Add chrome-extension:// to the list of allowed urls for all internal/webui

Content Security Policy rules. This is necessary to allow a trusted
accessibility component extension (ChromeVox) to inject script tags into
webui pages.

This will not hurt security because user_script_slave.cc already has a
check to prevent arbitrary extensions from loading on these pages.
Only component extensions will be allowed.

BUG=89443
TEST=manual

Review URL: http://codereview.chromium.org/7399002

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@92776 0039d316-1c4b-4281-b951-d872f2087c98

1 files changed, 5 insertions, 1 deletions

diff --git a/chrome/browser/resources/about_memory_linux.html b/chrome/browser/resources/about_memory_linux.html
index bc646a4..92dce75 100644
--- a/chrome/browser/resources/about_memory_linux.html
+++ b/chrome/browser/resources/about_memory_linux.html
@@ -6,7 +6,11 @@ about:memory template page
 <html id="t">
 <head>
   <title>About Memory</title>
-  <meta http-equiv="X-WebKit-CSP" content="object-src 'none'; script-src chrome://resources 'self' 'unsafe-eval'">
+  <meta http-equiv="X-WebKit-CSP"
+        content="object-src 'none';
+                 script-src chrome://resources
+                            chrome-extension://mndnfokpggljbaajbnioimlmbfngpief
+                            'self' 'unsafe-eval'">
   <link rel="stylesheet" href="shared/css/about_memory.css">
 
 <style>