[mac] Restrict read-access to temporary files directory to only _our_ temporary files

RESOLVED DUPLICATE of bug 1360356

Status

()

enhancement
RESOLVED DUPLICATE of bug 1360356
2 years ago
2 years ago

People

(Reporter: Alex_Gaynor, Unassigned)

Tracking

(Blocks 1 bug)

Trunk
All
macOS
Points:
---
Dependency tree / graph

Firefox Tracking Flags

(Not tracked)

Details

Reporter

Description

2 years ago
Bug 1201935 added access to _all_ application's temporary items: https://dxr.mozilla.org/mozilla-central/source/security/sandbox/mac/SandboxPolicies.h?q=Library%2FCaches%2FTemporaryItems&redirect_type=single#320-322

Based on the description in that issue, it looks like that should have been superceded by the app-specific temporary directory access we allow here: https://dxr.mozilla.org/mozilla-central/source/security/sandbox/mac/SandboxPolicies.h?q=Library%2FCaches%2FTemporaryItems&redirect_type=single#324-328

In the event that old-style addons really needs all temporary directories, this will have to wait until support for them is dropped (57? 58? I'm not good at the numbers yet)
Reporter

Updated

2 years ago
Status: NEW → RESOLVED
Last Resolved: 2 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 1360356
You need to log in before you can comment on or make changes to this bug.