[webkit-changes] [WebKit/WebKit] 4b0c23: [WPE][GTK] Sandbox should not allow mounting entir...
Michael Catanzaro
noreply at github.com
Tue Jan 24 14:41:18 PST 2023
Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: 4b0c2332b9a6becb2a7b84058c42f02e2ac00c75
https://github.com/WebKit/WebKit/commit/4b0c2332b9a6becb2a7b84058c42f02e2ac00c75
Author: Michael Catanzaro <mcatanzaro at redhat.com>
Date: 2023-01-24 (Tue, 24 Jan 2023)
Changed paths:
M Source/WebKit/UIProcess/API/glib/WebKitWebContext.cpp
Log Message:
-----------
[WPE][GTK] Sandbox should not allow mounting entire home directory
https://bugs.webkit.org/show_bug.cgi?id=250231
Reviewed by Carlos Garcia Campos.
We should crash if the application tries to mount /home or $HOME in the
sandbox. We cannot prevents apps from mounting whatever they wish, but
if they want to be stupid they should have to try somewhat harder than
that.
* Source/WebKit/UIProcess/API/glib/WebKitWebContext.cpp:
(pathIsUserHomeDirectory):
(pathIsBlocked):
Canonical link: https://commits.webkit.org/259309@main
More information about the webkit-changes
mailing list