Bug 264632 - [Cocoa] Allow two syscalls found by sandbox telemetry
Summary: [Cocoa] Allow two syscalls found by sandbox telemetry
Status: RESOLVED FIXED
Alias: None
Product: WebKit
Classification: Unclassified
Component: WebKit Misc. (show other bugs)
Version: WebKit Local Build
Hardware: Unspecified Unspecified
: P2 Normal
Assignee: Brent Fulgham
URL:
Keywords: InRadar
Depends on:
Blocks:
 
Reported: 2023-11-10 15:18 PST by Brent Fulgham
Modified: 2023-11-13 12:25 PST (History)
1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Brent Fulgham 2023-11-10 15:18:42 PST 
Telemetry on iOS and macOS shows that we need to allow access to SYS_fsctl in the Network process, and SYS_crossarch_trap in all sandboxes.
Comment 1 Radar WebKit Bug Importer 2023-11-10 15:19:23 PST 
<rdar://problem/118254040>
Comment 2 Brent Fulgham 2023-11-10 15:23:26 PST 
Pull request: https://github.com/WebKit/WebKit/pull/20340
Comment 3 EWS 2023-11-13 12:25:00 PST 
Committed 270661@main (b627d2e0516a): <https://commits.webkit.org/270661@main>

Reviewed commits have been landed. Closing PR #20340 and removing active labels.