221768 – [macOS] Limit mech-register to required services

Bug 221768 - [macOS] Limit mech-register to required services

Summary: [macOS] Limit mech-register to required services

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	WebKit Misc. (show other bugs)
Version:	WebKit Nightly Build
Hardware:	Unspecified Unspecified

Importance:	P2 Normal
Assignee:	Brent Fulgham

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2021-02-11 11:56 PST by Brent Fulgham
Modified:	2021-02-12 11:15 PST (History)
CC List:	1 user (show)

See Also:

Attachments
Patch (1.88 KB, patch) 2021-02-11 11:59 PST, Brent Fulgham	no flags	Details \| Formatted Diff \| Diff
Patch for landing (1.54 KB, patch) 2021-02-12 10:34 PST, Brent Fulgham	no flags	Details \| Formatted Diff \| Diff
Show Obsolete (1) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Brent Fulgham 2021-02-11 11:56:48 PST

Based on telemetry, we only need mach-register for accessibility-related features.

Let’s revise the rule to just allow the two AX-related items:

(allow mach-register
    (local-name
        "com.apple.axserver"
        “com.apple.tsm.portname”
))

Comment 1 Brent Fulgham 2021-02-11 11:57:07 PST

<rdar://problem/70350150>

Comment 2 Brent Fulgham 2021-02-11 11:59:41 PST

Created attachment 420021 [details]
Patch

Comment 3 Per Arne Vollan 2021-02-11 13:59:40 PST

Comment on attachment 420021 [details]
Patch

Great! R=me.

Comment 4 EWS 2021-02-11 16:47:00 PST

commit-queue failed to commit attachment 420021 [details] to WebKit repository. To retry, please set cq+ flag again.

Comment 5 Brent Fulgham 2021-02-12 10:34:48 PST

Created attachment 420145 [details]
Patch for landing

Comment 6 EWS 2021-02-12 11:15:50 PST

Committed r272796: <https://commits.webkit.org/r272796>

All reviewed patches have been landed. Closing bug and clearing flags on attachment 420145 [details].