95970b665fcd2daf74d0cc582e27d6eb971f0ae7
[WebKit-https.git] / Source / WebKit / Resources / SandboxProfiles / ios / com.apple.WebKit.WebContent.sb
1 ; Copyright (C) 2010-2019 Apple Inc. All rights reserved.
2 ;
3 ; Redistribution and use in source and binary forms, with or without
4 ; modification, are permitted provided that the following conditions
5 ; are met:
6 ; 1. Redistributions of source code must retain the above copyright
7 ; notice, this list of conditions and the following disclaimer.
8 ; 2. Redistributions in binary form must reproduce the above copyright
9 ; notice, this list of conditions and the following disclaimer in the
10 ; documentation and/or other materials provided with the distribution.
11 ;
12 ; THIS SOFTWARE IS PROVIDED BY APPLE INC. AND ITS CONTRIBUTORS ``AS IS''
13 ; AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
14 ; THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
15 ; PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL APPLE INC. OR ITS CONTRIBUTORS
16 ; BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
17 ; CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
18 ; SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
19 ; INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
20 ; CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
21 ; ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF
22 ; THE POSSIBILITY OF SUCH DAMAGE.
23
24 (version 1)
25 (deny default (with partial-symbolication))
26 (allow system-audit file-read-metadata)
27
28 (import "common.sb")
29
30 (deny mach-lookup (xpc-service-name-prefix ""))
31
32 (deny lsopen)
33
34 ;;;
35 ;;; The following rules were originally contained in 'UIKit-apps.sb'. We are duplicating them here so we can
36 ;;; remove unneeded sandbox extensions.
37 ;;;
38
39 (allow mach-lookup
40     (global-name "com.apple.frontboard.systemappservices")                 ; -[UIViewServiceInterface _createProcessAssertion] -> SBSProcessIDForDisplayIdentifier()
41     (global-name-regex #"^com\.apple\.uikit\.viewservice\..+"))
42
43 ;; Any app could use ubiquity.
44 (ubiquity-client)
45
46 ;; Any app can play audio & movies.
47 (play-audio)
48 (play-media)
49
50 ;; Access to media controls
51 (media-remote)
52
53 (url-translation)
54
55 ;; TextInput framework
56 (allow mach-lookup
57     (global-name "com.apple.TextInput"))
58
59 (mobile-preferences-read "com.apple.da")
60
61 ;; Speak Selection & VoiceOver
62 ;; <rdar://problem/12030530> AX: Sandbox violation with changing Language while VO is on
63 ;; and <rdar://problem/13071747>
64 (mobile-preferences-read
65     "com.apple.SpeakSelection" ; Needed for WebSpeech
66     "com.apple.VoiceOverTouch" ; Needed for non-US english language synthesis
67     "com.apple.voiceservices") ; Ditto
68
69 (allow mach-lookup
70     (global-name "com.apple.audio.AudioComponentRegistrar"))
71
72 (allow mach-register
73     (local-name "com.apple.iphone.axserver")) ; Needed for Application Accessibility
74 (allow mach-lookup
75     (global-name "com.apple.iphone.axserver-systemwide")) ; Needed to send accessibility notifications.
76
77 ;; <rdar://problem/14555119> Access to high quality speech voices
78 ;; Needed for WebSpeech
79 (allow file-read*
80     (home-subpath "/Library/VoiceServices/Assets")
81     (home-subpath "/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice"))
82
83 ;; MediaAccessibility (captions)
84 ;; <rdar://problem/12801477>
85 (mobile-preferences-read "com.apple.mediaaccessibility")
86 (allow mach-lookup (global-name "com.apple.accessibility.mediaaccessibilityd"))
87
88 ;; Permit reading assets via MobileAsset framework.
89 (asset-access 'with-media-playback)
90
91 ;; Network Extensions / VPN helper.
92 (allow mach-lookup
93     (global-name "com.apple.nehelper")
94     (global-name "com.apple.nesessionmanager.content-filter")) ;; <rdar://problem/48442387>
95
96 ;; allow 3rd party applications to access nsurlstoraged's top level domain data cache
97 (allow-well-known-system-group-container-literal-read
98     "/systemgroup.com.apple.nsurlstoragedresources/Library/dafsaData.bin")
99
100 ;; Access the keyboards
101 (allow file-read*
102     (home-subpath "/Library/Caches/com.apple.keyboards"))
103
104 ;; <rdar://problem/19525887>
105 (allow mach-lookup (xpc-service-name-regex #"\.apple-extension-service$"))
106 ;; <rdar://problem/31252371>
107 (allow mach-lookup (xpc-service-name-regex #"\.viewservice$"))
108
109 ;; Power logging
110 (allow mach-lookup
111     (global-name "com.apple.powerlog.plxpclogger.xpc")) ;;  <rdar://problem/36442803>
112
113 (mobile-preferences-read
114     "com.apple.EmojiPreferences"
115     ; <rdar://problem/8477596> com.apple.InputModePreferences
116     "com.apple.InputModePreferences"
117     ; <rdar://problem/8206632> Weather(1038) deny file-read-data ~/Library/Preferences/com.apple.keyboard.plist
118     "com.apple.keyboard"
119     ; <rdar://problem/9384085>
120     "com.apple.Preferences"
121     "com.apple.lookup.shared" ; Needed for DataDetector (Spotlight) support
122 )
123
124 ;; Silently deny unnecessary accesses caused by MessageUI framework.
125 ;; This can be removed once <rdar://problem/47038102> is resolved.
126 (deny file-read*
127     (home-literal "/Library/Preferences/com.apple.mobilemail.plist")
128     (with no-log))
129
130 ;; <rdar://problem/12985925> Need read access to /var/mobile/Library/Fonts to all apps
131 (allow file-read*
132     (home-subpath "/Library/Fonts"))
133
134 ;; <rdar://problem/7344719&26323449> LaunchServices app icons
135 (allow file-read*
136     (well-known-system-group-container-subpath "/systemgroup.com.apple.lsd.iconscache"))
137 (allow mach-lookup
138     (xpc-service-name "com.apple.iconservices")
139     (global-name "com.apple.iconservices"))
140
141 ;; Common mach services needed by UIKit.
142 (allow mach-lookup
143     (global-name "com.apple.CARenderServer")
144     (global-name "com.apple.iohideventsystem")
145     (global-name "com.apple.frontboard.systemappservices"))
146
147 ;; <rdar://problem/47268166>
148 (allow mach-lookup (xpc-service-name "com.apple.MTLCompilerService"))
149
150 (allow-preferences-common)
151
152 ;; CoreMotion
153 (mobile-preferences-read "com.apple.CoreMotion")
154
155 ;; CoreMotion’s deviceMotion API
156 (with-filter
157     (require-any
158         (iokit-registry-entry-class "AppleOscarNub")
159         (iokit-registry-entry-class "AppleSPUHIDInterface"))
160     (allow iokit-get-properties
161         (iokit-property "gyro-interrupt-calibration")))
162 (with-filter
163     (iokit-registry-entry-class "IOHIDEventServiceFastPathUserClient")
164     (allow iokit-open)
165     (allow iokit-get-properties iokit-set-properties
166         (iokit-property "interval"
167                         "mode"
168                         "QueueSize"
169                         "useMag"))
170     (allow iokit-get-properties
171         (iokit-property "client")))
172
173 ;; Home Button
174 (with-filter (iokit-registry-entry-class "IOPlatformDevice")
175     (allow iokit-get-properties
176         (iokit-property "home-button-type")))
177
178 ;; Common preferences read by UIKit.
179 (mobile-preferences-read "com.apple.Accessibility"
180     "com.apple.UIKit"
181     "com.apple.WebUI"
182     "com.apple.airplay"
183     "com.apple.avkit"
184     "com.apple.coreanimation"
185     "com.apple.mt"
186     "com.apple.preferences.sounds")
187
188 ;; Silence sandbox violations from apps trying to create the empty plist if it doesn't exist.
189 ;; <rdar://problem/13796537>
190 (deny file-write-create
191     (home-prefix "/Library/Preferences/com.apple.UIKit.plist")
192     (with no-report))
193
194 ;; <rdar://problem/10809394>
195 (deny file-write-create
196     (home-prefix "/Library/Preferences/com.apple.Accessibility.plist")
197     (with no-report))
198
199 ;; <rdar://problem/9404009>
200 (mobile-preferences-read "kCFPreferencesAnyApplication")
201
202 ;; <rdar://problem/12250145>
203 (mobile-preferences-read "com.apple.mediaaccessibility")
204
205 ; Dictionary Services used by UITextFields.
206 ; <rdar://problem/9386926>
207 (allow-create-directory
208     (home-literal "/Library/Caches/com.apple.DictionaryServices"))
209
210 ; <rdar://problem/8548856> Sub-TLF: Sandbox change for apps for read-only access to the dictionary directory/data
211 (allow file-read*
212     ; XXX - /Library ought to be allowed in all UI profiles but isn't (CF, MobileSafari)
213     (subpath "/Library/Dictionaries")
214     (home-subpath "/Library/Dictionaries"))
215
216 ; <rdar://problem/8440231>
217 (allow file-read*
218     (home-literal "/Library/Caches/DateFormats.plist"))
219 ; Silently deny writes when CFData attempts to write to the cache directory.
220 (deny file-write*
221     (home-literal "/Library/Caches/DateFormats.plist")
222     (with no-log))
223
224 ; UIKit-required IOKit nodes.
225 (allow iokit-open
226     (iokit-user-client-class "AppleJPEGDriverUserClient")
227     (iokit-user-client-class "IOSurfaceAcceleratorClient")
228     (iokit-user-client-class "IOSurfaceSendRight")
229     ;; Requires by UIView -> UITextMagnifierRenderer -> UIWindow
230     (iokit-user-client-class "IOSurfaceRootUserClient"))
231
232 (framebuffer-access)
233
234 ;; <rdar://problem/7822790>
235 (mobile-keybag-access)
236
237 ; <rdar://problem/7595408> , <rdar://problem/7643881>
238 (opengl)
239
240 (location-services)
241
242 ; CRCopyRestrictionsDictionary periodically tries to CFPreferencesAppSynchronize com.apple.springboard.plist
243 ; which will attempt to create the plist if it doesn't exist -- from any application.  Only SpringBoard is
244 ; allowed to write its plist; ignore all others, they don't know what they are doing.
245 ; See <rdar://problem/9375027> for sample backtraces.
246 (deny file-write*
247     (home-prefix "/Library/Preferences/com.apple.springboard.plist")
248     (with no-log))
249
250 ;; <rdar://problem/34986314>
251 (mobile-preferences-read "com.apple.indigo")
252
253 ;;;
254 ;;; End UIKit-apps.sb content
255 ;;;
256
257 (deny sysctl*)
258 (allow sysctl-read
259     (sysctl-name
260         "hw.availcpu"
261         "hw.ncpu"
262         "hw.model"
263         "kern.memorystatus_level"
264         "vm.footprint_suspend"))
265
266 (deny iokit-get-properties (with partial-symbolication))
267 (allow iokit-get-properties
268     (iokit-property-regex #"^AAPL,(DisplayPipe|OpenCLdisabled|IOGraphics_LER(|_RegTag_1|_RegTag_0|_Busy_2)|alias-policy|boot-display|display-alias|mux-switch-state|ndrv-dev|primary-display|slot-name)")
269     (iokit-property "APTDevice")
270     (iokit-property "AVCSupported")
271     (iokit-property-regex #"^AppleJPEG(NumCores|Supports(AppleInterchangeFormats|MissingEOI|RSTLogging))")
272     (iokit-property "BaseAddressAlignmentRequirement")
273     (iokit-property-regex #"^DisplayPipe(PlaneBaseAlignment|StrideRequirements)")
274     (iokit-property "HEVCSupported")
275     (iokit-property-regex #"^IOGL(|ES(|Metal))BundleName")
276     (iokit-property "IOGLESDefaultUseMetal")
277     (iokit-property-regex #"IOGVA(BGRAEnc|Codec|EncoderRestricted|Scaler)")
278     (iokit-property "IOClassNameOverride")
279     (iokit-property "IOPlatformUUID")
280     (iokit-property "IOSurfaceAcceleratorCapabilitiesDict")
281     (iokit-property-regex #"^MetalPlugin(Name|ClassName)")
282     (iokit-property "Protocol Characteristics")
283     (iokit-property "artwork-device-idiom") ;; <rdar://problem/49497720>
284     (iokit-property "artwork-device-subtype")
285     (iokit-property "artwork-display-gamut") ;; <rdar://problem/49497788>
286     (iokit-property "artwork-dynamic-displaymode") ;; <rdar://problem/49497720>
287     (iokit-property "artwork-scale-factor") ;; <rdar://problem/49497788>
288     (iokit-property-regex #"(canvas-height|canvas-width)")
289     (iokit-property "class-code")
290     (iokit-property "color-accuracy-index")
291     (iokit-property "compatible-device-fallback") ;; <rdar://problem/49497720>
292     (iokit-property "device-id")
293     (iokit-property "device-perf-memory-class")
294     (iokit-property "emu")
295     (iokit-property "graphics-featureset-class") ;; <rdar://problem/49497720>
296     (iokit-property "hdcp-hoover-protocol")
297     (iokit-property "iommu-present")
298     (iokit-property "product-description") ;; <rdar://problem/49497788>
299     (iokit-property "product-id")
300     (iokit-property "software-behavior")
301     (iokit-property "vendor-id")
302     (iokit-property "ui-pip") ;; <rdar://problem/48867037>
303 )
304
305 ;; Read-only preferences and data
306 (mobile-preferences-read
307     "com.apple.LaunchServices"
308     "com.apple.WebFoundation"
309     "com.apple.mobileipod"
310     "com.apple.avfoundation.frecents" ;; <rdar://problem/33137029>
311     "com.apple.avfoundation.videoperformancehud" ;; <rdar://problem/31594568>
312     "com.apple.voiceservices.logging")
313
314 ;; Sandbox extensions
315 (define (apply-read-and-issue-extension op path-filter)
316     (op file-read* path-filter)
317     (op file-issue-extension (require-all (extension-class "com.apple.app-sandbox.read") path-filter)))
318 (define (apply-write-and-issue-extension op path-filter)
319     (op file-write* path-filter)
320     (op file-issue-extension (require-all (extension-class "com.apple.app-sandbox.read-write") path-filter)))
321 (define (read-only-and-issue-extensions path-filter)
322     (apply-read-and-issue-extension allow path-filter))
323 (define (read-write-and-issue-extensions path-filter)
324     (apply-read-and-issue-extension allow path-filter)
325     (apply-write-and-issue-extension allow path-filter))
326 (read-only-and-issue-extensions (extension "com.apple.app-sandbox.read"))
327 (read-write-and-issue-extensions (extension "com.apple.app-sandbox.read-write"))
328
329 ;; Access to client's cache folder & re-vending to CFNetwork.
330 ;; FIXME: Remove the webkti specific extension classes <rdar://problem/17755931>
331 (allow file-issue-extension (require-all
332     (extension "com.apple.app-sandbox.read-write")
333     (extension-class "com.apple.nsurlstorage.extension-cache")))
334
335 ;; MediaAccessibility
336 (mobile-preferences-read "com.apple.mediaaccessibility")
337 (mobile-preferences-read-write "com.apple.mediaaccessibility.public")
338
339 ;; Remote Web Inspector
340 (allow mach-lookup
341        (global-name "com.apple.webinspector"))
342
343 ;; Various services required by CFNetwork and other frameworks
344 (allow mach-lookup
345     (global-name "com.apple.PowerManagement.control")
346     (global-name "com.apple.analyticsd"))
347
348 (deny file-write-create (vnode-type SYMLINK))
349 (deny file-read-xattr file-write-xattr (xattr-regex #"^com\.apple\.security\.private\."))
350
351 ;; Allow loading injected bundles.
352 (allow file-map-executable)
353
354 ;; AWD logging
355 (awd-log-directory "com.apple.WebKit.WebContent")
356
357 ;; Allow ManagedPreference access
358 (allow file-read* (literal "/private/var/Managed Preferences/mobile/com.apple.webcontentfilter.plist"))
359
360 (allow file-read-data
361     (literal "/usr/local/lib/log") ; <rdar://problem/36629495>
362 )
363
364 ;; Allow mediaserverd to issue file extensions for the purposes of reading media
365 (allow file-issue-extension (require-all
366     (extension "com.apple.app-sandbox.read")
367     (extension-class "com.apple.mediaserverd.read")))
368
369 ;; Allow CoreMedia to communicate with mediaserverd in order to implement custom media loading
370 (allow mach-lookup
371     (global-name "com.apple.coremedia.customurlloader.xpc"))
372
373 ;; Media capture, microphone access
374 (with-filter (extension "com.apple.webkit.microphone")
375     (allow device-microphone))
376
377 ;; Media capture, camera access
378 (with-filter (extension "com.apple.webkit.camera")
379     (allow user-preference-read
380         (preference-domain "com.apple.coremedia"))
381     (allow file-read* (subpath "/Library/CoreMediaIO/Plug-Ins/DAL"))
382     (allow mach-lookup (extension "com.apple.app-sandbox.mach"))
383     (allow device-camera))
384
385 ;; Support incoming video connections
386 (allow mach-lookup
387     (global-name "com.apple.coremedia.compressionsession")
388     (global-name "com.apple.coremedia.decompressionsession")
389     (global-name "com.apple.coremedia.videoqueue"))
390
391 ;; FIXME: remove the send-signal when this rule is no longer generating crashes.
392 (deny mach-lookup (with send-signal SIGKILL)
393     (global-name "com.apple.backboard.hid.services"))
394
395 (allow mach-lookup (extension "com.apple.webkit.extension.mach"))
396
397 ;; These services have been identified as unused during living-on.
398 ;; This list overrides some definitions above and in common.sb.
399 ;; FIXME: remove overridden rules once the final list has been
400 ;; established, see https://bugs.webkit.org/show_bug.cgi?id=193840
401 (deny mach-lookup
402     (global-name "com.apple.AGXCompilerService")
403     (global-name "com.apple.CoreAuthentication.daemon.libxpc")
404     (global-name "com.apple.FileCoordination")
405     (global-name "com.apple.FileProvider")
406     (global-name "com.apple.Honeybee.event-notify")
407     (global-name "com.apple.MediaPlayer.RemotePlayerService")
408     (global-name "com.apple.ReportCrash.SimulateCrash")
409     (global-name "com.apple.accountsd.accountmanager")
410     (global-name "com.apple.appsupport.cplogd")
411     (global-name "com.apple.assertiond.processassertionconnection")
412     (global-name "com.apple.audio.reporting.xpc")
413     (global-name "com.apple.bird")
414     (global-name "com.apple.bird.token")
415     (global-name "com.apple.cfprefsd.agent")
416     (global-name "com.apple.containermanagerd")
417     (global-name "com.apple.coremedia.assetcacheinspector")
418     (global-name "com.apple.coremedia.audiodeviceclock")
419     (global-name "com.apple.coremedia.audioprocessingtap.xpc")
420     (global-name "com.apple.coremedia.endpointremotecontrolsession.xpc")
421     (global-name "com.apple.coremedia.sandboxserver")
422     (global-name "com.apple.coremedia.videocompositor")
423     (global-name "com.apple.coremedia.visualcontext.xpc")
424     (global-name "com.apple.coreservices.lsuseractivitymanager.xpc")
425     (global-name "com.apple.ctkd.token-client")
426     (global-name "com.apple.cvmsServ")
427     (global-name "com.apple.duetknowledged.activity")
428     (global-name "com.apple.dyld.closured")
429     (global-name "com.apple.gpumemd.source")
430     (global-name "com.apple.hangtracerd")
431     (global-name "com.apple.itunescloudd.xpc")
432     (global-name "com.apple.itunesstored.xpc")
433     (global-name "com.apple.librariand")
434     (global-name "com.apple.locationd.spi")
435     (global-name "com.apple.locationd.synchronous")
436     (global-name "com.apple.lsd")
437     (global-name "com.apple.lsd.advertisingidentifiers")
438     (global-name "com.apple.lsd.icons")
439     (global-name "com.apple.lsd.openurl")
440     (global-name "com.apple.lsdiconservice")
441     (global-name "com.apple.managedconfiguration.profiled.public")
442     (global-name "com.apple.marco")
443     (global-name "com.apple.mediaserverd")
444     (global-name "com.apple.mobile.usermanagerd.xpc")
445     (global-name "com.apple.nesessionmanager")
446     (global-name "com.apple.pegasus")
447     (global-name "com.apple.pluginkit.pkd")
448     (global-name "com.apple.pluginkit.plugin-service")
449     (global-name "com.apple.quicklook.ThumbnailsAgent")
450     (global-name "com.apple.revisiond")
451     (global-name "com.apple.springboard.backgroundappservices")
452     (global-name "com.apple.system.libinfo.muser")
453     (global-name "com.apple.webkit.camera")
454 )
455
456 (when (defined? 'syscall-unix)
457     (deny syscall-unix (with send-signal SIGKILL))
458     (allow syscall-unix
459         (syscall-number SYS_exit)
460         (syscall-number SYS_read)
461         (syscall-number SYS_write)
462         (syscall-number SYS_open)
463         (syscall-number SYS_close)
464         (syscall-number SYS_unlink)
465         (syscall-number SYS_chmod)
466         (syscall-number SYS_getuid)
467         (syscall-number SYS_geteuid)
468         (syscall-number SYS_recvfrom)
469         (syscall-number SYS_getpeername)
470         (syscall-number SYS_access)
471         (syscall-number SYS_dup)
472         (syscall-number SYS_pipe)
473         (syscall-number SYS_getegid)
474         (syscall-number SYS_getgid)
475         (syscall-number SYS_sigprocmask)
476         (syscall-number SYS_sigaltstack)
477         (syscall-number SYS_ioctl)
478         (syscall-number SYS_readlink)
479         (syscall-number SYS_umask)
480         (syscall-number SYS_msync)
481         (syscall-number SYS_munmap)
482         (syscall-number SYS_mprotect)
483         (syscall-number SYS_madvise)
484         (syscall-number SYS_fcntl)
485         (syscall-number SYS_select)
486         (syscall-number SYS_fsync)
487         (syscall-number SYS_setpriority)
488         (syscall-number SYS_socket)
489         (syscall-number SYS_connect)
490         (syscall-number SYS_setsockopt)
491         (syscall-number SYS_gettimeofday)
492         (syscall-number SYS_getrusage)
493         (syscall-number SYS_getsockopt)
494         (syscall-number SYS_writev)
495         (syscall-number SYS_fchmod)
496         (syscall-number SYS_rename)
497         (syscall-number SYS_flock)
498         (syscall-number SYS_sendto)
499         (syscall-number SYS_shutdown)
500         (syscall-number SYS_socketpair)
501         (syscall-number SYS_mkdir)
502         (syscall-number SYS_rmdir)
503         (syscall-number SYS_pread)
504         (syscall-number SYS_pwrite)
505         (syscall-number SYS_csops)
506         (syscall-number SYS_csops_audittoken)
507         (syscall-number SYS_kdebug_trace64)
508         (syscall-number SYS_kdebug_trace)
509         (syscall-number SYS_sigreturn)
510         (syscall-number SYS_pathconf)
511         (syscall-number SYS_getrlimit)
512         (syscall-number SYS_setrlimit)
513         (syscall-number SYS_mmap)
514         (syscall-number SYS_lseek)
515         (syscall-number SYS_ftruncate)
516         (syscall-number SYS_sysctl)
517         (syscall-number SYS_mlock)
518         (syscall-number SYS_munlock)
519         (syscall-number SYS_getattrlist)
520         (syscall-number SYS_getxattr)
521         (syscall-number SYS_fgetxattr)
522         (syscall-number SYS_listxattr)
523         (syscall-number SYS_shm_open)
524         (syscall-number SYS_sem_wait)
525         (syscall-number SYS_sem_post)
526         (syscall-number SYS_sysctlbyname)
527         (syscall-number SYS_psynch_mutexwait)
528         (syscall-number SYS_psynch_mutexdrop)
529         (syscall-number SYS_psynch_cvbroad)
530         (syscall-number SYS_psynch_cvsignal)
531         (syscall-number SYS_psynch_cvwait)
532         (syscall-number SYS_psynch_rw_wrlock)
533         (syscall-number SYS_psynch_rw_unlock)
534         (syscall-number SYS_psynch_cvclrprepost)
535         (syscall-number SYS_process_policy)
536         (syscall-number SYS_issetugid)
537         (syscall-number SYS___pthread_kill)
538         (syscall-number SYS___pthread_sigmask)
539         (syscall-number SYS___disable_threadsignal)
540         (syscall-number SYS___semwait_signal)
541         (syscall-number SYS_proc_info)
542         (syscall-number SYS_stat64)
543         (syscall-number SYS_fstat64)
544         (syscall-number SYS_lstat64)
545         (syscall-number SYS_getdirentries64)
546         (syscall-number SYS_statfs64)
547         (syscall-number SYS_fstatfs64)
548         (syscall-number SYS_getfsstat64)
549         (syscall-number SYS_getaudit_addr)
550         (syscall-number SYS_bsdthread_create)
551         (syscall-number SYS_bsdthread_terminate)
552         (syscall-number SYS_workq_kernreturn)
553         (syscall-number SYS_thread_selfid)
554         (syscall-number SYS_kevent_qos)
555         (syscall-number SYS_kevent_id)
556         (syscall-number SYS___mac_syscall)
557         (syscall-number SYS_read_nocancel)
558         (syscall-number SYS_write_nocancel)
559         (syscall-number SYS_open_nocancel)
560         (syscall-number SYS_close_nocancel)
561         (syscall-number SYS_sendmsg_nocancel)
562         (syscall-number SYS_recvfrom_nocancel)
563         (syscall-number SYS_fcntl_nocancel)
564         (syscall-number SYS_select_nocancel)
565         (syscall-number SYS_connect_nocancel)
566         (syscall-number SYS_sendto_nocancel)
567         (syscall-number SYS_fsgetpath)
568         (syscall-number SYS_fileport_makeport)
569         (syscall-number SYS_guarded_open_np)
570         (syscall-number SYS_guarded_close_np)
571         (syscall-number SYS_change_fdguard_np)
572         (syscall-number SYS_proc_rlimit_control)
573         (syscall-number SYS_connectx)
574         (syscall-number SYS_getattrlistbulk)
575         (syscall-number SYS_openat)
576         (syscall-number SYS_openat_nocancel)
577         (syscall-number SYS_fstatat64)
578         (syscall-number SYS_mkdirat)
579         (syscall-number SYS_bsdthread_ctl)
580         (syscall-number SYS_csrctl)
581         (syscall-number SYS_guarded_pwrite_np)
582         (syscall-number SYS_getentropy)
583         (syscall-number SYS_necp_open)
584         (syscall-number SYS_necp_client_action)
585         (syscall-number SYS_ulock_wait)
586         (syscall-number SYS_ulock_wake)
587         (syscall-number SYS_kdebug_typefilter)
588         (syscall-number SYS_shared_region_check_np)
589         (syscall-number SYS_getpid)
590         (syscall-number SYS_bsdthread_register)
591         (syscall-number SYS_sigaction)
592         (syscall-number SYS_gettid)
593         (syscall-number SYS_workq_open)
594         (syscall-number SYS_chdir)
595         (syscall-number SYS_memorystatus_control)
596         (syscall-number SYS_sem_open)
597         (syscall-number SYS_sem_close)
598         (syscall-number SYS_fsetattrlist)
599         (syscall-number SYS_guarded_open_dprotected_np) ; <rdar://problem/48166729>
600         (syscall-number SYS_mremap_encrypted)
601         (syscall-number SYS_dup2)
602         (syscall-number SYS_fileport_makefd)
603         (syscall-number SYS_os_fault_with_payload)
604         (syscall-number SYS_persona)
605         (syscall-number SYS_work_interval_ctl)
606         (syscall-number SYS_open_dprotected_np)
607         (syscall-number SYS_pread_nocancel)
608         (syscall-number SYS___semwait_signal_nocancel)
609         (syscall-number SYS_kdebug_trace_string) ;; Needed for performance sampling, see <rdar://problem/48829655>.
610         (syscall-number SYS_fgetattrlist) ;; <rdar://problem/50266257>
611     )
612 )