Security/Sandbox/2016-01-14

From MozillaWiki
Jump to: navigation, search

« previous week | index | next week »

Windows

  • Content Sandboxing
    • bug 1238964 - Printing via parent doesn't handle paper sizes correctly - this was the problem I found with bug 1156742 - I have patches just about to push to try.
  • NPAPI Sandboxing
    • bug 1236911 - Cannot open file picker window from flash widget on x64 browser version - the was caused by fix for bug 1165903. Flash must walk up our HWND chain to parent it's file picker HWND, which breaks because of integrity levels. It works for windowless flash, which I think we want to force anyway.

OS X

  • Content Sandboxing
    • bug 1237847 - [e10s] Null deref crash when running test_pluginstream_newstream.html - The content process wants to create files in ~/Library/Caches/TemporaryItems/. Looking at security/sandbox/mac/Sandbox.mm. Wondering if modifying the sandbox ruleset to allow this is the right approach.


Cross Platform

  • WebRTC/OpenH264 Sandboxing
  • Fuzzing
    • bug 1232119 - Extend Faulty (IPC fuzzer) to fuzz Shmem content - Did a little more on this, in my tests fuzzing the ShmemCreated message (child->parent) results in it an incorrect size being immediately detected by the parent and an intentional crash, don't have a patch ready yet. Looking at how to clean up the patch (with fewer #ifdef's) so that it could live in mozilla-central instead of bugzilla.