servo · bors-servo · Nov 7, 2016 · Nov 4, 2016 · Nov 4, 2016 · Nov 4, 2016
diff --git a/components/net/http_loader.rs b/components/net/http_loader.rs
@@ -437,6 +437,23 @@ fn no_referrer_when_downgrade_header(referrer_url: Url, url: Url) -> Option<Url>
     return strip_url(referrer_url, false);
 }
 
+/// https://w3c.github.io/webappsec-referrer-policy/#referrer-policy-strict-origin
+fn strict_origin(referrer_url: Url, url: Url) -> Option<Url> {
+    if referrer_url.scheme() == "https" && url.scheme() != "https" {
+        return None;
+    }
+    strip_url(referrer_url, true)
+}
+
+/// https://w3c.github.io/webappsec-referrer-policy/#referrer-policy-strict-origin-when-cross-origin
+fn strict_origin_when_cross_origin(referrer_url: Url, url: Url) -> Option<Url> {
+    if referrer_url.scheme() == "https" && url.scheme() != "https" {
+        return None;
+    }
+    let cross_origin = referrer_url.origin() != url.origin();
+    strip_url(referrer_url, cross_origin)
+}
+
 /// https://w3c.github.io/webappsec-referrer-policy/#strip-url
 fn strip_url(mut referrer_url: Url, origin_only: bool) -> Option<Url> {
     if referrer_url.scheme() == "https" || referrer_url.scheme() == "http" {
@@ -467,6 +484,8 @@ pub fn determine_request_referrer(headers: &mut Headers,
             Some(ReferrerPolicy::SameOrigin) => if cross_origin { None } else { strip_url(ref_url, false) },
             Some(ReferrerPolicy::UnsafeUrl) => strip_url(ref_url, false),
             Some(ReferrerPolicy::OriginWhenCrossOrigin) => strip_url(ref_url, cross_origin),
+            Some(ReferrerPolicy::StrictOrigin) => strict_origin(ref_url, url),
+            Some(ReferrerPolicy::StrictOriginWhenCrossOrigin) => strict_origin_when_cross_origin(ref_url, url),
             Some(ReferrerPolicy::NoReferrerWhenDowngrade) | None =>
                 no_referrer_when_downgrade_header(ref_url, url),
         };

diff --git a/components/net_traits/lib.rs b/components/net_traits/lib.rs
@@ -125,6 +125,10 @@ pub enum ReferrerPolicy {
     OriginWhenCrossOrigin,
     /// "unsafe-url"
     UnsafeUrl,
+    /// "strict-origin"
+    StrictOrigin,
+    /// "strict-origin-when-cross-origin"
+    StrictOriginWhenCrossOrigin,
 }
 
 #[derive(Clone, Deserialize, Serialize, HeapSizeOf)]

diff --git a/components/script/dom/document.rs b/components/script/dom/document.rs
@@ -3011,6 +3011,8 @@ pub fn determine_policy_for_token(token: &str) -> Option<ReferrerPolicy> {
         "default" | "no-referrer-when-downgrade" => Some(ReferrerPolicy::NoReferrerWhenDowngrade),
         "origin" => Some(ReferrerPolicy::Origin),
         "same-origin" => Some(ReferrerPolicy::SameOrigin),
+        "strict-origin" => Some(ReferrerPolicy::StrictOrigin),
+        "strict-origin-when-cross-origin" => Some(ReferrerPolicy::StrictOriginWhenCrossOrigin),
         "origin-when-cross-origin" => Some(ReferrerPolicy::OriginWhenCrossOrigin),
         "always" | "unsafe-url" => Some(ReferrerPolicy::UnsafeUrl),
         "" => Some(ReferrerPolicy::NoReferrer),

diff --git a/components/script/dom/request.rs b/components/script/dom/request.rs
@@ -822,6 +822,9 @@ impl Into<MsgReferrerPolicy> for ReferrerPolicy {
             ReferrerPolicy::Origin => MsgReferrerPolicy::Origin,
             ReferrerPolicy::Origin_when_cross_origin => MsgReferrerPolicy::OriginWhenCrossOrigin,
             ReferrerPolicy::Unsafe_url => MsgReferrerPolicy::UnsafeUrl,
+            ReferrerPolicy::Strict_origin => MsgReferrerPolicy::StrictOrigin,
+            ReferrerPolicy::Strict_origin_when_cross_origin =>
+                MsgReferrerPolicy::StrictOriginWhenCrossOrigin,
         }
     }
 }
@@ -836,6 +839,9 @@ impl Into<ReferrerPolicy> for MsgReferrerPolicy {
             MsgReferrerPolicy::SameOrigin => ReferrerPolicy::Origin,
             MsgReferrerPolicy::OriginWhenCrossOrigin => ReferrerPolicy::Origin_when_cross_origin,
             MsgReferrerPolicy::UnsafeUrl => ReferrerPolicy::Unsafe_url,
+            MsgReferrerPolicy::StrictOrigin => ReferrerPolicy::Strict_origin,
+            MsgReferrerPolicy::StrictOriginWhenCrossOrigin =>
+                ReferrerPolicy::Strict_origin_when_cross_origin,
         }
     }
 }

diff --git a/components/script/dom/webidls/Request.webidl b/components/script/dom/webidls/Request.webidl
@@ -104,5 +104,7 @@ enum ReferrerPolicy {
   "no-referrer-when-downgrade",
   "origin",
   "origin-when-cross-origin",
-  "unsafe-url"
+  "unsafe-url",
+  "strict-origin",
+  "strict-origin-when-cross-origin"
 };
diff --git a/components/script/script_thread.rs b/components/script/script_thread.rs
@@ -1766,6 +1766,10 @@ impl ScriptThread {
                     ReferrerPolicy::OriginWhenCrossOrigin,
                 ReferrerPolicyHeader::UnsafeUrl =>
                     ReferrerPolicy::UnsafeUrl,
+                ReferrerPolicyHeader::StrictOrigin =>
+                    ReferrerPolicy::StrictOrigin,
+                ReferrerPolicyHeader::StrictOriginWhenCrossOrigin =>
+                    ReferrerPolicy::StrictOriginWhenCrossOrigin,
             })
         } else {
             None

diff --git a/components/servo/Cargo.lock b/components/servo/Cargo.lock
diff --git a/components/style/Cargo.toml b/components/style/Cargo.toml
@@ -39,7 +39,7 @@ matches = "0.1"
 nsstring_vendor = {path = "gecko_bindings/nsstring_vendor", optional = true}
 num-integer = "0.1.32"
 num-traits = "0.1.32"
-num_cpus = "0.2.2"
+num_cpus = "1.1.0"
 ordered-float = "0.2.2"
 owning_ref = "0.2.2"
 parking_lot = "0.3.3"

diff --git a/components/util/Cargo.toml b/components/util/Cargo.toml
@@ -22,7 +22,7 @@ getopts = "0.2.11"
 heapsize = "0.3.0"
 lazy_static = "0.2"
 log = "0.3.5"
-num_cpus = "0.2.2"
+num_cpus = "1.1.0"
 rustc-serialize = "0.3"
 serde = {version = "0.8", optional = true}
 serde_derive = {version = "0.8", optional = true}