BlobUrlBrowserTest: Add a test exercising blob: URLs from file:// documents.

content/browser/site_instance_impl.cc

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "content/browser/site_instance_impl.h"
 
 #include "content/browser/browsing_instance.h"
 #include "content/browser/child_process_security_policy_impl.h"
 #include "content/browser/frame_host/debug_urls.h"
 #include "content/browser/frame_host/frame_tree_node.h"
@@ skipping 274 matching lines @@
 scoped_refptr<SiteInstance> SiteInstance::CreateForURL(
     BrowserContext* browser_context,
     const GURL& url) {
   return SiteInstanceImpl::CreateForURL(browser_context, url);
 }
 
 // static
 bool SiteInstance::IsSameWebSite(BrowserContext* browser_context,
                                  const GURL& real_src_url,
                                  const GURL& real_dest_url) {
+  GURL dest_url =
+      SiteInstanceImpl::GetEffectiveURL(browser_context, real_dest_url);
   GURL src_url = SiteInstanceImpl::GetEffectiveURL(browser_context,
                                                    real_src_url);
-  GURL dest_url = SiteInstanceImpl::GetEffectiveURL(browser_context,
-                                                    real_dest_url);
 
   // We infer web site boundaries based on the registered domain name of the
   // top-level page and the scheme.  We do not pay attention to the port if
   // one is present, because pages served from different ports can still
   // access each other if they change their document.domain variable.
 
   // Some special URLs will match the site instance of any other URL. This is
   // done before checking both of them for validity, since we want these URLs
   // to have the same site instance as even an invalid one.
   if (IsRendererDebugURL(src_url) || IsRendererDebugURL(dest_url))
     return true;
 
   // If either URL is invalid, they aren't part of the same site.
   if (!src_url.is_valid() || !dest_url.is_valid())
     return false;
 
-  // If the destination url is just a blank page, we treat them as part of the
-  // same site.
-  GURL blank_page(url::kAboutBlankURL);
-  if (dest_url == blank_page)
+  // If the destination url is just a blank page, a data: URL, or another page
+  // without an origin, we can't reason about its origin.
+  url::Origin dest_origin(dest_url);
+  if (dest_origin.unique())
     return true;
 
   // If the schemes differ, they aren't part of the same site.
-  if (src_url.scheme() != dest_url.scheme())
+  if (src_url.scheme() != dest_origin.scheme())
     return false;
 
   return net::registry_controlled_domains::SameDomainOrHost(
-      src_url,
-      dest_url,
+      src_url, dest_origin.GetURL(),
       net::registry_controlled_domains::INCLUDE_PRIVATE_REGISTRIES);
 }
 
 // static
 GURL SiteInstance::GetSiteForURL(BrowserContext* browser_context,
                                  const GURL& real_url) {
   // TODO(fsamuel, creis): For some reason appID is not recognized as a host.
   if (real_url.SchemeIs(kGuestScheme))
     return real_url;
 
@@ skipping 98 matching lines @@
             browsing_instance_->browser_context(), site_))
       return;
 
     ChildProcessSecurityPolicyImpl* policy =
         ChildProcessSecurityPolicyImpl::GetInstance();
     policy->LockToOrigin(process_->GetID(), site_);
   }
 }
 
 }  // namespace content