Title: [238769] trunk/Source/WebKit
- Revision
- 238769
- Author
- [email protected]
- Date
- 2018-11-30 19:09:40 -0800 (Fri, 30 Nov 2018)
Log Message
[macOS] Add more logging of sandbox call entries.
https://bugs.webkit.org/show_bug.cgi?id=192261
rdar://problem/45772445
Reviewed by Dean Jackson.
* WebProcess/com.apple.WebProcess.sb.in:
Modified Paths
Diff
Modified: trunk/Source/WebKit/ChangeLog (238768 => 238769)
--- trunk/Source/WebKit/ChangeLog 2018-12-01 02:57:01 UTC (rev 238768)
+++ trunk/Source/WebKit/ChangeLog 2018-12-01 03:09:40 UTC (rev 238769)
@@ -1,3 +1,13 @@
+2018-11-30 Per Arne Vollan <[email protected]>
+
+ [macOS] Add more logging of sandbox call entries.
+ https://bugs.webkit.org/show_bug.cgi?id=192261
+ rdar://problem/45772445
+
+ Reviewed by Dean Jackson.
+
+ * WebProcess/com.apple.WebProcess.sb.in:
+
2018-11-30 Tim Horton <[email protected]>
Editable images should always return some data, even if the canvas doesn't have a size yet
Modified: trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in (238768 => 238769)
--- trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in 2018-12-01 02:57:01 UTC (rev 238768)
+++ trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in 2018-12-01 03:09:40 UTC (rev 238769)
@@ -851,3 +851,138 @@
(iokit-user-client-class "IOUSBInterfaceUserClientV2"))
(allow device-camera))
#endif // PLATFORM(MAC)
+
+(when (defined? 'syscall-unix)
+ (allow syscall-unix (with report))
+ (allow syscall-unix
+ (syscall-number SYS_exit)
+ (syscall-number SYS_read)
+ (syscall-number SYS_write)
+ (syscall-number SYS_open)
+ (syscall-number SYS_close)
+ (syscall-number SYS_unlink)
+ (syscall-number SYS_chmod)
+ (syscall-number SYS_getuid)
+ (syscall-number SYS_geteuid)
+ (syscall-number SYS_recvfrom)
+ (syscall-number SYS_getpeername)
+ (syscall-number SYS_access)
+ (syscall-number SYS_dup)
+ (syscall-number SYS_pipe)
+ (syscall-number SYS_getegid)
+ (syscall-number SYS_getgid)
+ (syscall-number SYS_sigprocmask)
+ (syscall-number SYS_sigaltstack)
+ (syscall-number SYS_ioctl)
+ (syscall-number SYS_readlink)
+ (syscall-number SYS_umask)
+ (syscall-number SYS_msync)
+ (syscall-number SYS_munmap)
+ (syscall-number SYS_mprotect)
+ (syscall-number SYS_madvise)
+ (syscall-number SYS_fcntl)
+ (syscall-number SYS_select)
+ (syscall-number SYS_fsync)
+ (syscall-number SYS_setpriority)
+ (syscall-number SYS_socket)
+ (syscall-number SYS_connect)
+ (syscall-number SYS_setsockopt)
+ (syscall-number SYS_gettimeofday)
+ (syscall-number SYS_getrusage)
+ (syscall-number SYS_getsockopt)
+ (syscall-number SYS_writev)
+ (syscall-number SYS_fchmod)
+ (syscall-number SYS_rename)
+ (syscall-number SYS_flock)
+ (syscall-number SYS_sendto)
+ (syscall-number SYS_shutdown)
+ (syscall-number SYS_socketpair)
+ (syscall-number SYS_mkdir)
+ (syscall-number SYS_rmdir)
+ (syscall-number SYS_pread)
+ (syscall-number SYS_pwrite)
+ (syscall-number SYS_csops)
+ (syscall-number SYS_csops_audittoken)
+ (syscall-number SYS_kdebug_trace64)
+ (syscall-number SYS_kdebug_trace)
+ (syscall-number SYS_sigreturn)
+ (syscall-number SYS_pathconf)
+ (syscall-number SYS_getrlimit)
+ (syscall-number SYS_setrlimit)
+ (syscall-number SYS_mmap)
+ (syscall-number SYS_lseek)
+ (syscall-number SYS_ftruncate)
+ (syscall-number SYS_sysctl)
+ (syscall-number SYS_mlock)
+ (syscall-number SYS_munlock)
+ (syscall-number SYS_getattrlist)
+ (syscall-number SYS_getxattr)
+ (syscall-number SYS_fgetxattr)
+ (syscall-number SYS_listxattr)
+ (syscall-number SYS_shm_open)
+ (syscall-number SYS_sem_wait)
+ (syscall-number SYS_sem_post)
+ (syscall-number SYS_sysctlbyname)
+ (syscall-number SYS_psynch_mutexwait)
+ (syscall-number SYS_psynch_mutexdrop)
+ (syscall-number SYS_psynch_cvbroad)
+ (syscall-number SYS_psynch_cvsignal)
+ (syscall-number SYS_psynch_cvwait)
+ (syscall-number SYS_psynch_rw_wrlock)
+ (syscall-number SYS_psynch_rw_unlock)
+ (syscall-number SYS_psynch_cvclrprepost)
+ (syscall-number SYS_process_policy)
+ (syscall-number SYS_issetugid)
+ (syscall-number SYS___pthread_kill)
+ (syscall-number SYS___pthread_sigmask)
+ (syscall-number SYS___disable_threadsignal)
+ (syscall-number SYS___semwait_signal)
+ (syscall-number SYS_proc_info)
+ (syscall-number SYS_stat64)
+ (syscall-number SYS_fstat64)
+ (syscall-number SYS_lstat64)
+ (syscall-number SYS_getdirentries64)
+ (syscall-number SYS_statfs64)
+ (syscall-number SYS_fstatfs64)
+ (syscall-number SYS_getfsstat64)
+ (syscall-number SYS_getaudit_addr)
+ (syscall-number SYS_bsdthread_create)
+ (syscall-number SYS_bsdthread_terminate)
+ (syscall-number SYS_workq_kernreturn)
+ (syscall-number SYS_thread_selfid)
+ (syscall-number SYS_kevent_qos)
+ (syscall-number SYS_kevent_id)
+ (syscall-number SYS___mac_syscall)
+ (syscall-number SYS_read_nocancel)
+ (syscall-number SYS_write_nocancel)
+ (syscall-number SYS_open_nocancel)
+ (syscall-number SYS_close_nocancel)
+ (syscall-number SYS_sendmsg_nocancel)
+ (syscall-number SYS_recvfrom_nocancel)
+ (syscall-number SYS_fcntl_nocancel)
+ (syscall-number SYS_select_nocancel)
+ (syscall-number SYS_connect_nocancel)
+ (syscall-number SYS_sendto_nocancel)
+ (syscall-number SYS_fsgetpath)
+ (syscall-number SYS_fileport_makeport)
+ (syscall-number SYS_guarded_open_np)
+ (syscall-number SYS_guarded_close_np)
+ (syscall-number SYS_change_fdguard_np)
+ (syscall-number SYS_proc_rlimit_control)
+ (syscall-number SYS_connectx)
+ (syscall-number SYS_getattrlistbulk)
+ (syscall-number SYS_openat)
+ (syscall-number SYS_openat_nocancel)
+ (syscall-number SYS_fstatat64)
+ (syscall-number SYS_mkdirat)
+ (syscall-number SYS_bsdthread_ctl)
+ (syscall-number SYS_csrctl)
+ (syscall-number SYS_guarded_pwrite_np)
+ (syscall-number SYS_getentropy)
+ (syscall-number SYS_necp_open)
+ (syscall-number SYS_necp_client_action)
+ (syscall-number SYS_ulock_wait)
+ (syscall-number SYS_ulock_wake)
+ )
+)
+
_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes
