Closed Bug 1059662 Opened 10 years ago Closed 10 years ago

embed-apps should be restricted to in-proc apps or we need to fix oop-embed-apps

Tracking

()

Status:

RESOLVED FIXED

Milestone:

mozilla36

People

(Reporter: kanru, Assigned: kanru)

References

(Blocks 1 open bug)

Details

Attachments

(1 file, 1 obsolete file)

Disallow OOP app to embed in-proc apps 10 years ago Kan-Ru Chen [:kanru] (UTC+9) 8.84 KB, patch		Details \| Diff \| Splinter Review
Disallow OOP app to embed in-proc apps 10 years ago Kan-Ru Chen [:kanru] (UTC+9) 13.03 KB, patch	fabrice : review+	Details \| Diff \| Splinter Review

Kan-Ru Chen [:kanru] (UTC+9)

Assignee

Description

•

10 years ago

In bug 1044333 we realized that apps managed by an OOP app would use the incorrect AppId, the parent app's AppId, so it would cause privilege escalation.

In the short term we should disallow apps with embed-apps permission to be run OOP.

Kan-Ru Chen [:kanru] (UTC+9)

Assignee

Updated

•

10 years ago

Blocks: 1053107

Kan-Ru Chen [:kanru] (UTC+9)

Assignee

Updated

•

10 years ago

Assignee: nobody → kchen

Kan-Ru Chen [:kanru] (UTC+9)

Assignee

Comment 1

•

10 years ago

Attached patch Disallow OOP app to embed in-proc apps (obsolete) — Details — Splinter Review

https://treeherder.mozilla.org/ui/#/jobs?repo=try&revision=b445bb36bc51

This might break some emulator tests..

Attachment #8513262 - Flags: review?(fabrice)

[:fabrice] Fabrice Desré

Comment 2

•

10 years ago

Comment on attachment 8513262 [details] [diff] [review]
Disallow OOP app to embed in-proc apps

Review of attachment 8513262 [details] [diff] [review]:
-----------------------------------------------------------------

Please ask review once treeherder is happy!

Attachment #8513262 - Flags: review?(fabrice)

Kan-Ru Chen [:kanru] (UTC+9)

Assignee

Comment 3

•

10 years ago

Attached patch Disallow OOP app to embed in-proc apps — Details — Splinter Review

https://treeherder.mozilla.org/ui/#/jobs?repo=try&revision=a74ef8f2086e

Tree is greenish.. failing tests are disabled since they use embed-apps in oop env.

Attachment #8513262 - Attachment is obsolete: true

Attachment #8517381 - Flags: review?(fabrice)

[:fabrice] Fabrice Desré

Updated

•

10 years ago

Attachment #8517381 - Flags: review?(fabrice) → review+

Kan-Ru Chen [:kanru] (UTC+9)

Assignee

Comment 4

•

10 years ago

https://hg.mozilla.org/integration/b2g-inbound/rev/138110eb6437

Carsten Book [:Tomcat]

Comment 5

•

10 years ago

https://hg.mozilla.org/mozilla-central/rev/138110eb6437

Status: NEW → RESOLVED

Closed: 10 years ago

Resolution: --- → FIXED

Target Milestone: --- → mozilla36

Kan-Ru Chen [:kanru] (UTC+9)

Assignee

Updated

•

10 years ago

Blocks: 1097479

Kevin Chen[:kechen] (UTC + 8)

Updated

•

9 years ago

No longer blocks: 1097479

Nobody; OK to take it and work on it

Updated

•

5 years ago

Component: DOM → DOM: Core & HTML

Ryder15

Comment 6

•

2 years ago

Yeah you are right, Few app like Grammarly which we need for running https://apkblink.com/ is not working in the browsers. Although the app works in other browsers. As contact to their support team they answered me to reinstall you browser. I did the same but nothing happened facing same issue.

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

embed-apps should be restricted to in-proc apps or we need to fix oop-embed-apps

Categories

(Core :: DOM: Core & HTML, defect)

Tracking

()

People

(Reporter: kanru, Assigned: kanru)

References

(Blocks 1 open bug)

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file, 1 obsolete file)

Description

Updated

Updated

Comment 1

Comment 2

Comment 3

Updated

Comment 4

Comment 5

Updated

Updated

Updated

Comment 6

Attachment

General

Description

File Name

Content Type