Bug 156668

Summary: [Mac] Web Content service with a restricted entitlement may load arbitrary dylibs
Product: WebKit Reporter: mitz
Component: WebKit2Assignee: mitz
Status: RESOLVED FIXED    
Severity: Normal CC: sam, thorton
Priority: P2 Keywords: InRadar
Version: Other   
Hardware: Unspecified   
OS: Unspecified   
Bug Depends on:    
Bug Blocks: 173424    
Attachments:
Description Flags
Enable library validation when needed
andersca: review+
Enable library validation when needed
none
Enable library validation for El Capitan too sam: review+

mitz
Reported 2016-04-16 14:30:39 PDT
<rdar://problem/25429784> When the changes for bug 155414 are in effect, the Web Content service is signed with a restricted entitlement but isn’t guarded against loading arbitrary dylibs.
Attachments
Enable library validation when needed (2.24 KB, patch)
2016-04-16 14:34 PDT, mitz 		andersca: review+
DetailsFormatted DiffDiff
Enable library validation when needed (2.41 KB, patch)
2016-06-13 20:34 PDT, mitz 		no flags
DetailsFormatted DiffDiff
Enable library validation for El Capitan too (1.86 KB, patch)
2016-08-20 12:53 PDT, mitz 		sam: review+
DetailsFormatted DiffDiff
Show Obsolete (2) View All Add attachment proposed patch, testcase, etc.
mitz
Comment 1 2016-04-16 14:34:51 PDT
Created attachment 276563 [details] Enable library validation when needed
mitz
Comment 2 2016-04-16 14:37:08 PDT
Fixed in <http://trac.webkit.org/r199628>.
mitz
Comment 3 2016-06-13 20:27:51 PDT
This was reverted in <http://trac.webkit.org/r200172>.
mitz
Comment 4 2016-06-13 20:31:23 PDT
Using <rdar://problem/26714558> to reenable in macOS Sierra and later.
mitz
Comment 5 2016-06-13 20:34:52 PDT
Created attachment 281230 [details] Enable library validation when needed
mitz
Comment 6 2016-06-13 21:01:35 PDT
Committed <http://trac.webkit.org/r202024>.
mitz
Comment 7 2016-08-20 12:51:10 PDT
Can do this for El Capitan as well now.
mitz
Comment 8 2016-08-20 12:53:06 PDT
Created attachment 286544 [details] Enable library validation for El Capitan too
mitz
Comment 9 2016-08-20 15:02:09 PDT
Committed <https://trac.webkit.org/r204682>.
Note You need to log in before you can comment on or make changes to this bug.