Bug 1386161 - [Mac] Remove IOAudioControl Rules. r?Alex_Gaynor
MozReview-Commit-ID: 3cLUCJDoWlh
--- a/security/sandbox/mac/SandboxPolicies.h
+++ b/security/sandbox/mac/SandboxPolicies.h
@@ -176,17 +176,16 @@ static const char contentSandboxRules[]
(home-regex (string-append "/Library/Preferences/" (regex-quote domain)))))
(allow ipc-posix-shm
(ipc-posix-name-regex "^/tmp/com.apple.csseed:")
(ipc-posix-name-regex "^CFPBS:")
(ipc-posix-name-regex "^AudioIO"))
(allow signal (target self))
- (allow iokit-set-properties (iokit-property "IOAudioControlValue"))
(allow mach-lookup
(global-name "com.apple.coreservices.launchservicesd")
(global-name "com.apple.pasteboard.1")
(global-name "com.apple.window_proxies")
(global-name "com.apple.windowserver.active")
(global-name "com.apple.audio.coreaudiod")
(global-name "com.apple.audio.audiohald")
@@ -203,17 +202,16 @@ static const char contentSandboxRules[]
(allow mach-lookup (global-name "com.apple.audio.AudioComponentRegistrar")))
; bug 1312273
(if (= macosMinorVersion 9)
(allow mach-lookup (global-name "com.apple.xpcd")))
(allow iokit-open
(iokit-user-client-class "IOHIDParamUserClient")
- (iokit-user-client-class "IOAudioControlUserClient")
(iokit-user-client-class "IOAudioEngineUserClient")
(iokit-user-client-class "IGAccelDevice")
(iokit-user-client-class "nvDevice")
(iokit-user-client-class "nvSharedUserClient")
(iokit-user-client-class "nvFermiGLContext")
(iokit-user-client-class "IGAccelGLContext")
(iokit-user-client-class "IGAccelSharedUserClient")
(iokit-user-client-class "IGAccelVideoContextMain")