Haik Aftandilian 9de1898bc2 Bug 1290619 - Content sandbox rules should use actual profile directory, not Profiles/*/ regex's; r=jimm ... Passes the profile dir to the content process as a -profile CLI option so that the correct profile dir can be used in the OS X content sandbox rules. Only enabled on OS X for now. On Nightly, profile directories will now be read/write protected from the content process (apart from a few profile subdirectories) even when they don't reside in ~/Library. xpcshell tests invoke the content process without providing a profile directory. In that case, we don't need to add filesystem profile dir. read/write exclusion rules to the sandbox. This patch adds two new macros to the content sandbox rule set: |profileDir| holds the path to the profile or the emptry string; |hasProfileDir| is a boolean (1 or 0) that indicates whether or not the profile directory rules should be added. If |hasProfileDir| is 0, profile directory exclusion rules don't need to be added and |profileDir| is not used. MozReview-Commit-ID: rrTcQwTNdT --HG-- extra : rebase_source : 3d5b612c8eb3a1d0da028eba277cd9d6f0c9ac00		2016-08-30 13:32:21 -07:00
..
apps	Bug 1274135 - Replace char_ptr_cast() and uint8_t_ptr_cast() with mozilla::BitwiseCast. r=keeler,valentin	2016-09-08 20:46:26 +08:00
certverifier	Bug 1296180 - Replace more uses of PR_ARRAY_SIZE with mozilla::ArrayLength. r=keeler,mt	2016-09-09 13:17:52 -07:00
manager	bug 1299676 - introduce der.jsm as a minimal js ASN.1 DER decoder r=Cykesiopka,jcj	2016-08-23 16:30:38 -07:00
nss	Bug 1283203 - Update to Visual Studio 2015 Update 3, SDK 10.14393.0; r=glandium	2016-09-09 10:35:15 -07:00
patches
pkix	Bug 1115718 - Check for empty issuer name in mozilla::pkix; r=keeler	2016-07-28 20:36:18 -05:00
sandbox	Bug 1290619 - Content sandbox rules should use actual profile directory, not Profiles/*/ regex's; r=jimm	2016-08-30 13:32:21 -07:00