Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: b55fd4fb194517386a86c5c5d316c8b2d888620f
https://github.com/WebKit/WebKit/commit/b55fd4fb194517386a86c5c5d316c8b2d888620f
Author: Chris Dumez <[email protected]>
Date: 2026-03-03 (Tue, 03 Mar 2026)
Changed paths:
M Source/WebKit/Platform/IPC/cocoa/ConnectionCocoa.mm
Log Message:
-----------
Do some security hardening after 308536@main
https://bugs.webkit.org/show_bug.cgi?id=309064
Reviewed by Per Arne Vollan.
Create a copy of the SharedMemory data on the recipient side before we
attempt to decode it, to guard against TOCTOU bugs. This is not
performance sensitive anyway as this IPC logic is only a fallback when
hitting a MACH_SEND_TOO_LARGE when sending.
No new tests, covered by IPC.SharedMemoryFallback which is still passing.
* Source/WebKit/Platform/IPC/cocoa/ConnectionCocoa.mm:
(IPC::createMessageDecoder):
Canonical link: https://commits.webkit.org/308585@main
To unsubscribe from these emails, change your notification settings at
https://github.com/WebKit/WebKit/settings/notifications
