Google Git
Sign in
chromium / chromium / src / 97e305f61ef51cdefd86742ce7a8dc8a35976cbb
commit97e305f61ef51cdefd86742ce7a8dc8a35976cbb[log] [tgz]
authorNasko Oskov <nasko@chromium.org>Sat Jan 05 03:52:10 2019
committerCommit Bot <commit-bot@chromium.org>Sat Jan 05 03:52:10 2019
tree001fd9fc0eeecf13dd620ea1693b1933d5468564
parente02750eda0926147801ca600ed020c989a51f5d3 [diff]
Add url::Origin::CanBeDerivedFrom method to allow verifying URLs.

In various areas of the code, we should be able to perform sanity checks
whether an URL and an origin are compatible. What that means is that
when a document is committed from an URL, the resulting origin can
only be one of:
* origin based on the URL
* opaque origin with precursor information based on an URL
* opaque unique origin

The CanBeDerivedFrom method is added to url::Origin to allow such
checks to be performed. It will return false in cases where the origin
cannot have come from the supplied URL. An example is http://foo.com
origin with data:text/html,foo URL. URLs with data: schemes always
commit in an unique origin, so they are not compatible with valid
tuple origins.

Bug: 882053
Change-Id: I681d28526c09e8672b0381e8d93a914cedd1a075
Reviewed-on: https://chromium-review.googlesource.com/c/1388182
Reviewed-by: Daniel Cheng <dcheng@chromium.org>
Commit-Queue: Nasko Oskov <nasko@chromium.org>
Cr-Commit-Position: refs/heads/master@{#620167}
3 files changed
tree: 001fd9fc0eeecf13dd620ea1693b1933d5468564
  1. android_webview/
  2. apps/
  3. ash/
  4. base/
  5. build/
  6. build_overrides/
  7. cc/
  8. chrome/
  9. chrome_elf/
  10. chromecast/
  11. chromeos/
  12. cloud_print/
  13. components/
  14. content/
  15. courgette/
  16. crypto/
  17. dbus/
  18. device/
  19. docs/
  20. extensions/
  21. gin/
  22. google_apis/
  23. google_update/
  24. gpu/
  25. headless/
  26. infra/
  27. ios/
  28. ipc/
  29. jingle/
  30. mash/
  31. media/
  32. mojo/
  33. native_client_sdk/
  34. net/
  35. pdf/
  36. ppapi/
  37. printing/
  38. remoting/
  39. rlz/
  40. sandbox/
  41. services/
  42. skia/
  43. sql/
  44. storage/
  45. styleguide/
  46. testing/
  47. third_party/
  48. tools/
  49. ui/
  50. url/
  51. webrunner/
  52. .clang-format
  53. .eslintrc.js
  54. .git-blame-ignore-revs
  55. .gitattributes
  56. .gitignore
  57. .gn
  58. .vpython
  59. AUTHORS
  60. BUILD.gn
  61. CODE_OF_CONDUCT.md
  62. codereview.settings
  63. DEPS
  64. ENG_REVIEW_OWNERS
  65. LICENSE
  66. LICENSE.chromium_os
  67. OWNERS
  68. PRESUBMIT.py
  69. PRESUBMIT_test.py
  70. PRESUBMIT_test_mocks.py
  71. README.md
  72. WATCHLISTS
README.md

Logo Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.

The project's web site is https://www.chromium.org.

Documentation in the source is rooted in docs/README.md.

Learn how to Get Around the Chromium Source Code Directory Structure .