Title: [259317] trunk/Source/WebKit
- Revision
- 259317
- Author
- bfulg...@apple.com
- Date
- 2020-03-31 15:38:00 -0700 (Tue, 31 Mar 2020)
Log Message
[macOS] Update sandbox rules for correct sanitizer paths in current OS releases
https://bugs.webkit.org/show_bug.cgi?id=209818
<rdar://problem/58422996>
Reviewed by Per Arne Vollan.
Update the sandbox rules to allow access to the new system Asan library
locations.
* GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in: Note: Don't bother leaving
the old location in this sandbox, since it is not being used on any shipping
software.
* NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in:
* WebProcess/com.apple.WebProcess.sb.in:
Modified Paths
Diff
Modified: trunk/Source/WebKit/ChangeLog (259316 => 259317)
--- trunk/Source/WebKit/ChangeLog 2020-03-31 22:19:25 UTC (rev 259316)
+++ trunk/Source/WebKit/ChangeLog 2020-03-31 22:38:00 UTC (rev 259317)
@@ -1,3 +1,20 @@
+2020-03-31 Brent Fulgham <bfulg...@apple.com>
+
+ [macOS] Update sandbox rules for correct sanitizer paths in current OS releases
+ https://bugs.webkit.org/show_bug.cgi?id=209818
+ <rdar://problem/58422996>
+
+ Reviewed by Per Arne Vollan.
+
+ Update the sandbox rules to allow access to the new system Asan library
+ locations.
+
+ * GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in: Note: Don't bother leaving
+ the old location in this sandbox, since it is not being used on any shipping
+ software.
+ * NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in:
+ * WebProcess/com.apple.WebProcess.sb.in:
+
2020-03-31 Sihui Liu <sihui_...@apple.com>
IndexedDB: destroy WebIDBServer when session is removed in network process
Modified: trunk/Source/WebKit/GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in (259316 => 259317)
--- trunk/Source/WebKit/GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in 2020-03-31 22:19:25 UTC (rev 259316)
+++ trunk/Source/WebKit/GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in 2020-03-31 22:38:00 UTC (rev 259317)
@@ -58,7 +58,7 @@
(subpath "/System/Library/Frameworks")
(subpath "/System/Library/PrivateFrameworks")
(subpath "/usr/lib")
- (literal "/usr/local/lib/sanitizers"))
+ (subpath "/usr/appleinternal/lib/sanitizers"))
(allow file-read-metadata
(literal "/etc")
Modified: trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in (259316 => 259317)
--- trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in 2020-03-31 22:19:25 UTC (rev 259316)
+++ trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in 2020-03-31 22:38:00 UTC (rev 259317)
@@ -44,7 +44,8 @@
(subpath "/System/Library/Frameworks")
(subpath "/System/Library/PrivateFrameworks")
(subpath "/usr/lib")
- (literal "/usr/local/lib/sanitizers"))
+ (literal "/usr/local/lib/sanitizers") ;; FIXME(209820)
+ (subpath "/usr/appleinternal/lib/sanitizers"))
(allow file-read-metadata
(literal "/etc")
@@ -86,7 +87,8 @@
(literal "/dev/dtracehelper"))
(allow file-read*
- (literal "/usr/local/lib/sanitizers"))
+ (literal "/usr/local/lib/sanitizers") ;; FIXME(209820)
+ (subpath "/usr/appleinternal/lib/sanitizers"))
(allow file-write-create
(require-all (prefix "/cores/")
Modified: trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in (259316 => 259317)
--- trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in 2020-03-31 22:19:25 UTC (rev 259316)
+++ trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in 2020-03-31 22:38:00 UTC (rev 259317)
@@ -58,7 +58,8 @@
(subpath "/System/Library/Frameworks")
(subpath "/System/Library/PrivateFrameworks")
(subpath "/usr/lib")
- (literal "/usr/local/lib/sanitizers"))
+ (literal "/usr/local/lib/sanitizers") ;; FIXME(209820)
+ (subpath "/usr/appleinternal/lib/sanitizers"))
(allow file-read-metadata
(literal "/etc")
_______________________________________________
webkit-changes mailing list
webkit-changes@lists.webkit.org
https://lists.webkit.org/mailman/listinfo/webkit-changes