Skip to site navigation (Press enter)

[webkit-changes] [271960] trunk/Source/WebKit

pvollan Wed, 27 Jan 2021 10:04:44 -0800

Title: [271960] trunk/Source/WebKit

Revision: 271960
Author: [email protected]
Date: 2021-01-27 10:04:01 -0800 (Wed, 27 Jan 2021)

Log Message

[macOS] Enforce IOKit message filtering
https://bugs.webkit.org/show_bug.cgi?id=221038
<rdar://problem/71333134>


Reviewed by Brent Fulgham.

Update IOKit message filters based on telemetry, and deny messages not observed being used.

* WebProcess/com.apple.WebProcess.sb.in:

Modified Paths

trunk/Source/WebKit/ChangeLog
trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in

Diff

Modified: trunk/Source/WebKit/ChangeLog (271959 => 271960)


--- trunk/Source/WebKit/ChangeLog	2021-01-27 18:03:29 UTC (rev 271959)
+++ trunk/Source/WebKit/ChangeLog	2021-01-27 18:04:01 UTC (rev 271960)
@@ -1,5 +1,17 @@
 2021-01-27  Per Arne  <[email protected]>
 
+        [macOS] Enforce IOKit message filtering
+        https://bugs.webkit.org/show_bug.cgi?id=221038
+        <rdar://problem/71333134>
+
+        Reviewed by Brent Fulgham.
+
+        Update IOKit message filters based on telemetry, and deny messages not observed being used.
+
+        * WebProcess/com.apple.WebProcess.sb.in:
+
+2021-01-27  Per Arne  <[email protected]>
+
         [macOS] Remove fsctl-command in the WebContent process
         https://bugs.webkit.org/show_bug.cgi?id=221002
         <rdar://problem/70504451>

Modified: trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in (271959 => 271960)


--- trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in	2021-01-27 18:03:29 UTC (rev 271959)
+++ trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in	2021-01-27 18:04:01 UTC (rev 271960)
@@ -138,7 +138,7 @@
                     iokit-async-external-method
                     iokit-external-method
                 )
-                (allow (with telemetry)
+                (deny (with telemetry)
                     iokit-external-trap
                 )
             )
@@ -159,7 +159,7 @@
             )
             (with telemetry-backtrace)
             (apply-message-filter
-                (allow (with telemetry)
+                (deny (with telemetry)
                     iokit-async-external-method
                     iokit-external-trap
                     iokit-external-method
@@ -186,7 +186,7 @@
                     iokit-async-external-method
                     iokit-external-method
                 )
-                (allow (with telemetry)
+                (deny (with telemetry)
                     iokit-external-trap
                 )
             )
@@ -207,7 +207,7 @@
             )
             (with telemetry-backtrace)
             (apply-message-filter
-                (allow (with telemetry)
+                (deny (with telemetry)
                     iokit-async-external-method
                     iokit-external-trap
                     iokit-external-method
@@ -240,7 +240,7 @@
                 (allow
                     iokit-external-method
                 )
-                (allow (with telemetry)
+                (deny (with telemetry)
                     iokit-async-external-method
                     iokit-external-trap
                 )
@@ -267,7 +267,7 @@
                 (allow
                     iokit-external-method
                 )
-                (allow (with telemetry)
+                (deny (with telemetry)
                     iokit-async-external-method
                     iokit-external-trap
                 )
@@ -291,7 +291,7 @@
             )
             (with telemetry-backtrace)
             (apply-message-filter
-                (allow (with telemetry)
+                (deny (with telemetry)
                     iokit-async-external-method
                     iokit-external-trap
                     iokit-external-method
@@ -318,7 +318,7 @@
                     iokit-async-external-method
                     iokit-external-method
                 )
-                (allow (with telemetry)
+                (deny (with telemetry)
                     iokit-external-trap
                 )
             )
@@ -339,7 +339,7 @@
             )
             (with telemetry-backtrace)
             (apply-message-filter
-                (allow (with telemetry)
+                (deny (with telemetry)
                     iokit-async-external-method
                     iokit-external-trap
                     iokit-external-method
@@ -363,10 +363,12 @@
             )
             (with telemetry-backtrace)
             (apply-message-filter
-                (allow (with telemetry)
+                (allow
+                    iokit-external-method
+                )
+                (deny (with telemetry)
                     iokit-async-external-method
                     iokit-external-trap
-                    iokit-external-method
                 )
             )
         )
@@ -951,10 +953,12 @@
         )
         (with telemetry-backtrace)
         (apply-message-filter
-            (allow (with telemetry)
+            (allow
+                iokit-external-method
+            )
+            (deny (with telemetry)
                 iokit-async-external-method
                 iokit-external-trap
-                iokit-external-method
             )
         )
     )
@@ -975,10 +979,12 @@
         )
         (with telemetry-backtrace)
         (apply-message-filter
-            (allow (with telemetry)
+            (allow
+                iokit-external-method
+            )
+            (deny (with telemetry)
                 iokit-async-external-method
                 iokit-external-trap
-                iokit-external-method
             )
         )
     )
@@ -1000,10 +1006,12 @@
         )
         (with telemetry-backtrace)
         (apply-message-filter
-            (allow (with telemetry)
+            (allow
+                iokit-external-method
+            )
+            (deny (with telemetry)
                 iokit-async-external-method
                 iokit-external-trap
-                iokit-external-method
             )
         )
     )
@@ -1024,7 +1032,7 @@
         )
         (with telemetry-backtrace)
         (apply-message-filter
-            (allow (with telemetry)
+            (deny (with telemetry)
                 iokit-async-external-method
                 iokit-external-trap
                 iokit-external-method
@@ -1048,7 +1056,7 @@
         )
         (with telemetry-backtrace)
         (apply-message-filter
-            (allow (with telemetry)
+            (deny (with telemetry)
                 iokit-async-external-method
                 iokit-external-trap
                 iokit-external-method
@@ -1389,9 +1397,11 @@
             (with telemetry-backtrace)
             (apply-message-filter
                 (allow (with telemetry)
+                    iokit-external-method
+                )
+                (deny (with telemetry)
                     iokit-async-external-method
                     iokit-external-trap
-                    iokit-external-method
                 )
             )
         )
@@ -1407,9 +1417,11 @@
             (with telemetry-backtrace)
             (apply-message-filter
                 (allow (with telemetry)
+                    iokit-external-method
+                )
+                (deny (with telemetry)
                     iokit-async-external-method
                     iokit-external-trap
-                    iokit-external-method
                 )
             )
         )

_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes