Index: chrome/renderer/extensions/resource_request_policy.cc |
diff --git a/chrome/renderer/extensions/resource_request_policy.cc b/chrome/renderer/extensions/resource_request_policy.cc |
index 756844ff8c19cf5e6374998f9ebdb4cad6ad106b..116b218d1541e1e3319044924f177c73ac3c09ff 100644 |
--- a/chrome/renderer/extensions/resource_request_policy.cc |
+++ b/chrome/renderer/extensions/resource_request_policy.cc |
@@ -24,6 +24,12 @@ |
namespace extensions { |
+// This method does a security check whether chrome-extension:// URLs can be |
+// requested by the renderer. Since this is in an untrusted process, the browser |
+// has a similar check to enforce the policy, in case this process is exploited. |
+// If you are changing this function, ensure equivalent checks are added to |
+// extension_protocols.cc's AllowExtensionResourceLoad. |
+ |
// static |
bool ResourceRequestPolicy::CanRequestResource( |
const GURL& resource_url, |