commit | 8f8cc0b66bd9466cb5a3d64e4328cf0e6e8ca080 | [log] [tgz] |
---|---|---|
author | kinuko@chromium.org <kinuko@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | Thu Nov 29 10:38:52 2012 |
committer | kinuko@chromium.org <kinuko@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | Thu Nov 29 10:38:52 2012 |
tree | 024ed1ab98d0ef555df9ae9fbba9a729b504d3c6 | |
parent | f6caf151551030c83dbc635879d89d28f486d0d5 [diff] |
Do not give blanket permission to the Sandboxed FileSystem directory and verify resolved paths - Avoid giving unconditional blanket permission to the entire sandbox FileSystem data directory - Perform the sanity check that the resolved path from the database is under the expected directory BUG=162114 TEST=manual Review URL: https://codereview.chromium.org/11308194 git-svn-id: svn://svn.chromium.org/chrome/trunk/src@170159 0039d316-1c4b-4281-b951-d872f2087c98