Security/Sandbox/2017-08-10

« previous week | index | next week »

haik

• Landed
  • bug 1386075 - [Mac] Remove (iokit-user-client-class "RootDomainUserClient")
  • bug 1386161 - [Mac] Remove IOAudioControl Rules
  • bug 1386832 - On Linux, System extensions fail to load in local builds run outside of ./mach
    • ExtensionProtocolHandler doesn't depend on REPO_DIR env var on Linux anymore
  • bug 1388172 - [Mac] Remove access to "com.apple.window_proxies" from the content sandbox
  • bug 1322024 - [Mac] Remove com.apple.windowserver.active access from the content sandbox
• Policy pruning
  • bug 1388580 - [Mac] Remove miscellaneous iokit open permissions
• Chromium
  • No bootstrap, doing away with sandbox "warmup"
  • https://cs.chromium.org/codesearch/f/chromium/src/sandbox/mac/seatbelt_sandbox_design.md
• Font bug:
  • bug 1382260 - [mac] Sandbox blocks access to Linotype FontExplorerX font directory

Alex_Gaynor

• Mach services
  • bug 1385332 - Removed pluginkit (landed)
  • bug 1388360 - Removed iconservices
  • bug 1387570 - Removed cache_delete (landed)
  • bug 1388454 - Removed pasteboard
  • bug 1386363 - Removed configd
• bug 1387233 - Restrict ipc-posix-shm permissinos
• win32k
  • Switching to trying with API Monitor, much faster, having some trouble with stacks

gcp

• bug 1389078 Sandbox Broker relies on <sys/cdefs.h> breaking non-glibc
• bug 1385891 Firefox doesn't load extension's files after upgrade
• bug 1388046 Disable sandbox read restrictions (level 3) in Firefox 56
• bug 1386558 Sandboxing level 2 is no longer working correctly
• bug 1386826 Reftest and crashtest doesn't run locally on linux, after sandbox tightening
• bug 1387837 Consider using /etc/ld.so.conf for creating the broker read access policy

jld

• DConf continues to be a problem - bug 1384986
• Broke out bug 1388545 for the PulseAudio thing and landed it
  • This one was actually breaking stuff; the DConf one probably not
• Fedora X_OK thing landed - bug 1386279
• rename/symlink/link is not a sec bug; have patch, will post shortly - bug 1380701
• Assorted reviews

handyman

• bug 1382251 - Brokering https in NPAPI process
  • debugging memory management issues
  • marshaling a few of the types
  • switched to mozilla types