REOPENED 231079
Block access in sandbox to capability which is allowed by default 
https://bugs.webkit.org/show_bug.cgi?id=231079
Summary Block access in sandbox to capability which is allowed by default
Per Arne Vollan
Reported 2021-10-01 07:40:07 PDT
Some capabilities are allowed by default, and needs to be explicitly denied in the sandbox.
Attachments
Patch (1.65 KB, patch)
2021-10-01 07:42 PDT, Per Arne Vollan 		bfulgham: review+
DetailsFormatted DiffDiff
Patch (1.62 KB, patch)
2021-10-11 03:45 PDT, Per Arne Vollan 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Per Arne Vollan
Comment 1 2021-10-01 07:40:54 PDT
<rdar://66586853>
Per Arne Vollan
Comment 2 2021-10-01 07:42:52 PDT
Created attachment 439859 [details] Patch
Brent Fulgham
Comment 3 2021-10-01 09:23:18 PDT
Comment on attachment 439859 [details] Patch r=me
Per Arne Vollan
Comment 4 2021-10-11 03:40:49 PDT
(In reply to Brent Fulgham from comment #3) > Comment on attachment 439859 [details] > Patch > > r=me I have tested this change locally, and it does not appear to introduce a regression related to JIT code generation. Thanks for reviewing!
Per Arne Vollan
Comment 5 2021-10-11 03:45:54 PDT
Created attachment 440772 [details] Patch
EWS
Comment 6 2021-10-11 04:50:32 PDT
Committed r283890 (242767@main): <https://commits.webkit.org/242767@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 440772 [details].
WebKit Commit Bot
Comment 7 2021-10-12 02:46:19 PDT
Re-opened since this is blocked by bug 231567
Note You need to log in before you can comment on or make changes to this bug.