LayoutTests/imported/w3c/web-platform-tests/content-security-policy/unsafe-eval/function-constructor-allowed.sub.html - WebKit - Git at Google

 <!DOCTYPE html>
 <html>

 <head>
     <!-- Programmatically converted from a WebKit Reftest, please forgive resulting idiosyncracies.-->
     <meta http-equiv="Content-Security-Policy" content="script-src 'self' 'unsafe-inline' 'unsafe-eval'; connect-src 'self';">
     <title>function-constructor-allowed</title>
     <script src="/resources/testharness.js"></script>
     <script src="/resources/testharnessreport.js"></script>
     <script src='../support/logTest.sub.js?logs=["PASS"]'></script>
     <script src='../support/alertAssert.sub.js?alerts=[]'></script>
 </head>

 <body>
     <script>
         window.addEventListener('securitypolicyviolation', function(e) {
             log("Fail");
         });

         (new Function("log('PASS')"))();

     </script>
     <div id="log"></div>
 </body>

 </html>
	<!DOCTYPE html>
	<html>

	<head>
	<!-- Programmatically converted from a WebKit Reftest, please forgive resulting idiosyncracies.-->
	<meta http-equiv="Content-Security-Policy" content="script-src 'self' 'unsafe-inline' 'unsafe-eval'; connect-src 'self';">
	<title>function-constructor-allowed</title>
	<script src="/resources/testharness.js"></script>
	<script src="/resources/testharnessreport.js"></script>
	<script src='../support/logTest.sub.js?logs=["PASS"]'></script>
	<script src='../support/alertAssert.sub.js?alerts=[]'></script>
	</head>

	<body>
	<script>
	window.addEventListener('securitypolicyviolation', function(e) {
	log("Fail");
	});

	(new Function("log('PASS')"))();

	</script>
	<div id="log"></div>
	</body>

	</html>