[webkit-changes] [WebKit/WebKit] 5334f6: [macOS] Block IOKit related mig syscalls when IOKi...
Per Arne Vollan
noreply at github.com
Mon Sep 25 16:22:25 PDT 2023
Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: 5334f66e6e1fe541a0af10350d3def69c2244ad4
https://github.com/WebKit/WebKit/commit/5334f66e6e1fe541a0af10350d3def69c2244ad4
Author: Per Arne Vollan <pvollan at apple.com>
Date: 2023-09-25 (Mon, 25 Sep 2023)
Changed paths:
M Source/WebKit/WebProcess/com.apple.WebProcess.sb.in
Log Message:
-----------
[macOS] Block IOKit related mig syscalls when IOKit is blocked
https://bugs.webkit.org/show_bug.cgi?id=262052
rdar://116000694
Reviewed by Brent Fulgham.
Block IOKit related mig syscalls in the WebContent process sandbox on macOS when IOKit is blocked.
We believe these syscalls are not required in this case, since all access to IOKit services and
clients is blocked in the sandbox already.
* Source/WebKit/WebProcess/com.apple.WebProcess.sb.in:
Canonical link: https://commits.webkit.org/268417@main
More information about the webkit-changes
mailing list