Implement a ResourceThrottle for URL overriding in Chrome on Android.

content/public/browser/render_view_host.h

Index: content/public/browser/render_view_host.h
diff --git a/content/public/browser/render_view_host.h b/content/public/browser/render_view_host.h
index da8b15305e5442c3eae120c20d0ce139b5c9c471..6db2b51df861696e1314aa33dd9bca9d70b32ca1 100644
--- a/content/public/browser/render_view_host.h
+++ b/content/public/browser/render_view_host.h
@@ -33,6 +33,7 @@ struct WebPluginAction;
 
 namespace content {
 
+class ChildProcessSecurityPolicy;
 class RenderViewHostDelegate;
 class SessionStorageNamespace;
 class SiteInstance;
@@ -60,6 +61,14 @@ class CONTENT_EXPORT RenderViewHost : virtual public RenderWidgetHost {
   // because RenderWidgetHost is a virtual base class.
   static RenderViewHost* From(RenderWidgetHost* rwh);
 
+  // Checks that the given renderer can request |url|, if not it sets it to
+  // about:blank.
+  // empty_allowed must be set to false for navigations for security reasons.
+  static void FilterURL(ChildProcessSecurityPolicy* policy,

[darin (slow to review), 2012/06/01 20:57:41]

it seems like you shouldn't bother with the policy argument here.  FilterURL can
just call ChildProcessSecurityPolicyImpl::GetInstance().

then you would not need to expose the CanRequestURL method on the public
ChildProcessSecurityPolicy interface.

[mkosiba (inactive), 2012/06/06 16:11:20]

Done.

+                        int renderer_id,
+                        bool empty_allowed,
+                        GURL* url);
+
   virtual ~RenderViewHost() {}
 
   // Tell the render view to enable a set of javascript bindings. The argument