Closed
Bug 1167098
Opened 10 years ago
Closed 7 years ago
IPC change for the new FirefoxOS security model
Categories
(Core :: DOM: Content Processes, defect, P2)
Core
DOM: Content Processes
Tracking
()
RESOLVED
WONTFIX
FxOS-S8 (02Oct)
| Tracking | Status | |
|---|---|---|
| firefox41 | --- | affected |
People
(Reporter: allstars.chh, Unassigned)
References
Details
Quote from Jonas:
What this is about is to get rid of essentially all of the
AssertApp* functions from [1] and just keep AssertAppPrincipal (which
is poorly named) and CheckPermission.
Any time a sensitive API in the child process sends a message to the
parent process, it should send along the nsIPrincipal of the page that
called the API.
In the parent process we should then take that nsIPrincipal and call
AssertAppPrincipal to make sure that the child process didn't lie
about the nsIPrincipal.
Then we can call any normal APIs to check if a page with the given
nsIPrincipal. For example we can get the app type directly from the
nsIPrincipal, or we can call the nsIPermissionManager if the given
principal has some specific permission.
[1] http://mxr.mozilla.org/mozilla-central/source/dom/ipc/AppProcessChecker.h
|
Reporter | |
Updated•10 years ago
|
Summary: IPC change for the FirefoxOS new security model → IPC change for the new FirefoxOS security model
|
||
Updated•10 years ago
|
Component: IPC → DOM: Content Processes
|
||
Updated•9 years ago
|
Blocks: nsec-origins
|
|
||
Updated•9 years ago
|
Priority: -- → P2
Target Milestone: --- → FxOS-S8 (02Oct)
|
|
||
Updated•9 years ago
|
Assignee: nobody → ptheriault
|
||
Updated•9 years ago
|
Status: NEW → ASSIGNED
|
|
||
Updated•9 years ago
|
Assignee: ptheriault → nobody
Status: ASSIGNED → NEW
|
|
Reporter | |
Updated•7 years ago
|
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → WONTFIX
You need to log in
before you can comment on or make changes to this bug.
Description
•