Check CORS policy on redirect in TextTrackLoader

third_party/WebKit/Source/core/loader/TextTrackLoader.cpp

Index: third_party/WebKit/Source/core/loader/TextTrackLoader.cpp
diff --git a/third_party/WebKit/Source/core/loader/TextTrackLoader.cpp b/third_party/WebKit/Source/core/loader/TextTrackLoader.cpp
index bcdaccf0eed78f410fac02db5ea3325edcc16990..08346aac73b117d7146844f458533d510ccb7051 100644
--- a/third_party/WebKit/Source/core/loader/TextTrackLoader.cpp
+++ b/third_party/WebKit/Source/core/loader/TextTrackLoader.cpp
@@ -67,6 +67,18 @@ void TextTrackLoader::cancelLoad()
     clearResource();
 }
 
+void TextTrackLoader::redirectReceived(Resource* resource, ResourceRequest& request, const ResourceResponse&)
+{
+    DCHECK_EQ(this->resource(), resource);
+    if (resource->options().corsEnabled == IsCORSEnabled || document().getSecurityOrigin()->canRequestNoSuborigin(request.url()))
+        return;
+
+    corsPolicyPreventedLoad(document().getSecurityOrigin(), request.url());
+    if (!m_cueLoadTimer.isActive())
+        m_cueLoadTimer.startOneShot(0, BLINK_FROM_HERE);
+    clearResource();
+}
+
 void TextTrackLoader::dataReceived(Resource* resource, const char* data, size_t length)
 {
     DCHECK_EQ(this->resource(), resource);