[webkit-changes] [WebKit/WebKit] 8f9205: [macOS] Block IOKit related mig syscalls when IOKi...
Per Arne Vollan
noreply at github.com
Fri Oct 6 13:08:37 PDT 2023
Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: 8f920520ed2b88446b00fd07e3c3337681b20205
https://github.com/WebKit/WebKit/commit/8f920520ed2b88446b00fd07e3c3337681b20205
Author: Per Arne Vollan <pvollan at apple.com>
Date: 2023-10-06 (Fri, 06 Oct 2023)
Changed paths:
M Source/WebKit/WebProcess/com.apple.WebProcess.sb.in
Log Message:
-----------
[macOS] Block IOKit related mig syscalls when IOKit is blocked
https://bugs.webkit.org/show_bug.cgi?id=262052
rdar://problem/116000694
Reviewed by Chris Dumez.
Block IOKit connect mig syscalls in the WebContent process sandbox on macOS when IOKit is blocked.
We believe these syscalls are not required in this case, since all access to IOKit services and
clients is blocked in the sandbox already.
* Source/WebKit/WebProcess/com.apple.WebProcess.sb.in:
Canonical link: https://commits.webkit.org/269012@main
More information about the webkit-changes
mailing list