Bug 240110

Summary:	Improve webpushd sandbox
Product:	WebKit	Reporter:	Ben Nham <nham>
Component:	WebKit Misc.	Assignee:	Ben Nham <nham>
Status:	RESOLVED FIXED
Severity:	Normal	CC:	nham, webkit-bug-importer
Priority:	P2	Keywords:	InRadar
Version:	WebKit Local Build
Hardware:	Unspecified
OS:	Unspecified

Ben Nham

Reported 2022-05-04 23:42:23 PDT

The webpushd sandbox on Mac should only allow essential operations: talking to the push service, waking up processes to handle pushes, and persisting information in PushDatabase.

Attachments
Add attachment proposed patch, testcase, etc.

Ben Nham

Comment 1 2022-05-04 23:46:20 PDT

<rdar://87508919>

Ben Nham

Comment 2 2022-05-05 00:03:45 PDT

Pull request: https://github.com/WebKit/WebKit/pull/519

EWS

Comment 3 2022-05-06 12:56:15 PDT

Committed r293920 (250367@main): <https://commits.webkit.org/250367@main> Reviewed commits have been landed. Closing PR #519 and removing active labels.

Note You need to log in before you can comment on or make changes to this bug.