Bug 1416016 - Add ../config to the sandbox whitelist for older Mesa. r?jld
MozReview-Commit-ID: KahivmVJR1l
--- a/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp
+++ b/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp
@@ -77,17 +77,19 @@ AddMesaSysfsPaths(SandboxBroker::Policy*
suffix);
// libudev will expand the symlink but not do full
// canonicalization, so it will leave in ".." path
// components that will be realpath()ed in the
// broker. To match this, allow the canonical paths.
UniqueFreePtr<char[]> realSysPath(realpath(sysPath.get(), nullptr));
if (realSysPath) {
nsPrintfCString ueventPath("%s/uevent", realSysPath.get());
+ nsPrintfCString configPath("%s/config", realSysPath.get());
aPolicy->AddPath(rdonly, ueventPath.get());
+ aPolicy->AddPath(rdonly, configPath.get());
}
}
}
}
}
closedir(dir);
}
}