Update FetchTaskTarget to propagate CSP violations. (#36409)

It also updates the FetchResponseListener to process CSP violations to
ensure that iframe elements (amongst others) properly generate the CSP
events. These iframe elements are used in the Trusted Types tests
themselves and weren't propagating the violations before.

However, the tests themselves are still not passing since they also use
Websockets, which currently aren't using the fetch machinery itself.
That is fixed as part of [1].

[1]: https://github.com/servo/servo/issues/35028

---------

Signed-off-by: Tim van der Lippe <tvanderlippe@gmail.com>
Signed-off-by: Josh Matthews <josh@joshmatthews.net>
Co-authored-by: Josh Matthews <josh@joshmatthews.net>

tests/wpt/meta/content-security-policy/gen/top.http-rp/worker-src-none/worker-classic.http.html.ini

@@ -1,12 +1,6 @@
 [worker-classic.http.html]
-  [Content Security Policy: Expects blocked for worker-classic to same-http origin and keep-origin redirection from http context.]
-    expected: FAIL
-
   [Content Security Policy: Expects blocked for worker-classic to same-http origin and keep-origin redirection from http context.: securitypolicyviolation]
     expected: FAIL
 
-  [Content Security Policy: Expects blocked for worker-classic to same-http origin and no-redirect redirection from http context.]
-    expected: FAIL
-
   [Content Security Policy: Expects blocked for worker-classic to same-http origin and no-redirect redirection from http context.: securitypolicyviolation]
     expected: FAIL

tests/wpt/meta/content-security-policy/gen/top.http-rp/worker-src-none/worker-classic.https.html.ini

@@ -1,12 +1,6 @@
 [worker-classic.https.html]
-  [Content Security Policy: Expects blocked for worker-classic to same-https origin and keep-origin redirection from https context.]
-    expected: FAIL
-
   [Content Security Policy: Expects blocked for worker-classic to same-https origin and keep-origin redirection from https context.: securitypolicyviolation]
     expected: FAIL
 
-  [Content Security Policy: Expects blocked for worker-classic to same-https origin and no-redirect redirection from https context.]
-    expected: FAIL
-
   [Content Security Policy: Expects blocked for worker-classic to same-https origin and no-redirect redirection from https context.: securitypolicyviolation]
     expected: FAIL

tests/wpt/meta/content-security-policy/gen/top.http-rp/worker-src-none/worker-module.http.html.ini

@@ -1,12 +1,6 @@
 [worker-module.http.html]
-  [Content Security Policy: Expects blocked for worker-module to same-http origin and keep-origin redirection from http context.]
-    expected: FAIL
-
   [Content Security Policy: Expects blocked for worker-module to same-http origin and keep-origin redirection from http context.: securitypolicyviolation]
     expected: FAIL
 
-  [Content Security Policy: Expects blocked for worker-module to same-http origin and no-redirect redirection from http context.]
-    expected: FAIL
-
   [Content Security Policy: Expects blocked for worker-module to same-http origin and no-redirect redirection from http context.: securitypolicyviolation]
     expected: FAIL

tests/wpt/meta/content-security-policy/gen/top.http-rp/worker-src-none/worker-module.https.html.ini

@@ -1,12 +1,6 @@
 [worker-module.https.html]
-  [Content Security Policy: Expects blocked for worker-module to same-https origin and keep-origin redirection from https context.]
-    expected: FAIL
-
   [Content Security Policy: Expects blocked for worker-module to same-https origin and keep-origin redirection from https context.: securitypolicyviolation]
     expected: FAIL
 
-  [Content Security Policy: Expects blocked for worker-module to same-https origin and no-redirect redirection from https context.]
-    expected: FAIL
-
   [Content Security Policy: Expects blocked for worker-module to same-https origin and no-redirect redirection from https context.: securitypolicyviolation]
     expected: FAIL