Security/Sandbox/2015-01-08: Difference between revisions
Jump to navigation
Jump to search
(Created page with "<!-- Maybe don't screw with these links unless you've read this blog post: http://blog.johnath.com/2011/01/20/automatic-date-links-in-mediawiki/ Just copy them to new pages an...") |
m (→Mac: added Mac content sandboxing updates for the week) |
||
| Line 31: | Line 31: | ||
===Mac=== | ===Mac=== | ||
* '''Content Sandboxing''' | * '''Content Sandboxing''' | ||
** Bug 1083344: adjusted rules to work for a "real installation" of FF, removing all constant paths. Global variables like "HOME" or "container-path" are not available inside the context, so had to bring them from the plugin itself. | |||
** todo: first patch will only work for 10.9 and 10.10 as they are the most widespread MacOS versions, previous versions will be supported in upcoming patches. | |||
* '''GMP/EME Sandboxing''' | * '''GMP/EME Sandboxing''' | ||
** Found a weird Mac-only GMP crash bug ({{bug|1118827}}). But it seems to have been a fluke -- all reports seem to come from the same person, on the same day. | ** Found a weird Mac-only GMP crash bug ({{bug|1118827}}). But it seems to have been a fluke -- all reports seem to come from the same person, on the same day. | ||
Latest revision as of 14:10, 9 January 2015
« previous week | index | next week »
Standup/Status
Windows
- Content Sandboxing
- bug 1110760 - Vista 64-bit crash - fix on m-c - need to request uplift for Aurora, Beta and maybe release?
- ask ctalbert about number of users running 64-bit Windows XP or Vista.
- bug 1110760 - Vista 64-bit crash - fix on m-c - need to request uplift for Aurora, Beta and maybe release?
- GMP/EME Sandboxing
- bug 1110760 - affects GMP as well
- bug 1117140 - GMP sandbox break-out - fix on m-c from jimm
- bug 1094370 - USER_LOCKDOWN trying to debug at the moment - cpearce's clearkey dll fails to load when compiled with TEST_DECODING
- new Adobe CDM drop
- cpearce says new CDM drop doesn't play video successfully.
- OpenH264 and Adobe CDM are the only GMP plugins we have for testing now.
- bug 1057646: work in progress on playing embedded video using OpenH264.
Linux/B2G
- Content Sandboxing
- Work on filesystem access brokering continues. (I have unit tests!)
- File input element issues will be a problem.
- Still not quite sure what to do about remote jars.
- GMP/EME Sandboxing
- The decision to allow unsandboxed OpenH264 if seccomp-bpf isn't supported is being reconsidered…
Mac
- Content Sandboxing
- Bug 1083344: adjusted rules to work for a "real installation" of FF, removing all constant paths. Global variables like "HOME" or "container-path" are not available inside the context, so had to bring them from the plugin itself.
- todo: first patch will only work for 10.9 and 10.10 as they are the most widespread MacOS versions, previous versions will be supported in upcoming patches.
- GMP/EME Sandboxing
- Found a weird Mac-only GMP crash bug (bug 1118827). But it seems to have been a fluke -- all reports seem to come from the same person, on the same day.
- http://mozilla.github.io/webrtc-landing/pc_test_h264.html testcase appears not to work in e10s mode. This is a known problem, on all platforms.
- Found a weird Mac-only GMP crash bug (bug 1118827). But it seems to have been a fluke -- all reports seem to come from the same person, on the same day.
Chromium
- gcc4.4 bug 1056337 for ICS B2G has landed, so we should be able to update to latest stable Chromium code hopefully
Round Table
- Consider setting up a Bugzilla component.
- Concerns about dependencies/planning with audio remoting (via :padenot).
- Firefox 38 will be the big Fall release.
- Bob asked about ClearKey tests:
- ClearKey CDM in tree is tested using mochitests, but it doesn't actually decode video.
- bug 1075199: Edwin is adding WMF code to in-tree ClearKey CDM.
- ClearKey CDM in tree is tested using mochitests, but it doesn't actually decode video.