243056 – Remove inclusion of dyld related system sandbox

RESOLVED FIXED243056

Remove inclusion of dyld related system sandbox

https://bugs.webkit.org/show_bug.cgi?id=243056

Summary Remove inclusion of dyld related system sandbox

Per Arne Vollan

Reported 2022-07-21 08:01:31 PDT

Remove inclusion of dyld related system sandbox in WebKit sandboxes. Including system sandboxes can lead to sandbox regressions when these are changed. IAlso, most of the rules in this sandbox will not be applied, since we deny them later in the WebKit sandboxes. An example of this is the syscalls, which are all denied later in the sandbox before we add a whitelist.

Attachments
Add attachment proposed patch, testcase, etc.

Radar WebKit Bug Importer

Comment 1 2022-07-21 08:04:14 PDT

<rdar://problem/97380664>

Per Arne Vollan

Comment 2 2022-07-21 08:06:03 PDT

Pull request: https://github.com/WebKit/WebKit/pull/2617

EWS

Comment 3 2022-07-21 13:22:58 PDT

Committed 252702@main (e242d3a2d59f): <https://commits.webkit.org/252702@main> Reviewed commits have been landed. Closing PR #2617 and removing active labels.

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version Safari 15

Hardware Unspecified

OS Unspecified

Product WebKit

Component WebKit Misc.

Assignee

Per Arne Vollan

Reported

2022-07-21 08:01 PDT

Modified

2022-07-21 13:23 PDT History

CC List

3 users Show

URL

Keywords InRadar

Depends on

Blocks