Umcwaningi wezokuphepha ukhiphe imininingwane mayelana nesiphazamisi se-Apple HomeKit, esithe ukwenqaba insizakalo kungabangela kumadivayisi e-iOS axhunyiwe futhi iqhubeke ngemva kokuqalisa kabusha. Umcwaningi uthe wabikela u-Apple ngesiphazamisi ngo-Agasti.
Umcwaningi wezokuphepha uTrevor Spiniolas, othole isiphazamisi, ubiza ubungozi be-Doorlock futhi ashicilele ubufakazi bomqondo ku-GitHub. Isiphazamisi siku-Apple's HomeKit API yamadivayisi ahlakaniphile asekhaya. Isiphazamisi senzeka lapho abahlaseli besetha idivayisi ye-HomeKit enegama elide, cishe izinhlamvu ezingu-500,000. Amadivayisi e-iOS abe esexhumeka kuleyo divayisi ayayeka ukuphendula, ngisho nangemva kokuqalisa kabusha. Lapho abasebenzisi bebuyisela idivayisi ye-iOS kuzilungiselelo zasembonini, kodwa bese ungena ku-iCloud I-akhawunti ehlotshaniswa nedivayisi ye-HomeKit, iphutha liyaqaliswa kabusha.
I-Spiniolas ibika ukuthi noma yiluphi uhlelo lokusebenza lwe-iOS olukwazi ukufinyelela idatha ye-Apple Home lungaqamba kabusha amadivayisi we-HomeKit. Izinhlelo zokusebenza ezinjalo zingasebenzisa ukuba sengozini. I-Apple yethule umkhawulo ngobude bamagama e-HomeKit ku-iOS 15.1 futhi, ngokusho komcwaningi, kungenzeka ukuthi yayiyi-15.0, ngakho-ke lokhu akusakwenzeki kumadivayisi asanda kubuyekezwa we-iOS. Kodwa-ke, amadivayisi we-HomeKit aseqanjwe kabusha asengakwazi “ukumisa” amadivayisi we-iOS asebenzisa izinguqulo zakamuva ze-iOS.
Umcwaningi ugcizelela ukuthi maningi amathuba okuthi ubungozi busetshenziswe ngokudala inethiwekhi Yasekhaya nokumemela abantu kuyo ngama-imeyili obugebengu bokweba imininingwane ebucayi. U-Spiniolas uthi abasebenzisi bangakwazi ukuzivikela ngokumelene nesiphazamisi ngokuziba izimemo eziya kumanethiwekhi Asekhaya angaziwa. Abasebenzisi be-iOS abasebenzisa amadivayisi e-HomeKit ngokwabo bangazivikela ngokwengxenye ngokukhubaza 'Ukubonisa Izilawuli Zasekhaya' Kusikhungo Sokulawula.
U-Spiniolas uthe ubike lesi siphazamisi ku-Apple ngo-Agasti 10. Ngokusho komcwaningi, i-Apple ibonise ukuthi izoqhamuka nokulungiswa "ngaphambi kuka-2022", kodwa ngenyanga edlule ilungise lokhu "ekuqaleni kuka-2022", okwathi ngemva kwalokho uSpiniolas watshela i-Apple ukuthi izokwenza isiphazamisi esidlangalaleni ekuqaleni kuka-2022. Isiphazamisi asikakaxazululwa yi-Apple. Umcwaningi wathintwa phambilini mayelana nesiphazamisi ku-macOS, esakopishwa ngo-2019.
I-Spiniolas ikholelwa ukuthi i-Apple ibiphuza kakhulu ukuphendula umbiko wayo wokuqala. Umcwaningi wabelana ngama-imeyili ne-The Verge, lapho isisebenzi se-Apple savuma iphutha futhi sacela i-Spiniolas ukuthi ingashicileli imininingwane nge-Doorlock kuze kube ekuqaleni kuka-2022. U-Apple akakaphawuli esidlangalaleni ngokukhululwa.
Sekuyisikhathi eside i-Apple igxekwa ngohlelo lwayo lwe-bug bounty. Ezinkampanini ezinkulu zobuchwepheshe, inqubomgomo ye-Apple yokudalula incane kakhulu. Nakuba i-Apple inikeza imivuzo ephakeme uma kuqhathaniswa, izigebengu ezihlakaniphile bezilokhu zikhononda iminyaka mayelana nokulungiswa okuhamba kancane nezaziso ezibonakala zinyamalala emigodini emnyama. kakade wabhala isihloko ngalezo zinkinga ngonyaka odlule.