6979ea37b4
merge mozilla-central to autoland. r=merge a=merge
2017-10-30 23:58:16 +01:00
e67fce9b1f
Bug 1412827: Add Symantec DLLs ffm64 and ffm to the sandboxed child blocklist. r=jimm
...
This patch also adds k7pswsen.dll unconditionally as it is still appearing
in many crash reports despite the block working in a test VM.
2017-10-30 16:28:26 +00:00
6557099666
Bug 1411115 - Allow F_SETLK fcntl in sandboxed content processes. r=gcp
...
MozReview-Commit-ID: ARc7EpfN73o
--HG--
extra : rebase_source : 21c35a65a7c45387e2bd7fd7aba5f82ecf7c9ab3
2017-10-27 18:05:53 -06:00
ee247f0d5f
Bug 1409900 - Handle sandboxed statfs() by replacing it with open+fstatfs. r=gcp
...
MozReview-Commit-ID: 4Q0XMWcxaAc
--HG--
extra : rebase_source : e6065c91ddb271b71b5577ca0d6c39349565724c
2017-10-27 19:32:37 -06:00
27d4543313
Bug 1409900 - Disallow quotactl in sandboxed content processes. r=gcp
...
MozReview-Commit-ID: 3svUgLLTZKL
--HG--
extra : rebase_source : 2f51310f19cff45313cafd2bdcc60f2999b729b3
2017-10-25 12:43:13 -06:00
d67d120cc4
Backed out 4 changesets (bug 1386404) for mass failures, e.g. in browser-chrome's dom/tests/browser/browser_xhr_sandbox.js. r=backout on a CLOSED TREE
...
Backed out changeset 36556e1a5ac7 (bug 1386404138640413864041386404
2017-10-30 19:10:01 +01:00
3d94d8e8e1
Bug 1386404 - Only do the tmp remapping if needed. r=jld
...
This helps with getting the tests that are running out of /tmp
to pass, who get confused if their paths change underneath them.
It's also a bit faster.
MozReview-Commit-ID: CWtngVNhA0t
--HG--
extra : rebase_source : 304481a18c371c3253448971f48064bcbd681a81
2017-10-26 18:02:10 +02:00
577b3a7731
Bug 1386404 - Intercept access to /tmp and rewrite to content process tempdir. r=jld
...
MozReview-Commit-ID: 2h9hw6opYof
--HG--
extra : rebase_source : f3121d7afff22e3f72c66e3a5553e731a83a2e1c
2017-10-26 17:50:49 +02:00
6a66615d8d
Bug 1386404 - Enable access to the entire chrome dir from content. r=jld
...
This may be required if people have @import in their userContent.css, and
in any case our tests check for this.
MozReview-Commit-ID: 8uJcWiC2rli
--HG--
extra : rebase_source : 3542ea305aabaca0500d66f8e86f5c12170d793e
2017-10-26 18:57:03 +02:00
802f1b9395
Bug 1386404 - Enable content-process specific tmpdir on Linux. r=haik
...
MozReview-Commit-ID: 6Hijq0to9MG
--HG--
extra : rebase_source : c7a3559e4cbdfd1885d13a489c4eeb311ca973fa
2017-10-12 11:18:25 +02:00
21363323fd
Backed out 2 changesets (bug 1409900) for failing browser chrome on Linux opt at browser/base/content/test/general/browser_bug590206.js r=backout a=backout.
...
Backed out changeset 83296a355dd4 (bug 1409900)
Backed out changeset 072007f83431 (bug 1409900)
2017-10-27 16:15:47 +03:00
76b1bdf7de
Bug 1408497 - Disallow inotify in sandboxed content processes. r=gcp
...
MozReview-Commit-ID: nKyIvMNQAt
--HG--
extra : rebase_source : 5347e8da745d6f4a0cd4e81e76fe6b94d94eac30
2017-10-25 13:35:47 -06:00
5f10d1f416
Bug 1409900 - Handle sandboxed statfs() by replacing it with open+fstatfs. r=gcp
...
MozReview-Commit-ID: 4Q0XMWcxaAc
--HG--
extra : rebase_source : 6bd36df3155fc5cdda67720e313028a68e2f0901
2017-10-25 13:08:26 -06:00
fce1017953
Bug 1409900 - Disallow quotactl in sandboxed content processes. r=gcp
...
MozReview-Commit-ID: 3svUgLLTZKL
--HG--
extra : rebase_source : 54623b48c65a1319905cab5aa520928681ec0023
2017-10-25 12:43:13 -06:00
160e1dcfe0
Bug 1410191 - Correctly handle errors when using syscalls in sandbox trap handlers. r=gcp
...
MozReview-Commit-ID: JX81xpNBMIm
--HG--
extra : rebase_source : c7334f3e0b61b4fb4e0305cc6fc5d3173d08c032
2017-10-25 16:38:20 -06:00
b8aa6b6de9
Bug 1410241 - Don't call destructors on objects we use in the SIGSYS handler. r=gcp
...
MozReview-Commit-ID: LAgORUSvDh9
--HG--
extra : rebase_source : b39836ebb7405202c60b075b30b48966ac644e71
2017-10-25 17:58:22 -06:00
aa4363afaa
Bug 1410280 - Re-allow PR_GET_NAME for sandboxed content processes. r=gcp
...
This prctl is used by PulseAudio; once bug 1394163 is resolved, allowing
it can be made conditional on the media.cubeb.sandbox pref.
MozReview-Commit-ID: 6jAM65V32vK
--HG--
extra : rebase_source : abb039aff7cefc0aa3b95f4574fdf1e3fb0d93a6
2017-10-25 11:04:34 -06:00
a173b09db6
Backed out changeset ccc0e72f2152 (bug 1403260) for hanging Mac browser-chrome in printing tests
...
MozReview-Commit-ID: IZNT5Jh8nzB
2017-10-25 23:00:17 -07:00
362316451f
Bug 1403260 - [Mac] Remove access to print server from content process sandbox r=mconley
...
MozReview-Commit-ID: Ia21je8TTIg
--HG--
extra : rebase_source : 656e9e3ac8d1fb741d46881458bb0b7fb402d688
2017-10-22 23:02:58 -07:00
9bac6e88bd
Bug 1328896 - Restrict fcntl() in sandboxed content processes. r=gcp
...
MozReview-Commit-ID: BDBTwlT82mf
--HG--
extra : rebase_source : 9036abfb23768e7b17181fbc680692468d66ccd0
2017-07-24 17:33:07 -06:00
90adeb05d8
Bug 1404919 - Whitelist Extensis Suitcase Fusion fontvaults and /System/Library/Fonts. r=Alex_Gaynor
...
MozReview-Commit-ID: 5UaqiHBKd90
--HG--
extra : rebase_source : 3497f97815d57e9e3fa0cc13482af5d0d81cfd87
2017-10-12 18:29:42 -07:00
32f7c8fec3
merge mozilla-inbound to mozilla-central. r=merge a=merge
...
MozReview-Commit-ID: 1h3kZyrtqSt
2017-10-17 11:45:16 +02:00
28e8f43756
Bug 1408821 - Allow FIONBIO ioctl from the content sandbox. r=jld
...
--HG--
extra : rebase_source : c6a1b525bc7d9207583200fd5d5059a8155b889f
2017-10-16 14:54:46 +13:00
f7efb5fc2c
Merge mozilla-central to mozilla-inbound. r=merge a=merge on a CLOSED TREE
2017-10-12 12:03:15 +02:00
17a6cb2cbf
Bug 1407766 - Remove symantec dlls from the content process dll blocklist due to process startup issues associated with symantec av products. r=bobowen
...
MozReview-Commit-ID: JMOIptO2y7F
2017-10-11 18:00:18 -05:00
a9b7865141
Bug 1316153 - Remove base::ChildPrivileges from IPC. r=billm,bobowen
...
ChildPrivileges is a leftover from the B2G process model; it's now
mostly unused, except for the Windows sandbox using it to carry whether
a content process has file:/// access.
In general, when sandboxing needs to interact with process launch, the
inputs are some subset of: the GeckoProcessType, the subtype if content,
various prefs and even GPU configuration; and the resulting launch
adjustments are platform-specific. And on some platforms (e.g., OS X)
it's all done after launch. So a simple enum used cross-platform isn't
a good fit.
MozReview-Commit-ID: K31OHOpJzla
--HG--
extra : rebase_source : 3928b44eb86cd076bcac7897536590555237b76b
2017-09-08 16:16:50 -06:00
433feb3f7e
Bug 1387837 - Add library paths from /etc/ld.so.conf to broker read access policy. r=jld
...
MozReview-Commit-ID: S5vq6suTU4
--HG--
extra : rebase_source : b82f3ff902ca6e4929a8458aa952f409e30356b5
2017-10-06 12:35:35 +02:00
55a0096f3c
Bug 1320834 - Reduce prctl policy for desktop content processes. r=gcp
...
This removes the allow-all override in the content policy, which means it will
fall back to the more restrictive prctl policy in SandboxPolicyCommon.
MozReview-Commit-ID: CncoGi0HLxR
--HG--
extra : rebase_source : 6cb1834c56a1781f1512b7b078ba3469c3dd8537
2017-04-12 18:41:20 -06:00
2a020d2e77
Bug 1408493 - Don't restrict ioctl() in sandboxed content if ALSA might be used. r=gcp
...
MozReview-Commit-ID: 61AmLLcPaWw
--HG--
extra : rebase_source : ba3ad2886b871a8753e9ac30c46fc3356f4fb1c4
2017-10-13 14:34:10 -06:00
b61d9d2cbe
Bug 1408498 - Allow FIONREAD in sandboxed content processes, for libgio. r=gcp
...
MozReview-Commit-ID: 23mO3vCb7Gu
--HG--
extra : rebase_source : b0183cb4d8d6a5e6ab03e9d4e1db1a3bb76a3569
2017-10-13 14:32:43 -06:00
df2e63a6ff
Bug 1408568 - Handle SandboxReport::ProcType::FILE correctly in XPCOM bindings. r=gcp
...
MozReview-Commit-ID: EwNTeG4cbZG
--HG--
extra : rebase_source : feed835fd56053644c5fa390d95884fc9b17439b
2017-10-13 17:33:01 -06:00
ff9470afb1
Bug 1406068: Expand the list of DLLs that are suspected of causing a crash in ImageBridgeChild::InitForContent. r=jimm
...
I think that trying to slice this up by feature is just going to lead to complications down the line,
so to keep it simple I've moved this to the launch code for all sandboxed children, not just when the
Alternate Desktop is enabled.
This also, similar to chromium, only adds them to the blocklist if they are loaded in the parent.
2017-10-10 10:42:22 +01:00
c2d6023454
merge mozilla-inbound to mozilla-central. r=merge a=merge
...
MozReview-Commit-ID: 36L7JL73CzG
2017-10-09 23:52:04 +02:00
2a15781174
Bug 1369561 - Address misc. SnprintfLiteral correctness nits. r=jld, r=froydnj
2017-09-15 14:47:54 -07:00
3709f8d1e4
Bug 1406233 - Include sys/sysmacros.h for major()/minor() macros in Linux sandbox broker. r=gcp
...
MozReview-Commit-ID: G1D4yxLAAqg
--HG--
extra : rebase_source : 2b13a20e324a3160ce393f7eb7913d78cc274419
2017-10-05 18:10:49 -06:00
860bc842e2
Bug 1405891 - Block tty-related ioctl()s in sandboxed content processes. r=gcp
...
MozReview-Commit-ID: KiBfibjLSfK
--HG--
extra : rebase_source : e0cdbb5026c03d2b5a12fb49161aee392efb4189
2017-10-05 19:53:31 -06:00
9d77bd9d20
Bug 1393805 - Part 5 - Test that the system extensions dev dir is readable from content. r=bobowen
...
MozReview-Commit-ID: 7YN7S7R39CU
--HG--
extra : rebase_source : 092f1046a3f6b44c807f7632275615a6bdd674dd
2017-09-27 16:01:57 -07:00
1e86039b0d
Bug 1393805 - Part 4 - Add Linux whitelisted directory for system extensions development. r=gcp
...
MozReview-Commit-ID: 2eTx1eM1fCM
--HG--
extra : rebase_source : c9c40b552b65a36b1ddb94e31ab04d84571e8d87
2017-10-04 10:50:48 -07:00
35249752a0
Bug 1393805 - Part 3 - Add Windows whitelisted directory for system extensions development. r=bobowen
...
MozReview-Commit-ID: 8K5c3mUlqna
--HG--
extra : rebase_source : 0f5a47e8504a38939a1c34a4bc4073bcdc1545d3
2017-10-02 15:17:15 -07:00
c0bfbc91e0
Bug 1393805 - Part 2 - Add Mac whitelisted directory for system extensions development. r=Alex_Gaynor
...
MozReview-Commit-ID: ADkcqFAsKaY
--HG--
extra : rebase_source : 02db543e05109e764228862ef5c760a0132eb4c2
2017-10-05 16:06:36 -07:00
e0ca72f574
Bug 1406845 - AddMesaSysfsPaths: Resource leak on dir r=gcp
...
MozReview-Commit-ID: 3ul84cttRAF
--HG--
extra : rebase_source : 6d5306ef859f2db6101c08fb6aad405ffce30696
2017-10-09 09:29:29 +02:00
6c211079d0
Backed out changeset 8198bc4c7e3c (bug 1393805)
2017-10-05 00:20:11 +02:00
d60d5571f3
Backed out changeset 45695eda1c1c (bug 1393805)
2017-10-05 00:20:06 +02:00
072e34c960
Backed out changeset 1ba3220d84fa (bug 1393805)
2017-10-05 00:20:00 +02:00
e8b4c9dc97
Backed out changeset 4fe99f70e199 (bug 1393805)
2017-10-05 00:19:55 +02:00
9a88df4221
Bug 1393805 - Part 5 - Test that the system extensions dev dir is readable from content. r=bobowen
...
MozReview-Commit-ID: 7YN7S7R39CU
--HG--
extra : rebase_source : 01e3fe0acb051723219d9d5de5b1fd19d9751c34
2017-09-27 16:01:57 -07:00
e1dd4bac03
Bug 1393805 - Part 4 - Add Linux whitelisted directory for system extensions development. r=gcp
...
MozReview-Commit-ID: 2eTx1eM1fCM
--HG--
extra : rebase_source : 25cff10f2887795ce954b5fbca74df41fefa5c3e
2017-10-04 10:50:48 -07:00
213bec3e84
Bug 1393805 - Part 3 - Add Windows whitelisted directory for system extensions development. r=bobowen
...
MozReview-Commit-ID: 8K5c3mUlqna
--HG--
extra : rebase_source : 33b71d3ab20c0fdf24bcee39d4395757031213be
2017-10-02 15:17:15 -07:00
165980edfa
Bug 1393805 - Part 2 - Add Mac whitelisted directory for system extensions development. r=Alex_Gaynor
...
MozReview-Commit-ID: ADkcqFAsKaY
--HG--
extra : rebase_source : 492194ea7914d6f09b349f95b3eeea0bd003256a
2017-09-27 13:27:39 -07:00
ae5c1fb5c6
Bug 1401666 - Adjust sandbox policy to allow Mesa 12 to use libudev for device identification. r=gcp
...
MozReview-Commit-ID: JRRI9nd83TP
--HG--
extra : rebase_source : 3c5e3edd6606f33468120100f2a63533f1757935
2017-10-03 20:35:28 -06:00
Sebastian Hengst
Bob Owen
Jed Davis
Gian-Carlo Pascutto
Attila Craciun
Phil Ringnalda
Haik Aftandilian
Matthew Gregan
Jim Mathies
David Keeler
Sylvestre Ledru