Title: [284277] trunk/Source/WebKit
- Revision
- 284277
- Author
- [email protected]
- Date
- 2021-10-15 15:25:24 -0700 (Fri, 15 Oct 2021)
Log Message
Unreviewed, reverting r283925.
https://bugs.webkit.org/show_bug.cgi?id=231839
Incorrect
Reverted changeset:
"[macOS] Grant access in sandbox to 'system-privilege' for
root"
https://bugs.webkit.org/show_bug.cgi?id=231501
https://commits.webkit.org/r283925
Modified Paths
Diff
Modified: trunk/Source/WebKit/ChangeLog (284276 => 284277)
--- trunk/Source/WebKit/ChangeLog 2021-10-15 22:18:07 UTC (rev 284276)
+++ trunk/Source/WebKit/ChangeLog 2021-10-15 22:25:24 UTC (rev 284277)
@@ -1,3 +1,17 @@
+2021-10-15 Commit Queue <[email protected]>
+
+ Unreviewed, reverting r283925.
+ https://bugs.webkit.org/show_bug.cgi?id=231839
+
+ Incorrect
+
+ Reverted changeset:
+
+ "[macOS] Grant access in sandbox to 'system-privilege' for
+ root"
+ https://bugs.webkit.org/show_bug.cgi?id=231501
+ https://commits.webkit.org/r283925
+
2021-10-15 Ryan Haddad <[email protected]>
Explicitly link adattributiond with Foundation and CoreFoundation
Modified: trunk/Source/WebKit/GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in (284276 => 284277)
--- trunk/Source/WebKit/GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in 2021-10-15 22:18:07 UTC (rev 284276)
+++ trunk/Source/WebKit/GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in 2021-10-15 22:25:24 UTC (rev 284277)
@@ -24,12 +24,11 @@
(version 1)
(deny default (with partial-symbolication))
(deny nvram*)
+(deny system-privilege)
(allow system-audit file-read-metadata)
-(with-filter (require-not (uid 0))
- (deny system-privilege)
- ;; Silence spurious logging due to rdar://20117923 and rdar://72366475
- (deny system-privilege (privilege-id PRIV_GLOBAL_PROC_INFO) (with no-report)))
+;; Silence spurious logging due to rdar://20117923 and rdar://72366475
+(deny system-privilege (privilege-id PRIV_GLOBAL_PROC_INFO) (with no-report))
#include "Shared/Sandbox/preferences.sb"
Modified: trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in (284276 => 284277)
--- trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in 2021-10-15 22:18:07 UTC (rev 284276)
+++ trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in 2021-10-15 22:25:24 UTC (rev 284277)
@@ -24,19 +24,18 @@
(version 1)
(deny default (with partial-symbolication))
(deny nvram*)
+(deny system-privilege)
(allow system-audit file-read-metadata)
-(with-filter (require-not (uid 0))
- (deny system-privilege)
- ;; Silence spurious logging due to rdar://20117923 and rdar://72366475
- (deny system-privilege (privilege-id PRIV_GLOBAL_PROC_INFO) (with no-report)))
-
(allow system-privilege (with grant)
(require-all
(privilege-id PRIV_NET_PRIVILEGED_SOCKET_DELEGATE)
(require-entitlement "com.apple.private.network.socket-delegate")))
+;; Silence spurious logging due to rdar://20117923 and rdar://72366475
+(deny system-privilege (privilege-id PRIV_GLOBAL_PROC_INFO) (with no-report))
+
#include "Shared/Sandbox/preferences.sb"
#if PLATFORM(MAC)
Modified: trunk/Source/WebKit/WebAuthnProcess/mac/com.apple.WebKit.WebAuthnProcess.sb.in (284276 => 284277)
--- trunk/Source/WebKit/WebAuthnProcess/mac/com.apple.WebKit.WebAuthnProcess.sb.in 2021-10-15 22:18:07 UTC (rev 284276)
+++ trunk/Source/WebKit/WebAuthnProcess/mac/com.apple.WebKit.WebAuthnProcess.sb.in 2021-10-15 22:25:24 UTC (rev 284277)
@@ -26,10 +26,8 @@
(deny nvram*)
(allow system-audit file-read-metadata)
-(with-filter (require-not (uid 0))
- (deny system-privilege)
- ;; Silence spurious logging due to rdar://20117923 and rdar://72366475
- (deny system-privilege (privilege-id PRIV_GLOBAL_PROC_INFO) (with no-report)))
+;; Silence spurious logging due to rdar://20117923 and rdar://72366475
+(deny system-privilege (privilege-id PRIV_GLOBAL_PROC_INFO) (with no-report))
#include "Shared/Sandbox/preferences.sb"
Modified: trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in (284276 => 284277)
--- trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in 2021-10-15 22:18:07 UTC (rev 284276)
+++ trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in 2021-10-15 22:25:24 UTC (rev 284277)
@@ -24,13 +24,12 @@
(version 1)
(deny default (with partial-symbolication))
(deny nvram*)
+(deny system-privilege)
(allow system-audit file-read-metadata)
-(with-filter (require-not (uid 0))
- (deny system-privilege)
- ;; Silence spurious logging due to rdar://20117923 and rdar://72366475
- (deny system-privilege (privilege-id PRIV_GLOBAL_PROC_INFO) (with no-report)))
-
+;; Silence spurious logging due to rdar://20117923 and rdar://72366475
+(deny system-privilege (privilege-id PRIV_GLOBAL_PROC_INFO) (with no-report))
+
#include "Shared/Sandbox/preferences.sb"
;;;
_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes
