[webkit-changes] [224908] trunk/Source/WebKit

Wed, 15 Nov 2017 17:17:27 -0800

Title: [224908] trunk/Source/WebKit
Revision
224908
Author
bfulg...@apple.com
Date
2017-11-15 17:17:02 -0800 (Wed, 15 Nov 2017)

Log Message

Remove access to 'com.apple.mediaaccessibility.public' preferences in WebContent sandbox
https://bugs.webkit.org/show_bug.cgi?id=179747
<rdar://problem/35367346>

Reviewed by Dean Jackson.

The 'mediaaccessibilityd' process handles access to MediaAccessibility preferences. We don't need
to grant the WebContent Process sandbox access to them.

* WebProcess/com.apple.WebProcess.sb.in:

Modified Paths

Diff

Modified: trunk/Source/WebKit/ChangeLog (224907 => 224908)


--- trunk/Source/WebKit/ChangeLog	2017-11-16 00:36:30 UTC (rev 224907)
+++ trunk/Source/WebKit/ChangeLog	2017-11-16 01:17:02 UTC (rev 224908)
@@ -1,3 +1,16 @@
+2017-11-15  Brent Fulgham  <bfulg...@apple.com>
+
+        Remove access to 'com.apple.mediaaccessibility.public' preferences in WebContent sandbox
+        https://bugs.webkit.org/show_bug.cgi?id=179747
+        <rdar://problem/35367346>
+
+        Reviewed by Dean Jackson.
+
+        The 'mediaaccessibilityd' process handles access to MediaAccessibility preferences. We don't need
+        to grant the WebContent Process sandbox access to them.
+
+        * WebProcess/com.apple.WebProcess.sb.in: 
+
 2017-11-15  Alex Christensen  <achristen...@webkit.org>
 
         Revert r224885

Modified: trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in (224907 => 224908)


--- trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in	2017-11-16 00:36:30 UTC (rev 224907)
+++ trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in	2017-11-16 01:17:02 UTC (rev 224908)
@@ -464,7 +464,9 @@
         "com.apple.driver.AppleBluetoothMultitouch.trackpad"
         "com.apple.driver.AppleHIDMouse"
         "com.apple.lookup.shared"
+#if __MAC_OS_X_VERSION_MIN_REQUIRED < 101200
         "com.apple.mediaaccessibility"
+#endif
         "com.apple.networkConnect"
         "com.apple.security"
         "com.apple.security.common"
@@ -504,9 +506,11 @@
 (if (defined? 'mach-register)
     (allow mach-register (global-name-regex #"^_oglprof_attach_<[0-9]+>$")))
 
+#if __MAC_OS_X_VERSION_MIN_REQUIRED < 101200
 ;; MediaAccessibility
 (allow user-preference-read user-preference-write
     (preference-domain "com.apple.mediaaccessibility.public"))
+#endif
 
 (if (positive? (string-length (param "DARWIN_USER_CACHE_DIR")))
     (allow-read-write-directory-and-issue-read-write-extensions (param "DARWIN_USER_CACHE_DIR")))

_______________________________________________
webkit-changes mailing list
webkit-changes@lists.webkit.org
https://lists.webkit.org/mailman/listinfo/webkit-changes

Reply via email to