Mercurial > mozreview > gecko / changeset / 28c0629afe65b7d9029903362d8adb894afe95d3
summary | shortlog | changelog | pushlog | graph | tags | bookmarks | branches | files | changeset | raw | zip | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Bug 1312678 - Whitelist DRI drivers in the content sandbox, for WebGL. r?jld draft
authorGian-Carlo Pascutto <gcp@mozilla.com>
Wed, 02 Nov 2016 20:02:42 +0100
changeset 432780 28c0629afe65b7d9029903362d8adb894afe95d3
parent 432779 1633ac89c6ac66367461e9f93dab995bfcf068b4
child 535749 706de39f8ff5a4a06a0f5ff642184761eff35f22
push id34419
push usergpascutto@mozilla.com
push dateWed, 02 Nov 2016 19:21:01 +0000
reviewersjld
bugs1312678
milestone52.0a1
Bug 1312678 - Whitelist DRI drivers in the content sandbox, for WebGL. r?jld MozReview-Commit-ID: 82nCmXqnCbp
security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp file | annotate | diff | comparison | revisions 
--- a/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp
+++ b/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp
@@ -134,16 +134,20 @@ SandboxBrokerPolicyFactory::SandboxBroke
   }
   // If the above fails at any point, fall back to a very good guess.
   if (NS_FAILED(rv)) {
     policy->AddDir(rdwrcr, "/tmp");
   }
 
   // Bug 1308851: NVIDIA proprietary driver when using WebGL
   policy->AddPrefix(rdwr, "/dev", "nvidia");
+
+  // Bug 1312678: radeonsi/Intel with DRI when using WebGL
+  policy->AddDir(rdwr, "/dev/dri");
+
   mCommonContentPolicy.reset(policy);
 #endif
 }
 
 #ifdef MOZ_CONTENT_SANDBOX
 UniquePtr<SandboxBroker::Policy>
 SandboxBrokerPolicyFactory::GetContentPolicy(int aPid)
 {
gecko
Deployed from dc35dc177281 at 2025-05-28T17:01:24Z.