Revert of Lock down the registration of blob:chrome-extension:// URLs (patchset #13 id:230001 of https://codereview.chromium.org/2364633004/ )
Reason for revert:
Speculative revert to fix failing test http/tests/xmlhttprequest/xhr-to-blob-in-isolated-world.html in webkit_tests.
See failures in:
https://build.chromium.org/p/chromium.webkit/builders/WebKit%20Win7/builds/46369
https://build.chromium.org/p/chromium.webkit/builders/WebKit%20Mac10.10/builds/24388
Original issue's description:
> Update ChildProcessSecurityPolicy so that the chrome-extension:// scheme
> is considered "web safe" to be requestable from any process, but only
> "web safe" to commit in extension processes.
>
> In ChildProcessSecurityPolicy::CanRequestURL and CanCommitURL, when
> seeing blob and filesystem urls, make a security decision based
> on the inner origin rather than the scheme.
>
> When the extensions ProcessManager (via ExtensionWebContentsObserver) notices a
> RenderFrame being created in an extension SiteInstance, grant that process
> permission to commit chrome-extension:// URLs.
>
> In BlobDispatcherHost, only allow creation of blob URLs from processes that
> would be able to commit them.
>
> Add a security exploit browsertest that verifies the above mechanisms working
> together.
>
> BUG=644966
>
> Committed: https://crrev.com/a411fd062bc68fc2b5fc3aca7e4cbb8e4a3e074e
> Cr-Commit-Position: refs/heads/master@{#421964}
TBR=reillyg@chromium.org,creis@chromium.org,thestig@chromium.org,rdevlin.cronin@chromium.org,nick@chromium.org
# Skipping CQ checks because original CL landed less than 1 days ago.
NOPRESUBMIT=true
NOTREECHECKS=true
NOTRY=true
BUG=644966
Review-Url: https://codereview.chromium.org/2385553002
Cr-Commit-Position: refs/heads/master@{#421997}
12 files changed
