security/sandbox/mac/SandboxPolicies.h
d770ea2a1b257febbbbe07a38163d66bdc47e1fd
created 2018-10-03 09:39 +0300
pushed 2018-10-15 21:07 +0000
Tiberius Oros Tiberius Oros - Backed out 5 changesets (bug 1431441) for failing devtools at client/debugger/new/test/mochitest/browser_dbg_rr_breakpoints-01.js on OSX opt a=backout
94a1d1d67191e9115a4058160397a2e47156f738
created 2018-10-02 19:43 +0000
pushed 2018-10-15 21:07 +0000
Haik Aftandilian Haik Aftandilian - Bug 1431441 - Part 5 - Parameterize access to the windowserver in the Mac content sandbox policy r=Alex_Gaynor
db6b7ee0418703dab9ef0b1aa5bd7efc1d6b5e81
created 2018-10-02 20:29 +0000
pushed 2018-10-15 21:07 +0000
Haik Aftandilian Haik Aftandilian - Bug 1431441 - Part 3 - Start the Mac content sandbox earlier r=Alex_Gaynor
f61ec0f140c2839a5c24a04bbe99a76a24a0b9f5
created 2018-10-02 19:40 +0000
pushed 2018-10-15 21:07 +0000
Haik Aftandilian Haik Aftandilian - Bug 1431441 - Part 2 - Remove rules for APP_BINARY_PATH and APP_DIR Mac sandbox parameters r=Alex_Gaynor
cf1509eb9d611ec82f498d1a134a71bd233ca1be
created 2018-09-24 17:22 +0000
pushed 2018-09-26 13:11 +0000
Haik Aftandilian Haik Aftandilian - Bug 1491940 - [Mac] Allow Adobe DRM content to play with the Mac Flash sandbox r=Alex_Gaynor a=pascalc
7c4cd4c257821ae95e63653a8e3d8dc36245b100
created 2018-08-17 15:05 -0700
pushed 2018-08-21 19:29 +0000
Haik Aftandilian Haik Aftandilian - Bug 1484051 - Limit Mac Flash sandbox file-access mds rules. r=Alex_Gaynor, a=RyanVM
b0d9337da7cf6b72085f703f95a51ef741ed97cd
created 2018-08-14 19:58 +0000
pushed 2018-08-20 15:55 +0000
Haik Aftandilian Haik Aftandilian - Bug 1483058 - [Mac] Camera not accessible by Adobe Flash applets r=Alex_Gaynor a=lizzard
3edfcf8b06b7c77e225e19b746edf403b74abff8
created 2018-07-17 17:30 -0700
pushed 2018-08-02 11:13 +0000
Haik Aftandilian Haik Aftandilian - Bug 1475722 - Mac Flash sandbox causes empty file upload dialogs on OS X 10.9, 10.10 r=Alex_Gaynor a=ritu
b6476b444aab3135d20f3e704f82d97842297adc
created 2018-07-06 15:06 -0700
pushed 2018-08-02 11:13 +0000
Haik Aftandilian Haik Aftandilian - Bug 1471977 - Mac Flash sandbox causing World Cup playback issues on foxsports.com r=Alex_Gaynor a=ritu
a44407cbf3dbea222ed83f1d1be140f44172724b
created 2018-07-13 12:58 -0700
pushed 2018-08-02 11:13 +0000
Haik Aftandilian Haik Aftandilian - Bug 1475707 - [Mac] Flash sandbox on Nightly/Beta causes OS X 10.9 file upload dialog Flash plugin crash r=Alex_Gaynor a=ritu
f0c51d4ad04b0f66e85f6ffe1a6d20bd2c6694f2
created 2018-06-19 11:39 -0700
pushed 2018-07-02 13:49 +0000
Haik Aftandilian Haik Aftandilian - Bug 1469657 - Whitelist Extensis UTC fonts on 10.11 and Earlier. r=Alex_Gaynor, a=lizzard
b6ebcc05cf307f92fc6520723bd50dca33cdcb53
created 2018-05-29 14:55 -0700
pushed 2018-06-18 21:43 +0000
Haik Aftandilian Haik Aftandilian - Bug 1463353 - contentSandboxRules does not explcitly list 'com.apple.fonts' mach service. r=Alex_Gaynor
2bbdeafb0a5813426f9dbe97f4a42f57fde89770
created 2018-05-14 16:04 -0700
pushed 2018-05-17 13:49 +0000
Haik Aftandilian Haik Aftandilian - Bug 1460917 - Fonts not displaying with FontExplorer X fonts in Firefox 60. r=handyman, a=RyanVM
d67ad5505bc5ebb2e0f4ecc0864b6021adc2473f
created 2018-05-02 09:26 -0700
pushed 2018-05-04 15:39 +0000
Haik Aftandilian Haik Aftandilian - Bug 1458553 - Return of Google Maps all black map with updated Nvidia web driver on Mac r=Alex_Gaynor
5f14c440b68aa1842822ac6d22f8bab8b7b1c89a
created 2018-03-15 20:23 -0700
pushed 2018-04-26 21:04 +0000
Haik Aftandilian Haik Aftandilian - Bug 1444291 - Part 3 - Add read access to the Mac Flash sandbox, support sandbox levels r=Alex_Gaynor
2103c836b739762ad3d18d735f535e6a4a795b30
created 2018-03-07 22:07 -0800
pushed 2018-04-26 21:04 +0000
Haik Aftandilian Haik Aftandilian - Bug 1444291 - Part 2 - Add additional sysctl access to the Mac Flash sandbox r=Alex_Gaynor
48cacb921dab306445279bbf78d8f252a716b878
created 2018-03-15 17:33 -0700
pushed 2018-04-26 21:04 +0000
Haik Aftandilian Haik Aftandilian - Bug 1444291 - Part 1 - Reduce Mac Flash sandbox cache and temp dir permissions r=Alex_Gaynor
954c8b6e4659f423fbdd819d04b019563ebbdd59
created 2018-03-16 03:07 +0200
pushed 2018-04-26 21:04 +0000
Coroiu Cristina Coroiu Cristina - Backed out 3 changesets (bug 1444291) for bustage at build/src/dom/plugins/ipc/PluginProcessChild.cpp
48a9c2131347146a80eccd760852eccd4d2a5b45
created 2018-03-13 15:38 -0700
pushed 2018-04-26 21:04 +0000
Haik Aftandilian Haik Aftandilian - Bug 1444291 - Part 3 - Add read access to the Mac Flash sandbox, support sandbox levels r=Alex_Gaynor
dfc31b6c9f53a0c84d3254c013a7796e45c7b75a
created 2018-03-07 22:07 -0800
pushed 2018-04-26 21:04 +0000
Haik Aftandilian Haik Aftandilian - Bug 1444291 - Part 2 - Add additional sysctl access to the Mac Flash sandbox r=Alex_Gaynor
8ee3e65465ed3aec8a1dbd93b868d3b2e6300c59
created 2018-03-15 17:33 -0700
pushed 2018-04-26 21:04 +0000
Haik Aftandilian Haik Aftandilian - Bug 1444291 - Part 1 - Reduce Mac Flash sandbox cache and temp dir permissions r=Alex_Gaynor
88bcff60aab119ded4ee1a80de790a54f197a047
created 2018-02-12 15:46 -0800
pushed 2018-03-01 16:46 +0000
Haik Aftandilian Haik Aftandilian - Bug 1436566 - [Mac] Land disabled-by-default sandboxing for the Flash NPAPI plugin process. r=Alex_Gaynor,jimm
6d46b232c926c875b1162c911df68c88632549ff
created 2017-10-02 10:48 -0400
pushed 2018-03-01 16:46 +0000
Alex Gaynor Alex Gaynor - Bug 1405088 - Part 1 - remove file-write permissions from macOS content temporary directory; r=haik
26b03e4d37d3e17d7cefa62c26233c0305bb20f3
created 2017-12-21 09:59 -0500
pushed 2018-03-01 16:46 +0000
Alex Gaynor Alex Gaynor - Bug 1359566 - remove permissions related to audio from the macOS content process sandbox when cubeb remoting is enabled; r=haik
9218e87c25fbdede3763ea24398d5e20dd5bd660
created 2018-01-11 10:53 -0800
pushed 2018-03-01 16:46 +0000
Haik Aftandilian Haik Aftandilian - Bug 1393259 - Enable sandbox read access extensions for font access. r=Alex_Gaynor
a678eec13c6e6bf1662cc4db5719bbb413c63f65
created 2018-01-03 14:07 -0500
pushed 2018-03-01 16:46 +0000
Alex Gaynor Alex Gaynor - Bug 1428055 - Further lockdown the macOS content sandbox policy by restricting some allowed-by-default privileges; r=haik
327ccd0d5dc266b4490d9205da65dee6736bcb9c
created 2018-01-10 11:33 -0800
pushed 2018-01-13 00:26 +0000
Haik Aftandilian Haik Aftandilian - Bug 1429133 - Some FontExplorer managed fonts are not rendered. r=Alex_Gaynor a=gchang FIREFOX_58b_RELBRANCH
db0a461b3034f88ada61d13e8536eefdfd2361fb
created 2018-01-10 11:33 -0800
pushed 2018-01-11 21:05 +0000
Haik Aftandilian Haik Aftandilian - Bug 1429133 - Some FontExplorer managed fonts are not rendered. r=Alex_Gaynor
29245716751b536dcd730e9a7b81b1936863b8c3
created 2017-12-21 14:15 -0800
pushed 2018-01-11 21:05 +0000
Haik Aftandilian Haik Aftandilian - Bug 1421262 - [Mac] Add access to hw.cachelinesize sysctl, /Library/GPUBundles to content sandbox rules. r=Alex_Gaynor
bda5959fad219e6461faf4a668280a52c6c1a0f8
created 2017-12-18 12:58 -0800
pushed 2018-01-11 21:05 +0000
Haik Aftandilian Haik Aftandilian - Bug 1404298 - Crashes with read-access content sandboxing triggered by mounted volumes. r=Alex_Gaynor
6744f78742d7f4188b251f26640668970518ca30
created 2017-12-12 14:58 -0600
pushed 2018-01-11 21:05 +0000
Alex Gaynor Alex Gaynor - Bug 1424942 - Remove fallback code for old macOS releases in the sandbox policy; r=haik
6df5d8ae771df5f11b7231a6980cccdb167551d9
created 2017-11-28 14:06 -0500
pushed 2018-01-11 21:05 +0000
Alex Gaynor Alex Gaynor - Bug 1421372 - simplify the macOS content sandbox rules by splitting the file process rules out; r=haik
d5eaaf2bbd80515c1570d3dcc612b69326c4b6c0
created 2017-12-21 14:15 -0800
pushed 2018-01-11 02:47 +0000
Haik Aftandilian Haik Aftandilian - Bug 1421262 - [Mac] Add access to hw.cachelinesize sysctl, /Library/GPUBundles to content sandbox rules. r=Alex_Gaynor, a=gchang
d71f0c5729d4fe1b8bfb62e30b87a3b97eda3ec3
created 2017-12-18 12:58 -0800
pushed 2018-01-03 10:21 +0000
Haik Aftandilian Haik Aftandilian - Bug 1404298 - Crashes with read-access content sandboxing triggered by mounted volumes. r=Alex_Gaynor a=gchang
40a6d6c3807248bae0430bc57444a9aeaf0bbad3
created 2017-11-22 11:51 -0600
pushed 2017-11-29 14:14 +0000
Alex Gaynor Alex Gaynor - Bug 1419811 - allow file content processes to access the com.apple.iconservices service; r=Gijs,haik a=gchang on a CLOSED TREE
cd0cba138a4c336e25bd1b6e05dffe822f6bd537
created 2017-11-15 17:59 +0000
pushed 2017-11-20 12:22 +0000
Jonathan Kew Jonathan Kew - Bug 1417420 - Add the path used by FontAgent to the sandbox rules on macOS. r=haik a=gchang
49def60bda3dc18ec60c42f3d06fd6418a57e2bd
created 2017-10-30 11:14 -0700
pushed 2017-11-02 16:33 +0000
Haik Aftandilian Haik Aftandilian - Bug 1403260 - [Mac] Remove access to print server from content process sandbox. r=mconley
485a03afaa233e311bfb20e15bac9f50158acd00
created 2017-10-25 23:00 -0700
pushed 2017-11-02 16:33 +0000
Phil Ringnalda Phil Ringnalda - Backed out changeset ccc0e72f2152 (bug 1403260) for hanging Mac browser-chrome in printing tests
ccc0e72f2152ebbfba2a1a6f8ea87df4a29d1d8f
created 2017-10-22 23:02 -0700
pushed 2017-11-02 16:33 +0000
Haik Aftandilian Haik Aftandilian - Bug 1403260 - [Mac] Remove access to print server from content process sandbox r=mconley
ce9788d3ce4fe25177d7db6092b28fecd186c9ae
created 2017-10-12 18:29 -0700
pushed 2017-11-02 16:33 +0000
Haik Aftandilian Haik Aftandilian - Bug 1404919 - Whitelist Extensis Suitcase Fusion fontvaults and /System/Library/Fonts. r=Alex_Gaynor
4d06927fff29302f36d83ffd7c0f60a5a5f80973
created 2017-10-05 16:06 -0700
pushed 2017-11-02 16:33 +0000
Haik Aftandilian Haik Aftandilian - Bug 1393805 - Part 2 - Add Mac whitelisted directory for system extensions development. r=Alex_Gaynor
248ab0b65852195f58c8035ae9f46f79bd2ac490
created 2017-10-05 00:20 +0200
pushed 2017-11-02 16:33 +0000
Sebastian Hengst Sebastian Hengst - Backed out changeset 8198bc4c7e3c (bug 1393805)
8198bc4c7e3cbdd9ba2e98420a2a167911dcb7a2
created 2017-09-27 13:27 -0700
pushed 2017-11-02 16:33 +0000
Haik Aftandilian Haik Aftandilian - Bug 1393805 - Part 2 - Add Mac whitelisted directory for system extensions development. r=Alex_Gaynor
6212837ec87882ebfc8e5a697f3ee4e9109ca41f
created 2017-10-03 09:49 -0400
pushed 2017-11-02 16:33 +0000
Alex Gaynor Alex Gaynor - Bug 1380674 - remove the ability to create directories in the content temp directory on macOS; r=haik
725654758702332ebde2d2b74a8b5bd14850218f
created 2017-09-26 13:05 -0400
pushed 2017-11-02 16:33 +0000
Alex Gaynor Alex Gaynor - Bug 1403567 - Remove unused access to AppleGraphicsPolicyClient iokit from content process; r=haik
febc67e303a2101bce0704ba31f5c8e74c755b45
created 2017-09-27 11:48 -0700
pushed 2017-11-02 16:33 +0000
Haik Aftandilian Haik Aftandilian - Bug 1403669 - [Mac] Per-user and system extensions dir regexes only work for 1-character subdirectory names. r=Alex_Gaynor
9be94bab95805dbfd107ae74eff7abfebaca26c3
created 2017-09-29 13:13 -0400
pushed 2017-11-02 16:33 +0000
Alex Gaynor Alex Gaynor - Bug 1404426 - Simplify the macOS content sandbox policy; r=haik
a327ade4032c0801a1c022b3d40fa44fbecc8290
created 2017-09-20 14:05 -0700
pushed 2017-11-02 16:33 +0000
Haik Aftandilian Haik Aftandilian - Bug 1401756 - [Mac] Remove unneeded mach-lookups from plugin sandbox rules. r=Alex_Gaynor
4a9a6475bf7d0763049fba2a244a64a4e5af5ebd
created 2017-09-26 11:32 -0400
pushed 2017-11-02 16:33 +0000
Alex Gaynor Alex Gaynor - Bug 1403210 - Remove unused access to AppleSNBFBUserClient iokit from content process; r=haik
6c71ebbcf8004d2ecde48f2019c667d5d918ee54
created 2017-10-12 18:29 -0700
pushed 2017-10-19 14:04 +0000
Haik Aftandilian Haik Aftandilian - Bug 1404919 - Whitelist Extensis Suitcase Fusion fontvaults and /System/Library/Fonts. r=Alex_Gaynor, a=sledru
895ccb3cf6595306459f7a3c022455df353b6aef
created 2017-10-05 16:06 -0700
pushed 2017-10-12 18:26 +0000
Haik Aftandilian Haik Aftandilian - Bug 1393805 - Part 2: Add Mac whitelisted directory for system extensions development. r=Alex_Gaynor, a=ritu
5736876371483fbf03d4cad81294bc05749a072d
created 2017-08-28 19:06 -0700
pushed 2017-09-15 00:19 +0000
Haik Aftandilian Haik Aftandilian - Bug 1392988 - Firefox 55.02 on macOS High Sierra cannot play AES encrypted video. r=Alex_Gaynor
47a2bf7ad9180afec62fb531f84a9cdd35823e58
created 2017-08-18 16:12 -0700
pushed 2017-09-15 00:19 +0000
Haik Aftandilian Haik Aftandilian - Bug 1382260 - Patch 2 - [Mac] Allow reading of font files from the content sandbox. r=Alex_Gaynor
3be9ce238520832115caef78b7698eb48264feb3
created 2017-08-08 15:57 -0700
pushed 2017-09-15 00:19 +0000
Haik Aftandilian Haik Aftandilian - Bug 1388580 - [Mac] Remove miscellaneous iokit open permissions r=Alex_Gaynor
5c6868214a60a66a9e54abef547007eace5c7436
created 2017-08-09 11:29 -0400
pushed 2017-09-15 00:19 +0000
Alex Gaynor Alex Gaynor - Bug 1389535 - remove access to com.apple.coreservices.launchservicesd from content processes; r=haik
b8bfa513549810c1af7bfeb9058ae3b7da7b2768
created 2017-08-08 13:51 -0400
pushed 2017-09-15 00:19 +0000
Alex Gaynor Alex Gaynor - Bug 1388454 - remove access to the com.apple.pasteboard.1 mach service from content processes; r=haik
adb084e7646dc1d44f280161ded5c0cba7e87d95
created 2017-08-08 10:15 -0400
pushed 2017-09-15 00:19 +0000
Alex Gaynor Alex Gaynor - Bug 1388360 - remove access to the com.apple.iconservices mach service from content processes; r=haik
54812f8a06944fa2ce7195e0aa7a011441efedfa
created 2017-08-07 10:09 -0400
pushed 2017-09-15 00:19 +0000
Alex Gaynor Alex Gaynor - Bug 1386363 - remove access to the com.apple.SystemConfiguration.configd mach service from content processes; r=haik
6f1193b844cd10cd26dce4a73c94883fa6916349
created 2017-08-07 14:44 -0700
pushed 2017-09-15 00:19 +0000
Haik Aftandilian Haik Aftandilian - Bug 1388172 - [Mac] Remove access to "com.apple.window_proxies" from the content sandbox. r=Alex_Gaynor
dee759b7d98a6bdc7249b8400692cd3ef6e425e1
created 2017-08-07 10:11 -0400
pushed 2017-09-15 00:19 +0000
Alex Gaynor Alex Gaynor - Bug 1387570 - remove access to the com.apple.cache_delete mach service from content processes; r=haik
less more (0) -60 tip