perf(core): make sanitization tree-shakable in Ivy mode (#31934)

In VE the `Sanitizer` is always available in `BrowserModule` because the VE retrieves it using injection. In Ivy the injection is optional and we have instructions instead of component definition arrays. The implication of this is that in Ivy the instructions can pull in the sanitizer only when they are working with a property which is known to be unsafe. Because the Injection is optional this works even if no Sanitizer is present. So in Ivy we first use the sanitizer which is pulled in by the instruction, unless one is available through the `Injector` then we use that one instead. This PR does few things: 1) It makes `Sanitizer` optional in Ivy. 2) It makes `DomSanitizer` tree shakable. 3) It aligns the semantics of Ivy `Sanitizer` with that of the Ivy sanitization rules. 4) It refactors `DomSanitizer` to use same functions as Ivy sanitization for consistency. PR Close #31934
2019-07-31 13:15:50 -07:00
parent 40b28742a9
commit 2e4d17f3a9
31 changed files with 269 additions and 214 deletions
--- a/packages/core/src/core.ts
+++ b/packages/core/src/core.ts
@ -34,5 +34,6 @@ export {EventEmitter} from './event_emitter';
 export {ErrorHandler} from './error_handler';
 export * from './core_private_export';
 export * from './core_render3_private_export';
-export {Sanitizer, SecurityContext} from './sanitization/security';
+export {SecurityContext} from './sanitization/security';
+export {Sanitizer} from './sanitization/sanitizer';
 export * from './codegen_private_exports';
--- a/packages/core/src/core_private_export.ts
+++ b/packages/core/src/core_private_export.ts
@ -36,3 +36,4 @@ export {clearOverrides as ɵclearOverrides, initServicesIfNeeded as ɵinitServic
 export {NOT_FOUND_CHECK_ONLY_ELEMENT_INJECTOR as ɵNOT_FOUND_CHECK_ONLY_ELEMENT_INJECTOR} from './view/provider';
 export {getLocalePluralCase as ɵgetLocalePluralCase, findLocaleData as ɵfindLocaleData} from './i18n/locale_data_api';
 export {LOCALE_DATA as ɵLOCALE_DATA, LocaleDataIndex as ɵLocaleDataIndex} from './i18n/locale_data';
+export {allowSanitizationBypassAndThrow as ɵallowSanitizationBypassAndThrow, getSanitizationBypassType as ɵgetSanitizationBypassType, BypassType as ɵBypassType, unwrapSafeValue as ɵunwrapSafeValue, SafeHtml as ɵSafeHtml, SafeResourceUrl as ɵSafeResourceUrl, SafeScript as ɵSafeScript, SafeStyle as ɵSafeStyle, SafeUrl as ɵSafeUrl, SafeValue as ɵSafeValue} from './sanitization/bypass';
--- a/packages/core/src/di/injector_compatibility.ts
+++ b/packages/core/src/di/injector_compatibility.ts
@ -111,7 +111,7 @@ export function ɵɵinject<T>(token: Type<T>| InjectionToken<T>): T;
 export function ɵɵinject<T>(token: Type<T>| InjectionToken<T>, flags?: InjectFlags): T|null;
 export function ɵɵinject<T>(token: Type<T>| InjectionToken<T>, flags = InjectFlags.Default): T|
    null {
-  return (_injectImplementation || injectInjectorOnly)(token, flags);
+  return (_injectImplementation || injectInjectorOnly)(resolveForwardRef(token), flags);
 }

 /**
@ -201,7 +201,7 @@ export class NullInjector implements Injector {
      // Intentionally left behind: With dev tools open the debugger will stop here. There is no
      // reason why correctly written application should cause this exception.
      // TODO(misko): uncomment the next line once `ngDevMode` works with closure.
-      // if(ngDevMode) debugger;
+      // if (ngDevMode) debugger;
      const error = new Error(`NullInjectorError: No provider for ${stringify(token)}!`);
      error.name = 'NullInjectorError';
      throw error;
--- a/packages/core/src/render3/component.ts
+++ b/packages/core/src/render3/component.ts
@ -10,7 +10,7 @@
 // correctly implementing its interfaces for backwards compatibility.
 import {Type} from '../core';
 import {Injector} from '../di/injector';
-import {Sanitizer} from '../sanitization/security';
+import {Sanitizer} from '../sanitization/sanitizer';
 import {assertDataInRange} from '../util/assert';

 import {assertComponentType} from './assert';
--- a/packages/core/src/render3/component_ref.ts
+++ b/packages/core/src/render3/component_ref.ts
@ -16,7 +16,7 @@ import {ComponentFactoryResolver as viewEngine_ComponentFactoryResolver} from '.
 import {ElementRef as viewEngine_ElementRef} from '../linker/element_ref';
 import {NgModuleRef as viewEngine_NgModuleRef} from '../linker/ng_module_factory';
 import {RendererFactory2} from '../render/api';
-import {Sanitizer} from '../sanitization/security';
+import {Sanitizer} from '../sanitization/sanitizer';
 import {VERSION} from '../version';
 import {NOT_FOUND_CHECK_ONLY_ELEMENT_INJECTOR} from '../view/provider';

--- a/packages/core/src/render3/instructions/shared.ts
+++ b/packages/core/src/render3/instructions/shared.ts
@ -9,7 +9,7 @@ import {Injector} from '../../di';
 import {ErrorHandler} from '../../error_handler';
 import {CUSTOM_ELEMENTS_SCHEMA, NO_ERRORS_SCHEMA, SchemaMetadata} from '../../metadata/schema';
 import {validateAgainstEventAttributes, validateAgainstEventProperties} from '../../sanitization/sanitization';
-import {Sanitizer} from '../../sanitization/security';
+import {Sanitizer} from '../../sanitization/sanitizer';
 import {assertDataInRange, assertDefined, assertDomNode, assertEqual, assertGreaterThan, assertNotEqual, assertNotSame} from '../../util/assert';
 import {createNamedArrayType} from '../../util/named_array_type';
 import {normalizeDebugBindingName, normalizeDebugBindingValue} from '../../util/ng_reflect';
--- a/packages/core/src/render3/interfaces/view.ts
+++ b/packages/core/src/render3/interfaces/view.ts
@ -10,7 +10,7 @@ import {InjectionToken} from '../../di/injection_token';
 import {Injector} from '../../di/injector';
 import {Type} from '../../interface/type';
 import {SchemaMetadata} from '../../metadata';
-import {Sanitizer} from '../../sanitization/security';
+import {Sanitizer} from '../../sanitization/sanitizer';

 import {LContainer} from './container';
 import {ComponentDef, ComponentTemplate, DirectiveDef, DirectiveDefList, HostBindingsFunction, PipeDef, PipeDefList, ViewQueriesFunction} from './definition';
--- a/packages/core/src/render3/styling_next/bindings.ts
+++ b/packages/core/src/render3/styling_next/bindings.ts
@ -5,6 +5,7 @@
 * Use of this source code is governed by an MIT-style license that can be
 * found in the LICENSE file at https://angular.io/license
 */
+import {SafeValue} from '../../sanitization/bypass';
 import {StyleSanitizeFn, StyleSanitizeMode} from '../../sanitization/style_sanitizer';
 import {ProceduralRenderer3, RElement, Renderer3, RendererStyleFlags3, isProceduralRenderer} from '../interfaces/renderer';

@ -110,7 +111,7 @@ export function updateClassBinding(
 */
 export function updateStyleBinding(
    context: TStylingContext, data: LStylingData, element: RElement, prop: string | null,
-    bindingIndex: number, value: String | string | number | null | undefined | StylingMapArray,
+    bindingIndex: number, value: string | number | SafeValue | null | undefined | StylingMapArray,
    sanitizer: StyleSanitizeFn | null, deferRegistration: boolean, forceUpdate: boolean): boolean {
  const isMapBased = !prop;
  const state = getStylingState(element, stateIsPersisted(context));
@ -149,7 +150,7 @@ export function updateStyleBinding(
 function updateBindingData(
    context: TStylingContext, data: LStylingData, counterIndex: number, prop: string | null,
    bindingIndex: number,
-    value: string | String | number | boolean | null | undefined | StylingMapArray,
+    value: string | SafeValue | number | boolean | null | undefined | StylingMapArray,
    deferRegistration: boolean, forceUpdate: boolean, sanitizationRequired: boolean): boolean {
  if (!isContextLocked(context)) {
    if (deferRegistration) {
--- a/packages/core/src/render3/styling_next/instructions.ts
+++ b/packages/core/src/render3/styling_next/instructions.ts
@ -5,6 +5,7 @@
 * Use of this source code is governed by an MIT-style license that can be
 * found in the LICENSE file at https://angular.io/license
 */
+import {SafeValue} from '../../sanitization/bypass';
 import {StyleSanitizeFn} from '../../sanitization/style_sanitizer';
 import {setInputsForProperty} from '../instructions/shared';
 import {AttributeMarker, TAttributes, TNode, TNodeType} from '../interfaces/node';
@ -96,12 +97,12 @@ export function ɵɵstyleSanitizer(sanitizer: StyleSanitizeFn | null): void {
 * @codeGenApi
 */
 export function ɵɵstyleProp(
-    prop: string, value: string | number | String | null, suffix?: string | null): void {
+    prop: string, value: string | number | SafeValue | null, suffix?: string | null): void {
  stylePropInternal(getSelectedIndex(), prop, value, suffix);
 }

 export function stylePropInternal(
-    elementIndex: number, prop: string, value: string | number | String | null,
+    elementIndex: number, prop: string, value: string | number | SafeValue | null,
    suffix?: string | null | undefined) {
  const lView = getLView();

@ -161,8 +162,8 @@ export function ɵɵclassProp(className: string, value: boolean | null): void {
 */
 function _stylingProp(
    elementIndex: number, bindingIndex: number, prop: string,
-    value: boolean | number | String | string | null | undefined | NO_CHANGE, isClassBased: boolean,
-    defer: boolean): boolean {
+    value: boolean | number | SafeValue | string | null | undefined | NO_CHANGE,
+    isClassBased: boolean, defer: boolean): boolean {
  const lView = getLView();
  const tNode = getTNode(elementIndex, lView);
  const native = getNativeByTNode(tNode, lView) as RElement;
@ -176,8 +177,8 @@ function _stylingProp(
    } else {
      const sanitizer = getCurrentStyleSanitizer();
      updated = updateStyleBinding(
-          getStylesContext(tNode), lView, native, prop, bindingIndex, value as string | null,
-          sanitizer, defer, false);
+          getStylesContext(tNode), lView, native, prop, bindingIndex,
+          value as string | SafeValue | null, sanitizer, defer, false);
    }
  }

@ -508,8 +509,8 @@ function getContext(tNode: TNode, isClassBased: boolean) {
 }

 function resolveStylePropValue(
-    value: string | number | String | null | NO_CHANGE, suffix: string | null | undefined): string|
-    null|undefined|NO_CHANGE {
+    value: string | number | SafeValue | null | NO_CHANGE,
+    suffix: string | null | undefined): string|SafeValue|null|undefined|NO_CHANGE {
  if (value === NO_CHANGE) return value;

  let resolvedValue: string|null = null;
@ -519,7 +520,7 @@ function resolveStylePropValue(
      // sanitization entirely (b/c a new string is created)
      resolvedValue = renderStringify(value) + suffix;
    } else {
-      // sanitization happens by dealing with a String value
+      // sanitization happens by dealing with a string value
      // this means that the string value will be passed through
      // into the style rendering later (which is where the value
      // will be sanitized before it is applied)
--- a/packages/core/src/sanitization/bypass.ts
+++ b/packages/core/src/sanitization/bypass.ts
@ -6,61 +6,120 @@
 * found in the LICENSE file at https://angular.io/license
 */

-const BRAND = '__SANITIZER_TRUSTED_BRAND__';
+import {assertEqual} from '../util/assert';
+

 export const enum BypassType {
-  Url = 'Url',
-  Html = 'Html',
-  ResourceUrl = 'ResourceUrl',
+  Url = 'URL',
+  Html = 'HTML',
+  ResourceUrl = 'ResourceURL',
  Script = 'Script',
  Style = 'Style',
 }

 /**
- * A branded trusted string used with sanitization.
+ * Marker interface for a value that's safe to use in a particular context.
 *
- * See: {@link TrustedHtmlString}, {@link TrustedResourceUrlString}, {@link TrustedScriptString},
- * {@link TrustedStyleString}, {@link TrustedUrlString}
+ * @publicApi
 */
-export interface TrustedString extends String { [BRAND]: BypassType; }
+export interface SafeValue {}

 /**
- * A branded trusted string used with sanitization of `html` strings.
+ * Marker interface for a value that's safe to use as HTML.
 *
- * See: {@link bypassSanitizationTrustHtml} and {@link htmlSanitizer}.
+ * @publicApi
 */
-export interface TrustedHtmlString extends TrustedString { [BRAND]: BypassType.Html; }
+export interface SafeHtml extends SafeValue {}

 /**
- * A branded trusted string used with sanitization of `style` strings.
+ * Marker interface for a value that's safe to use as style (CSS).
 *
- * See: {@link bypassSanitizationTrustStyle} and {@link styleSanitizer}.
+ * @publicApi
 */
-export interface TrustedStyleString extends TrustedString { [BRAND]: BypassType.Style; }
+export interface SafeStyle extends SafeValue {}

 /**
- * A branded trusted string used with sanitization of `url` strings.
+ * Marker interface for a value that's safe to use as JavaScript.
 *
- * See: {@link bypassSanitizationTrustScript} and {@link scriptSanitizer}.
+ * @publicApi
 */
-export interface TrustedScriptString extends TrustedString { [BRAND]: BypassType.Script; }
+export interface SafeScript extends SafeValue {}

 /**
- * A branded trusted string used with sanitization of `url` strings.
+ * Marker interface for a value that's safe to use as a URL linking to a document.
 *
- * See: {@link bypassSanitizationTrustUrl} and {@link urlSanitizer}.
+ * @publicApi
 */
-export interface TrustedUrlString extends TrustedString { [BRAND]: BypassType.Url; }
+export interface SafeUrl extends SafeValue {}

 /**
- * A branded trusted string used with sanitization of `resourceUrl` strings.
+ * Marker interface for a value that's safe to use as a URL to load executable code from.
 *
- * See: {@link bypassSanitizationTrustResourceUrl} and {@link resourceUrlSanitizer}.
+ * @publicApi
 */
-export interface TrustedResourceUrlString extends TrustedString { [BRAND]: BypassType.ResourceUrl; }
+export interface SafeResourceUrl extends SafeValue {}

-export function allowSanitizationBypass(value: any, type: BypassType): boolean {
-  return (value instanceof String && (value as TrustedStyleString)[BRAND] === type);
+
+abstract class SafeValueImpl implements SafeValue {
+  constructor(public changingThisBreaksApplicationSecurity: string) {
+    // empty
+  }
+
+  abstract getTypeName(): string;
+
+  toString() {
+    return `SafeValue must use [property]=binding: ${this.changingThisBreaksApplicationSecurity}` +
+        ` (see http://g.co/ng/security#xss)`;
+  }
+}
+
+class SafeHtmlImpl extends SafeValueImpl implements SafeHtml {
+  getTypeName() { return BypassType.Html; }
+}
+class SafeStyleImpl extends SafeValueImpl implements SafeStyle {
+  getTypeName() { return BypassType.Style; }
+}
+class SafeScriptImpl extends SafeValueImpl implements SafeScript {
+  getTypeName() { return BypassType.Script; }
+}
+class SafeUrlImpl extends SafeValueImpl implements SafeUrl {
+  getTypeName() { return BypassType.Url; }
+}
+class SafeResourceUrlImpl extends SafeValueImpl implements SafeResourceUrl {
+  getTypeName() { return BypassType.ResourceUrl; }
+}
+
+export function unwrapSafeValue(value: SafeValue): string {
+  return value instanceof SafeValueImpl ?
+      (value as SafeValueImpl).changingThisBreaksApplicationSecurity :
+      '';
+}
+
+
+export function allowSanitizationBypassAndThrow(
+    value: any, type: BypassType.Html): value is SafeHtml;
+export function allowSanitizationBypassAndThrow(
+    value: any, type: BypassType.ResourceUrl): value is SafeResourceUrl;
+export function allowSanitizationBypassAndThrow(
+    value: any, type: BypassType.Script): value is SafeScript;
+export function allowSanitizationBypassAndThrow(
+    value: any, type: BypassType.Style): value is SafeStyle;
+export function allowSanitizationBypassAndThrow(value: any, type: BypassType.Url): value is SafeUrl;
+export function allowSanitizationBypassAndThrow(value: any, type: BypassType): boolean;
+export function allowSanitizationBypassAndThrow(value: any, type: BypassType): boolean {
+  const actualType = getSanitizationBypassType(value);
+  if (actualType != null && actualType !== type) {
+    // Allow ResourceURLs in URL contexts, they are strictly more trusted.
+    if (actualType === BypassType.ResourceUrl && type === BypassType.Url) return true;
+    throw new Error(
+        `Required a safe ${type}, got a ${actualType} (see http://g.co/ng/security#xss)`);
+  }
+  return actualType === type;
+}
+
+export function getSanitizationBypassType(value: any): BypassType|null {
+  return value instanceof SafeValueImpl && (value as SafeValueImpl).getTypeName() as BypassType ||
+      null;
 }

 /**
@ -70,10 +129,10 @@ export function allowSanitizationBypass(value: any, type: BypassType): boolean {
 * recognizable to {@link htmlSanitizer} to be trusted implicitly.
 *
 * @param trustedHtml `html` string which needs to be implicitly trusted.
- * @returns a `html` `String` which has been branded to be implicitly trusted.
+ * @returns a `html` which has been branded to be implicitly trusted.
 */
-export function bypassSanitizationTrustHtml(trustedHtml: string): TrustedHtmlString {
-  return bypassSanitizationTrustString(trustedHtml, BypassType.Html);
+export function bypassSanitizationTrustHtml(trustedHtml: string): SafeHtml {
+  return new SafeHtmlImpl(trustedHtml);
 }
 /**
 * Mark `style` string as trusted.
@ -82,10 +141,10 @@ export function bypassSanitizationTrustHtml(trustedHtml: string): TrustedHtmlStr
 * recognizable to {@link styleSanitizer} to be trusted implicitly.
 *
 * @param trustedStyle `style` string which needs to be implicitly trusted.
- * @returns a `style` `String` which has been branded to be implicitly trusted.
+ * @returns a `style` hich has been branded to be implicitly trusted.
 */
-export function bypassSanitizationTrustStyle(trustedStyle: string): TrustedStyleString {
-  return bypassSanitizationTrustString(trustedStyle, BypassType.Style);
+export function bypassSanitizationTrustStyle(trustedStyle: string): SafeStyle {
+  return new SafeStyleImpl(trustedStyle);
 }
 /**
 * Mark `script` string as trusted.
@ -94,10 +153,10 @@ export function bypassSanitizationTrustStyle(trustedStyle: string): TrustedStyle
 * recognizable to {@link scriptSanitizer} to be trusted implicitly.
 *
 * @param trustedScript `script` string which needs to be implicitly trusted.
- * @returns a `script` `String` which has been branded to be implicitly trusted.
+ * @returns a `script` which has been branded to be implicitly trusted.
 */
-export function bypassSanitizationTrustScript(trustedScript: string): TrustedScriptString {
-  return bypassSanitizationTrustString(trustedScript, BypassType.Script);
+export function bypassSanitizationTrustScript(trustedScript: string): SafeScript {
+  return new SafeScriptImpl(trustedScript);
 }
 /**
 * Mark `url` string as trusted.
@ -106,10 +165,10 @@ export function bypassSanitizationTrustScript(trustedScript: string): TrustedScr
 * recognizable to {@link urlSanitizer} to be trusted implicitly.
 *
 * @param trustedUrl `url` string which needs to be implicitly trusted.
- * @returns a `url` `String` which has been branded to be implicitly trusted.
+ * @returns a `url`  which has been branded to be implicitly trusted.
 */
-export function bypassSanitizationTrustUrl(trustedUrl: string): TrustedUrlString {
-  return bypassSanitizationTrustString(trustedUrl, BypassType.Url);
+export function bypassSanitizationTrustUrl(trustedUrl: string): SafeUrl {
+  return new SafeUrlImpl(trustedUrl);
 }
 /**
 * Mark `url` string as trusted.
@ -118,26 +177,8 @@ export function bypassSanitizationTrustUrl(trustedUrl: string): TrustedUrlString
 * recognizable to {@link resourceUrlSanitizer} to be trusted implicitly.
 *
 * @param trustedResourceUrl `url` string which needs to be implicitly trusted.
- * @returns a `url` `String` which has been branded to be implicitly trusted.
+ * @returns a `url` which has been branded to be implicitly trusted.
 */
-export function bypassSanitizationTrustResourceUrl(trustedResourceUrl: string):
-    TrustedResourceUrlString {
-  return bypassSanitizationTrustString(trustedResourceUrl, BypassType.ResourceUrl);
-}
-
-
-function bypassSanitizationTrustString(
-    trustedString: string, mode: BypassType.Html): TrustedHtmlString;
-function bypassSanitizationTrustString(
-    trustedString: string, mode: BypassType.Style): TrustedStyleString;
-function bypassSanitizationTrustString(
-    trustedString: string, mode: BypassType.Script): TrustedScriptString;
-function bypassSanitizationTrustString(
-    trustedString: string, mode: BypassType.Url): TrustedUrlString;
-function bypassSanitizationTrustString(
-    trustedString: string, mode: BypassType.ResourceUrl): TrustedResourceUrlString;
-function bypassSanitizationTrustString(trustedString: string, mode: BypassType): TrustedString {
-  const trusted = new String(trustedString) as TrustedString;
-  trusted[BRAND] = mode;
-  return trusted;
+export function bypassSanitizationTrustResourceUrl(trustedResourceUrl: string): SafeResourceUrl {
+  return new SafeResourceUrlImpl(trustedResourceUrl);
 }
--- a/packages/core/src/sanitization/sanitization.ts
+++ b/packages/core/src/sanitization/sanitization.ts
@ -10,9 +10,10 @@ import {SANITIZER} from '../render3/interfaces/view';
 import {getLView} from '../render3/state';
 import {renderStringify} from '../render3/util/misc_utils';

-import {BypassType, allowSanitizationBypass} from './bypass';
+import {BypassType, allowSanitizationBypassAndThrow, unwrapSafeValue} from './bypass';
 import {_sanitizeHtml as _sanitizeHtml} from './html_sanitizer';
-import {Sanitizer, SecurityContext} from './security';
+import {Sanitizer} from './sanitizer';
+import {SecurityContext} from './security';
 import {StyleSanitizeFn, StyleSanitizeMode, _sanitizeStyle as _sanitizeStyle} from './style_sanitizer';
 import {_sanitizeUrl as _sanitizeUrl} from './url_sanitizer';

@ -38,8 +39,8 @@ export function ɵɵsanitizeHtml(unsafeHtml: any): string {
  if (sanitizer) {
    return sanitizer.sanitize(SecurityContext.HTML, unsafeHtml) || '';
  }
-  if (allowSanitizationBypass(unsafeHtml, BypassType.Html)) {
-    return unsafeHtml.toString();
+  if (allowSanitizationBypassAndThrow(unsafeHtml, BypassType.Html)) {
+    return unwrapSafeValue(unsafeHtml);
  }
  return _sanitizeHtml(document, renderStringify(unsafeHtml));
 }
@ -64,8 +65,8 @@ export function ɵɵsanitizeStyle(unsafeStyle: any): string {
  if (sanitizer) {
    return sanitizer.sanitize(SecurityContext.STYLE, unsafeStyle) || '';
  }
-  if (allowSanitizationBypass(unsafeStyle, BypassType.Style)) {
-    return unsafeStyle.toString();
+  if (allowSanitizationBypassAndThrow(unsafeStyle, BypassType.Style)) {
+    return unwrapSafeValue(unsafeStyle);
  }
  return _sanitizeStyle(renderStringify(unsafeStyle));
 }
@ -91,8 +92,8 @@ export function ɵɵsanitizeUrl(unsafeUrl: any): string {
  if (sanitizer) {
    return sanitizer.sanitize(SecurityContext.URL, unsafeUrl) || '';
  }
-  if (allowSanitizationBypass(unsafeUrl, BypassType.Url)) {
-    return unsafeUrl.toString();
+  if (allowSanitizationBypassAndThrow(unsafeUrl, BypassType.Url)) {
+    return unwrapSafeValue(unsafeUrl);
  }
  return _sanitizeUrl(renderStringify(unsafeUrl));
 }
@ -113,8 +114,8 @@ export function ɵɵsanitizeResourceUrl(unsafeResourceUrl: any): string {
  if (sanitizer) {
    return sanitizer.sanitize(SecurityContext.RESOURCE_URL, unsafeResourceUrl) || '';
  }
-  if (allowSanitizationBypass(unsafeResourceUrl, BypassType.ResourceUrl)) {
-    return unsafeResourceUrl.toString();
+  if (allowSanitizationBypassAndThrow(unsafeResourceUrl, BypassType.ResourceUrl)) {
+    return unwrapSafeValue(unsafeResourceUrl);
  }
  throw new Error('unsafe value used in a resource URL context (see http://g.co/ng/security#xss)');
 }
@ -136,8 +137,8 @@ export function ɵɵsanitizeScript(unsafeScript: any): string {
  if (sanitizer) {
    return sanitizer.sanitize(SecurityContext.SCRIPT, unsafeScript) || '';
  }
-  if (allowSanitizationBypass(unsafeScript, BypassType.Script)) {
-    return unsafeScript.toString();
+  if (allowSanitizationBypassAndThrow(unsafeScript, BypassType.Script)) {
+    return unwrapSafeValue(unsafeScript);
  }
  throw new Error('unsafe value used in a script context');
 }
--- a/packages/core/src/sanitization/sanitizer.ts
+++ b/packages/core/src/sanitization/sanitizer.ts
@ -0,0 +1,25 @@
+/**
+ * @license
+ * Copyright Google Inc. All Rights Reserved.
+ *
+ * Use of this source code is governed by an MIT-style license that can be
+ * found in the LICENSE file at https://angular.io/license
+ */
+
+import {ɵɵdefineInjectable} from '../di/interface/defs';
+import {SecurityContext} from './security';
+
+/**
+ * Sanitizer is used by the views to sanitize potentially dangerous values.
+ *
+ * @publicApi
+ */
+export abstract class Sanitizer {
+  abstract sanitize(context: SecurityContext, value: {}|string|null): string|null;
+  /** @nocollapse */
+  static ngInjectableDef = ɵɵdefineInjectable({
+    token: Sanitizer,
+    providedIn: 'root',
+    factory: () => null,
+  });
+}
--- a/packages/core/src/sanitization/security.ts
+++ b/packages/core/src/sanitization/security.ts
@ -23,12 +23,3 @@ export enum SecurityContext {
  URL = 4,
  RESOURCE_URL = 5,
 }
-
-/**
- * Sanitizer is used by the views to sanitize potentially dangerous values.
- *
- * @publicApi
- */
-export abstract class Sanitizer {
-  abstract sanitize(context: SecurityContext, value: {}|string|null): string|null;
-}
--- a/packages/core/src/sanitization/style_sanitizer.ts
+++ b/packages/core/src/sanitization/style_sanitizer.ts
@ -7,6 +7,7 @@
 */

 import {isDevMode} from '../util/is_dev_mode';
+import {SafeValue} from './bypass';
 import {_sanitizeUrl} from './url_sanitizer';


@ -135,5 +136,5 @@ export const enum StyleSanitizeMode {
 * If a value is provided then the sanitized version of that will be returned.
 */
 export interface StyleSanitizeFn {
-  (prop: string, value: string|null, mode?: StyleSanitizeMode): any;
+  (prop: string, value: string|SafeValue|null, mode?: StyleSanitizeMode): any;
 }
--- a/packages/core/src/view/services.ts
+++ b/packages/core/src/view/services.ts
@ -15,7 +15,7 @@ import {Type} from '../interface/type';
 import {ComponentFactory} from '../linker/component_factory';
 import {NgModuleRef} from '../linker/ng_module_factory';
 import {Renderer2, RendererFactory2, RendererStyleFlags2, RendererType2} from '../render/api';
-import {Sanitizer} from '../sanitization/security';
+import {Sanitizer} from '../sanitization/sanitizer';
 import {isDevMode} from '../util/is_dev_mode';
 import {normalizeDebugBindingName, normalizeDebugBindingValue} from '../util/ng_reflect';

--- a/packages/core/src/view/types.ts
+++ b/packages/core/src/view/types.ts
@ -15,7 +15,8 @@ import {QueryList} from '../linker/query_list';
 import {TemplateRef} from '../linker/template_ref';
 import {ViewContainerRef} from '../linker/view_container_ref';
 import {Renderer2, RendererFactory2, RendererType2} from '../render/api';
-import {Sanitizer, SecurityContext} from '../sanitization/security';
+import {Sanitizer} from '../sanitization/sanitizer';
+import {SecurityContext} from '../sanitization/security';