Title: [284119] trunk/Source/WebKit
- Revision
- 284119
- Author
- [email protected]
- Date
- 2021-10-13 12:05:37 -0700 (Wed, 13 Oct 2021)
Log Message
Restrict "darwin-notification-post" to a minimal set in the WP sandbox
https://bugs.webkit.org/show_bug.cgi?id=231594
<rdar://66586792>
Reviewed by Brent Fulgham.
* Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in:
* WebProcess/com.apple.WebProcess.sb.in:
Modified Paths
Diff
Modified: trunk/Source/WebKit/ChangeLog (284118 => 284119)
--- trunk/Source/WebKit/ChangeLog 2021-10-13 18:54:30 UTC (rev 284118)
+++ trunk/Source/WebKit/ChangeLog 2021-10-13 19:05:37 UTC (rev 284119)
@@ -1,3 +1,14 @@
+2021-10-13 Per Arne <[email protected]>
+
+ Restrict "darwin-notification-post" to a minimal set in the WP sandbox
+ https://bugs.webkit.org/show_bug.cgi?id=231594
+ <rdar://66586792>
+
+ Reviewed by Brent Fulgham.
+
+ * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in:
+ * WebProcess/com.apple.WebProcess.sb.in:
+
2021-10-13 Kimmo Kinnunen <[email protected]>
WebGL video texture upload is very slow due to excessive transfer of the video pixel buffer
Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in (284118 => 284119)
--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in 2021-10-13 18:54:30 UTC (rev 284118)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in 2021-10-13 19:05:37 UTC (rev 284119)
@@ -1590,6 +1590,22 @@
)
)
-(when (defined? 'darwin-notification-post)
- (allow darwin-notification-post (with telemetry))
-)
+(deny darwin-notification-post (with telemetry))
+(allow darwin-notification-post
+ (notification-name
+ "_AXNotification_AXSClassicInvertColorsPreference"
+ "com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI-com.apple.uikit.viewService.connectionRequest"
+ "com.apple.accessibility.AirPodsSpatialAudioLockToDeviceChanged"
+ "com.apple.accessibility.QuickSpeakEnabled"
+ "com.apple.accessibility.application.status"
+ "com.apple.accessibility.automation.enabled.status"
+ "com.apple.accessibility.darken.system.colors"
+ "com.apple.accessibility.enhance.background.contrast.status"
+ "com.apple.accessibility.monoaudio.status"
+ "com.apple.accessibility.reduce.motion.status"
+ "com.apple.accessibility.status"
+ "com.apple.accessibility.text.legibility.status"
+ "com.apple.accessibility.voiceovertouch.status"
+ "com.apple.accessibility.wob.status"
+ "com.apple.automation.stringlookupinfoenabled"
+ "com.apple.webinspectord.availability_check"))
Modified: trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in (284118 => 284119)
--- trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in 2021-10-13 18:54:30 UTC (rev 284118)
+++ trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in 2021-10-13 19:05:37 UTC (rev 284119)
@@ -2321,9 +2321,11 @@
)
#if __MAC_OS_X_VERSION_MIN_REQUIRED > 110000
-(when (defined? 'darwin-notification-post)
- (allow darwin-notification-post (with telemetry))
-)
+(deny darwin-notification-post (with telemetry))
+(allow darwin-notification-post
+ (notification-name
+ "com.apple.accessibility.AirPodsSpatialAudioLockToDeviceChanged"
+ "com.apple.webinspectord.availability_check"))
#endif
#if __MAC_OS_X_VERSION_MIN_REQUIRED > 110000
_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes
