Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-10-18 07:45:30 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Bug 1514073: Allow Windows plugin process to access Macromedia roaming folder (r=bobowen)

Browse Source 
The sandbox already permits the process to create/delete the folder and access files in it.  This patch gives is access to the folder itself, namely it allows NtQueryAttributesFile to evaluate it.  For complex reasons, this fixes Flash's ability to store local objects (see AS3's SharedObject API).

Differential Revision: https://phabricator.services.mozilla.com/D18299

--HG--
extra : moz-landing-system : lando
This commit is contained in:
David Parks 2019-02-01 09:22:29 +00:00
parent c48e1ed307
commit 32fe24cedb
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
security/sandbox/win/src/sandboxbroker/sandboxBroker.cpp
View File

@ -880,6 +880,8 @@ bool SandboxBroker::SetSecurityLevelForPluginProcess(int32_t aSandboxLevel) {
// not exist.
AddCachedDirRule(mPolicy, sandbox::TargetPolicy::FILES_ALLOW_DIR_ANY,
sRoamingAppDataDir, NS_LITERAL_STRING("\\Macromedia"));
AddCachedDirRule(mPolicy, sandbox::TargetPolicy::FILES_ALLOW_QUERY,
sRoamingAppDataDir, NS_LITERAL_STRING("\\Macromedia\\"));
AddCachedDirRule(mPolicy, sandbox::TargetPolicy::FILES_ALLOW_DIR_ANY,
sRoamingAppDataDir,
NS_LITERAL_STRING("\\Macromedia\\Flash Player"));