<!DOCTYPE html>
<html>
<head>
<!-- Programmatically converted from a WebKit Reftest, please forgive resulting idiosyncracies.-->
<meta http-equiv="Content-Security-Policy" content="script-src 'self' 'nonce-abc' 'sha256-IFmozo9WnnsMXVl/Ka8XzJ3Nd8yzS2zA2ME0mwtd+Ck=' 'sha256-jSpTmJKcrnHttKdYM/wCCDJoQY5tdSxNf7zd2prwFfI=' 'sha256-qbgA2XjB2EZKjn/UmK7v/K77t+fvfxA89QT/K9qPNyE=' 'sha256-K+7X5Ip3msvRvyQzf6fkrWZziuhaUIee1aLnlP5nX10='; connect-src 'self';">
<title>scripthash-allowed</title>
<script src="/resources/testharness.js"></script>
<script src="/resources/testharnessreport.js"></script>
<script src="/content-security-policy/support/alertAssert.sub.js?alerts=%5B%22PASS%20(1%2F4)%22%2C%22PASS%20(2%2F4)%22%2C%22PASS%20(3%2F4)%22%2C%22PASS%20(4%2F4)%22%5D">
<script>
window.addEventListener('securitypolicyviolation', function(e) {
alert_assert("Fail");
});
</script>
<script>
alert_assert('PASS (1/4)');
</script>
<script>
alert_assert('PASS (2/4)');
</script>
<script>
alert_assert('PASS (3/4)');
</script>
<script>
alert_assert('PASS (4/4)');
</script>
</head>
<body>
<p>
This tests the effect of a valid script-hash value. It passes if no CSP violation is generated, and the alert_assert() is executed.
</p>
<div id="log"></div>
</body>
</html>