224383 2021-04-09 11:32:29 -0700 [iOS] Correct process-info rules to restrict to self 2021-04-09 18:55:35 -0700 1 1 1 Unclassified WebKit WebKit Misc. WebKit Nightly Build Unspecified Unspecified RESOLVED FIXED InRadar P2 Normal --- 1 bfulgham bfulgham achristensen bfulgham eric.carlson pvollan oldest_to_newest 1748800 0 bfulgham 2021-04-09 11:32:29 -0700 In Bug 168704 we restricted process-info to the WebContent process. However, our iOS sandbox did not perform a deny first, leaving access available. This patch corrects this oversight. <rdar://problem/66582454> 1748809 1 425638 bfulgham 2021-04-09 11:41:48 -0700 Created attachment 425638 Patch 1748941 2 ews-feeder 2021-04-09 18:55:33 -0700 Committed r275789 (236360@main): <https://commits.webkit.org/236360@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 425638. 425638 2021-04-09 11:41:48 -0700 2021-04-09 18:55:34 -0700 Patch bug-224383-20210409114147.patch text/plain 2030 bfulgham U3VidmVyc2lvbiBSZXZpc2lvbjogMjc1NzY1CmRpZmYgLS1naXQgYS9Tb3VyY2UvV2ViS2l0L0No YW5nZUxvZyBiL1NvdXJjZS9XZWJLaXQvQ2hhbmdlTG9nCmluZGV4IGM1MzMwMDhmYTM2ZDkwZDAz MWQ4YmNhZjMzMTYyNTlkNThkMjE5MDQuLmE3NjA3YzMxMGI2YWNlNDMwZTk3YjU4M2FlZGYxODFm OWQ1ODdkMTAgMTAwNjQ0Ci0tLSBhL1NvdXJjZS9XZWJLaXQvQ2hhbmdlTG9nCisrKyBiL1NvdXJj ZS9XZWJLaXQvQ2hhbmdlTG9nCkBAIC0xLDMgKzEsMTggQEAKKzIwMjEtMDQtMDkgIEJyZW50IEZ1 bGdoYW0gIDxiZnVsZ2hhbUBhcHBsZS5jb20+CisKKyAgICAgICAgW2lPU10gQ29ycmVjdCBwcm9j ZXNzLWluZm8gcnVsZXMgdG8gcmVzdHJpY3QgdG8gc2VsZgorICAgICAgICBodHRwczovL2J1Z3Mu d2Via2l0Lm9yZy9zaG93X2J1Zy5jZ2k/aWQ9MjI0MzgzCisgICAgICAgIDxyZGFyOi8vcHJvYmxl bS82NjU4MjQ1ND4KKworICAgICAgICBSZXZpZXdlZCBieSBOT0JPRFkgKE9PUFMhKS4KKworICAg ICAgICBUaGUgc2FuZGJveCBhbGxvd3MgJ3Byb2Nlc3MtaW5mbycgYnkgZGVmYXVsdCwgc28gb3Vy IGFsbG93IHJ1bGVzIGhhdmUgbm8gcmVhbCBpbXBhY3QuCisgICAgICAgIFdlIG5lZWQgdG8gZGVu eSBhY2Nlc3MgZmlyc3QsIGFzIHdlIGRvIG9uIG1hY09TLCBzbyB0aGF0IHRoZSBhbGxvdyBydWxl cyBoYXZlIG1lYW5pbmcuCisKKyAgICAgICAgSSByZXZpZXdlZCB0aGUgbWFjT1Mgc2FuZGJveCwg YW5kIG1hZGUgc3VyZSB0aGUgaU9TIHNhbmRib3ggYWxsb3dzIHRoZSBzYW1lIGl0ZW1zLgorCisg ICAgICAgICogUmVzb3VyY2VzL1NhbmRib3hQcm9maWxlcy9pb3MvY29tLmFwcGxlLldlYktpdC5X ZWJDb250ZW50LnNiOgorCiAyMDIxLTA0LTA4ICBEYXJpbiBBZGxlciAgPGRhcmluQGFwcGxlLmNv bT4KIAogICAgICAgICBbQ29jb2FdIFJlZHVjZSB1c2FnZSBvZiBhdXRvcmVsZWFzZSwgZml4IG1p c3Rha2VzIG5vdGljZWQgbmVhcmJ5IGNvZGUgdXNpbmcgYXV0b3JlbGVhc2UKZGlmZiAtLWdpdCBh L1NvdXJjZS9XZWJLaXQvUmVzb3VyY2VzL1NhbmRib3hQcm9maWxlcy9pb3MvY29tLmFwcGxlLldl YktpdC5XZWJDb250ZW50LnNiIGIvU291cmNlL1dlYktpdC9SZXNvdXJjZXMvU2FuZGJveFByb2Zp bGVzL2lvcy9jb20uYXBwbGUuV2ViS2l0LldlYkNvbnRlbnQuc2IKaW5kZXggYjVlYjhlMzdjZWIz YzkyNjI1NDY4NmY5ODY3ZjBjZDFlYmNmZDAwMC4uMzVkNzExMTdjZDM1Yjc1N2E0ZmUzMGYxNmQ3 ZWM4MWQ5NGY3NTc4ZSAxMDA2NDQKLS0tIGEvU291cmNlL1dlYktpdC9SZXNvdXJjZXMvU2FuZGJv eFByb2ZpbGVzL2lvcy9jb20uYXBwbGUuV2ViS2l0LldlYkNvbnRlbnQuc2IKKysrIGIvU291cmNl L1dlYktpdC9SZXNvdXJjZXMvU2FuZGJveFByb2ZpbGVzL2lvcy9jb20uYXBwbGUuV2ViS2l0Lldl YkNvbnRlbnQuc2IKQEAgLTEsNCArMSw0IEBACi07IENvcHlyaWdodCAoQykgMjAxMC0yMDIwIEFw cGxlIEluYy4gQWxsIHJpZ2h0cyByZXNlcnZlZC4KKzsgQ29weXJpZ2h0IChDKSAyMDEwLTIwMjEg QXBwbGUgSW5jLiBBbGwgcmlnaHRzIHJlc2VydmVkLgogOwogOyBSZWRpc3RyaWJ1dGlvbiBhbmQg dXNlIGluIHNvdXJjZSBhbmQgYmluYXJ5IGZvcm1zLCB3aXRoIG9yIHdpdGhvdXQKIDsgbW9kaWZp Y2F0aW9uLCBhcmUgcGVybWl0dGVkIHByb3ZpZGVkIHRoYXQgdGhlIGZvbGxvd2luZyBjb25kaXRp b25zCkBAIC03NjQsNiArNzY0LDggQEAKIAogKGFsbG93IG1hY2gtdGFzay1uYW1lICh0YXJnZXQg c2VsZikpCiAKKzs7OyBwcm9jZXNzLWluZm8qIGRlZmF1bHRzIHRvIGFsbG93OyBkZW55IGl0IGFu ZCB0aGVuIGFsbG93IG9wZXJhdGlvbnMgd2UgYWN0dWFsbHkgbmVlZC4KKyhkZW55IHByb2Nlc3Mt aW5mbyopCiAoYWxsb3cgcHJvY2Vzcy1pbmZvLXBpZGluZm8gKHRhcmdldCBzZWxmKSkKIChhbGxv dyBwcm9jZXNzLWluZm8tcGlkZmRpbmZvICh0YXJnZXQgc2VsZikpCiAoYWxsb3cgcHJvY2Vzcy1p bmZvLXBpZGZpbGVwb3J0aW5mbyAodGFyZ2V0IHNlbGYpKQo=