blob: c1232730eab0715b8061689f04b7d2b64c242a51 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
|
<!DOCTYPE html>
<title>script-src blocks Wasm execution</title>
<meta http-equiv="Content-Security-Policy" content="script-src 'unsafe-inline';">
<script src="/resources/testharness.js"></script>
<script src="/resources/testharnessreport.js"></script>
<script>
setup({allow_uncaught_exception: true});
const test_load = async_test(
"Importing a WebAssembly module should be guarded by script-src CSP.");
window.log = [];
document.addEventListener("securitypolicyviolation", (e) => {
window.log.push(e.violatedDirective);
});
window.addEventListener("load", test_load.step_func_done(ev => {
assert_array_equals(log, ["script-src-elem"]);
}));
</script>
<script type="module" src="./resources/execute-start.wasm"></script>
|
