[webkit-changes] [295644] trunk/Source/WebKit/Resources/SandboxProfiles/ios/ com.apple.WebKit.WebContent.sb.in

Fri, 17 Jun 2022 14:43:08 -0700

Title: [295644] trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in
Revision
295644
Author
pvol...@apple.com
Date
2022-06-17 14:42:20 -0700 (Fri, 17 Jun 2022)

Log Message

Remove some sandbox telemetry
https://bugs.webkit.org/show_bug.cgi?id=241725

Reviewed by Geoffrey Garen.

Remove some sandbox telemetry in the WebContent process on iOS to make room for other telemetry.

* Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in:

Canonical link: https://commits.webkit.org/251649@main

Modified Paths

Diff

Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in (295643 => 295644)


--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in	2022-06-17 20:33:59 UTC (rev 295643)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in	2022-06-17 21:42:20 UTC (rev 295644)
@@ -353,7 +353,7 @@
         "com.apple.mt"
         "com.apple.preferences.sounds")
 
-    (deny mach-lookup (with telemetry)
+    (deny mach-lookup
         (global-name "com.apple.frontboard.systemappservices")                 ; -[UIViewServiceInterface _createProcessAssertion] -> SBSProcessIDForDisplayIdentifier()
     )
 
@@ -518,7 +518,7 @@
     (global-name "com.apple.logd.events")
 )
 
-(deny mach-lookup (with telemetry)
+(deny mach-lookup (with no-report)
     (global-name "com.apple.distributed_notifications@1v3"))
 
 (deny mach-lookup (with no-report)
@@ -1172,9 +1172,12 @@
         SYS_fgetxattr
         SYS_fstatat64
         SYS_fsync
+        SYS_getattrlistbulk ;; xpc_realpath and directory enumeration
         SYS_getgid
         SYS_getxattr
+        SYS_iopolicysys
         SYS_mkdirat
+        SYS_open_dprotected_np
         SYS_openat_nocancel
         SYS_pread_nocancel
         SYS_rmdir
@@ -1195,13 +1198,10 @@
         SYS___pthread_kill
         SYS___pthread_sigmask
         SYS___semwait_signal
-        SYS_getattrlistbulk ;; xpc_realpath and directory enumeration
-        SYS_iopolicysys
 #if !ENABLE(CONTENT_FILTERING_IN_NETWORKING_PROCESS)
         SYS_necp_client_action
         SYS_necp_open
 #endif
-        SYS_open_dprotected_np
         SYS_psynch_rw_wrlock
         SYS_socket
         SYS_umask

_______________________________________________
webkit-changes mailing list
webkit-changes@lists.webkit.org
https://lists.webkit.org/mailman/listinfo/webkit-changes

Reply via email to