Closed Bug 1388172 Opened 3 years ago Closed 3 years ago

[Mac] Remove access to "com.apple.window_proxies" from the content sandbox

Categories

(Core :: Security: Process Sandboxing, enhancement, P1)

56 Branch
Unspecified
macOS
enhancement

Tracking

()

RESOLVED FIXED
mozilla57
Tracking Status
firefox57 --- fixed

People

(Reporter: haik, Assigned: haik)

References

Details

(Whiteboard: sb+)

Attachments

(1 file)

Investigate removing access to "com.apple.window_proxies" from the Mac content sandbox.

https://treeherder.mozilla.org/#/jobs?repo=try&revision=1bf9ce6010dfebc10b838e086bc7cf9fd55ca12d
Assignee: nobody → haftandilian
Priority: -- → P1
Summary: [Mac] Remove (global-name "com.apple.window_proxies") → [Mac] Remove access to "com.apple.window_proxies" from the content sandbox
Whiteboard: sb+
Target Milestone: --- → mozilla57
From IRC so I don't forget:

15:58:15 <Alex_Gaynor> It looks like the process that provides it is "talagent", and that TAL is Transparent App Lifecycle. I'm googling what that is now :-)
15:59:48 <Alex_Gaynor> It seems to be related to automatic suspension of unused applications. Doesn't sound like something I'd expect content to need
There's a bit of information in the man page: talagent(8). And running "/System/Library/CoreServices/talagent -help" reveals some more. This may be used for AppNap and allowing apps to automatically exit and save their state under memory pressure. The plist is /System/Library/LaunchAgents/com.apple.talagent.plist on my 10.12 system.
Comment on attachment 8895004 [details]
Bug 1388172 - [Mac] Remove access to "com.apple.window_proxies" from the content sandbox.

https://reviewboard.mozilla.org/r/166134/#review171358
Attachment #8895004 - Flags: review?(agaynor) → review+
Pushed by haftandilian@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/6f1193b844cd
[Mac] Remove access to "com.apple.window_proxies" from the content sandbox. r=Alex_Gaynor
https://hg.mozilla.org/mozilla-central/rev/6f1193b844cd
Status: NEW → RESOLVED
Closed: 3 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.