[webkit-changes] [272608] trunk/Source/WebKit

Tue, 09 Feb 2021 13:31:25 -0800

Title: [272608] trunk/Source/WebKit
Revision
272608
Author
pvol...@apple.com
Date
2021-02-09 13:30:26 -0800 (Tue, 09 Feb 2021)

Log Message

[macOS] Deny mach-lookup to the distributed notifications service
https://bugs.webkit.org/show_bug.cgi?id=221604
<rdar://problem/69169123>

Reviewed by Brent Fulgham.

Deny mach-lookup to the distributed notifications service in the WebContent process on macOS.

* WebProcess/com.apple.WebProcess.sb.in:

Modified Paths

Diff

Modified: trunk/Source/WebKit/ChangeLog (272607 => 272608)


--- trunk/Source/WebKit/ChangeLog	2021-02-09 21:21:26 UTC (rev 272607)
+++ trunk/Source/WebKit/ChangeLog	2021-02-09 21:30:26 UTC (rev 272608)
@@ -1,3 +1,15 @@
+2021-02-09  Per Arne  <pvol...@apple.com>
+
+        [macOS] Deny mach-lookup to the distributed notifications service
+        https://bugs.webkit.org/show_bug.cgi?id=221604
+        <rdar://problem/69169123>
+
+        Reviewed by Brent Fulgham.
+
+        Deny mach-lookup to the distributed notifications service in the WebContent process on macOS.
+
+        * WebProcess/com.apple.WebProcess.sb.in:
+
 2021-02-09  Alex Christensen  <achristen...@webkit.org>
 
         Use CompletionHandler instead of ComputedPagesCallback

Modified: trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in (272607 => 272608)


--- trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in	2021-02-09 21:21:26 UTC (rev 272607)
+++ trunk/Source/WebKit/WebProcess/com.apple.WebProcess.sb.in	2021-02-09 21:30:26 UTC (rev 272608)
@@ -1195,12 +1195,16 @@
 )
 #endif
 
-(allow mach-lookup
-#if __MAC_OS_X_VERSION_MIN_REQUIRED >= 110000
+#if __MAC_OS_X_VERSION_MIN_REQUIRED >= 120000
+(deny mach-lookup
     (with telemetry-backtrace)
-#endif
     (global-name-regex #"^com.apple.distributed_notifications")
 )
+#else
+(allow mach-lookup
+    (global-name-regex #"^com.apple.distributed_notifications")
+)
+#endif
 
 (allow file-read-data
     (literal "/dev/autofs_nowait")) ; Used by CF to circumvent automount triggers

_______________________________________________
webkit-changes mailing list
webkit-changes@lists.webkit.org
https://lists.webkit.org/mailman/listinfo/webkit-changes

Reply via email to