Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-10-16 14:55:47 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Bug 1652463: Add rule to allow socket process to create server side of our IPC pipes. r=handyman

Browse Source 
Differential Revision: https://phabricator.services.mozilla.com/D83976
This commit is contained in:
Bob Owen 2021-08-25 11:43:46 +00:00
parent 742774f709
commit 86f8ba4dc4
1 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
security/sandbox/win/src/sandboxbroker/sandboxBroker.cpp
View File

@ -1065,6 +1065,14 @@ bool SandboxBroker::SetSecurityLevelForRDDProcess() {
result,
"With these static arguments AddRule should never fail, what happened?");
// Add rule to allow process to create the server side of our IPC pipes.
result = mPolicy->AddRule(sandbox::TargetPolicy::SUBSYS_NAMED_PIPES,
sandbox::TargetPolicy::NAMEDPIPES_ALLOW_ANY,
L"\\\\.\\pipe\\chrome.*");
MOZ_RELEASE_ASSERT(
sandbox::SBOX_ALL_OK == result,
"With these static arguments AddRule should never fail, what happened?");
// Add the policy for the client side of the crash server pipe.
result = mPolicy->AddRule(sandbox::TargetPolicy::SUBSYS_FILES,
sandbox::TargetPolicy::FILES_ALLOW_ANY,