[webkit-changes] [289858] trunk/Source/WebKit

Tue, 15 Feb 2022 15:56:50 -0800

Title: [289858] trunk/Source/WebKit
Revision
289858
Author
[email protected]
Date
2022-02-15 15:56:00 -0800 (Tue, 15 Feb 2022)

Log Message

[macOS] Add access to mach service in the Networking process for all users
https://bugs.webkit.org/show_bug.cgi?id=236653
<rdar://88787266>

Reviewed by Brent Fulgham.

We currently allow access to "com.apple.trustd" for the root user. Access to this service is needed for all users.
This issue was introduced in https://trac.webkit.org/changeset/283012/webkit, and this patch also reverts this
change for older versions of macOS.

* NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in:

Modified Paths

Diff

Modified: trunk/Source/WebKit/ChangeLog (289857 => 289858)


--- trunk/Source/WebKit/ChangeLog	2022-02-15 23:09:41 UTC (rev 289857)
+++ trunk/Source/WebKit/ChangeLog	2022-02-15 23:56:00 UTC (rev 289858)
@@ -1,3 +1,17 @@
+2022-02-15  Per Arne Vollan  <[email protected]>
+
+        [macOS] Add access to mach service in the Networking process for all users
+        https://bugs.webkit.org/show_bug.cgi?id=236653
+        <rdar://88787266>
+
+        Reviewed by Brent Fulgham.
+
+        We currently allow access to "com.apple.trustd" for the root user. Access to this service is needed for all users.
+        This issue was introduced in https://trac.webkit.org/changeset/283012/webkit, and this patch also reverts this
+        change for older versions of macOS.
+        
+        * NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in:
+
 2022-02-15  Wenson Hsieh  <[email protected]>
 
         [macOS] Add a context menu item to "Copy Cropped Image"

Modified: trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in (289857 => 289858)


--- trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in	2022-02-15 23:09:41 UTC (rev 289857)
+++ trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in	2022-02-15 23:56:00 UTC (rev 289858)
@@ -114,13 +114,24 @@
 (allow mach-lookup (global-name "com.apple.coreservices.launchservicesd"))
 #endif
 
+#if !PLATFORM(MAC) || __MAC_OS_X_VERSION_MIN_REQUIRED < 130000
 (allow mach-lookup
-       (global-name "com.apple.system.opendirectoryd.libinfo")
-       (global-name "com.apple.trustd.agent"))
+    (global-name
+        "com.apple.analyticsd.messagetracer"
+        "com.apple.appsleep"
+        "com.apple.bsd.dirhelper"
+        "com.apple.espd"
+        "com.apple.secinitd"
+        "com.apple.system.DirectoryService.libinfo_v1"
+        "com.apple.system.logger"
+        "com.apple.system.opendirectoryd.membership"
+        "com.apple.xpc.activity.unmanaged"))
+#endif
 
-(with-filter (uid 0)
-    (allow mach-lookup
-       (global-name "com.apple.trustd")))
+(allow mach-lookup
+    (global-name "com.apple.system.opendirectoryd.libinfo")
+    (global-name "com.apple.trustd")
+    (global-name "com.apple.trustd.agent"))
 
 (define (system-network)
     (allow file-read*

_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes

Reply via email to