corysanin/tubestation
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
535,524 Commits 1 Branch 0 Tags
fea80dfb51a70ceb871386c7aab9fb396e4f255e
Commit Graph

59 Commits

Author SHA1 Message Date
Haik Aftandilian
5b6a8c9117 Bug 1444291 - Part 3 - Add read access to the Mac Flash sandbox, support sandbox levels r=Alex_Gaynor 
Replace the boolean pref "security.sandbox.mac.flash.enabled"
with "dom.ipc.plugins.sandbox-level.flash" to support sandbox
levels and be consistent with the Windows pref name.

Adds filesystem read access to the sandbox using sandbox extensions
granted by the file dialog machinery (level 1).

Add support for level 2 which blocks read access.

Allow the sandbox to be disabled with MOZ_DISABLE_NPAPI_SANDBOX.


MozReview-Commit-ID: 4rfobEoxQpF
 2018-03-15 20:23:19 -07:00
Coroiu Cristina
f0e23f51b3 Backed out 3 changesets (bug 1444291) for bustage at build/src/dom/plugins/ipc/PluginProcessChild.cpp 
Backed out changeset 48a9c2131347 (bug 1444291)
Backed out changeset dfc31b6c9f53 (bug 1444291)
Backed out changeset 8ee3e65465ed (bug 1444291)
 2018-03-16 03:07:35 +02:00
Haik Aftandilian
5de9f2ac22 Bug 1444291 - Part 3 - Add read access to the Mac Flash sandbox, support sandbox levels r=Alex_Gaynor 
Replace the boolean pref "security.sandbox.mac.flash.enabled"
with "dom.ipc.plugins.sandbox-level.flash" to support sandbox
levels and be consistent with the Windows pref name.

Adds filesystem read access to the sandbox using sandbox extensions
granted by the file dialog machinery (level 1).

Add support for level 2 which blocks read access.

Allow the sandbox to be disabled with MOZ_DISABLE_NPAPI_SANDBOX.


MozReview-Commit-ID: 4rfobEoxQpF
 2018-03-13 15:38:11 -07:00
Haik Aftandilian
0fdcab2793 Bug 1436566 - [Mac] Land disabled-by-default sandboxing for the Flash NPAPI plugin process. r=Alex_Gaynor,jimm 
MozReview-Commit-ID: Es0GbMLKvH5
 2018-02-12 15:46:31 -08:00
Jed Davis
7ec762e47d Bug 1401790 - Remove ProcessArchitecture from IPC. r=billm,jimm 
This was used to support cross-architecture NPAPI plugins on OS X, but
we stopped supporting that in 54 (bug 1339182).

MozReview-Commit-ID: 2BcWYD6mguY
 2017-10-04 20:31:12 -06:00
Nicholas Nethercote
e358cc86df Bug 1352575 (part 23) - Remove PluginProcessParent::mRunCompleteTaskImmediately. r=jimm. 
Because it never gets set true any more.

The patch also removes PluginModuleChromeParent::WaitForIPCConnection().
 2017-04-18 16:56:45 +10:00
Nicholas Nethercote
e20e423748 Bug 1352575 (part 5) - Remove PluginModuleParent::mIsStartingAsync. r=jimm. 
This allows a bunch of other things to be removed too, including
PluginModuleParent::mSurrogateInstances,
PluginModuleChromeParent::sInstantiated, and NS_PLUGIN_INIT_PENDING.

The patch also removes the AsyncPluginInit crash annotation.
 2017-04-18 16:56:43 +10:00
Bill McCloskey
ce42826bdf Bug 1372405 - Provide names for all runnables in the tree (r=froydnj) 
MozReview-Commit-ID: DKR6ROiHRS7
 2017-06-26 14:19:58 -07:00
Carsten "Tomcat" Book
238bf154d5 Backed out changeset 4f6302a98ae4 (bug 1372405) 2017-06-21 13:59:26 +02:00
Bill McCloskey
67e8af4720 Bug 1372405 - Provide names for all runnables in the tree (r=froydnj) 
MozReview-Commit-ID: DKR6ROiHRS7
 2017-06-20 21:44:11 -07:00
Carsten "Tomcat" Book
bbe9441993 Backed out changeset 9846de3bd954 (bug 1372405) 2017-06-20 08:27:02 +02:00
Bill McCloskey
f69608368b Bug 1372405 - Provide names for all runnables in the tree (r=froydnj) 
MozReview-Commit-ID: DKR6ROiHRS7
 2017-06-19 22:25:47 -07:00
Bob Owen
1e97e302e9 Bug 1339105 Part 3: Move NPAPI windows process sandbox file rules into SandboxBroker. r=jimm 
This also removes a rule that was added for sandboxing the Java plugin,
which we never did and we now only allow Flash anyway.

MozReview-Commit-ID: Jn6pCkLoGNM
 2017-05-22 20:41:28 +01:00
Wes Kocher
f39f2cccd5 Backed out 3 changesets (bug 1339105) for plugin process leaks a=backout 
Backed out changeset 431267ab28de (bug 1339105)
Backed out changeset 445875fbf13b (bug 1339105)
Backed out changeset c3fb60fbc326 (bug 1339105)

MozReview-Commit-ID: 4HYUQbHHnox
 2017-05-22 15:14:23 -07:00
Bob Owen
af598b058e Bug 1339105 Part 3: Move NPAPI windows process sandbox file rules into SandboxBroker. r=jimm 
This also removes a rule that was added for sandboxing the Java plugin,
which we never did and we now only allow Flash anyway.
 2017-05-22 20:41:28 +01:00
Sebastian Hengst
1fbf953916 Backed out changeset 367734cc9370 (bug 1339105) 2017-05-22 16:14:27 +02:00
Bob Owen
26e640b167 Bug 1339105 Part 3: Move NPAPI windows process sandbox file rules into SandboxBroker. r=jimm 
This also removes a rule that was added for sandboxing the Java plugin,
which we never did and we now only allow Flash anyway.
 2017-05-22 14:29:06 +01:00
David Parks
4784604438 Bug 1284897 - Hook GetSaveFileNameW/GetOpenFileNameW to record and grant a sandboxed process permission to access user-chosen files. r=jimm 2017-02-08 11:38:40 -08:00
Sebastian Hengst
25e6d08981 Backed out changeset c35afe490583 (bug 1284897) 2017-02-21 23:13:20 +01:00
David Parks
f7818b4465 Bug 1284897 - Hook GetSaveFileNameW/GetOpenFileNameW to record and grant a sandboxed process permission to access user-chosen files. r=jimm 2017-02-08 11:38:40 -08:00
Phil Ringnalda
f72d4e4b61 Backed out 5 changesets (bug 1284897) for mozilla::SandboxPermissions::RemovePermissionsForProcess crashes 
Backed out changeset 19b2fcee13a9 (bug 1284897)
Backed out changeset a5171791437f (bug 1284897)
Backed out changeset 3ea8b8a18515 (bug 1284897)
Backed out changeset 21497a4e3bde (bug 1284897)
Backed out changeset 12e17d5f0fa9 (bug 1284897)
 2017-02-16 22:14:15 -08:00
David Parks
93ff7f87a4 Bug 1284897 - Hook GetSaveFileNameW/GetOpenFileNameW to record and grant a sandboxed process permission to access user-chosen files. r=jimm 2017-02-08 11:38:40 -08:00
David Parks
cd5a73faac Bug 1185472 - Only allow NPAPI HWNDs to be adopted by an HWND in the chrome process. r=jimm 
Add the set of plugin process PIDs to PluginProcessParent and, when attempting to reparent plugin windows in the chrome process, validate that those windows originated with the plugin process (by checking the window's PID against the set in the PluginProcessParent).
 2016-12-22 10:50:03 -08:00
Carsten "Tomcat" Book
eb77d28a84 Backed out changeset 49f1c7ec4eca (bug 1185472) for bustage 2016-12-21 12:33:54 +01:00
David Parks
35491d2452 Bug 1185472 - Only allow NPAPI HWNDs to be adopted by an HWND in the chrome process r=jmathies 
Add the set of plugin process PIDs to PluginProcessParent and, when attempting to reparent plugin windows in the chrome process, validate that those windows originated with the plugin process (by checking the window's PID against the set in the PluginProcessParent).
 2016-12-18 19:58:16 -08:00
David Parks
1c77fd2891 Bug 1171393 - Remove sandbox write access to temp directory which was opened for tests. r=bobowen 2016-09-01 11:58:12 -07:00
Kyle Huey
b972c94d0f Bug 1268313: Part 7 - Move NS_NewRunnableMethod and friends to mozilla::NewRunnableMethod. r=froydnj 2016-05-05 01:45:00 -07:00
Kyle Huey
b91ceaea75 Bug 1268313: Part 2 - Replace some NewRunnableMethods with NS_NewNonOwningRunnableMethod. r=froydnj 2016-05-05 01:44:59 -07:00
Carsten "Tomcat" Book
d10653e369 Backed out changeset fd833da413ad (bug 1268313) 2016-04-29 14:21:25 +02:00
Carsten "Tomcat" Book
aadd508ffe Backed out changeset 85ce8cb0639a (bug 1268313) 2016-04-29 14:21:16 +02:00
Kyle Huey
e62a0823c9 Bug 1268313: Part 7 - Move NS_NewRunnableMethod and friends to mozilla::NewRunnableMethod. r=froydnj 2016-04-28 14:08:25 -07:00
Kyle Huey
b334682d78 Bug 1268313: Part 2 - Replace some NewRunnableMethods with NS_NewNonOwningRunnableMethod. r=froydnj 2016-04-28 14:08:24 -07:00
Kyle Huey
f3e34e67b3 Bug 1266595: Replace Chromium Task with Runnable. r=froydnj 2016-04-27 17:06:05 -07:00
Bob Owen
157f5611c5 Bug 1264240: Allow NPAPI sandbox write access to %LOCALAPPDATA%\Macromedia\Flash Player. r=jimm 
MozReview-Commit-ID: C6PMpIcFMUb
 2016-04-15 10:25:06 +01:00
Bob Owen
9c23c5d99e Bug 1225023: Allow Flash Player to create Adobe\Flash Player and Macromedia\Flash Player directories. r=bbondy 2015-11-17 07:24:34 +00:00
huangwenjun
257d521f3e Bug 1218681 - add plugin-container standalone process code. The Code associate with ARCH. r=hev 
---
 dom/plugins/ipc/PluginProcessParent.cpp | 3 +++
 ipc/chromium/src/base/process_util.h    | 5 ++++-
 2 files changed, 7 insertions(+), 1 deletion(-)
 2015-10-29 22:19:43 +08:00
Makoto Kato
14b5f018cf Bug 1202988 - Don't use GetTempPath for flash's mms.cfg hack for low integrity. r=aklotz 2015-09-09 17:30:57 +09:00
Mike Hommey
9de7ac58a9 Bug 1189967 - Be slightly more explicit about some conversions to std::wstring. r=nfroyd 2015-08-23 22:20:19 +09:00
Bob Owen
79a3b2ea8c Bug 1165895: Add NPAPI sandbox rule for the crash server pipe and x64 Temp dir write access. r=bbondy 2015-06-18 12:01:38 +01:00
Bob Owen
40889a97b9 Bug 1123759: Set low integrity on NPAPI processes for Windows sandboxing policy level >= 2. r=bbondy, r=bsmedberg 2015-05-22 17:05:45 +01:00
Aaron Klotz
f18d16cfe8 Bug 1156861: Add a TaskFactory to PluginProcessParent to handle launch completion tasks; r=jimm 2015-05-25 11:53:39 -06:00
Bob Owen
919ea04738 Bug 1132021 - Add a new sandbox level for Windows NPAPI to use USER_LIMITED access token level. r=bsmedberg, r=bbondy 2015-02-11 16:25:43 +00:00
Bob Owen
4811c84eb6 Bug 1127230: Change the NPAPI sandbox prefs to integers to indicate the level of sandboxing. r=bsmedberg 2015-01-30 17:48:15 +00:00
Bob Owen
3c47ad15a2 Bug 1126402: Add a pref to enable a more strict version of the Windows NPAPI process sandbox. r=bsmedberg, r=bbondy 2015-01-29 08:13:07 +00:00
Bob Owen
168d7961a5 Bug 1123245 Part 3: Add prefs for the Windows NPAPI process sandbox. r=bsmedberg 2015-01-23 08:32:21 +00:00
Aaron Klotz
d4c9c0a920 Bug 1119060: Ensure that PluginProcessParent::mLaunchCompleteTask is non-null until the runnable has executed; r=gfritzsche 2015-01-07 18:01:51 -07:00
Aaron Klotz
28e0d40cd8 Bug 998863: Fix non-unified build bustage r=bustage 2014-12-30 10:46:05 -07:00
Nigel Babu
86b9ac0da2 Bug 998863 - Add mozilla namespace, r=bustage 
CLOSED TREE
 2014-12-30 14:22:21 +05:30
Nigel Babu
082fbb977e Bug 998863 - Include mozilla/UniquePtr.h to fix non-unified bustage, r=bustage 
CLOSED TREE
 2014-12-30 12:29:22 +05:30
Aaron Klotz
bd4d5cafe9 Bug 998863: Asynchronous Plugin Initialization, Part 9: PluginModuleParent changes; r=jimm 2014-12-29 16:13:54 -07:00