RESOLVED FIXED 221336
[macOS] Remove access to com.apple.cvmsServ 
https://bugs.webkit.org/show_bug.cgi?id=221336
Summary [macOS] Remove access to com.apple.cvmsServ
Per Arne Vollan
Reported 2021-02-03 09:12:03 PST
Remove access to com.apple.cvmsServ in the WebContent process when the GPU Process is enabled.
Attachments
Patch (1.26 KB, patch)
2021-02-03 09:17 PST, Per Arne Vollan 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Per Arne Vollan
Comment 1 2021-02-03 09:15:53 PST
<rdar://problem/70495789>
Per Arne Vollan
Comment 2 2021-02-03 09:17:26 PST
Created attachment 419148 [details] Patch
Brent Fulgham
Comment 3 2021-02-03 10:28:34 PST
Comment on attachment 419148 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=419148&action=review > Source/WebKit/WebProcess/com.apple.WebProcess.sb.in:118 > + (deny mach-lookup Is this safe to do on older OS? Should we move the precompile checks around this so we deny on 11+, but allow on older systems?
Brent Fulgham
Comment 4 2021-02-03 10:30:13 PST
Comment on attachment 419148 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=419148&action=review r=me >> Source/WebKit/WebProcess/com.apple.WebProcess.sb.in:118 >> + (deny mach-lookup > > Is this safe to do on older OS? Should we move the precompile checks around this so we deny on 11+, but allow on older systems? Oh! never mind. I see that this is only when the service is not extended.
Per Arne Vollan
Comment 5 2021-02-03 10:34:20 PST
Comment on attachment 419148 [details] Patch Thanks for reviewing!
EWS
Comment 6 2021-02-03 10:39:07 PST
Committed r272329: <https://trac.webkit.org/changeset/272329> All reviewed patches have been landed. Closing bug and clearing flags on attachment 419148 [details].
Note You need to log in before you can comment on or make changes to this bug.