XSS Auditor: Block by default.

third_party/WebKit/LayoutTests/http/tests/security/xssAuditor/anchor-url-dom-write-location-expected.txt

Index: third_party/WebKit/LayoutTests/http/tests/security/xssAuditor/anchor-url-dom-write-location-expected.txt
diff --git a/third_party/WebKit/LayoutTests/http/tests/security/xssAuditor/anchor-url-dom-write-location-expected.txt b/third_party/WebKit/LayoutTests/http/tests/security/xssAuditor/anchor-url-dom-write-location-expected.txt
index a0ac626668e17dde3595942636cb1b3f2201da40..4008edcb04e8881aa2ce2b15da2e4aefee565aea 100644
--- a/third_party/WebKit/LayoutTests/http/tests/security/xssAuditor/anchor-url-dom-write-location-expected.txt
+++ b/third_party/WebKit/LayoutTests/http/tests/security/xssAuditor/anchor-url-dom-write-location-expected.txt
@@ -1,2 +1,2 @@
-CONSOLE ERROR: line 6: The XSS Auditor refused to execute a script in 'http://localhost:8000/security/xssAuditor/resources/echo-dom-write-location.html?#<script>alert(String.fromCharCode(0x58,0x53,0x53))</script>' because its source code was found within the request. The auditor was enabled as the server did not send an 'X-XSS-Protection' header.
+CONSOLE ERROR: line 6: The XSS Auditor refused to execute a script in 'http://localhost:8000/security/xssAuditor/resources/echo-dom-write-location.php?#<script>alert(String.fromCharCode(0x58,0x53,0x53))</script>' because its source code was found within the request. The server sent an 'X-XSS-Protection' header requesting this behavior.

[Mike West, 2016/11/23 15:35:42]

This is the extent of the change for most of the `-expected.txt` files: I
changed the framed data to a PHP file so I could add in `X-XSS-Protection: 1`.
This preserves the behavior the test is testing, and makes this minor change to
the error message.

[Tom Sepez, 2016/11/23 16:39:59]

Acknowledged.