Closed
Bug 1288774
Opened 8 years ago
Closed 8 years ago
Remove the OSX rule added in bug 1190032 for nsPluginHost::GetPluginTempDir
Categories
(Core :: Security: Process Sandboxing, defect)
Tracking
()
RESOLVED
FIXED
mozilla50
Tracking | Status | |
---|---|---|
firefox50 | --- | fixed |
People
(Reporter: jimm, Assigned: haik)
Details
(Whiteboard: sbmc1)
Attachments
(1 file)
1.09 KB,
patch
|
jimm
:
review+
|
Details | Diff | Splinter Review |
This rule is obsolete, it is superseded by the rule that allows access to the newer NS_APP_CONTENT_PROCESS_TEMP_DIR. "\n" "; bug 1190032\n" " (allow file*\n" " (home-regex \"/Library/Caches/TemporaryItems/plugtmp.*\"))\n"
Assignee | ||
Comment 1•8 years ago
|
||
Removes the OS X content sandbox rule allowing read and write access to ~/Library/Caches/TemporaryItems/plugtmp.*. This is the plugin temp dir that used to be returned from nsPluginHost::GetPluginTempDir(nsIFile **aDir). Now, GetPluginTempDir returns a directory within the content sandboxed temp dir (NS_APP_CONTENT_PROCESS_TEMP_DIR) which is a directory the content process is given read and write access to. As a result, the rule specifically for plugtmp is no longer needed. https://treeherder.mozilla.org/#/jobs?repo=try&revision=083c218b9329 https://treeherder.mozilla.org/#/jobs?repo=try&revision=7b5f9f6a37ff
Assignee: nobody → haftandilian
Status: NEW → ASSIGNED
Attachment #8774506 -
Flags: review?(jmathies)
Reporter | ||
Updated•8 years ago
|
Attachment #8774506 -
Flags: review?(jmathies) → review+
Reporter | ||
Updated•8 years ago
|
Whiteboard: sbmc1
Assignee | ||
Updated•8 years ago
|
Keywords: checkin-needed
Pushed by ryanvm@gmail.com: https://hg.mozilla.org/integration/mozilla-inbound/rev/a5fc40f291f5 Remove the OSX rule added in bug 1190032 for nsPluginHost::GetPluginTempDir. r=jimm
Keywords: checkin-needed
Comment 3•8 years ago
|
||
bugherder |
https://hg.mozilla.org/mozilla-central/rev/a5fc40f291f5
Status: ASSIGNED → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla50
You need to log in
before you can comment on or make changes to this bug.
Description
•