Bug 222335 - [macOS] Allow additional syscall support in the sandbox
Summary: [macOS] Allow additional syscall support in the sandbox
Status: RESOLVED FIXED
Alias: None
Product: WebKit
Classification: Unclassified
Component: WebKit2 (show other bugs)
Version: WebKit Nightly Build
Hardware: Unspecified Unspecified
: P2 Normal
Assignee: Brent Fulgham
URL:
Keywords: InRadar
Depends on:
Blocks:
 
Reported: 2021-02-23 15:50 PST by Brent Fulgham
Modified: 2021-02-23 17:02 PST (History)
1 user (show)

See Also:


Attachments
Patch (1.44 KB, patch)
2021-02-23 15:53 PST, Brent Fulgham
no flags Details | Formatted Diff | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Brent Fulgham 2021-02-23 15:50:44 PST
We are seeing sandbox errors when some dependent frameworks created caches in the WebContent process. Some of these code paths are relevant in the Network Process, as well.

We should allow this syscall access now that we understand its use, and have evaluated the risk of the syscall.
Comment 1 Brent Fulgham 2021-02-23 15:51:32 PST
<rdar://problem/74473824>
Comment 2 Brent Fulgham 2021-02-23 15:53:10 PST
Created attachment 421361 [details]
Patch
Comment 3 Per Arne Vollan 2021-02-23 15:54:25 PST
Comment on attachment 421361 [details]
Patch

R=me.
Comment 4 EWS 2021-02-23 17:02:49 PST
Committed r273359: <https://commits.webkit.org/r273359>

All reviewed patches have been landed. Closing bug and clearing flags on attachment 421361 [details].