Changeset 221647 in webkit
- Timestamp:
- Sep 5, 2017 4:36:59 PM (7 years ago)
- Location:
- trunk/Source/WebKit
- Files:
-
- 3 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/Source/WebKit/ChangeLog
r221633 r221647 1 2017-09-05 Brent Fulgham <bfulgham@apple.com> 2 3 Relax keychain access to permit users to permanently allow client certificates 4 https://bugs.webkit.org/show_bug.cgi?id=175857 5 <rdar://problem/32293867> 6 7 Reviewed by Alex Christensen. 8 9 Further relax the write permissions on the user's Keychain directory to support local certificates. 10 11 * NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in: 12 * WebProcess/com.apple.WebProcess.sb.in: 13 1 14 2017-09-05 Youenn Fablet <youenn@apple.com> 2 15 -
trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in
r221061 r221647 166 166 ;; FIXME: This should be removed when <rdar://problem/10479685> is fixed. 167 167 ;; Restrict AppSandboxed processes from creating /Library/Keychains, but allow access to the contents of /Library/Keychains: 168 (allow file-read-data file-read-metadata file-write -create file-write-data168 (allow file-read-data file-read-metadata file-write* 169 169 (subpath "/Library/Keychains") 170 170 (home-subpath "/Library/Keychains")) -
trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in
r221061 r221647 431 431 ;; FIXME: This should be removed when <rdar://problem/10479685> is fixed. 432 432 ;; Restrict AppSandboxed processes from creating /Library/Keychains, but allow access to the contents of /Library/Keychains: 433 (allow file-read-data file-read-metadata file-write -create file-write-data433 (allow file-read-data file-read-metadata file-write* 434 434 (subpath "/Library/Keychains")) 435 435
Note: See TracChangeset
for help on using the changeset viewer.