOrMediaOrRawResource()
for CachedResource::isMainOrRawResource() as the latter was renamed to the former.

• loader/cache/CachedResourceLoader.h:
• platform/graphics/avfoundation/objc/WebCoreAVFResourceLoader.mm:

(WebCore::WebCoreAVFResourceLoader::startLoading): Modified to use CachedResourceLoader::requestMedia() instead
of CachedResourceLoader::requestRawResource() so that we can differentiate between a media resource and a raw
resource in CachedResourceLoader. Added FIXME comment to skip checking the Content Security Policy for loads
initiated by an element in a user agent shadow tree. See <​https://bugs.webkit.org/show_bug.cgi?id=155505> for
more details. Additionally, simplified code that determined whether to request the media resource or error out
by coalescing two conditional expressions into one conditional on whether we have a loader and substituted
nullptr for 0.

Source/WebKit2:

Use 0ms as the maximum buffering time for media resource just as we do currently.

• WebProcess/Network/WebLoaderStrategy.cpp:

(WebKit::maximumBufferingTime):

LayoutTests:

Add tests to ensure that the Content Security Policy is enforced on redirects when
loading a subresource, including a video or audio file.

• http/tests/resources/redirect.php: Fix PHP "undefined index" warnings when either query

parameter code or refresh (or both) are not specified.

• http/tests/security/contentSecurityPolicy/audio-redirect-allowed-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/audio-redirect-allowed.html: Added.
• http/tests/security/contentSecurityPolicy/audio-redirect-blocked-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/audio-redirect-blocked.html: Added.
• http/tests/security/contentSecurityPolicy/font-redirect-allowed-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/font-redirect-allowed.html: Added.
• http/tests/security/contentSecurityPolicy/font-redirect-blocked-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/font-redirect-blocked.html: Added.
• http/tests/security/contentSecurityPolicy/image-redirect-allowed-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/image-redirect-allowed.html: Added.
• http/tests/security/contentSecurityPolicy/image-redirect-blocked-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/image-redirect-blocked.html: Added.
• http/tests/security/contentSecurityPolicy/resources/ABCFont.svg: Renamed from LayoutTests/http/tests/security/contentSecurityPolicy/userAgentShadowDOM/resources/ABCFont.svg.
• http/tests/security/contentSecurityPolicy/resources/alert-fail.xsl: Added.
• http/tests/security/contentSecurityPolicy/resources/alert-pass.xsl: Added.
• http/tests/security/contentSecurityPolicy/resources/green-square.svg: Added.
• http/tests/security/contentSecurityPolicy/resources/red-square.svg: Added.
• http/tests/security/contentSecurityPolicy/resources/xsl-redirect-allowed.php: Added.
• http/tests/security/contentSecurityPolicy/resources/xsl-redirect-blocked.php: Added.
• http/tests/security/contentSecurityPolicy/script-redirect-allowed-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/script-redirect-allowed.html: Added.
• http/tests/security/contentSecurityPolicy/script-redirect-blocked-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/script-redirect-blocked.html: Added.
• http/tests/security/contentSecurityPolicy/stylesheet-redirect-allowed-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/stylesheet-redirect-allowed.html: Added.
• http/tests/security/contentSecurityPolicy/stylesheet-redirect-blocked-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/stylesheet-redirect-blocked.html: Added.
• http/tests/security/contentSecurityPolicy/svg-font-redirect-allowed-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/svg-font-redirect-allowed.html: Added.
• http/tests/security/contentSecurityPolicy/svg-font-redirect-blocked-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/svg-font-redirect-blocked.html: Added.
• http/tests/security/contentSecurityPolicy/svg-image-redirect-allowed-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/svg-image-redirect-allowed.html: Added.
• http/tests/security/contentSecurityPolicy/svg-image-redirect-blocked-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/svg-image-redirect-blocked.html: Added.
• http/tests/security/contentSecurityPolicy/track-redirect-allowed-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/track-redirect-allowed.html: Added.
• http/tests/security/contentSecurityPolicy/track-redirect-blocked-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/track-redirect-blocked.html: Added.
• http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-svg-font.html:
• http/tests/security/contentSecurityPolicy/video-redirect-allowed-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/video-redirect-allowed.html: Added.
• http/tests/security/contentSecurityPolicy/video-redirect-blocked-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/video-redirect-blocked.html: Added.
• http/tests/security/contentSecurityPolicy/xsl-redirect-allowed-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/xsl-redirect-allowed.html: Added.
• http/tests/security/contentSecurityPolicy/xsl-redirect-blocked-expected.txt: Added.
• http/tests/security/contentSecurityPolicy/xsl-redirect-blocked.html: Added.
• platform/efl/TestExpectations: For now skip tests http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-{audio, video}.html

until we fix <​https://bugs.webkit.org/show_bug.cgi?id=155505>. We will also need to fix
<​https://bugs.webkit.org/show_bug.cgi?id=153866> before we can unskip test http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-video.html
As far as I can tell the functionality exercised by these tests is not being using by the EFL port.

• platform/gtk/TestExpectations: For now skip tests http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-{audio, video}.html

until we fix <​https://bugs.webkit.org/show_bug.cgi?id=155505>. As far as I can tell the functionality
exercised by these tests is not being using by the GTK port.

• platform/ios-simulator/http/tests/security/contentSecurityPolicy/audio-redirect-blocked-expected.txt: Added expected failure result as

AV Foundation is responsible for loading media on iOS. That is, WebCore is not responsible for loading media.

• platform/ios-simulator/http/tests/security/contentSecurityPolicy/video-redirect-blocked-expected.txt: Ditto.
• platform/mac/TestExpectations: For now skip tests http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-{audio, video}.html

until we fix <​https://bugs.webkit.org/show_bug.cgi?id=155505>. The functionality exercised by these
tests is not used on OS X. Additionally, mark as Failure on Yosemite and ElCapitan the added tests
http/tests/security/contentSecurityPolicy/{video, audio}-redirect-blocked.html as we do not support
Content Security Policy for media redirects in these versions of OS X.

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/http/tests/resources/redirect.php (modified) (1 diff)
• LayoutTests/http/tests/security/contentSecurityPolicy/audio-redirect-allowed-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/audio-redirect-allowed.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/audio-redirect-blocked-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/audio-redirect-blocked.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/font-redirect-allowed-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/font-redirect-allowed.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/font-redirect-blocked-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/font-redirect-blocked.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/image-redirect-allowed-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/image-redirect-allowed.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/image-redirect-blocked-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/image-redirect-blocked.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/resources/ABCFont.svg (moved) (moved from trunk/LayoutTests/http/tests/security/contentSecurityPolicy/userAgentShadowDOM/resources/ABCFont.svg)
• LayoutTests/http/tests/security/contentSecurityPolicy/resources/alert-fail.xsl (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/resources/alert-pass.xsl (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/resources/green-square.svg (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/resources/red-square.svg (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/resources/xsl-redirect-allowed.php (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/resources/xsl-redirect-blocked.php (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/script-redirect-allowed-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/script-redirect-allowed.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/script-redirect-blocked-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/script-redirect-blocked.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/stylesheet-redirect-allowed-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/stylesheet-redirect-allowed.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/stylesheet-redirect-blocked-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/stylesheet-redirect-blocked.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/svg-font-redirect-allowed-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/svg-font-redirect-allowed.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/svg-font-redirect-blocked-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/svg-font-redirect-blocked.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/svg-image-redirect-allowed-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/svg-image-redirect-allowed.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/svg-image-redirect-blocked-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/svg-image-redirect-blocked.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/track-redirect-allowed-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/track-redirect-allowed.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/track-redirect-blocked-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/track-redirect-blocked.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-svg-font.html (modified) (1 diff)
• LayoutTests/http/tests/security/contentSecurityPolicy/video-redirect-allowed-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/video-redirect-allowed.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/video-redirect-blocked-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/video-redirect-blocked.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/xsl-redirect-allowed-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/xsl-redirect-allowed.html (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/xsl-redirect-blocked-expected.txt (added)
• LayoutTests/http/tests/security/contentSecurityPolicy/xsl-redirect-blocked.html (added)
• LayoutTests/platform/efl/TestExpectations (modified) (2 diffs)
• LayoutTests/platform/gtk/TestExpectations (modified) (1 diff)
• LayoutTests/platform/ios-simulator/http/tests/security/contentSecurityPolicy/audio-redirect-blocked-expected.txt (added)
• LayoutTests/platform/ios-simulator/http/tests/security/contentSecurityPolicy/video-redirect-blocked-expected.txt (added)
• LayoutTests/platform/mac/TestExpectations (modified) (1 diff)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/inspector/InspectorPageAgent.cpp (modified) (2 diffs)
• Source/WebCore/loader/MediaResourceLoader.cpp (modified) (2 diffs)
• Source/WebCore/loader/ResourceLoadInfo.cpp (modified) (2 diffs)
• Source/WebCore/loader/SubresourceLoader.cpp (modified) (1 diff)
• Source/WebCore/loader/cache/CachedRawResource.cpp (modified) (1 diff)
• Source/WebCore/loader/cache/CachedRawResource.h (modified) (1 diff)
• Source/WebCore/loader/cache/CachedResource.cpp (modified) (1 diff)
• Source/WebCore/loader/cache/CachedResource.h (modified) (2 diffs)
• Source/WebCore/loader/cache/CachedResourceLoader.cpp (modified) (7 diffs)
• Source/WebCore/loader/cache/CachedResourceLoader.h (modified) (1 diff)
• Source/WebCore/platform/graphics/avfoundation/objc/WebCoreAVFResourceLoader.mm (modified) (1 diff)
• Source/WebKit2/ChangeLog (modified) (1 diff)
• Source/WebKit2/WebProcess/Network/WebLoaderStrategy.cpp (modified) (1 diff)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2016-03-16  Daniel Bates  <dabates@apple.com>
+
+        <video> and <audio> elements do not obey Content Security Policy on redirect
+        https://bugs.webkit.org/show_bug.cgi?id=155509
+        <rdar://problem/10234844>
+
+        Reviewed by Alex Christensen.
+
+        Add tests to ensure that the Content Security Policy is enforced on redirects when
+        loading a subresource, including a video or audio file.
+
+        * http/tests/resources/redirect.php: Fix PHP "undefined index" warnings when either query
+        parameter code or refresh (or both) are not specified.
+        * http/tests/security/contentSecurityPolicy/audio-redirect-allowed-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/audio-redirect-allowed.html: Added.
+        * http/tests/security/contentSecurityPolicy/audio-redirect-blocked-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/audio-redirect-blocked.html: Added.
+        * http/tests/security/contentSecurityPolicy/font-redirect-allowed-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/font-redirect-allowed.html: Added.
+        * http/tests/security/contentSecurityPolicy/font-redirect-blocked-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/font-redirect-blocked.html: Added.
+        * http/tests/security/contentSecurityPolicy/image-redirect-allowed-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/image-redirect-allowed.html: Added.
+        * http/tests/security/contentSecurityPolicy/image-redirect-blocked-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/image-redirect-blocked.html: Added.
+        * http/tests/security/contentSecurityPolicy/resources/ABCFont.svg: Renamed from LayoutTests/http/tests/security/contentSecurityPolicy/userAgentShadowDOM/resources/ABCFont.svg.
+        * http/tests/security/contentSecurityPolicy/resources/alert-fail.xsl: Added.
+        * http/tests/security/contentSecurityPolicy/resources/alert-pass.xsl: Added.
+        * http/tests/security/contentSecurityPolicy/resources/green-square.svg: Added.
+        * http/tests/security/contentSecurityPolicy/resources/red-square.svg: Added.
+        * http/tests/security/contentSecurityPolicy/resources/xsl-redirect-allowed.php: Added.
+        * http/tests/security/contentSecurityPolicy/resources/xsl-redirect-blocked.php: Added.
+        * http/tests/security/contentSecurityPolicy/script-redirect-allowed-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/script-redirect-allowed.html: Added.
+        * http/tests/security/contentSecurityPolicy/script-redirect-blocked-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/script-redirect-blocked.html: Added.
+        * http/tests/security/contentSecurityPolicy/stylesheet-redirect-allowed-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/stylesheet-redirect-allowed.html: Added.
+        * http/tests/security/contentSecurityPolicy/stylesheet-redirect-blocked-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/stylesheet-redirect-blocked.html: Added.
+        * http/tests/security/contentSecurityPolicy/svg-font-redirect-allowed-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/svg-font-redirect-allowed.html: Added.
+        * http/tests/security/contentSecurityPolicy/svg-font-redirect-blocked-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/svg-font-redirect-blocked.html: Added.
+        * http/tests/security/contentSecurityPolicy/svg-image-redirect-allowed-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/svg-image-redirect-allowed.html: Added.
+        * http/tests/security/contentSecurityPolicy/svg-image-redirect-blocked-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/svg-image-redirect-blocked.html: Added.
+        * http/tests/security/contentSecurityPolicy/track-redirect-allowed-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/track-redirect-allowed.html: Added.
+        * http/tests/security/contentSecurityPolicy/track-redirect-blocked-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/track-redirect-blocked.html: Added.
+        * http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-svg-font.html:
+        * http/tests/security/contentSecurityPolicy/video-redirect-allowed-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/video-redirect-allowed.html: Added.
+        * http/tests/security/contentSecurityPolicy/video-redirect-blocked-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/video-redirect-blocked.html: Added.
+        * http/tests/security/contentSecurityPolicy/xsl-redirect-allowed-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/xsl-redirect-allowed.html: Added.
+        * http/tests/security/contentSecurityPolicy/xsl-redirect-blocked-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/xsl-redirect-blocked.html: Added.
+        * platform/efl/TestExpectations: For now skip tests http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-{audio, video}.html
+        until we fix <https://bugs.webkit.org/show_bug.cgi?id=155505>. We will also need to fix
+        <https://bugs.webkit.org/show_bug.cgi?id=153866> before we can unskip test http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-video.html
+        As far as I can tell the functionality exercised by these tests is not being using by the EFL port.
+        * platform/gtk/TestExpectations: For now skip tests http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-{audio, video}.html
+        until we fix <https://bugs.webkit.org/show_bug.cgi?id=155505>. As far as I can tell the functionality
+        exercised by these tests is not being using by the GTK port.
+        * platform/ios-simulator/http/tests/security/contentSecurityPolicy/audio-redirect-blocked-expected.txt: Added expected failure result as
+        AV Foundation is responsible for loading media on iOS. That is, WebCore is not responsible for loading media.
+        * platform/ios-simulator/http/tests/security/contentSecurityPolicy/video-redirect-blocked-expected.txt: Ditto.
+        * platform/mac/TestExpectations: For now skip tests http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-{audio, video}.html
+        until we fix <https://bugs.webkit.org/show_bug.cgi?id=155505>. The functionality exercised by these
+        tests is not used on OS X. Additionally, mark as Failure on Yosemite and ElCapitan the added tests
+        http/tests/security/contentSecurityPolicy/{video, audio}-redirect-blocked.html as we do not support
+        Content Security Policy for media redirects in these versions of OS X.
+
 2016-03-16  Jiewen Tan  <jiewen_tan@apple.com>
 

trunk/LayoutTests/http/tests/resources/redirect.php

@@ -7 +7 @@
 
     $url = $_GET['url'];
-    $refresh = $_GET['refresh'];
-    
-    if (isset($refresh)) {
+
+    if (isset($_GET['refresh'])) {
         header("HTTP/1.1 200");
-        header("Refresh: $refresh; url=$url");
+        header("Refresh: " . $_GET['refresh'] . "; url=$url");
         addCacheControl();
         return;
     }
 
-    $code = $_GET['code'];
-    if (!isset($code))
+    if (!isset($_GET['code']))
         header("HTTP/1.1 302 Found");
-    elseif ($code == 308) {
+    elseif ($_GET['code'] == 308) {
         # Apache 2.2 (and possibly some newer versions) cannot generate a reason string for code 308, and sends a 500 error instead.
         header("HTTP/1.1 308 Permanent Redirect");
     } else
-        header("HTTP/1.1 $code");
+        header("HTTP/1.1 " . $_GET['code']);
     header("Location: $url");
     addCacheControl();

trunk/LayoutTests/http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-svg-font.html

@@ -25 +25 @@
 
     fontFace.setAttributeNS(null, "font-family", "ABCFont");
-    fontFaceURI.setAttributeNS("http://www.w3.org/1999/xlink", "href", "resources/ABCFont.svg#ABCFont");
+    fontFaceURI.setAttributeNS("http://www.w3.org/1999/xlink", "href", "../resources/ABCFont.svg#ABCFont");
 }
 

trunk/LayoutTests/platform/efl/TestExpectations

@@ -644 +644 @@
 webkit.org/b/153866 http/tests/media/video-throttled-load-metadata.html [ Crash ]
 webkit.org/b/153866 http/tests/media/video-useragent.html [ Crash ]
-webkit.org/b/153866 http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-video.html [ Crash ]
 webkit.org/b/153866 http/tests/security/inactive-document-with-empty-security-origin.html [ Crash ]
 webkit.org/b/153866 http/tests/security/isolatedWorld/userGestureEvents.html [ Crash ]
@@ -2967 +2966 @@
 fast/scrolling/rtl-scrollbars-overflow-simple.html [ ImageOnlyFailure ]
 fast/scrolling/rtl-scrollbars-overflow.html [ ImageOnlyFailure ]
+
+webkit.org/b/155505 http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-audio.html [ Skip ]
+webkit.org/b/155505 webkit.org/b/153866 http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-video.html [ Skip ]

trunk/LayoutTests/platform/gtk/TestExpectations

@@ -692 +692 @@
 webkit.org/b/154390 http/tests/media/hls/video-cookie.html [ Failure ]
 
+webkit.org/b/155505 http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-audio.html [ Skip ]
+webkit.org/b/155505 http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-video.html [ Skip ]
 
 #////////////////////////////////////////////////////////////////////////////////////////

trunk/LayoutTests/platform/mac/TestExpectations

@@ -1343 +1343 @@
 [ Yosemite ElCapitan ] fast/scrolling/rtl-scrollbars-overflow-simple.html [ ImageOnlyFailure ]
 [ Yosemite ElCapitan ] fast/scrolling/rtl-scrollbars-overflow.html [ ImageOnlyFailure ]
+
+# Content Security Policy for media redirects is not supported on some OSes.
+[ Yosemite ElCapitan ] http/tests/security/contentSecurityPolicy/audio-redirect-blocked.html [ Failure ]
+[ Yosemite ElCapitan ] http/tests/security/contentSecurityPolicy/video-redirect-blocked.html [ Failure ]
+
+webkit.org/b/155505 [ ElCapitan+ ] http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-audio.html [ Skip ]
+webkit.org/b/155505 [ ElCapitan+ ] http/tests/security/contentSecurityPolicy/userAgentShadowDOM/allow-video.html [ Skip ]

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2016-03-16  Daniel Bates  <dabates@apple.com>
+
+        <video> and <audio> elements do not obey Content Security Policy on redirect
+        https://bugs.webkit.org/show_bug.cgi?id=155509
+        <rdar://problem/10234844>
+
+        Reviewed by Alex Christensen.
+
+        Fixes an issue where the Content Security Policy of the page was not enforced
+        on redirects when loading a media subresource via an HTML video or HTML audio
+        element.
+
+        Tests: http/tests/security/contentSecurityPolicy/audio-redirect-allowed.html
+               http/tests/security/contentSecurityPolicy/audio-redirect-blocked.html
+               http/tests/security/contentSecurityPolicy/font-redirect-allowed.html
+               http/tests/security/contentSecurityPolicy/font-redirect-blocked.html
+               http/tests/security/contentSecurityPolicy/image-redirect-allowed.html
+               http/tests/security/contentSecurityPolicy/image-redirect-blocked.html
+               http/tests/security/contentSecurityPolicy/script-redirect-allowed.html
+               http/tests/security/contentSecurityPolicy/script-redirect-blocked.html
+               http/tests/security/contentSecurityPolicy/stylesheet-redirect-allowed.html
+               http/tests/security/contentSecurityPolicy/stylesheet-redirect-blocked.html
+               http/tests/security/contentSecurityPolicy/svg-font-redirect-allowed.html
+               http/tests/security/contentSecurityPolicy/svg-font-redirect-blocked.html
+               http/tests/security/contentSecurityPolicy/svg-image-redirect-allowed.html
+               http/tests/security/contentSecurityPolicy/svg-image-redirect-blocked.html
+               http/tests/security/contentSecurityPolicy/track-redirect-allowed.html
+               http/tests/security/contentSecurityPolicy/track-redirect-blocked.html
+               http/tests/security/contentSecurityPolicy/video-redirect-allowed.html
+               http/tests/security/contentSecurityPolicy/video-redirect-blocked.html
+               http/tests/security/contentSecurityPolicy/xsl-redirect-allowed.html
+               http/tests/security/contentSecurityPolicy/xsl-redirect-blocked.html
+
+        * inspector/InspectorPageAgent.cpp:
+        (WebCore::InspectorPageAgent::cachedResourceContent): Treat media resources as raw resources just as we do currently.
+        (WebCore::InspectorPageAgent::cachedResourceType): Ditto.
+        * loader/MediaResourceLoader.cpp:
+        (WebCore::MediaResourceLoader::requestResource): Modified to use CachedResourceLoader::requestMedia() instead
+        of CachedResourceLoader::requestRawResource() so that we can differentiate between a media resource and a raw
+        resource in CachedResourceLoader. Added FIXME comment to skip checking the Content Security Policy for loads
+        initiated by an element in a user agent shadow tree. See <https://bugs.webkit.org/show_bug.cgi?id=155505> for
+        more details.
+        * loader/ResourceLoadInfo.cpp:
+        (WebCore::toResourceType): Treat media resources as raw resources just as we do currently. Also, add cases for
+        CachedResource::LinkPrefetch and CachedResource::LinkSubresource (when ENABLE(LINK_PREFETCH) is enabled) and
+        remove the default statement to force a compile-time error when a new CachedResource enumerator is added and
+        the switch block in this function is not updated.
+        * loader/SubresourceLoader.cpp:
+        (WebCore::logResourceLoaded): Ditto.
+        * loader/cache/CachedRawResource.cpp:
+        (WebCore::CachedRawResource::CachedRawResource): Substitute CachedResource::isMainOrMediaOrRawResource() for
+        CachedResource::isMainOrRawResource() as the latter was renamed to the former.
+        * loader/cache/CachedRawResource.h:
+        (isType): Ditto.
+        * loader/cache/CachedResource.cpp:
+        (WebCore::defaultPriorityForResourceType): Use priority ResourceLoadPriority::Medium for media resources just as
+        we do currently.
+        * loader/cache/CachedResource.h:
+        (WebCore::CachedResource::isMainOrMediaOrRawResource): Formerly named isMainOrRawResource. Returns true if the type
+        of this resource is a main resource, media resource, or raw resource.
+        (WebCore::CachedResource::isMainOrRawResource): Deleted.
+        * loader/cache/CachedResourceLoader.cpp:
+        (WebCore::createResource): Treat media resources as raw resources just as we do currently.
+        (WebCore::CachedResourceLoader::requestMedia): Added.
+        (WebCore::contentTypeFromResourceType): Consider media resources as MixedContentChecker::ContentType::Active
+        just as we do currently.
+        (WebCore::CachedResourceLoader::checkInsecureContent): Apply the mixed content policy to media resources
+        just as we do currently.
+        (WebCore::CachedResourceLoader::canRequest): Apply the Same Origin Policy to media resources just as we
+        do currently. Query the Content Security Policy of the page to determine if the media resource can be
+        requested.
+        (WebCore::CachedResourceLoader::determineRevalidationPolicy): Substitute CachedResource::isMainOrMediaOrRawResource()
+        for CachedResource::isMainOrRawResource() as the latter was renamed to the former.
+        * loader/cache/CachedResourceLoader.h:
+        * platform/graphics/avfoundation/objc/WebCoreAVFResourceLoader.mm:
+        (WebCore::WebCoreAVFResourceLoader::startLoading): Modified to use CachedResourceLoader::requestMedia() instead
+        of CachedResourceLoader::requestRawResource() so that we can differentiate between a media resource and a raw
+        resource in CachedResourceLoader. Added FIXME comment to skip checking the Content Security Policy for loads
+        initiated by an element in a user agent shadow tree. See <https://bugs.webkit.org/show_bug.cgi?id=155505> for
+        more details. Additionally, simplified code that determined whether to request the media resource or error out
+        by coalescing two conditional expressions into one conditional on whether we have a loader and substituted
+        nullptr for 0.
+
 2016-03-16  Chris Dumez  <cdumez@apple.com>
 

trunk/Source/WebCore/inspector/InspectorPageAgent.cpp

@@ -164 +164 @@
             *result = downcast<CachedScript>(*cachedResource).script().toString();
             return true;
+        case CachedResource::MediaResource:
         case CachedResource::RawResource: {
             auto* buffer = cachedResource->resourceBuffer();
@@ -315 +316 @@
     case CachedResource::Script:
         return InspectorPageAgent::ScriptResource;
+    case CachedResource::MediaResource:
     case CachedResource::RawResource:
         return InspectorPageAgent::XHRResource;

trunk/Source/WebCore/loader/MediaResourceLoader.cpp

@@ -56 +56 @@
     StoredCredentials allowCredentials = m_crossOriginMode.isNull() || equalLettersIgnoringASCIICase(m_crossOriginMode, "use-credentials") ? AllowStoredCredentials : DoNotAllowStoredCredentials;
 
-    // ContentSecurityPolicyImposition::DoPolicyCheck is a placeholder value. It does not affect the request since Content Security Policy does not apply to raw resources.
+    // FIXME: Skip Content Security Policy check if the element that inititated this request
+    // is in a user-agent shadow tree. See <https://bugs.webkit.org/show_bug.cgi?id=155505>.
     CachedResourceRequest cacheRequest(request, ResourceLoaderOptions(SendCallbacks, DoNotSniffContent, bufferingPolicy, allowCredentials, DoNotAskClientForCrossOriginCredentials, ClientDidNotRequestCredentials, DoSecurityCheck, corsPolicy, DoNotIncludeCertificateInfo, ContentSecurityPolicyImposition::DoPolicyCheck, DefersLoadingPolicy::AllowDefersLoading, CachingPolicy::AllowCaching));
 
@@ -62 +63 @@
         updateRequestForAccessControl(cacheRequest.mutableResourceRequest(), m_document.securityOrigin(), allowCredentials);
 
-    CachedResourceHandle<CachedRawResource> resource = m_document.cachedResourceLoader().requestRawResource(cacheRequest);
+    CachedResourceHandle<CachedRawResource> resource = m_document.cachedResourceLoader().requestMedia(cacheRequest);
     if (!resource)
         return nullptr;

trunk/Source/WebCore/loader/ResourceLoadInfo.cpp

@@ -56 +56 @@
         return ResourceType::Font;
 
+    case CachedResource::MediaResource:
     case CachedResource::RawResource:
         return ResourceType::Raw;
@@ -63 +64 @@
         return ResourceType::Media;
 #endif
-    default:
+#if ENABLE(LINK_PREFETCH)
+    case CachedResource::LinkPrefetch:
+    case CachedResource::LinkSubresource:
         ASSERT_NOT_REACHED();
+#endif
     };
 }

trunk/Source/WebCore/loader/SubresourceLoader.cpp

@@ -351 +351 @@
         resourceType = DiagnosticLoggingKeys::fontKey();
         break;
+    case CachedResource::MediaResource:
     case CachedResource::RawResource:
         resourceType = DiagnosticLoggingKeys::rawKey();

trunk/Source/WebCore/loader/cache/CachedRawResource.cpp

@@ -43 +43 @@
     , m_allowEncodedDataReplacement(true)
 {
-    ASSERT(isMainOrRawResource());
+    ASSERT(isMainOrMediaOrRawResource());
 }
 

trunk/Source/WebCore/loader/cache/CachedRawResource.h

@@ -96 +96 @@
 
 SPECIALIZE_TYPE_TRAITS_BEGIN(WebCore::CachedRawResource)
-    static bool isType(const WebCore::CachedResource& resource) { return resource.isMainOrRawResource(); }
+    static bool isType(const WebCore::CachedResource& resource) { return resource.isMainOrMediaOrRawResource(); }
 SPECIALIZE_TYPE_TRAITS_END()
 

trunk/Source/WebCore/loader/cache/CachedResource.cpp

@@ -75 +75 @@
     case CachedResource::SVGFontResource:
 #endif
+    case CachedResource::MediaResource:
     case CachedResource::FontResource:
     case CachedResource::RawResource:

trunk/Source/WebCore/loader/cache/CachedResource.h

@@ -70 +70 @@
         SVGFontResource,
 #endif
+        MediaResource,
         RawResource,
         SVGDocumentResource
@@ -160 +161 @@
 
     bool isImage() const { return type() == ImageResource; }
-    // FIXME: CachedRawResource could be either a main resource or a raw XHR resource.
-    bool isMainOrRawResource() const { return type() == MainResource || type() == RawResource; }
+    // FIXME: CachedRawResource could be a main resource, an audio/video resource, or a raw XHR/icon resource.
+    bool isMainOrMediaOrRawResource() const { return type() == MainResource || type() == MediaResource || type() == RawResource; }
     bool ignoreForRequestCount() const
     {

trunk/Source/WebCore/loader/cache/CachedResourceLoader.cpp

@@ -101 +101 @@
     case CachedResource::FontResource:
         return new CachedFont(request, sessionID);
+    case CachedResource::MediaResource:
     case CachedResource::RawResource:
     case CachedResource::MainResource:
@@ -270 +271 @@
 #endif
 
+CachedResourceHandle<CachedRawResource> CachedResourceLoader::requestMedia(CachedResourceRequest& request)
+{
+    return downcast<CachedRawResource>(requestResource(CachedResource::MediaResource, request).get());
+}
+
 CachedResourceHandle<CachedRawResource> CachedResourceLoader::requestRawResource(CachedResourceRequest& request)
 {
@@ -296 +302 @@
 #endif
 
+    case CachedResource::MediaResource:
     case CachedResource::RawResource:
     case CachedResource::SVGDocumentResource:
@@ -338 +345 @@
     case CachedResource::TextTrackResource:
 #endif
+    case CachedResource::MediaResource:
     case CachedResource::RawResource:
     case CachedResource::ImageResource:
@@ -385 +393 @@
     case CachedResource::SVGFontResource:
 #endif
+    case CachedResource::MediaResource:
     case CachedResource::FontResource:
     case CachedResource::RawResource:
@@ -447 +456 @@
 #endif
         break;
+    case CachedResource::MediaResource:
 #if ENABLE(VIDEO_TRACK)
     case CachedResource::TextTrackResource:
+#endif
         if (!m_document->contentSecurityPolicy()->allowMediaFromSource(url, skipContentSecurityPolicyCheck))
             return false;
         break;
-#endif
     }
 
@@ -743 +753 @@
     // FIXME: We should use the same cache policy for all resource types. The raw resource policy is overly strict
     //        while the normal subresource policy is too loose.
-    if (existingResource->isMainOrRawResource()) {
+    if (existingResource->isMainOrMediaOrRawResource()) {
         bool strictPolicyDisabled = frame()->loader().isStrictRawResourceValidationPolicyDisabledForTesting();
         bool canReuseRawResource = strictPolicyDisabled || downcast<CachedRawResource>(*existingResource).canReuse(request);

trunk/Source/WebCore/loader/cache/CachedResourceLoader.h

@@ -77 +77 @@
     CachedResourceHandle<CachedScript> requestScript(CachedResourceRequest&);
     CachedResourceHandle<CachedFont> requestFont(CachedResourceRequest&, bool isSVG);
+    CachedResourceHandle<CachedRawResource> requestMedia(CachedResourceRequest&);
     CachedResourceHandle<CachedRawResource> requestRawResource(CachedResourceRequest&);
     CachedResourceHandle<CachedRawResource> requestMainResource(CachedResourceRequest&);

trunk/Source/WebCore/platform/graphics/avfoundation/objc/WebCoreAVFResourceLoader.mm

@@ -68 +68 @@
     NSURLRequest *nsRequest = [m_avRequest.get() request];
 
-    // ContentSecurityPolicyImposition::DoPolicyCheck is a placeholder value. It does not affect the request since Content Security Policy does not apply to raw resources.
+    // FIXME: Skip Content Security Policy check if the element that inititated this request
+    // is in a user-agent shadow tree. See <https://bugs.webkit.org/show_bug.cgi?id=155505>.
     CachedResourceRequest request(nsRequest, ResourceLoaderOptions(SendCallbacks, DoNotSniffContent, BufferData, DoNotAllowStoredCredentials, DoNotAskClientForCrossOriginCredentials, ClientDidNotRequestCredentials, DoSecurityCheck, UseDefaultOriginRestrictionsForType, DoNotIncludeCertificateInfo, ContentSecurityPolicyImposition::DoPolicyCheck, DefersLoadingPolicy::AllowDefersLoading, CachingPolicy::DisallowCaching));
 
     request.mutableResourceRequest().setPriority(ResourceLoadPriority::Low);
-    CachedResourceLoader* loader = m_parent->player()->cachedResourceLoader();
-    m_resource = loader ? loader->requestRawResource(request) : 0;
-    if (m_resource)
+    if (CachedResourceLoader* loader = m_parent->player()->cachedResourceLoader()) {
+        m_resource = loader->requestMedia(request);
         m_resource->addClient(this);
-    else {
+    } else {
+        m_resource = nullptr;
         LOG_ERROR("Failed to start load for media at url %s", [[[nsRequest URL] absoluteString] UTF8String]);
         [m_avRequest.get() finishLoadingWithError:0];

trunk/Source/WebKit2/ChangeLog

@@ +1 @@
+2016-03-16  Daniel Bates  <dabates@apple.com>
+
+        <video> and <audio> elements do not obey Content Security Policy on redirect
+        https://bugs.webkit.org/show_bug.cgi?id=155509
+        <rdar://problem/10234844>
+
+        Reviewed by Alex Christensen.
+
+        Use 0ms as the maximum buffering time for media resource just as we do currently.
+
+        * WebProcess/Network/WebLoaderStrategy.cpp:
+        (WebKit::maximumBufferingTime):
+
 2016-03-16  Chris Dumez  <cdumez@apple.com>
 

trunk/Source/WebKit2/WebProcess/Network/WebLoaderStrategy.cpp

@@ -107 +107 @@
     case CachedResource::ImageResource:
         return 500_ms;
+    case CachedResource::MediaResource:
     case CachedResource::MainResource:
     case CachedResource::RawResource: