Bug 228944

Summary: [Monterey] WebContent process immediately crash when GPU Process is disabled
Product: WebKit Reporter: Jean-Yves Avenard [:jya] <jean-yves.avenard>
Component: New BugsAssignee: Jean-Yves Avenard [:jya] <jean-yves.avenard>
Status: RESOLVED FIXED    
Severity: Normal CC: bfulgham, pvollan, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   
Attachments:
Description Flags
Patch
none
Patch
none
Patch none

Jean-Yves Avenard [:jya]
Reported 2021-08-09 22:19:13 PDT
[Montarey] WebContent process immediately crash when GPU Process is disabled
Attachments
Patch (1.67 KB, patch)
2021-08-09 22:25 PDT, Jean-Yves Avenard [:jya] 		no flags
DetailsFormatted DiffDiff
Patch (1.46 KB, patch)
2021-08-10 18:47 PDT, Jean-Yves Avenard [:jya] 		no flags
DetailsFormatted DiffDiff
Patch (1.44 KB, patch)
2021-08-11 19:27 PDT, Jean-Yves Avenard [:jya] 		no flags
DetailsFormatted DiffDiff
Show Obsolete (2) View All Add attachment proposed patch, testcase, etc.
Jean-Yves Avenard [:jya]
Comment 1 2021-08-09 22:20:38 PDT
rdar://81727094
Jean-Yves Avenard [:jya]
Comment 2 2021-08-09 22:25:23 PDT
Created attachment 435243 [details] Patch
Brent Fulgham
Comment 3 2021-08-10 09:39:12 PDT
Comment on attachment 435243 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=435243&action=review > Source/WebKit/WebProcess/com.apple.WebProcess.sb.in:1453 > + (require-not (extension "com.apple.webkit.extension.mach")) This says that if we did not extend access to SYS_getpriority dynamically, allow the syscall. Since we don't currently extend any syscalls dynamically I think this will always be true. Consequently, I would just add this to the existing "(when (defined? 'syscall-unix)" case inside a version check like we do for SYS_setattrlist. Please also add the radar and a comment that we should remove it once the GPU Process is permanently enabled.
Jean-Yves Avenard [:jya]
Comment 4 2021-08-10 18:42:23 PDT
Comment on attachment 435243 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=435243&action=review > Source/WebKit/WebProcess/com.apple.WebProcess.sb.in:1453 > + (require-not (extension "com.apple.webkit.extension.mach")) the way that test appears to be used thorough the file is to check if the GPU Process is enabled. require-all tells me that extension "com.apple.webkit.extension.mach" needs to be false for SYS_getpriority to be allowed. I admit I'm definitely not a sandbox expert Also, I can't definitely say that this is only required for MacOS >= 12, it's just where I noticed the problem and that I can definitely test with. it may be required with other OS once AudioToolbox framework gets updated.
Jean-Yves Avenard [:jya]
Comment 5 2021-08-10 18:47:18 PDT
Created attachment 435316 [details] Patch Apply comment
Jean-Yves Avenard [:jya]
Comment 6 2021-08-11 19:27:49 PDT
Created attachment 435391 [details] Patch update Changelog
Brent Fulgham
Comment 7 2021-08-11 19:38:16 PDT
Comment on attachment 435391 [details] Patch R=me
Jean-Yves Avenard [:jya]
Comment 8 2021-08-11 19:52:58 PDT
thank you
EWS
Comment 9 2021-08-11 20:48:36 PDT
Committed r280955 (240461@main): <https://commits.webkit.org/240461@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 435391 [details].
Note You need to log in before you can comment on or make changes to this bug.