RESOLVED FIXED Bug 154503
[WK2][Mac] Allow processes to set "fast-dev-casheable" bit 
https://bugs.webkit.org/show_bug.cgi?id=154503
Summary [WK2][Mac] Allow processes to set "fast-dev-casheable" bit
Brent Fulgham
Reported 2016-02-20 12:30:21 PST
We are getting some console spam due to Sandboxing blocking processes from using system-fctl (via Foundation) to mark various things as "hot" for caching purposes. We need to tell our sandbox profiles that this fctl operation is okay.
Attachments
Patch (4.72 KB, patch)
2016-02-20 12:37 PST, Brent Fulgham 		no flags
DetailsFormatted DiffDiff
Patch (2.75 KB, patch)
2016-02-21 18:58 PST, Brent Fulgham 		ap: review+
DetailsFormatted DiffDiff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.
Brent Fulgham
Comment 1 2016-02-20 12:33:26 PST
<rdar://problem/22920815>
Brent Fulgham
Comment 2 2016-02-20 12:37:25 PST
Created attachment 271866 [details] Patch
Alexey Proskuryakov
Comment 3 2016-02-20 14:23:43 PST
Comment on attachment 271866 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=271866&action=review > Source/WebKit2/ChangeLog:4 > + https://bugs.webkit.org/show_bug.cgi?id=154503 Please add a radar link here. > Source/WebKit2/ChangeLog:16 > + * Resources/PlugInSandboxProfiles/com.apple.QuickTime Plugin.plugin.sb: > + * Resources/PlugInSandboxProfiles/com.apple.WebKit.plugin-common.sb: > + * Resources/PlugInSandboxProfiles/com.macromedia.Flash Player.plugin.sb: > + * Resources/PlugInSandboxProfiles/com.microsoft.SilverlightPlugin.sb: > + * Resources/PlugInSandboxProfiles/com.oracle.java.JavaAppletPlugin.sb: Individual plugin profiles don't need to be modified, as they are always combined with com.apple.WebKit.plugin-common.sb. > Source/WebKit2/ChangeLog:17 > + * WebProcess/com.apple.WebProcess.sb.in: Is this needed in Networking and Databases processes? > Source/WebKit2/Resources/PlugInSandboxProfiles/com.macromedia.Flash Player.plugin.sb:66 > +(allow system-fsctl (fsctl-command (_IO "h" 47))) > + > (allow network-bind (local ip)) > +(allow system-fsctl (fsctl-command (_IO "h" 47))) Why twice?
Brent Fulgham
Comment 4 2016-02-21 18:56:09 PST
(In reply to comment #3) > > + * Resources/PlugInSandboxProfiles/com.oracle.java.JavaAppletPlugin.sb: > > Individual plugin profiles don't need to be modified, as they are always > combined with com.apple.WebKit.plugin-common.sb. Oh, excellent! I'll get rid of the redundancy. > > Source/WebKit2/ChangeLog:17 > > + * WebProcess/com.apple.WebProcess.sb.in: > > Is this needed in Networking and Databases processes? It doesn't seem to be, but I could easily see the Database process wanting to notify the caching system that certain files are 'hot'. So I'll add it to the Database process. The Networking process should not need this itself. > > Source/WebKit2/Resources/PlugInSandboxProfiles/com.macromedia.Flash Player.plugin.sb:66 > > +(allow system-fsctl (fsctl-command (_IO "h" 47))) > > + > > (allow network-bind (local ip)) > > +(allow system-fsctl (fsctl-command (_IO "h" 47))) > > Why twice? :-(
Brent Fulgham
Comment 5 2016-02-21 18:58:22 PST
Created attachment 271896 [details] Patch
Alexey Proskuryakov
Comment 6 2016-02-21 22:12:18 PST
Comment on attachment 271896 [details] Patch > The Networking process should not need this itself. Why not? It does caching, accesses keychains and preferences. sudo fs_usage com.apple.WebKit.Networking | grep /
Brent Fulgham
Comment 7 2016-02-22 09:50:29 PST
Committed r196939: <http://trac.webkit.org/changeset/196939>
Brent Fulgham
Comment 8 2016-03-08 13:33:54 PST
(In reply to comment #6) > Comment on attachment 271896 [details] > Patch > > > The Networking process should not need this itself. > > Why not? It does caching, accesses keychains and preferences. > > sudo fs_usage com.apple.WebKit.Networking | grep / You are right. I'll modify that as well.
Note You need to log in before you can comment on or make changes to this bug.