Skip to site navigation (Press enter)

[webkit-changes] [261634] trunk/Source/WebKit

pvollan Wed, 13 May 2020 12:17:42 -0700

Title: [261634] trunk/Source/WebKit

Revision: 261634
Author: pvol...@apple.com
Date: 2020-05-13 12:16:05 -0700 (Wed, 13 May 2020)

Log Message

[iOS] Update message filtering rules in the WebContent process' sandbox
https://bugs.webkit.org/show_bug.cgi?id=211188


Reviewed by Brent Fulgham.

Based on telemetry and local testing, update the message filtering rules in the WebContent process' sandbox on iOS.
Messages that have not been observed being in use, should be denied.

No new tests, covered by existing tests.

* Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:

Modified Paths

trunk/Source/WebKit/ChangeLog
trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb

Diff

Modified: trunk/Source/WebKit/ChangeLog (261633 => 261634)


--- trunk/Source/WebKit/ChangeLog	2020-05-13 19:14:17 UTC (rev 261633)
+++ trunk/Source/WebKit/ChangeLog	2020-05-13 19:16:05 UTC (rev 261634)
@@ -1,5 +1,19 @@
 2020-05-13  Per Arne Vollan  <pvol...@apple.com>
 
+        [iOS] Update message filtering rules in the WebContent process' sandbox
+        https://bugs.webkit.org/show_bug.cgi?id=211188
+
+        Reviewed by Brent Fulgham.
+
+        Based on telemetry and local testing, update the message filtering rules in the WebContent process' sandbox on iOS.
+        Messages that have not been observed being in use, should be denied.
+
+        No new tests, covered by existing tests.
+
+        * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:
+
+2020-05-13  Per Arne Vollan  <pvol...@apple.com>
+
         [iOS] In CFPrefs direct mode, the WebContent sandbox needs to allow access to plist files
         https://bugs.webkit.org/show_bug.cgi?id=211782

Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb (261633 => 261634)


--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb	2020-05-13 19:14:17 UTC (rev 261633)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb	2020-05-13 19:16:05 UTC (rev 261634)
@@ -1274,6 +1274,7 @@
                 io_connect_set_notification_port_64
                 io_iterator_next
                 io_registry_entry_from_path
+                io_registry_entry_get_parent_iterator
                 io_registry_entry_get_property_bin_buf
                 io_registry_entry_get_property_bytes
                 io_registry_entry_get_registry_entry_id
@@ -1298,6 +1299,7 @@
                 task_info_from_user
                 task_restartable_ranges_register
                 task_restartable_ranges_synchronize
+                task_set_exc_guard_behavior
                 task_set_special_port
                 thread_get_state_to_user
                 thread_info

_______________________________________________
webkit-changes mailing list
webkit-changes@lists.webkit.org
https://lists.webkit.org/mailman/listinfo/webkit-changes