make file: an effectively unique origin

LayoutTests/security/cannot-read-self-from-file.html

Index: LayoutTests/security/cannot-read-self-from-file.html
diff --git a/LayoutTests/security/cannot-read-self-from-file.html b/LayoutTests/security/cannot-read-self-from-file.html
new file mode 100644
index 0000000000000000000000000000000000000000..b328b1a744a2e1baa6dc21cdd187c361796a559b
--- /dev/null
+++ b/LayoutTests/security/cannot-read-self-from-file.html
@@ -0,0 +1,21 @@
+<!DOCTYPE html>
+<html>
+<head>
+<script src="../resources/testharness.js"></script>
+<script src="../resources/testharnessreport.js"></script>
+<script>
+testRunner.setAllowUniversalAccessFromFileURLs(false);
+testRunner.setAllowFileAccessFromFileURLs(false);
+
+var t = async_test('file: should be a unique-origin protocol for XHR purposes');
+window.addEventListener('message', t.step_func(function(evt) {
+  assert_equals(evt.data, 'NetworkError');
+  t.done();
+}));
+</script>
+</head>
+<body>
+<iframe src="resources/cannot-read-self-from-file.html"></iframe>
+Documents loaded from file: shouldn't be able to access themselves via XHR.
+</body>
+</html>