[webkit-changes] [287146] trunk/Source/WebKit

[pvollan]

Title: [287146] trunk/Source/WebKit

Revision

287146

Author

pvol...@apple.com

Date

2021-12-16 10:57:43 -0800 (Thu, 16 Dec 2021)

Log Message

[watchOS] Adjust sandbox message filter
https://bugs.webkit.org/show_bug.cgi?id=234385
<rdar://86550488>

Reviewed by Brent Fulgham.

Add required items to sandbox message filter in the WebContent process on watchOS.

* Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in:

Modified Paths

• trunk/Source/WebKit/ChangeLog
• trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in

Diff

Modified: trunk/Source/WebKit/ChangeLog (287145 => 287146)

--- trunk/Source/WebKit/ChangeLog	2021-12-16 18:35:23 UTC (rev 287145)
+++ trunk/Source/WebKit/ChangeLog	2021-12-16 18:57:43 UTC (rev 287146)
@@ -1,3 +1,15 @@
+2021-12-16  Per Arne Vollan  <pvol...@apple.com>
+
+        [watchOS] Adjust sandbox message filter
+        https://bugs.webkit.org/show_bug.cgi?id=234385
+        <rdar://86550488>
+
+        Reviewed by Brent Fulgham.
+
+        Add required items to sandbox message filter in the WebContent process on watchOS.
+
+        * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in:
+
 2021-12-16  Alex Christensen  <achristen...@webkit.org>
 
         Unreviewed, reverting r287056.

Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in (287145 => 287146)

--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in	2021-12-16 18:35:23 UTC (rev 287145)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in	2021-12-16 18:57:43 UTC (rev 287146)
@@ -1548,6 +1548,14 @@
 #endif
 )
 
+(define (kernel-mig-routine-in-use-watchos)
+    (kernel-mig-routine
+        io_connect_set_notification_port
+        mach_make_memory_entry
+        mach_make_memory_entry_64
+        vm_copy
+        vm_remap_external))
+
 (define (kernel-mig-routine-only-in-use-during-launch)
     (kernel-mig-routine
         host_get_clock_service
@@ -1561,11 +1569,6 @@
 (define (kernel-mig-routine-in-use)
     (kernel-mig-routine
         (when (defined? '_mach_make_memory_entry) _mach_make_memory_entry)
-#if PLATFORM(WATCHOS)
-        (when (defined? 'mach_make_memory_entry) mach_make_memory_entry)
-        (when (defined? 'mach_make_memory_entry_64) mach_make_memory_entry_64)
-        (when (defined? 'vm_copy) vm_copy)
-#endif
         host_get_io_master
         io_connect_async_method
         io_connect_method
@@ -1626,6 +1629,11 @@
                 (kernel-mig-routine-only-in-use-during-launch)
                 (kernel-mig-routine-in-use))
 
+#if PLATFORM(WATCHOS)
+            (allow mach-message-send
+                (kernel-mig-routine-in-use-watchos))
+#endif
+
 #if HAVE(SANDBOX_STATE_FLAGS)
 ;; FIXME: enable this when rdar://85931614 is fixed
 ;;            (with-filter (require-not (state-flag "WebContentProcessLaunched"))

_______________________________________________
webkit-changes mailing list
webkit-changes@lists.webkit.org
https://lists.webkit.org/mailman/listinfo/webkit-changes