should local URLs check origin before inheritting a controller?

[wanderview]

Currently the spec says:

When the request’s url is local, if the service worker client's responsible browsing context is a nested browsing context or the service worker client is a worker client, the service worker client inherits the service worker registration from its parent browsing context’s environment or from the environment of a Document in the service worker client's global object's owner set, respectively, if it exists.

However, data: URL workers receive an opaque origin. Presumably these workers should not inherit the parent's service worker since its from a different origin, correct? Its similar to sandboxing.

[wanderview]

Also consider a cross-origin blob URL. It seems an iframe with a cross-origin blob URL must not inherit a service worker with a different origin via its parent.

[wanderview]

In addition, all data: URL clients get an opaque origin now. They should probably not get a service worker controller either.

[mfalken]

Yep agree that we shouldn't have any cross-origin controllers.