Context Navigation

← Previous Changeset
Next Changeset →

Changeset 270035 in webkit

Timestamp:

Nov 19, 2020 9:32:25 AM (3 years ago)

Author:

pvollan@apple.com

Message:

[macOS] Issue sandbox extension to Web Inspector service
https://bugs.webkit.org/show_bug.cgi?id=219041
<rdar://problem/71495287>

Reviewed by Brent Fulgham.

Source/WebKit:

In preparation of blocking this service in the WebContent process, a sandbox extension should be issued if Safari's Develop menu is enabled.
This extension will also be dynamically issued to all WebContent processes, if the Develop menu preference changes, by observing this
preference.

UIProcess/Cocoa/WebInspectorPreferenceObserver.h: Added.
UIProcess/Cocoa/WebInspectorPreferenceObserver.mm: Added.

(+[WKWebInspectorPreferenceObserver sharedInstance]):
(-[WKWebInspectorPreferenceObserver init]):
(-[WKWebInspectorPreferenceObserver observeValueForKeyPath:ofObject:change:context:]):

UIProcess/Cocoa/WebProcessPoolCocoa.mm:

(WebKit::WebProcessPool::platformInitialize):

UIProcess/Cocoa/WebProcessProxyCocoa.mm:

(WebKit::WebProcessProxy::enableRemoteInspectorIfNeeded):

UIProcess/WebProcessPool.h:
WebKit.xcodeproj/project.pbxproj:

Tools:

Allow MiniBrowser to read preferences from the domain com.apple.Safari.SandboxBroker.

MiniBrowser/MiniBrowser.entitlements:

Location:

trunk

Files:

: 2 added
: 7 edited

Source/WebKit/ChangeLog (modified) (1 diff)
Source/WebKit/UIProcess/Cocoa/WebInspectorPreferenceObserver.h (added)
Source/WebKit/UIProcess/Cocoa/WebInspectorPreferenceObserver.mm (added)
Source/WebKit/UIProcess/Cocoa/WebProcessPoolCocoa.mm (modified) (2 diffs)
Source/WebKit/UIProcess/Cocoa/WebProcessProxyCocoa.mm (modified) (1 diff)
Source/WebKit/UIProcess/WebProcessPool.h (modified) (2 diffs)
Source/WebKit/WebKit.xcodeproj/project.pbxproj (modified) (4 diffs)
Tools/ChangeLog (modified) (1 diff)
Tools/MiniBrowser/MiniBrowser.entitlements (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/Source/WebKit/ChangeLog

-                      r270028
+                      r270035
+-11-19  Per Arne Vollan  <pvollan@apple.com>
+        [macOS] Issue sandbox extension to Web Inspector service
+        https://bugs.webkit.org/show_bug.cgi?id=219041
+        <rdar://problem/71495287>
+        Reviewed by Brent Fulgham.
+        In preparation of blocking this service in the WebContent process, a sandbox extension should be issued if Safari's Develop menu is enabled.
+        This extension will also be dynamically issued to all WebContent processes, if the Develop menu preference changes, by observing this
+        preference.
+        * UIProcess/Cocoa/WebInspectorPreferenceObserver.h: Added.
+        * UIProcess/Cocoa/WebInspectorPreferenceObserver.mm: Added.
+        (+[WKWebInspectorPreferenceObserver sharedInstance]):
+        (-[WKWebInspectorPreferenceObserver init]):
+        (-[WKWebInspectorPreferenceObserver observeValueForKeyPath:ofObject:change:context:]):
+        * UIProcess/Cocoa/WebProcessPoolCocoa.mm:
+        (WebKit::WebProcessPool::platformInitialize):
+        * UIProcess/Cocoa/WebProcessProxyCocoa.mm:
+        (WebKit::WebProcessProxy::enableRemoteInspectorIfNeeded):
+        * UIProcess/WebProcessPool.h:
+        * WebKit.xcodeproj/project.pbxproj:
 -11-19  Per Arne Vollan  <pvollan@apple.com>

trunk/Source/WebKit/UIProcess/Cocoa/WebProcessPoolCocoa.mm

-                      r269889
+                      r270035
 #if PLATFORM(MAC)
+#import "WebInspectorPreferenceObserver.h"
 #import <QuartzCore/CARemoteLayerServer.h>
 #import <pal/spi/mac/NSApplicationSPI.h>
 …
         });
+    }
+#endif
+#if PLATFORM(MAC)
+    [WKWebInspectorPreferenceObserver sharedInstance];
 #endif
+}

trunk/Source/WebKit/UIProcess/Cocoa/WebProcessProxyCocoa.mm

-                      r269906
+                      r270035
 void WebProcessProxy::enableRemoteInspectorIfNeeded()
+{
+#if PLATFORM(IOS_FAMILY)
     if (!CFPreferencesGetAppIntegerValue(WIRRemoteInspectorEnabledKey, WIRRemoteInspectorDomainName, nullptr))
         return;
+#else
+    if (!CFPreferencesGetAppIntegerValue(CFSTR("ShowDevelopMenu"), CFSTR("com.apple.Safari.SandboxBroker"), nullptr))
+        return;
+#endif
     SandboxExtension::Handle handle;
     auto auditToken = connection() ? connection()->getAuditToken() : WTF::nullopt;

trunk/Source/WebKit/UIProcess/WebProcessPool.h

-                      r269807
+                      r270035
 OBJC_CLASS NSString;
 OBJC_CLASS WKPreferenceObserver;
+#if PLATFORM(MAC)
+OBJC_CLASS WKWebInspectorPreferenceObserver;
+#endif
 #endif
 …
 #endif
     RetainPtr<NSObject> m_deactivationObserver;
+    RetainPtr<WKWebInspectorPreferenceObserver> m_webInspectorPreferenceObserver;
     std::unique_ptr<HighPerformanceGraphicsUsageSampler> m_highPerformanceGraphicsUsageSampler;

trunk/Source/WebKit/WebKit.xcodeproj/project.pbxproj

-                      r269918
+                      r270035
                 C1710CF724AA643200D7C112 /* LaunchServicesDatabaseObserver.mm in Sources */ = {isa = PBXBuildFile; fileRef = C1710CF624AA643200D7C112 /* LaunchServicesDatabaseObserver.mm */; };
                 C18173612058424700DFDA65 /* DisplayLink.h in Headers */ = {isa = PBXBuildFile; fileRef = C18173602058424700DFDA65 /* DisplayLink.h */; };
+                C18F3A152563334300797E66 /* WebInspectorPreferenceObserver.mm in Sources */ = {isa = PBXBuildFile; fileRef = C18F3A142563334300797E66 /* WebInspectorPreferenceObserver.mm */; };
                 C1A152D724E5A29A00978C8B /* HandleXPCEndpointMessages.mm in Sources */ = {isa = PBXBuildFile; fileRef = C1A152D624E5A29A00978C8B /* HandleXPCEndpointMessages.mm */; };
                 C1E123BA20A11573002646F4 /* PDFContextMenu.h in Headers */ = {isa = PBXBuildFile; fileRef = C1E123B920A11572002646F4 /* PDFContextMenu.h */; };
 …
                 C18173602058424700DFDA65 /* DisplayLink.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = DisplayLink.h; sourceTree = "<group>"; };
                 C1817362205844A900DFDA65 /* DisplayLink.cpp */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.cpp.cpp; path = DisplayLink.cpp; sourceTree = "<group>"; };
+                C18F3A13256332A600797E66 /* WebInspectorPreferenceObserver.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = WebInspectorPreferenceObserver.h; sourceTree = "<group>"; };
+                C18F3A142563334300797E66 /* WebInspectorPreferenceObserver.mm */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.cpp.objcpp; path = WebInspectorPreferenceObserver.mm; sourceTree = "<group>"; };
                 C18FB51D242F9F76007E9875 /* WebSleepDisablerClient.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = WebSleepDisablerClient.cpp; sourceTree = "<group>"; };
                 C18FB51E242F9F77007E9875 /* WebSleepDisablerClient.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = WebSleepDisablerClient.h; sourceTree = "<group>"; };
 …
 D5A1AB1C57494E00DE34A3 /* VideoFullscreenManagerProxy.messages.in */,
 D5A1AC1C57494E00DE34A3 /* VideoFullscreenManagerProxy.mm */,
+                                C18F3A13256332A600797E66 /* WebInspectorPreferenceObserver.h */,
+                                C18F3A142563334300797E66 /* WebInspectorPreferenceObserver.mm */,
 AC0273E196622D600C12B75 /* WebPageProxyCocoa.mm */,
 C4694CB1A4B510A00AD5845 /* WebPasteboardProxyCocoa.mm */,
 …
                                 FEDBDCD61E68D20000A59F8F /* WebInspectorInterruptDispatcherMessageReceiver.cpp in Sources */,
 C8E2A351277852400BC7BD0 /* WebInspectorMessageReceiver.cpp in Sources */,
+                                C18F3A152563334300797E66 /* WebInspectorPreferenceObserver.mm in Sources */,
 CA8B945127C882A00576C2B /* WebInspectorProxyMessageReceiver.cpp in Sources */,
                                 9979659F25310A4900B31AE3 /* WebInspectorUIExtensionControllerMessageReceiver.cpp in Sources */,

trunk/Tools/ChangeLog

-                      r270030
+                      r270035
+-11-19  Per Arne Vollan  <pvollan@apple.com>
+        [macOS] Issue sandbox extension to Web Inspector service
+        https://bugs.webkit.org/show_bug.cgi?id=219041
+        <rdar://problem/71495287>
+        Reviewed by Brent Fulgham.
+        Allow MiniBrowser to read preferences from the domain com.apple.Safari.SandboxBroker.
+        * MiniBrowser/MiniBrowser.entitlements:
 -11-19  Alexey Proskuryakov  <ap@apple.com>

trunk/Tools/MiniBrowser/MiniBrowser.entitlements

-                      r267414
+                      r270035
         <key>com.apple.security.device.camera</key>
         <true/>
+        <key>com.apple.security.temporary-exception.shared-preference.read-only</key>
+        <array>
+                <string>com.apple.Safari.SandboxBroker</string>
+        </array>
         <key>com.apple.security.device.microphone</key>
         <true/>

Note: See TracChangeset for help on using the changeset viewer.