From a61e36d7d769e60bdd1d1da7eb9762432d05760c Mon Sep 17 00:00:00 2001
From: Anne van Kesteren <annevk@annevk.nl>
Date: Wed, 14 Sep 2016 16:11:01 +0200
Subject: [PATCH 1/2] Remove Fetch's same-origin data URL flag

The change to Fetch discussed in
https://github.com/whatwg/fetch/issues/381 made it obsolete.

Closes #1778, and closes #1779 as these are all treated as
same-origin now per the change to Fetch.
---
 source | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/source b/source
index d7ca5b74789..5b35bcf2421 100644
--- a/source
+++ b/source
@@ -2840,7 +2840,6 @@ a.setAttribute('href', 'http://example.com/'); // change the content attribute d
        <li><dfn data-x="concept-request-priority" data-x-href="https://fetch.spec.whatwg.org/#concept-request-priority">priority</dfn></li>
        <li><dfn data-dfn-for="request" data-x="concept-request-origin" data-x-href="https://fetch.spec.whatwg.org/#concept-request-origin">origin</dfn></li>
        <li><dfn data-x-href="https://fetch.spec.whatwg.org/#omit-origin-header-flag">omit-<code>Origin</code>-header flag</dfn></li>
-       <li><dfn data-x-href="https://fetch.spec.whatwg.org/#same-origin-data-url-flag">same-origin data-URL flag</dfn></li>
        <li><dfn data-x="concept-request-referrer" data-x-href="https://fetch.spec.whatwg.org/#concept-request-referrer">referrer</dfn></li>
        <li><dfn data-x-href="https://fetch.spec.whatwg.org/#synchronous-flag">synchronous flag</dfn></li>
        <li><dfn data-x="concept-request-mode" data-x-href="https://fetch.spec.whatwg.org/#concept-request-mode">mode</dfn></li>
@@ -26172,8 +26171,6 @@ was an English &lt;a href="/wiki/Music_hall">music hall&lt;/a> singer, ...</pre>
     <code>picture</code></span>, set <var>request</var>'s <span
     data-x="concept-request-initiator">initiator</span> to "<code data-x="">imageset</code>".</p>
 
-    <p>&#x231B; Set <var>request</var>'s <span>same-origin data-URL flag</span>.</p>
-
     <p>&#x231B; Set <var>request</var>'s
     <span data-x="concept-request-referrer-policy">referrer policy</span> to the current state of
     the element's <code data-x="attr-img-referrerpolicy">referrerpolicy</code> attribute.</p>
@@ -27037,8 +27034,6 @@ was an English &lt;a href="/wiki/Music_hall">music hall&lt;/a> singer, ...</pre>
      data-x="">imageset</code>", and set <var>request</var>'s <span>synchronous
      flag</span>.</p></li>
 
-     <li><p>Set <var>request</var>'s <span>same-origin data-URL flag</span>.</p></li>
-
      <li><p>Set <var>request</var>'s
      <span data-x="concept-request-referrer-policy">referrer policy</span> to the current state of
      the element's <code data-x="attr-img-referrerpolicy">referrerpolicy</code> attribute.</p></li>

From d1088a26e4b5302ad514847b06325955bab1fc21 Mon Sep 17 00:00:00 2001
From: Anne van Kesteren <annevk@annevk.nl>
Date: Thu, 15 Sep 2016 12:34:58 +0200
Subject: [PATCH 2/2] Define how data URLs affect workers

Fixes #1243. Basically, data URLs create (shared) workers that have a
unique opaque origin.
---
 source | 56 ++++++++++++++++++++++++++++++++++++++++----------------
 1 file changed, 40 insertions(+), 16 deletions(-)

diff --git a/source b/source
index 5b35bcf2421..538ac58744f 100644
--- a/source
+++ b/source
@@ -96549,7 +96549,9 @@ interface <dfn>SharedWorkerGlobalScope</dfn> : <span>WorkerGlobalScope</span> {
 
   <p>A <code>SharedWorkerGlobalScope</code> object has an associated <dfn
   data-dfn-for="SharedWorkerGlobalScope"
-  data-x="concept-SharedWorkerGlobalScope-constructor-url">constructor url</dfn> and <dfn
+  data-x="concept-SharedWorkerGlobalScope-constructor-origin">constructor origin</dfn>, <dfn
+  data-dfn-for="SharedWorkerGlobalScope"
+  data-x="concept-SharedWorkerGlobalScope-constructor-url">constructor url</dfn>, and <dfn
   data-dfn-for="SharedWorkerGlobalScope"
   data-x="concept-SharedWorkerGlobalScope-name">name</dfn>. They are initialized when the
   <code>SharedWorkerGlobalScope</code> object is created, in the <span>run a worker</span>
@@ -96762,6 +96764,11 @@ interface <dfn>SharedWorkerGlobalScope</dfn> : <span>WorkerGlobalScope</span> {
     <p>If <var>is shared</var> is true, then:</p>
 
     <ol>
+     <li><p>Set <var>worker global scope</var>'s <span
+     data-x="concept-SharedWorkerGlobalScope-constructor-origin">constructor origin</span> to
+     <var>outside settings</var>'s <span
+     data-x="concept-settings-object-origin">origin</span>.</p></li>
+
      <li><p>Set <var>worker global scope</var>'s <span
      data-x="concept-SharedWorkerGlobalScope-constructor-url">constructor url</span> to
      <var>url</var>.</p></li>
@@ -97142,7 +97149,7 @@ interface <dfn>AbstractWorker</dfn> {
      <dt>The <span>API URL character encoding</span></dt>
      <dd>
 
-      <p>Return UTF-8.</p>
+      <p>Return <span>UTF-8</span>.</p>
 
      </dd>
 
@@ -97157,7 +97164,10 @@ interface <dfn>AbstractWorker</dfn> {
      <dt>The <span data-x="concept-settings-object-origin">origin</span></dt>
      <dd>
 
-      <p>Return <var>inherited origin</var>.</p>
+      <p>Return a unique <span data-x="concept-origin-opaque">opaque origin</span> if <var>worker
+      global scope</var>'s <span data-x="concept-WorkerGlobalScope-url">url</span>'s <span
+      data-x="concept-url-scheme">scheme</span> is "<code data-x="">data</code>", and <var>inherited
+      origin</var> otherwise.</p>
 
      </dd>
 
@@ -97298,8 +97308,10 @@ enum <dfn>WorkerType</dfn> { "classic", "module" };
    <li>
     <p>Let <var>worker URL</var> be the <span>resulting URL record</span>.</p>
 
-    <p class="note">Any <span data-x="same origin">same-origin</span> URL will do, including <code
-    data-x="blob protocol">blob:</code> URLs.</p>
+    <p class="note">Any <span data-x="same origin">same-origin</span> URL (including <code
+    data-x="blob protocol">blob:</code> URLs) can be used. <code data-x="data protocol">data:</code>
+    URLs can also be used, but they create a worker with an <span
+    data-x="concept-origin-opaque">opaque origin</span>.</p>
    </li>
 
    <li><p>Let <var>worker</var> be a new <code>Worker</code> object.</p></li>
@@ -97373,8 +97385,10 @@ interface <dfn>SharedWorker</dfn> : <span>EventTarget</span> {
    <li>
     <p>Otherwise, let <var>urlRecord</var> be the <span>resulting URL record</span>.</p>
 
-    <p class="note">Any <span data-x="same origin">same-origin</span> URL will do, including <code
-    data-x="blob protocol">blob:</code> URLs.</p>
+    <p class="note">Any <span data-x="same origin">same-origin</span> URL (including <code
+    data-x="blob protocol">blob:</code> URLs) can be used. <code data-x="data protocol">data:</code>
+    URLs can also be used, but they create a worker with an <span
+    data-x="concept-origin-opaque">opaque origin</span>.</p>
    </li>
 
    <li><p>Let <var>worker</var> be a new <code>SharedWorker</code> object.</p></li>
@@ -97395,15 +97409,25 @@ interface <dfn>SharedWorker</dfn> : <span>EventTarget</span> {
     <ol>
      <li><p>Let <var>worker global scope</var> be null.</p></li>
 
-     <li><p>If there exists a <code>SharedWorkerGlobalScope</code> object whose <span
-     data-x="dom-WorkerGlobalScope-closing">closing</span> flag is false, whose <span
-     data-x="concept-SharedWorkerGlobalScope-name">name</span> is exactly equal to <var>name</var>,
-     whose <span data-x="concept-SharedWorkerGlobalScope-constructor-url">constructor url</span>
-     <span data-x="concept-url-equals">equals</span> <var>urlRecord</var>, and whose <span>relevant
-     settings object</span>'s <span data-x="concept-settings-object-origin">origin</span> is
-     <span>same origin</span> with <var>outside settings</var>'s <span
-     data-x="concept-settings-object-origin">origin</span>, then set <var>worker global scope</var>
-     to that <code>SharedWorkerGlobalScope</code> object.</p></li>
+     <li>
+      <p>If there exists a <code>SharedWorkerGlobalScope</code> object whose <span
+      data-x="dom-WorkerGlobalScope-closing">closing</span> flag is false, <span
+      data-x="concept-SharedWorkerGlobalScope-constructor-origin">constructor origin</span> is
+      <span>same origin</span> with <var>outside settings</var>'s <span
+      data-x="concept-settings-object-origin">origin</span>, <span
+      data-x="concept-SharedWorkerGlobalScope-constructor-url">constructor url</span> <span
+      data-x="concept-url-equals">equals</span> <var>urlRecord</var>, and <span
+      data-x="concept-SharedWorkerGlobalScope-name">name</span> is <var>name</var>, then set
+      <var>worker global scope</var> to that <code>SharedWorkerGlobalScope</code> object.</p>
+
+      <p class="note"><code data-x="data protocol">data:</code> URLs create a worker with an <span
+      data-x="concept-origin-opaque">opaque origin</span>. Both the <span
+      data-x="concept-SharedWorkerGlobalScope-constructor-origin">constructor origin</span> and
+      <span data-x="concept-SharedWorkerGlobalScope-constructor-url">constructor url</span> are
+      compared so the same <code data-x="data protocol">data:</code> URL can be used within an
+      <span>origin</span> to get to the same <code>SharedWorkerGlobalScope</code> object, but cannot
+      be used to bypass the <span>same origin</span> restriction.</p>
+     </li>
 
      <li>
       <p>If <var>worker global scope</var> is not null, but the user agent has been