| Index: third_party/WebKit/Source/core/workers/AbstractWorker.cpp
|
| diff --git a/third_party/WebKit/Source/core/workers/AbstractWorker.cpp b/third_party/WebKit/Source/core/workers/AbstractWorker.cpp
|
| index 2cc20f4a8c19acb1a1c4b8bf22b94a671ec868c9..8ff9ac2a77875132bdbc7669bc04d1e521afc3c1 100644
|
| --- a/third_party/WebKit/Source/core/workers/AbstractWorker.cpp
|
| +++ b/third_party/WebKit/Source/core/workers/AbstractWorker.cpp
|
| @@ -57,7 +57,8 @@ KURL AbstractWorker::resolveURL(const String& url,
|
| // We can safely expose the URL in the following exceptions, as these checks
|
| // happen synchronously before redirection. JavaScript receives no new
|
| // information.
|
| - if (!getExecutionContext()->getSecurityOrigin()->canRequestNoSuborigin(
|
| + if (!scriptURL.protocolIsData() &&
|
| + !getExecutionContext()->getSecurityOrigin()->canRequestNoSuborigin(
|
| scriptURL)) {
|
| exceptionState.throwSecurityError(
|
| "Script at '" + scriptURL.elidedString() +
|
|
|