canmove, Confirmed users, Bureaucrats and Sysops emeriti
2,776
edits
Security/Reviews/ScreenSaverAPI: Difference between revisions
Jump to navigation
Jump to search
no edit summary
No edit summary |
No edit summary |
||
| Line 7: | Line 7: | ||
</bugzilla> | </bugzilla> | ||
}} | }} | ||
{{SecReview}} | {{SecReview | ||
|SecReview feature goal=1) Expose power management features to privileged gaia apps | |||
2) Allow content to request a wake lock for a resource - for each resource, content can hold a lock of state of locked, locked but not visible and unlocked. - not visible is only observed for some topics (e.g. it doesn't make sense for network or, perhaps, CPU) | |||
* Topics: Are they defined yet (apparently not)? | |||
* Mentioned so far: | |||
** CPU | |||
** Screen lock / brightness | |||
** Network lock | |||
* Suggestion from Lucas - At least on the Desktop, being able to grab the screenlock could be implicit if you're fullscreen or playing a video. | |||
2 weird things: | |||
# it has 2 surfaces that are exposes; 1 to content, | |||
# to privileged (see interface link above) - doesn't allow you to actually do anything - it allows you to request and monitor lock state | |||
* All the policy ends up happening either in gaia or chrome.js | |||
* 1 policy - things that aren't visible can't affect the | |||
|SecReview alt solutions=* see {{bug|697132}} | |||
|SecReview threats considered=* Battery flattening (by carelessly developed / malicious content) are discussed in {{bug|697132}} | |||
|SecReview threat brainstorming=* There's a question around what kind of apps should be able to do various things (e.g. turn screen on / off, lock, CPU, etc) | |||
* What could go wrong with notifications (from the backend); these essentially result in js being executed | |||
}} | |||
{{SecReviewActionStatus | {{SecReviewActionStatus | ||
|SecReview action item status= | |SecReview action item status=In Progress | ||
|SecReview action items=* Fixing the b2g screen wake lock to have permissions (jlebar) | |||
}} | }} | ||
== Other == | |||
Discussion on whether origin is appropriate in the context of apps - most of the detail around this exists elsewhere (permission discussion, etc) | |||