Security/Sandbox/2016-06-02
From MozillaWiki
« previous week | index | next week »
haik
- bug 1272764 - Remove OS X 10.6-10.8-Specific Sandboxing Code - backed out, new patches posted and reviewed, need to test on 10.9, 10.10
- bug 1272772 - Inline system.sb and remove unneeded rules - reviewed
- bug 1276420 - Widevine plugin crashing on OS X due to -stdlib=libc++ and sandboxing interaction - landed
- bug 1270018 - NS_APP_CONTENT_PROCESS_TEMP_DIR should only return the sandbox writeable temp - started looking at this
bobowen
- bug 1252877 - Add support for taking plugin window captures at the start of a scroll - got my head round the various parts of this in the compositor I think, so starting to implement.
- bug 1271890 - Crash in base::win::PEImage::GetProcAddress - kanru looking at this ... filed bug 1276961 over loading the child EXE - patch is up
- bug 1275813 - Crash in base::win::PEImage::GetProcOrdinal - haven't heard anything from needinfos
- bug 1276717 - Print Preview and output much smaller than original/document size in one profile - patch on inbound, SUMO article up for people who hit this in Fx47
- bug 1270447 - Printing via parent fails when using pref print.always_print_silent=true - landed
- bug 1274937 - Add outer window ID to nsFrameLoader::Print to allow printing of frames - landed
- bug 1276518 - PRemotePrintJob argument for ShowProgress should be nullable - noticed this when testing the two above ... patch landed
tedd
- bug 1274873 - gmain signal blocking issue on systems with no TSYNC - review granted, some minor changes required
- bug 1275781 - seccomp violation: sys_accept - review granted
- bug 1275785 - seccomp violation: sys_bind - review granted
- bug 1275786 - seccomp violation: sys_listen - review granted
- bug 1275920 - seccomp violation: sys_rt_tgsigqueueinfo - encountered during tests on try - review cancelled, need to restrict it like tgkill
- bug 1276470 - seccomp violation: sys_statfs - review pending
aklotz
- bug 1276961 - Partially reviewed, will finish today
gcp
- Telemetry landed, results are in. They suck. Need to dig what distros are bad.
- Blogged about NSS/sandbox interaction
- bug 1273852 Seccomp sandbox violation: sys_getsockopt called in content process of Firefox desktop
- File broker directory/path support (for post-creation files)
roundtable
- COM security in sandboxed content: See also: bug 1277075 and https://msdn.microsoft.com/en-us/library/windows/desktop/ms693736%28v=vs.85%29.aspx
- Module peer changes