Google Git
Sign in
chromium / chromium / src / 0e9ad4e93bec5760b73e6a66fe904c29083be81c
commit0e9ad4e93bec5760b73e6a66fe904c29083be81c[log] [tgz]
authorLukasz Anforowicz <lukasza@chromium.org>Thu Mar 14 20:03:47 2019
committerCommit Bot <commit-bot@chromium.org>Thu Mar 14 20:03:47 2019
treedb8413efdfb1600bd302e7616f1a6b172dc8415a
parentd499702fc9c08a1d43ec860af758f42ea0508435 [diff]
Move IsOriginSecure from //content/public to //services/network/public.

This CL moves the code behind content::IsOriginSecure from
//content/common/origin_util.cc into //services/network/public/cpp.
Having this functionality in the //services/network layer will help
develop //services/network features (like Sec-Fetch-Site header) which
can't depend on //content layer.

content::IsOriginSecure after this CL mostly just forwards the calls
to the new network::IsUrlPotentiallyTrustworthy:
 *) Behavior of blob: and data: URLs is preserved to minimize changes
    in this CL.  These schemes will be made spec-compliant in
    follow-up CLs (the new network::IsUrlPotentiallyTrustworthy
    already agrees with the spec).
 *) url::GetLocalSchemes are now considered secure (for consistency with
    content::IsPotentiallyTrustworthyOrigin).  By default this only covers
    file: URLs, but //chrome layer also adds externalfile: scheme on CrOS
    and content: scheme on Android.
 *) There are no other intended changes in behavior (unit tests have
    been added for about:, blob:, data: and javascript: URLs).

content::IsPotentiallyTrustworthyOrigin after this CL just forwards the
calls to the new network::IsOriginPotentiallyTrustworthy:
 *) data: URLs behave the same (are considered insecure) before and after the
    CL (since unique |origin| would be considered insecure before this CL + it
    would also be caught by url::GetNoAccessSchemes check).
 *) Note that removing url::GetNoAccessSchemes check doesn't change any
    behavior, because such schemes result in opaque origins.
 *) Overall there are no intended changes in behavior (unit tests have
    been added for about:, data: and javascript: URLs).

Bug: 937451
Change-Id: I6be8b9c7a0197fa64e1574f250964732d704fb86
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1492935
Reviewed-by: Tom Sepez <tsepez@chromium.org>
Reviewed-by: Avi Drissman <avi@chromium.org>
Reviewed-by: Yutaka Hirano <yhirano@chromium.org>
Reviewed-by: Eugene But <eugenebut@chromium.org>
Commit-Queue: Ɓukasz Anforowicz <lukasza@chromium.org>
Cr-Commit-Position: refs/heads/master@{#640889}
8 files changed
tree: db8413efdfb1600bd302e7616f1a6b172dc8415a
  1. android_webview/
  2. apps/
  3. ash/
  4. base/
  5. build/
  6. build_overrides/
  7. buildtools/
  8. cc/
  9. chrome/
  10. chrome_elf/
  11. chromecast/
  12. chromeos/
  13. cloud_print/
  14. components/
  15. content/
  16. courgette/
  17. crypto/
  18. dbus/
  19. device/
  20. docs/
  21. extensions/
  22. fuchsia/
  23. gin/
  24. google_apis/
  25. google_update/
  26. gpu/
  27. headless/
  28. infra/
  29. ios/
  30. ipc/
  31. jingle/
  32. media/
  33. mojo/
  34. native_client_sdk/
  35. net/
  36. pdf/
  37. ppapi/
  38. printing/
  39. remoting/
  40. rlz/
  41. sandbox/
  42. services/
  43. skia/
  44. sql/
  45. storage/
  46. styleguide/
  47. testing/
  48. third_party/
  49. tools/
  50. ui/
  51. url/
  52. .clang-format
  53. .eslintrc.js
  54. .git-blame-ignore-revs
  55. .gitattributes
  56. .gitignore
  57. .gn
  58. .vpython
  59. AUTHORS
  60. BUILD.gn
  61. CODE_OF_CONDUCT.md
  62. codereview.settings
  63. DEPS
  64. ENG_REVIEW_OWNERS
  65. LICENSE
  66. LICENSE.chromium_os
  67. OWNERS
  68. PRESUBMIT.py
  69. PRESUBMIT_test.py
  70. PRESUBMIT_test_mocks.py
  71. README.md
  72. WATCHLISTS
README.md

Logo Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.

The project's web site is https://www.chromium.org.

Documentation in the source is rooted in docs/README.md.

Learn how to Get Around the Chromium Source Code Directory Structure .