[webkit-changes] [184931] trunk/Source/WebKit2

Wed, 27 May 2015 17:34:54 -0700

Title: [184931] trunk/Source/WebKit2
Revision
184931
Author
[email protected]
Date
2015-05-27 17:34:39 -0700 (Wed, 27 May 2015)

Log Message

Can't load local files in WKWebView from containerized app
https://bugs.webkit.org/show_bug.cgi?id=145424
rdar://problem/20831176

Reviewed by Dan Bernstein.

Allow the network process to load local files from its bundle as long as it has
the sandbox extensions to do so.

This was originally added to only allow SSO to read the Info.plist inside its own application
bundle, but being able to read the application bundle from within the network process should be OK.

* Resources/SandboxProfiles/ios/com.apple.WebKit.Networking.sb:

Modified Paths

Diff

Modified: trunk/Source/WebKit2/ChangeLog (184930 => 184931)


--- trunk/Source/WebKit2/ChangeLog	2015-05-28 00:30:59 UTC (rev 184930)
+++ trunk/Source/WebKit2/ChangeLog	2015-05-28 00:34:39 UTC (rev 184931)
@@ -1,3 +1,19 @@
+2015-05-27  Anders Carlsson  <[email protected]>
+
+        Can't load local files in WKWebView from containerized app
+        https://bugs.webkit.org/show_bug.cgi?id=145424
+        rdar://problem/20831176
+
+        Reviewed by Dan Bernstein.
+
+        Allow the network process to load local files from its bundle as long as it has
+        the sandbox extensions to do so.
+
+        This was originally added to only allow SSO to read the Info.plist inside its own application
+        bundle, but being able to read the application bundle from within the network process should be OK.
+
+        * Resources/SandboxProfiles/ios/com.apple.WebKit.Networking.sb:
+
 2015-05-27  Andreas Kling  <[email protected]>
 
         [WK2] Local storage areas should get torn down when they have no remaining references.

Modified: trunk/Source/WebKit2/Resources/SandboxProfiles/ios/com.apple.WebKit.Networking.sb (184930 => 184931)


--- trunk/Source/WebKit2/Resources/SandboxProfiles/ios/com.apple.WebKit.Networking.sb	2015-05-28 00:30:59 UTC (rev 184930)
+++ trunk/Source/WebKit2/Resources/SandboxProfiles/ios/com.apple.WebKit.Networking.sb	2015-05-28 00:34:39 UTC (rev 184931)
@@ -42,29 +42,6 @@
 ;; bundle to find Info plists, so we jump through a few hoops here to provide
 ;; enough access to make it possible.
 
-;; Disallow networking process from reading any bundles, even with the read extension
-(deny file-read*
-    (require-all
-        (subpath "/Applications")
-        (extension "com.apple.app-sandbox.read")))
-(deny file-read*
-    (require-all
-        (subpath "/private/var/mobile/Containers/Bundle/Application")
-        (extension "com.apple.app-sandbox.read")))
-
-;; Allow the networking process to read directories inside the bundle directories
-;; that we may have killed off above
-(allow file-read*
-    (require-all
-        (extension "com.apple.app-sandbox.read")
-        (vnode-type DIRECTORY)))
-
-;; Allow the networking process to read the Info.plist files
-(allow file-read*
-    (require-all
-        (extension "com.apple.app-sandbox.read")
-        (regex #"/Info\.plist$")))
-
 ;; IOKit user clients
 (allow iokit-open
        (iokit-user-client-class "RootDomainUserClient"))

_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes

Reply via email to