зеркало из https://github.com/mozilla/gecko-dev.git
Bug 1450773 - Remove restricting SIDs from NPAPI sandbox outside of nightly builds. r=bobowen
Restricting SIDs, which harden the sandbox, have caused some problems that we are investigating in nightly and that we don't want in beta/release.
This commit is contained in:
Родитель
31c173ca8a
Коммит
6a70261b2b
|
@ -698,6 +698,11 @@ SandboxBroker::SetSecurityLevelForPluginProcess(int32_t aSandboxLevel)
|
|||
delayedIntegrityLevel = sandbox::INTEGRITY_LEVEL_MEDIUM;
|
||||
}
|
||||
|
||||
#ifndef NIGHTLY_BUILD
|
||||
// We are experimenting with using restricting SIDs in the nightly builds
|
||||
mPolicy->SetDoNotUseRestrictingSIDs();
|
||||
#endif
|
||||
|
||||
sandbox::ResultCode result = SetJobLevel(mPolicy, jobLevel,
|
||||
0 /* ui_exceptions */);
|
||||
SANDBOX_ENSURE_SUCCESS(result,
|
||||
|
|
Загрузка…
Ссылка в новой задаче