canmove, Confirmed users, Bureaucrats and Sysops emeriti
2,776
edits
Security/Reviews/Android Service Installer: Difference between revisions
Jump to navigation
Jump to search
Security/Reviews/Android Service Installer (view source)
Revision as of 20:31, 24 September 2012
, 24 September 2012no edit summary
(Created page with "{{SecReviewInfo |SecReview name=Android Service Based Installer }} {{SecReview}} {{SecReviewActionStatus |SecReview action item status=None }}") |
No edit summary |
||
| Line 1: | Line 1: | ||
{{SecReviewInfo | {{SecReviewInfo | ||
|SecReview name=Android Service Based Installer | |SecReview name=Android Service Based Installer | ||
|SecReview target=<bugzilla> | |||
{ | |||
"id":"786380" | |||
} | |||
</bugzilla> | |||
}} | |||
{{SecReview | |||
|SecReview feature goal=*New updater for Android based Firefox | |||
*The old updater was hooked into the normal native update system - some C++ and JS components (all the same infrastructure, but custom code to apply the update) - big drawback - we couldn't ever check or apply an update without the app running - This isn't great if nightly isn't your default browser (you might not run it much). | |||
**we couldn't download in the backround with the old updater | |||
*What changes between nightly / aurora and beta / release? We still send update pings to get ADUs - mozupdater = 0 in config files. | |||
*If mozupdater is disabled, the new updater won't be running either - so there are changes that could plausibly affect beta / release but it's unlikely. | |||
*Releng | |||
*SSL cert checking - relies on underlying android features. No authenticity check on the package - we're relying on a hash and a valid SSL cert to make sure everything else is OK. | |||
|SecReview threats considered=*We've had issues reported for the su issue on rooted phones... No longer a problem - all removed now. | |||
|SecReview threat brainstorming=*Can we think about scenarios where people aren't using Play and aren't getting updates? | |||
**Can we capture this information? | |||
**Do we want to solve this problem? (maybe we can't get this information) | |||
* How about package signing? | |||
}} | }} | ||
{{SecReviewActionStatus | {{SecReviewActionStatus | ||
|SecReview action item status= | |SecReview action item status=In Progress | ||
|SecReview action items=* snorp::Check to see if the app store is installed in the device - warn the user if they don't have the ability to get updates:: | |||
}} | }} | ||