Changeset 259470 in webkit
- Timestamp:
- Apr 3, 2020 10:43:21 AM (4 years ago)
- Location:
- trunk/Source/WebKit
- Files:
-
- 3 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/Source/WebKit/ChangeLog
r259469 r259470 1 2020-04-03 Brent Fulgham <bfulgham@apple.com> 2 3 Remove unneeded sandbox access to some file paths 4 https://bugs.webkit.org/show_bug.cgi?id=209938 5 <rdar://problem/59529620> 6 7 Reviewed by Per Arne Vollan. 8 9 Remove unnecessary access to some locations in /etc. These may have been needed in 10 the past, but the WebContent process no longer requires this access. We should 11 remove it. 12 13 * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb: 14 * WebProcess/com.apple.WebProcess.sb.in: 15 1 16 2020-04-03 Per Arne Vollan <pvollan@apple.com> 2 17 -
trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb
r259469 r259470 321 321 "/private/etc/hosts" 322 322 "/private/etc/group" 323 "/private/etc/passwd"324 323 "/private/etc/protocols" 325 324 "/private/etc/services")) … … 515 514 required-etc-files 516 515 (literal "/")) 516 517 (deny file* (with report) 518 (literal "/private/etc/passwd")) 517 519 518 520 (allow file-read* -
trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in
r259366 r259470 73 73 (literal "/dev/autofs_nowait") 74 74 (literal "/dev/random") 75 (literal "/dev/urandom") 75 (literal "/dev/urandom")) 76 77 (deny file-read* 78 #if __MAC_OS_X_VERSION_MIN_REQUIRED >= 101500 79 (with telemetry-backtrace) 80 (with report) 81 #endif 76 82 (literal "/private/etc/master.passwd") 77 83 (literal "/private/etc/passwd"))
Note: See TracChangeset
for help on using the changeset viewer.