Title: [292565] trunk/Source/WebKit
- Revision
- 292565
- Author
- pvol...@apple.com
- Date
- 2022-04-07 14:05:05 -0700 (Thu, 07 Apr 2022)
Log Message
[iOS][WP] Block kernel routines
https://bugs.webkit.org/show_bug.cgi?id=238898
Reviewed by Geoffrey Garen.
Block kernel routines only used during launch of the WebContent process on iOS. This is based on collected telemetry.
* Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in:
Modified Paths
Diff
Modified: trunk/Source/WebKit/ChangeLog (292564 => 292565)
--- trunk/Source/WebKit/ChangeLog 2022-04-07 21:03:10 UTC (rev 292564)
+++ trunk/Source/WebKit/ChangeLog 2022-04-07 21:05:05 UTC (rev 292565)
@@ -1,3 +1,14 @@
+2022-04-07 Per Arne Vollan <pvol...@apple.com>
+
+ [iOS][WP] Block kernel routines
+ https://bugs.webkit.org/show_bug.cgi?id=238898
+
+ Reviewed by Geoffrey Garen.
+
+ Block kernel routines only used during launch of the WebContent process on iOS. This is based on collected telemetry.
+
+ * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in:
+
2022-04-07 Simon Fraser <simon.fra...@apple.com>
Have ImageBuffer store the RenderingPurpose, and send it to the GPU process
Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in (292564 => 292565)
--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in 2022-04-07 21:03:10 UTC (rev 292564)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in 2022-04-07 21:05:05 UTC (rev 292565)
@@ -1645,8 +1645,7 @@
(allow mach-message-send
(kernel-mig-routine-only-in-use-during-launch)))
(with-filter (state-flag "WebContentProcessLaunched")
- (allow mach-message-send
- (with report)
+ (deny mach-message-send
(with telemetry)
(with message "kernel mig routine used after launch")
(kernel-mig-routine-only-in-use-during-launch)))
_______________________________________________
webkit-changes mailing list
webkit-changes@lists.webkit.org
https://lists.webkit.org/mailman/listinfo/webkit-changes
