Backed out changeset 8198bc4c7e3c (bug 1393805)
authorSebastian Hengst <archaeopteryx@coole-files.de>
Thu, 05 Oct 2017 00:20:11 +0200
changeset 384573 248ab0b65852195f58c8035ae9f46f79bd2ac490
parent 384572 35aa314f212747bbceb4be2b49672d5a1b945b7e
child 384574 768533298b5cf6e2dbe1d1f37fcdd515a354009d
push id32631
push userarchaeopteryx@coole-files.de
push dateThu, 05 Oct 2017 08:51:33 +0000
treeherdermozilla-central@66042a706980 [default view] [failures only]
perfherder[talos] [build metrics] [platform microbench] (compared to previous push)
bugs1393805
milestone58.0a1
backs out8198bc4c7e3cbdd9ba2e98420a2a167911dcb7a2
first release with
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
last release without
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
Backed out changeset 8198bc4c7e3c (bug 1393805)
security/sandbox/mac/SandboxPolicies.h
--- a/security/sandbox/mac/SandboxPolicies.h
+++ b/security/sandbox/mac/SandboxPolicies.h
@@ -260,20 +260,16 @@ static const char contentSandboxRules[] 
 ; is brokered through the content process
   (allow device-microphone)
 
 ; Per-user and system-wide Extensions dir
   (allow file-read*
       (home-regex "/Library/Application Support/[^/]+/Extensions/")
       (regex "^/Library/Application Support/[^/]+/Extensions/"))
 
-; bug 1393805
-  (allow file-read*
-      (home-subpath "/Library/Application Support/Mozilla/SystemExtensionsDev/"))
-
 ; The following rules impose file access restrictions which get
 ; more restrictive in higher levels. When file-origin-specific
 ; content processes are used for file:// origin browsing, the
 ; global file-read* permission should be removed from each level.
 
 ; level 1: global read access permitted, no global write access
   (if (string=? sandbox-level-1 "TRUE") (allow file-read*))