247402 – Initially allow syscall mach in sandbox v2

Bug 247402 - Initially allow syscall mach in sandbox v2

Summary: Initially allow syscall mach in sandbox v2

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	WebKit Misc. (show other bugs)
Version:	Safari 16
Hardware:	Unspecified Unspecified

Importance:	P2 Normal
Assignee:	Per Arne Vollan

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2022-11-02 18:50 PDT by Per Arne Vollan
Modified:	2022-11-02 19:25 PDT (History)
CC List:	1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Per Arne Vollan 2022-11-02 18:50:31 PDT

Initially allow syscall mach in sandbox v2, since it was allowed in v1. Individual sandboxes will deny mach syscalls.

Comment 1 Per Arne Vollan 2022-11-02 18:50:47 PDT

<rdar://problem/101888960>

Comment 2 Per Arne Vollan 2022-11-02 18:52:41 PDT

Pull request: https://github.com/WebKit/WebKit/pull/6070

Comment 3 EWS 2022-11-02 19:25:38 PDT

Committed 256265@main (81941f622bb4): <https://commits.webkit.org/256265@main>

Reviewed commits have been landed. Closing PR #6070 and removing active labels.