[WK2][iOS] Update WebContent process sandbox profile for AWD logging
authorcdumez@apple.com <cdumez@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Thu, 21 May 2015 03:06:53 +0000 (03:06 +0000)
committercdumez@apple.com <cdumez@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Thu, 21 May 2015 03:06:53 +0000 (03:06 +0000)
https://bugs.webkit.org/show_bug.cgi?id=145229
<rdar://problem/20543269>

Reviewed by Alexey Proskuryakov.

* Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:

git-svn-id: https://svn.webkit.org/repository/webkit/trunk@184693 268f45cc-cd09-0410-ab3c-d52691b4dbfc

Source/WebKit2/ChangeLog
Source/WebKit2/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb

index 62c8fc22fa124b23c05da785768e59ded0303630..d39adc9783b3cbcdab6f4690485d92e2cd5bc68a 100644 (file)
@@ -1,3 +1,13 @@
+2015-05-20  Chris Dumez  <cdumez@apple.com>
+
+        [WK2][iOS] Update WebContent process sandbox profile for AWD logging
+        https://bugs.webkit.org/show_bug.cgi?id=145229
+        <rdar://problem/20543269>
+
+        Reviewed by Alexey Proskuryakov.
+
+        * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:
+
 2015-05-20  Gavin Barraclough  <barraclough@apple.com>
 
         dispatchViewStateChange should not wait for sync reply if the page isn't visible
index fe9c4d22359656710e72588e55e927e13ffe5141..0fb66f7d846962adea47207b2891a1afdd974a7f 100644 (file)
 ;; Various services required by CFNetwork and other frameworks
 (allow mach-lookup
     (global-name "com.apple.PowerManagement.control")
-    (global-name "com.apple.accountsd.accountmanager")
-    (global-name "com.apple.awdd"))
+    (global-name "com.apple.accountsd.accountmanager"))
 
 (deny file-write-create (vnode-type SYMLINK))
 (deny file-read-xattr file-write-xattr (xattr-regex #"^com\.apple\.security\.private\."))
 
+;; AWD logging
+(allow mach-lookup (global-name "com.apple.awdd"))
+(allow file-read* file-write*
+    (literal "/private/var/mobile/Library/Logs/awd/awd-com.apple.WebKit.WebContent.log"))
+
 (network-client (remote tcp))