mirror of
https://gitlab.winehq.org/wine/wine-gecko.git
synced 2024-09-13 09:24:08 -07:00
Bug 1232903 - Skip Security checks if triggeringPrincipal is SystemPrincipal (r=sicking)
This commit is contained in:
parent
56a7f3bff4
commit
969767cb13
@ -476,6 +476,13 @@ nsContentSecurityManager::CheckChannel(nsIChannel* aChannel)
|
||||
return NS_OK;
|
||||
}
|
||||
|
||||
// Allow the load if TriggeringPrincipal is the SystemPrincipal which
|
||||
// is e.g. necessary to allow user user stylesheets to load XBL from
|
||||
// external files.
|
||||
if (nsContentUtils::IsSystemPrincipal(loadInfo->TriggeringPrincipal())) {
|
||||
return NS_OK;
|
||||
}
|
||||
|
||||
// if none of the REQUIRE_SAME_ORIGIN flags are set, then SOP does not apply
|
||||
if ((securityMode == nsILoadInfo::SEC_REQUIRE_SAME_ORIGIN_DATA_INHERITS) ||
|
||||
(securityMode == nsILoadInfo::SEC_REQUIRE_SAME_ORIGIN_DATA_IS_BLOCKED)) {
|
||||
|
Loading…
Reference in New Issue
Block a user