[webkit-changes] [286460] trunk/Source/WebKit

Thu, 02 Dec 2021 15:49:01 -0800

Title: [286460] trunk/Source/WebKit
Revision
286460
Author
[email protected]
Date
2021-12-02 15:48:09 -0800 (Thu, 02 Dec 2021)

Log Message

[iOS] Add required system call to WebKit sandboxes
https://bugs.webkit.org/show_bug.cgi?id=233730
<rdar://85266065>

Reviewed by Brent Fulgham.

* GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in:
* NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in:
* Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb:
* Resources/SandboxProfiles/ios/com.apple.WebKit.Networking.sb:
* Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in:
* WebProcess/com.apple.WebProcess.sb.in:

Modified Paths

Diff

Modified: trunk/Source/WebKit/ChangeLog (286459 => 286460)


--- trunk/Source/WebKit/ChangeLog	2021-12-02 23:37:18 UTC (rev 286459)
+++ trunk/Source/WebKit/ChangeLog	2021-12-02 23:48:09 UTC (rev 286460)
@@ -1,3 +1,18 @@
+2021-12-02  Per Arne Vollan  <[email protected]>
+
+        [iOS] Add required system call to WebKit sandboxes
+        https://bugs.webkit.org/show_bug.cgi?id=233730
+        <rdar://85266065>
+
+        Reviewed by Brent Fulgham.
+
+        * GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in:
+        * NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in:
+        * Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb:
+        * Resources/SandboxProfiles/ios/com.apple.WebKit.Networking.sb:
+        * Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in:
+        * WebProcess/com.apple.WebProcess.sb.in:
+
 2021-12-02  Myles C. Maxfield  <[email protected]>
 
         [WebGPU] Hook up navigator.gpu.requestAdapter()

Modified: trunk/Source/WebKit/GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in (286459 => 286460)


--- trunk/Source/WebKit/GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in	2021-12-02 23:37:18 UTC (rev 286459)
+++ trunk/Source/WebKit/GPUProcess/mac/com.apple.WebKit.GPUProcess.sb.in	2021-12-02 23:48:09 UTC (rev 286460)
@@ -1002,3 +1002,6 @@
         SYS_ulock_wake
         SYS_work_interval_ctl
         SYS_workq_kernreturn)))
+
+(when (defined? 'SYS__map_with_linking_np)
+    (allow syscall-unix SYS__map_with_linking_np))

Modified: trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in (286459 => 286460)


--- trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in	2021-12-02 23:37:18 UTC (rev 286459)
+++ trunk/Source/WebKit/NetworkProcess/mac/com.apple.WebKit.NetworkProcess.sb.in	2021-12-02 23:48:09 UTC (rev 286460)
@@ -570,6 +570,9 @@
         SYS_ulock_wake
         SYS_workq_kernreturn)))
 
+(when (defined? 'SYS__map_with_linking_np)
+    (allow syscall-unix SYS__map_with_linking_np))
+
 #if HAVE(SANDBOX_MESSAGE_FILTERING)
 (when (and (equal? (param "ENABLE_SANDBOX_MESSAGE_FILTER") "YES") (defined? 'mach-kernel-endpoint))
     (allow mach-kernel-endpoint

Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb (286459 => 286460)


--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb	2021-12-02 23:37:18 UTC (rev 286459)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.GPU.sb	2021-12-02 23:48:09 UTC (rev 286460)
@@ -807,6 +807,9 @@
         SYS_write_nocancel
         SYS_writev)))
 
+(when (defined? 'SYS__map_with_linking_np)
+    (allow syscall-unix SYS__map_with_linking_np))
+
 (when (defined? 'syscall-mach)
     (allow syscall-mach (with telemetry))
     (allow syscall-mach

Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.Networking.sb (286459 => 286460)


--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.Networking.sb	2021-12-02 23:37:18 UTC (rev 286459)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.Networking.sb	2021-12-02 23:48:09 UTC (rev 286460)
@@ -737,6 +737,9 @@
         SYS_write_nocancel
         SYS_writev)))
 
+(when (defined? 'SYS__map_with_linking_np)
+    (allow syscall-unix SYS__map_with_linking_np))
+
 (when (defined? 'syscall-mach)
     (allow syscall-mach (with report) (with telemetry))
     (allow syscall-mach

Modified: trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in (286459 => 286460)


--- trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in	2021-12-02 23:37:18 UTC (rev 286459)
+++ trunk/Source/WebKit/Resources/SandboxProfiles/ios/com.apple.WebKit.WebContent.sb.in	2021-12-02 23:48:09 UTC (rev 286460)
@@ -1368,6 +1368,9 @@
         (syscall-number SYS_writev))
 )
 
+(when (defined? 'SYS__map_with_linking_np)
+    (allow syscall-unix SYS__map_with_linking_np))
+
 (with-filter (system-attribute apple-internal)
     (when (defined? 'syscall-unix)
         (allow syscall-unix

Modified: trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in (286459 => 286460)


--- trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in	2021-12-02 23:37:18 UTC (rev 286459)
+++ trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in	2021-12-02 23:48:09 UTC (rev 286460)
@@ -2081,6 +2081,8 @@
     (if (defined? 'SYS_objc_bp_assist_cfg_np)
         (allow syscall-unix (syscall-number SYS_objc_bp_assist_cfg_np)))
 #endif
+    (when (defined? 'SYS__map_with_linking_np)
+        (allow syscall-unix SYS__map_with_linking_np))
 )
 
 #if USE(APPLE_INTERNAL_SDK)

_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes

Reply via email to