[meta] Remove win32k access from content process
Categories
(Core :: Security: Process Sandboxing, enhancement, P2)
Tracking
()
People
(Reporter: Alex_Gaynor, Assigned: cmartin)
References
(Depends on 1 open bug, Blocks 2 open bugs)
Details
(4 keywords, Whiteboard: sb+)
Attachments
(2 obsolete files)
This is a meta bug for work towards removing win32k usage from the content process, and using the windows8+ mitigation policy to disable access to it. This work is currently in the research/scoping phase - it is known that we make use of win32k APIs in the content process and we need to establish where and come up with a plan for dealing with all of them.
Updated•7 years ago
|
Reporter | ||
Updated•7 years ago
|
Reporter | ||
Updated•7 years ago
|
Updated•7 years ago
|
Updated•7 years ago
|
Updated•6 years ago
|
Updated•5 years ago
|
Updated•5 years ago
|
Updated•5 years ago
|
Updated•3 years ago
|
Updated•3 years ago
|
Updated•3 years ago
|
Comment 1•2 years ago
|
||
Depends on D130871
Updated•2 years ago
|
Updated•2 years ago
|
Comment 2•2 years ago
|
||
I'm removing bug 1696387 as a blocker.
We originally thought it would block because it blocks other improvements to the sandbox, however we have not seen any signs of the issue.
Additionally it would normally be seen (according to chromium comments) because the connection to the DWrite cache would be made during start-up with more permissions and then fail to reconnect if the connection was lost for some reason after lowering the sandbox. With win32k lockdown we are enabling from process start, so the issue would present itself immediately.
Assignee | ||
Comment 3•2 years ago
|
||
It's time to graduate Win32k lockdown from Nightly Experiments to default on
Nightly.
Pushed by cmartin@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/c55b23ccde73 Enable Win32k Lockdown by default in Nightly r=preferences-reviewers,fluent-reviewers,Gijs
Comment 5•2 years ago
|
||
Backed out changeset c55b23ccde73 (Bug 1381019) for causing mochitest failures on test_bug360437.xhtml.
Backout link
Push with failures
Failure Log
Updated•2 years ago
|
Updated•2 years ago
|
Pushed by cmartin@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/c467b50beb6f Enable Win32k Lockdown by default in Nightly r=preferences-reviewers,fluent-reviewers,Gijs
Comment 7•2 years ago
|
||
bugherder |
Updated•2 years ago
|
Comment 8•2 years ago
|
||
Per Sebastian's request: Backed out changeset c467b50beb6f (Bug 1381019) for beaking content tabs with win32k lockdown enabled a=backout (bug 1719212) at least on Windows 8.1
Backout by nerli@mozilla.com: https://hg.mozilla.org/mozilla-central/rev/7a69711e1364 Backed out changeset c467b50beb6f for beaking content tabs with win32k lockdown enabled a=backout
Comment 10•2 years ago
|
||
I'm not sure this one is correlated to third party DLL's, might be dual graphics (from a very brief look at reports).
Comment 11•2 years ago
|
||
Can you please use bug 1750742 for enabling this in Nightly the next time. This should make it easier to to track.
Assignee | ||
Comment 12•2 years ago
|
||
Thanks, Tom. Will use bug 1750742 from now on :)
:bobowen and I are investigating the regressions now
Updated•2 years ago
|
Updated•2 years ago
|
Comment 14•8 months ago
|
||
There's a few old/out-of-date Windows version where we could likely support this but currently do not. We're still looking at that in bug 1759167.
Description
•