Bug 238528

Summary: Add runtime flag for blocking IOKit in the WebContent process' sandbox
Product: WebKit Reporter: Per Arne Vollan <pvollan>
Component: WebKit Misc.Assignee: Per Arne Vollan <pvollan>
Status: RESOLVED FIXED    
Severity: Normal CC: gavin.p, ggaren, jonlee, mazander, simon.fraser, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   
Attachments:
Description Flags
Patch
none
Patch
none
Patch
none
Patch
none
Patch
none
Patch
simon.fraser: review+, ews-feeder: commit-queue-
Patch ews-feeder: commit-queue-

Per Arne Vollan
Reported 2022-03-29 16:14:26 PDT
Add runtime flag for blocking graphics related resources in the WebContent process' sandbox.
Attachments
Patch (6.36 KB, patch)
2022-03-29 16:17 PDT, Per Arne Vollan 		no flags
DetailsFormatted DiffDiff
Patch (6.88 KB, patch)
2022-03-29 16:23 PDT, Per Arne Vollan 		no flags
DetailsFormatted DiffDiff
Patch (7.10 KB, patch)
2022-03-30 07:29 PDT, Per Arne Vollan 		no flags
DetailsFormatted DiffDiff
Patch (6.87 KB, patch)
2022-03-30 09:51 PDT, Per Arne Vollan 		no flags
DetailsFormatted DiffDiff
Patch (5.04 KB, patch)
2022-03-30 10:56 PDT, Per Arne Vollan 		no flags
DetailsFormatted DiffDiff
Patch (5.11 KB, patch)
2022-03-30 11:11 PDT, Per Arne Vollan 		simon.fraser: review+
ews-feeder: commit-queue-
DetailsFormatted DiffDiff
Patch (5.09 KB, patch)
2022-03-30 14:43 PDT, Per Arne Vollan 		ews-feeder: commit-queue-
DetailsFormatted DiffDiff
Show Obsolete (5) View All Add attachment proposed patch, testcase, etc.
Per Arne Vollan
Comment 1 2022-03-29 16:17:26 PDT
Created attachment 456076 [details] Patch
Per Arne Vollan
Comment 2 2022-03-29 16:23:46 PDT
Created attachment 456080 [details] Patch
Per Arne Vollan
Comment 3 2022-03-30 07:29:22 PDT
Created attachment 456119 [details] Patch
Simon Fraser (smfr)
Comment 4 2022-03-30 09:34:34 PDT
Comment on attachment 456119 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=456119&action=review > Source/WTF/Scripts/Preferences/WebPreferencesInternal.yaml:125 > +BlockGraphicsResourcesInWebContentSandbox: I think we should just say "IOKit" everywhere, instead of "GraphicsResources". It's less ambiguous.
Per Arne Vollan
Comment 5 2022-03-30 09:40:34 PDT
(In reply to Simon Fraser (smfr) from comment #4) > Comment on attachment 456119 [details] > Patch > > View in context: > https://bugs.webkit.org/attachment.cgi?id=456119&action=review > > > Source/WTF/Scripts/Preferences/WebPreferencesInternal.yaml:125 > > +BlockGraphicsResourcesInWebContentSandbox: > > I think we should just say "IOKit" everywhere, instead of > "GraphicsResources". It's less ambiguous. That is a good point, I will update the patch. Thanks for reviewing!
Per Arne Vollan
Comment 6 2022-03-30 09:51:16 PDT
Created attachment 456132 [details] Patch
Simon Fraser (smfr)
Comment 7 2022-03-30 09:56:42 PDT
Comment on attachment 456132 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=456132&action=review > Source/WTF/Scripts/Preferences/WebPreferencesInternal.yaml:127 > + humanReadableName: "Block IOKit access in the WebContent sandbox" Better as "IOKit Blocking" to make It easier to find. > Source/WebCore/page/RuntimeEnabledFeatures.h:140 > + void setBlockIOKitInWebContentSandbox(bool block) { m_blockIOKitInWebContentSandbox = block; } > + bool blockIOKitInWebContentSandbox() const { return m_blockIOKitInWebContentSandbox; } It's weird that this WebKit-level feature infects this WebCore code.
Per Arne Vollan
Comment 8 2022-03-30 10:56:00 PDT
Created attachment 456149 [details] Patch
Per Arne Vollan
Comment 9 2022-03-30 10:57:10 PDT
(In reply to Simon Fraser (smfr) from comment #7) > Comment on attachment 456132 [details] > Patch > > View in context: > https://bugs.webkit.org/attachment.cgi?id=456132&action=review > > > Source/WTF/Scripts/Preferences/WebPreferencesInternal.yaml:127 > > + humanReadableName: "Block IOKit access in the WebContent sandbox" > > Better as "IOKit Blocking" to make It easier to find. > > > Source/WebCore/page/RuntimeEnabledFeatures.h:140 > > + void setBlockIOKitInWebContentSandbox(bool block) { m_blockIOKitInWebContentSandbox = block; } > > + bool blockIOKitInWebContentSandbox() const { return m_blockIOKitInWebContentSandbox; } > > It's weird that this WebKit-level feature infects this WebCore code. Fixed in latest patch. Thanks for reviewing!
Per Arne Vollan
Comment 10 2022-03-30 11:11:02 PDT
Created attachment 456151 [details] Patch
Per Arne Vollan
Comment 11 2022-03-30 14:43:33 PDT
Created attachment 456175 [details] Patch
EWS
Comment 12 2022-03-31 01:41:16 PDT
Committed r292146 (249053@main): <https://commits.webkit.org/249053@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 456175 [details].
Radar WebKit Bug Importer
Comment 13 2022-03-31 01:42:19 PDT
<rdar://problem/91092247>
Note You need to log in before you can comment on or make changes to this bug.