[webkit-changes] [259052] trunk

[pvollan]

Title: [259052] trunk

Revision

259052

Author

pvol...@apple.com

Date

2020-03-26 10:47:08 -0700 (Thu, 26 Mar 2020)

Log Message

[iOS] Deny mach lookup access to frontboard services in the WebContent process
https://bugs.webkit.org/show_bug.cgi?id=209604

Reviewed by Darin Adler.

Source/WebKit:

Deny mach lookup access to "com.apple.frontboard.systemappservices" in the WebContent process on iOS.

Test: fast/sandbox/ios/sandbox-mach-lookup.html

* Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:

LayoutTests:

* fast/sandbox/ios/sandbox-mach-lookup-expected.txt:
* fast/sandbox/ios/sandbox-mach-lookup.html:

Modified Paths

• trunk/LayoutTests/ChangeLog
• trunk/LayoutTests/fast/sandbox/ios/sandbox-mach-lookup-expected.txt
• trunk/LayoutTests/fast/sandbox/ios/sandbox-mach-lookup.html
• trunk/Source/WebKit/ChangeLog
• trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb

Diff

Modified: trunk/LayoutTests/ChangeLog (259051 => 259052)

--- trunk/LayoutTests/ChangeLog	2020-03-26 17:44:44 UTC (rev 259051)
+++ trunk/LayoutTests/ChangeLog	2020-03-26 17:47:08 UTC (rev 259052)
@@ -1,3 +1,13 @@
+2020-03-26  Per Arne Vollan  <pvol...@apple.com>
+
+        [iOS] Deny mach lookup access to frontboard services in the WebContent process
+        https://bugs.webkit.org/show_bug.cgi?id=209604
+
+        Reviewed by Darin Adler.
+
+        * fast/sandbox/ios/sandbox-mach-lookup-expected.txt:
+        * fast/sandbox/ios/sandbox-mach-lookup.html:
+
 2020-03-26  Antti Koivisto  <an...@apple.com>
 
         REGRESSION (r254669): Expand media button doesn't work on first try on photos on reddit.com

Modified: trunk/LayoutTests/fast/sandbox/ios/sandbox-mach-lookup-expected.txt (259051 => 259052)

--- trunk/LayoutTests/fast/sandbox/ios/sandbox-mach-lookup-expected.txt	2020-03-26 17:44:44 UTC (rev 259051)
+++ trunk/LayoutTests/fast/sandbox/ios/sandbox-mach-lookup-expected.txt	2020-03-26 17:47:08 UTC (rev 259052)
@@ -26,3 +26,4 @@
 PASS internals.hasSandboxMachLookupAccessToGlobalName("com.apple.WebKit.WebContent", "com.apple.mobileassetd.v2") is false
 PASS internals.hasSandboxMachLookupAccessToGlobalName("com.apple.WebKit.WebContent", "com.apple.iconservices") is false
 PASS internals.hasSandboxMachLookupAccessToGlobalName("com.apple.WebKit.WebContent", "com.apple.lsd.mapdb") is false
+PASS internals.hasSandboxMachLookupAccessToGlobalName("com.apple.WebKit.WebContent", "com.apple.frontboard.systemappservices") is false

Modified: trunk/LayoutTests/fast/sandbox/ios/sandbox-mach-lookup.html (259051 => 259052)

--- trunk/LayoutTests/fast/sandbox/ios/sandbox-mach-lookup.html	2020-03-26 17:44:44 UTC (rev 259051)
+++ trunk/LayoutTests/fast/sandbox/ios/sandbox-mach-lookup.html	2020-03-26 17:47:08 UTC (rev 259052)
@@ -29,6 +29,7 @@
     shouldBeFalse("internals.hasSandboxMachLookupAccessToGlobalName(\"com.apple.WebKit.WebContent\", \"com.apple.mobileassetd.v2\")");
     shouldBeFalse("internals.hasSandboxMachLookupAccessToGlobalName(\"com.apple.WebKit.WebContent\", \"com.apple.iconservices\")");
     shouldBeFalse("internals.hasSandboxMachLookupAccessToGlobalName(\"com.apple.WebKit.WebContent\", \"com.apple.lsd.mapdb\")");
+    shouldBeFalse("internals.hasSandboxMachLookupAccessToGlobalName(\"com.apple.WebKit.WebContent\", \"com.apple.frontboard.systemappservices\")");
 }
 </script>
 </head>

Modified: trunk/Source/WebKit/ChangeLog (259051 => 259052)

--- trunk/Source/WebKit/ChangeLog	2020-03-26 17:44:44 UTC (rev 259051)
+++ trunk/Source/WebKit/ChangeLog	2020-03-26 17:47:08 UTC (rev 259052)
@@ -1,5 +1,18 @@
 2020-03-26  Per Arne Vollan  <pvol...@apple.com>
 
+        [iOS] Deny mach lookup access to frontboard services in the WebContent process
+        https://bugs.webkit.org/show_bug.cgi?id=209604
+
+        Reviewed by Darin Adler.
+
+        Deny mach lookup access to "com.apple.frontboard.systemappservices" in the WebContent process on iOS.
+
+        Test: fast/sandbox/ios/sandbox-mach-lookup.html
+
+        * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb:
+
+2020-03-26  Per Arne Vollan  <pvol...@apple.com>
+
         [iOS] Adopt ScreenProperties class.
         https://bugs.webkit.org/show_bug.cgi?id=191767
 

Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb (259051 => 259052)

--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb	2020-03-26 17:44:44 UTC (rev 259051)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb	2020-03-26 17:47:08 UTC (rev 259052)
@@ -351,7 +351,7 @@
         "com.apple.mt"
         "com.apple.preferences.sounds")
 
-    (allow mach-lookup (with telemetry-backtrace)
+    (deny mach-lookup (with telemetry-backtrace)
         (global-name "com.apple.frontboard.systemappservices")                 ; -[UIViewServiceInterface _createProcessAssertion] -> SBSProcessIDForDisplayIdentifier()
     )
 

_______________________________________________
webkit-changes mailing list
webkit-changes@lists.webkit.org
https://lists.webkit.org/mailman/listinfo/webkit-changes