Bug 1385891 - Whitelist things in the extension dir, not just the dir itself. r?jld
MozReview-Commit-ID: 3DryT8mm1F3
--- a/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp
+++ b/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp
@@ -277,17 +277,17 @@ SandboxBrokerPolicyFactory::GetContentPo
}
rv = profileDir->Clone(getter_AddRefs(workDir));
if (NS_SUCCEEDED(rv)) {
rv = workDir->AppendNative(NS_LITERAL_CSTRING("extensions"));
if (NS_SUCCEEDED(rv)) {
nsAutoCString tmpPath;
rv = workDir->GetNativePath(tmpPath);
if (NS_SUCCEEDED(rv)) {
- policy->AddPath(rdonly, tmpPath.get());
+ policy->AddDir(rdonly, tmpPath.get());
}
}
}
}
// Return the common policy.
return policy;