230918 – Remove unused "com.apple.security.exception.file*" rules from WebKit sandboxes

Bug 230918 - Remove unused "com.apple.security.exception.file*" rules from WebKit sandboxes

Summary: Remove unused "com.apple.security.exception.file*" rules from WebKit sandboxes

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	WebKit Misc. (show other bugs)
Version:	WebKit Nightly Build
Hardware:	Unspecified Unspecified

Importance:	P2 Normal
Assignee:	Brent Fulgham

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2021-09-28 14:42 PDT by Brent Fulgham
Modified:	2021-09-28 17:26 PDT (History)
CC List:	3 users (show)

See Also:

Attachments
Patch (10.99 KB, patch) 2021-09-28 15:55 PDT, Brent Fulgham	no flags	Details \| Formatted Diff \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Brent Fulgham 2021-09-28 14:42:13 PDT

The Sandbox implementation provides a mechanism where apps can extend the default app sandbox with entitled extension properties in their Info.plist. WebKit does not need or use this feature, but the rules were imported when we stopped using the system sandbox. We should remove them since we don't need them, and they add to the size and complexity of the sandbox rule set.

Comment 1 Brent Fulgham 2021-09-28 15:52:06 PDT

<rdar://problem/66585844>

Comment 2 Brent Fulgham 2021-09-28 15:55:31 PDT

Created attachment 439538 [details]
Patch

Comment 3 Brent Fulgham 2021-09-28 15:56:02 PDT

Tested on device across various media properties, network loads, and webauthn tests.

Comment 4 Per Arne Vollan 2021-09-28 15:58:29 PDT

Comment on attachment 439538 [details]
Patch

Great! R=me.

Comment 5 EWS 2021-09-28 17:26:44 PDT

Committed r283204 (242247@main): <https://commits.webkit.org/242247@main>

All reviewed patches have been landed. Closing bug and clearing flags on attachment 439538 [details].