From f39cc5cc2507a6f22984661556703ecbcb3649da Mon Sep 17 00:00:00 2001
From: Haik Aftandilian <haftandilian@mozilla.com>
Date: Wed, 20 Sep 2017 14:05:27 -0700
Subject: [PATCH] Bug 1401756 - [Mac] Remove unneeded mach-lookups from plugin
 sandbox rules. r=Alex_Gaynor

MozReview-Commit-ID: JsgBzNJC4zF

--HG--
extra : rebase_source : deffeff5e6d39318c55bf3d487071139abaf3c92
---
 security/sandbox/mac/SandboxPolicies.h | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/security/sandbox/mac/SandboxPolicies.h b/security/sandbox/mac/SandboxPolicies.h
index 7c552deed56f..548eac83f8b7 100644
--- a/security/sandbox/mac/SandboxPolicies.h
+++ b/security/sandbox/mac/SandboxPolicies.h
@@ -23,12 +23,6 @@ static const char pluginSandboxRules[] = R"(
   (allow signal (target self))
   (allow sysctl-read)
   (allow iokit-open (iokit-user-client-class "IOHIDParamUserClient"))
-  (allow mach-lookup
-      (global-name "com.apple.cfprefsd.agent")
-      (global-name "com.apple.cfprefsd.daemon")
-      (global-name "com.apple.system.opendirectoryd.libinfo")
-      (global-name "com.apple.system.logger")
-      (global-name "com.apple.ls.boxd"))
   (allow file-read*
       (literal "/etc")
       (literal "/dev/random")