223088 – [iOS, macOS] Re-allow WebContent sandbox permissions for specific /etc files

RESOLVED FIXED223088

[iOS, macOS] Re-allow WebContent sandbox permissions for specific /etc files

https://bugs.webkit.org/show_bug.cgi?id=223088

Summary [iOS, macOS] Re-allow WebContent sandbox permissions for specific /etc files

Brent Fulgham

Reported 2021-03-11 14:02:26 PST

After auditing the code paths and content in /etc/passwd, we have determined there is no security benefit to blocking access and some performance impact to blocking. To avoid a performance impact, let's put it back.

Attachments
Patch (2.19 KB, patch) 2021-03-11 14:19 PST, Brent Fulgham	no flags	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Radar WebKit Bug Importer

Comment 1 2021-03-11 14:02:44 PST

<rdar://problem/75332107>

Brent Fulgham

Comment 2 2021-03-11 14:19:38 PST

Created attachment 422968 [details] Patch

Per Arne Vollan

Comment 3 2021-03-11 14:40:53 PST

Comment on attachment 422968 [details] Patch R=me.

EWS

Comment 4 2021-03-11 16:43:32 PST

Committed r274311: <https://commits.webkit.org/r274311> All reviewed patches have been landed. Closing bug and clearing flags on attachment 422968 [details].

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version WebKit Nightly Build

Hardware Unspecified

OS Unspecified

Product WebKit

Component WebKit Misc.

Assignee

Brent Fulgham

Reported

2021-03-11 14:02 PST

Modified

2021-03-11 16:43 PST History

CC List

3 users Show

URL

Keywords InRadar

Depends on

Blocks