Y
Hacker News
new
|
ask
|
show
|
jobs
by
thekingofh
2406 days ago
I think you mean that you can have interpreted javascript, just not JIT compilers. They don't allow you to mark memory as executable. That syscall is completely disabled on their systems.
2 comments
saagarjha
2406 days ago
It is not, moprotect (and mach_vm_protect) work just fine if you have the appropriate entitlements or have a way of getting around its checks.
link
thekingofh
2405 days ago
I think the entitlements are not offered to apps such as firefox and those that are not Apple correct?
link
saagarjha
2405 days ago
Some of them are, but they cannot be used with apps delivered on the App Store.
link
vbezhenar
2406 days ago
It can't be disabled because Safari and Webkit uses JIT for JavaScript. Probably it's enabled for apps signed by Apple.
link
thekingofh
2405 days ago
True it is disabled if you aren't Apple.
link