Skip to site navigation (Press enter)

[webkit-changes] [255072] trunk/Source/WebKit

bfulgham Fri, 24 Jan 2020 08:00:05 -0800

Title: [255072] trunk/Source/WebKit

Revision: 255072
Author: [email protected]
Date: 2020-01-24 07:58:45 -0800 (Fri, 24 Jan 2020)

Log Message

[iOS] Add missing sysctl-read permission (already available in macOS sandbox)
https://bugs.webkit.org/show_bug.cgi?id=206713
<rdar://problem/57665153>


Reviewed by Per Arne Vollan.

Correct a sandbox violation encountered when attempting to log the system hostname.
This was already handled properly on macOS, but the rule was not added to the iOS sandbox.

* Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:

Modified Paths

trunk/Source/WebKit/ChangeLog
trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb

Diff

Modified: trunk/Source/WebKit/ChangeLog (255071 => 255072)


--- trunk/Source/WebKit/ChangeLog	2020-01-24 15:26:24 UTC (rev 255071)
+++ trunk/Source/WebKit/ChangeLog	2020-01-24 15:58:45 UTC (rev 255072)
@@ -1,3 +1,16 @@
+2020-01-24  Brent Fulgham  <[email protected]>
+
+        [iOS] Add missing sysctl-read permission (already available in macOS sandbox)
+        https://bugs.webkit.org/show_bug.cgi?id=206713
+        <rdar://problem/57665153>
+
+        Reviewed by Per Arne Vollan.
+
+        Correct a sandbox violation encountered when attempting to log the system hostname.
+        This was already handled properly on macOS, but the rule was not added to the iOS sandbox.
+
+        * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:
+
 2020-01-24  Adrian Perez de Castro  <[email protected]>
 
         Fix various non-unified build issues introduced since r254751

Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb (255071 => 255072)


--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb	2020-01-24 15:26:24 UTC (rev 255071)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb	2020-01-24 15:58:45 UTC (rev 255072)
@@ -816,7 +816,9 @@
         "kern.osvariant_status"
         "kern.secure_kernel" ;; Needed by XPC bundle resolution
         "kern.version"
-        "vm.footprint_suspend"))
+        "vm.footprint_suspend")
+    (sysctl-name-regex #"^net.routetable") ;; <rdar://problem/57665153>
+)
 
 (allow iokit-get-properties
     (iokit-property-regex #"^AAPL,(DisplayPipe|OpenCLdisabled|IOGraphics_LER(|_RegTag_1|_RegTag_0|_Busy_2)|alias-policy|boot-display|display-alias|mux-switch-state|ndrv-dev|primary-display|slot-name)")

_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes