Skip to site navigation (Press enter)

[webkit-changes] [285563] trunk/Source/WebKit

pvollan Tue, 09 Nov 2021 21:15:37 -0800

Title: [285563] trunk/Source/WebKit

Revision: 285563
Author: [email protected]
Date: 2021-11-09 21:14:47 -0800 (Tue, 09 Nov 2021)

Log Message

[iOS][GPUP] Remove shared memory access
https://bugs.webkit.org/show_bug.cgi?id=232823
<rdar://problem/85163103>


Reviewed by Brent Fulgham.

Based on telemetry, remove shared memory access in the GPU process' sandbox on iOS.

* Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb:

Modified Paths

trunk/Source/WebKit/ChangeLog
trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb

Diff

Modified: trunk/Source/WebKit/ChangeLog (285562 => 285563)


--- trunk/Source/WebKit/ChangeLog	2021-11-10 04:59:09 UTC (rev 285562)
+++ trunk/Source/WebKit/ChangeLog	2021-11-10 05:14:47 UTC (rev 285563)
@@ -1,3 +1,15 @@
+2021-11-09  Per Arne Vollan <[email protected]>
+
+        [iOS][GPUP] Remove shared memory access
+        https://bugs.webkit.org/show_bug.cgi?id=232823
+        <rdar://problem/85163103>
+
+        Reviewed by Brent Fulgham.
+
+        Based on telemetry, remove shared memory access in the GPU process' sandbox on iOS.
+
+        * Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb:
+
 2021-11-09  Per Arne  <[email protected]>
 
         [iOS][GPUP] Remove read access to preferences

Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb (285562 => 285563)


--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb	2021-11-10 04:59:09 UTC (rev 285562)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb	2021-11-10 05:14:47 UTC (rev 285563)
@@ -504,9 +504,6 @@
 (allow mach-lookup (with telemetry)
     (global-name "com.apple.tccd"))
 
-(allow ipc-posix-shm-read* (with telemetry)
-       (ipc-posix-name-prefix "apple.cfprefs."))
- 
 ;; <rdar://problem/12413942>
 (allow file-read* (with telemetry)
        (well-known-system-group-container-literal "/systemgroup.com.apple.mobilegestaltcache/Library/Caches/com.apple.MobileGestalt.plist"))
@@ -549,7 +546,7 @@
 
 (allow mach-lookup (with telemetry)
        (global-name "com.apple.system.notification_center"))
-(allow ipc-posix-shm-read* (with telemetry)
+(allow ipc-posix-shm-read*
        (ipc-posix-name "apple.shm.notification_center"))
 
 (managed-configuration-read-public)

_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes