Title: [268833] branches/safari-610-branch/Source/WebKit
- Revision
- 268833
- Author
- [email protected]
- Date
- 2020-10-21 15:15:55 -0700 (Wed, 21 Oct 2020)
Log Message
Cherry-pick r268507. rdar://problem/70541950
[iOS] Allow additional sysctl reads needed by image decoding
https://bugs.webkit.org/show_bug.cgi?id=217733
<rdar://problem/68649171>
Reviewed by Per Arne Vollan.
Telemetry on iOS 14 shows that we are hitting some sandbox violations during image decoding. We should
grant access to hw.byteorder, hw.cachelinesize_compat, and hw.vectorunit. We should silence warnings
about hw.cpufrequency_compat since it is not needed in web-facing use cases.
* Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:
git-svn-id: https://svn.webkit.org/repository/webkit/trunk@268507 268f45cc-cd09-0410-ab3c-d52691b4dbfc
Modified Paths
Diff
Modified: branches/safari-610-branch/Source/WebKit/ChangeLog (268832 => 268833)
--- branches/safari-610-branch/Source/WebKit/ChangeLog 2020-10-21 22:15:52 UTC (rev 268832)
+++ branches/safari-610-branch/Source/WebKit/ChangeLog 2020-10-21 22:15:55 UTC (rev 268833)
@@ -1,3 +1,36 @@
+2020-10-21 Russell Epstein <[email protected]>
+
+ Cherry-pick r268507. rdar://problem/70541950
+
+ [iOS] Allow additional sysctl reads needed by image decoding
+ https://bugs.webkit.org/show_bug.cgi?id=217733
+ <rdar://problem/68649171>
+
+ Reviewed by Per Arne Vollan.
+
+ Telemetry on iOS 14 shows that we are hitting some sandbox violations during image decoding. We should
+ grant access to hw.byteorder, hw.cachelinesize_compat, and hw.vectorunit. We should silence warnings
+ about hw.cpufrequency_compat since it is not needed in web-facing use cases.
+
+ * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:
+
+
+ git-svn-id: https://svn.webkit.org/repository/webkit/trunk@268507 268f45cc-cd09-0410-ab3c-d52691b4dbfc
+
+ 2020-10-14 Brent Fulgham <[email protected]>
+
+ [iOS] Allow additional sysctl reads needed by image decoding
+ https://bugs.webkit.org/show_bug.cgi?id=217733
+ <rdar://problem/68649171>
+
+ Reviewed by Per Arne Vollan.
+
+ Telemetry on iOS 14 shows that we are hitting some sandbox violations during image decoding. We should
+ grant access to hw.byteorder, hw.cachelinesize_compat, and hw.vectorunit. We should silence warnings
+ about hw.cpufrequency_compat since it is not needed in web-facing use cases.
+
+ * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:
+
2020-10-15 Russell Epstein <[email protected]>
Cherry-pick r268377. rdar://problem/70321875
Modified: branches/safari-610-branch/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb (268832 => 268833)
--- branches/safari-610-branch/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb 2020-10-21 22:15:52 UTC (rev 268832)
+++ branches/safari-610-branch/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb 2020-10-21 22:15:55 UTC (rev 268833)
@@ -612,7 +612,9 @@
(require-entitlement "com.apple.private.kernel.override-cpumon"))
(deny sysctl-read (with no-report)
- (sysctl-name "sysctl.proc_native"))
+ (sysctl-name
+ "hw.cpufrequency_compat"
+ "sysctl.proc_native"))
(with-filter (system-attribute apple-internal)
(allow sysctl-read sysctl-write
@@ -810,7 +812,9 @@
(sysctl-name
"hw.activecpu" ;; Needed by JSC engine.
"hw.availcpu"
+ "hw.byteorder"
"hw.cachelinesize"
+ "hw.cachelinesize_compat"
"hw.cpufamily" ;; <rdar://problem/58416475>
"hw.cputype"
"hw.l2cachesize"
@@ -824,6 +828,7 @@
"hw.physicalcpu"
"hw.physicalcpu_max"
"hw.product"
+ "hw.vectorunit"
"kern.bootargs"
"kern.hostname"
"kern.maxfilesperproc" ;; <rdar://problem/65900517>
_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes
