This test suite comes from https://dvcs.w3.org/hg/webappsec
(changeset:   107:5d98c061676e)
with some modification below:

1. change src="support/assertTrue.php?varName=unsafeScript" to src="CSP_passTest001.cgi", cancel the parameter passing between the PHP

2. Update ".php" postfix to ".cgi" in tests

3. Add <body> and remove '<div id="log"><div>' in CSP_default-src-inline-blocked.cgi

These tests are copyright by W3C and/or the author listed in the test
file. The tests are dual-licensed under the W3C Test Suite License:
http://www.w3.org/Consortium/Legal/2008/04-testsuite-license
and the BSD 3-clause License:
http://www.w3.org/Consortium/Legal/2008/03-bsd-license
under W3C's test suite licensing policy:
http://www.w3.org/Consortium/Legal/2008/04-testsuite-copyright
