Security/Sandbox/2017-02-09
From MozillaWiki
« previous week | index | next week »
Contents
haik
- Web extensions sandbox research (FIXED URL NOW)
- bug 1333681 - [Mac] Level 2 profile directory read restrictions don't work for profiles in /var/folders
- landed
- bug 1334550 - Proxy moz-extension protocol requests to the parent process
gcp
- X11 proxy - testing interception
- reviewing Linux telemetry patches
jld
- bug 1286865 (syscall reporting) - mostly reviewed; data review maybe still outstanding
- Also, wrote a small test case; might land separately
- …and it might conflict with whatever else is happening with security/sandbox/test.
- (I still need to file a bug against mach try.)
- Also, wrote a small test case; might land separately
- bug 1257361 - asked for beta uplift, tested beta uplift locally, wrote up STR because I'd forgotten some of it in the past 2 months
- bug 778201 - nsProtocolProxyService::DeprecatedBlockingResolve is gone (and nsPluginHost doing proxy stuff in content processes)
- And I broke Thunderbird: bug 1336789
- Probably doesn't need uplift, since non-nightly won't crash from e.g. utime()
- bug 1335329 - the thing with PulseAudio and mkdir and EEXIST
handyman
- bug 1284897 - 64 bit Flash Player has storage permissions issues.
- All are r+ but will ask Bob for another quick review of some changes.
- bug 1329328 - 64-bit Firefox on Win10 - Flash Downloads result in OS Permission errors
- Fell off radar. Still awaiting word from Adobe on temp file naming
- We should consider just going with the obvious guess
- bug 1317735 - Consolidate env vars for logging
- push to 53
bobowen
- bug 1317921 - Handle nested file URIs with the file content process
- landed
- bug 1321724 - [e10s] Local HTML cannot be opened in Firefox 50
- landed - needs uplifting to beta
- bug 1337331 - Chromium sandbox update to stable channel version 56.0.2924.87
- Patches ready, just writing up notes.
round table
- linux: testing apis that cause crashes
- http://searchfox.org/mozilla-central/source/security/sandbox/test
- bug 1330785 - Extend 1309394 content sandbox tests to run native test libraries in content
- Can suppress crashes on Linux, post-bug 1286865
- But also, should repurpose existing browser crash tests to cover the crash reporter integration
- requiring access tests on new work going forward
- jsplugin sandboxing
- what day of the week for meeting is ok for jld/haik/jimm
- fixed Webextensions Sandboxing google doc URL above