Closed Bug 1359566 Opened 8 years ago Closed 7 years ago

[mac] remove device-microphone permissions from content process

Tracking

()

Status:

RESOLVED FIXED

Milestone:

mozilla60

Tracking Flags:

Tracking

Status

firefox60

---

fixed

People

(Reporter: Alex_Gaynor, Assigned: Alex_Gaynor)

References

(Depends on 1 open bug, Blocks 2 open bugs)

Details

(Whiteboard: sb+)

Attachments

(1 file)

Bug 1359566 - remove permissions related to audio from the macOS content process sandbox when cubeb remoting is enabled; 7 years ago Alex Gaynor [:Alex_Gaynor] 59 bytes, text/x-review-board-request	haik : review+ rillian : feedback+	Details

Alex Gaynor [:Alex_Gaynor]

Assignee

Description

•

8 years ago

https://dxr.mozilla.org/mozilla-central/source/security/sandbox/mac/SandboxPolicies.h#234-236 There's a blocker for this issue (removing microphone support) but for life of me I can't find the bug.

Ryan VanderMeulen [:RyanVM]

Updated

•

8 years ago

status-firefox55: --- → affected

status-firefox57: affected → ---

Gian-Carlo Pascutto [:gcp]

Comment 1

•

8 years ago

Probably bug 1104619.

Haik Aftandilian [:haik]

Updated

•

8 years ago

Whiteboard: sbmc3

Alex Gaynor [:Alex_Gaynor]

Assignee

Updated

•

8 years ago

Depends on: sb-audio

Jim Mathies [:jimm]

Updated

•

7 years ago

Blocks: sb-audio

No longer depends on: sb-audio

Jim Mathies [:jimm]

Updated

•

7 years ago

Depends on: 1362220

Jim Mathies [:jimm]

Updated

•

7 years ago

Priority: -- → P3

Whiteboard: sbmc3 → sb+

Jed Davis [:jld] ⟨⏰|UTC-7⟩ ⟦he/him⟧

Updated

•

7 years ago

Depends on: 1394163

Comment hidden (mozreview-request)

Alex Gaynor [:Alex_Gaynor]

Assignee

Comment 3

•

7 years ago

Simple patch that removes all the relevant-looking permissions. Shouldn't be landed until it's had time to bake and the media team is confident (per https://bugzilla.mozilla.org/show_bug.cgi?id=1425788#c4). I did some light testing: playing a youtube video, recording audio via WebRTC, and then playing that audio back (as an ogg file I believe). Everything worked ok! There was a sandbox error in the console that |com.apple.audio.SandboxHelper| wasn't allowed, but we've never allowed that, so I'm not sure if that error has always been there (new in 10.13 maybe?) or if it's caused by not being able to access these other services. In any event, I couldn't find anything broken as a result.

Haik Aftandilian [:haik]

Comment 4

•

7 years ago

mozreview-review

Comment on attachment 8938361 [details] Bug 1359566 - remove permissions related to audio from the macOS content process sandbox when cubeb remoting is enabled; https://reviewboard.mozilla.org/r/209074/#review214940 r+ Noting that we'll hold off on landing this for now. Would be nice to have a test for this, but I know we don't have good infra for that. I hope we can add that in Bug 1330785 "Extend 1309394 content sandbox tests to run native test libraries in content."

Attachment #8938361 - Flags: review?(haftandilian) → review+

Comment hidden (mozreview-request)

Alex Gaynor [:Alex_Gaynor]

Assignee

Comment 7

•

7 years ago

Would it make sense for us to dynamically allow/disallow these properties based on whether the audio-remoting pref was set? (With the goal of eventually removing the branching once audio remoting is always on.)

Comment hidden (mozreview-request)

Alex Gaynor [:Alex_Gaynor]

Assignee

Updated

•

7 years ago

Assignee: nobody → agaynor

Priority: P3 → P1

Alex Gaynor [:Alex_Gaynor]

Assignee

Comment 9

•

7 years ago

Comment on attachment 8938361 [details] Bug 1359566 - remove permissions related to audio from the macOS content process sandbox when cubeb remoting is enabled; Resetting to r? since the patch changed substantially.

Attachment #8938361 - Flags: review+ → review?(haftandilian)

Haik Aftandilian [:haik]

Comment 10

•

7 years ago

mozreview-review

Comment on attachment 8938361 [details] Bug 1359566 - remove permissions related to audio from the macOS content process sandbox when cubeb remoting is enabled; https://reviewboard.mozilla.org/r/209074/#review222786 Looks good. I would let the people working on audio remoting know about how setting media.cubeb.sandbox now also triggers the content sandbox changes on Mac.

Attachment #8938361 - Flags: review?(haftandilian) → review+

Alex Gaynor [:Alex_Gaynor]

Assignee

Updated

•

7 years ago

Attachment #8938361 - Flags: feedback?(giles)

Ralph Giles (:rillian)

Comment 11

•

7 years ago

Comment on attachment 8938361 [details] Bug 1359566 - remove permissions related to audio from the macOS content process sandbox when cubeb remoting is enabled; Thanks for the heads up. Tying the mic permission to "media.cubeb.sandbox" means it should be ready to work either way. Is there a test plan for this?

Attachment #8938361 - Flags: feedback?(giles) → feedback+

Alex Gaynor [:Alex_Gaynor]

Assignee

Comment 12

•

7 years ago

I performed local testing in both configurations as described in https://bugzilla.mozilla.org/show_bug.cgi?id=1359566#c3

Alex Gaynor [:Alex_Gaynor]

Assignee

Updated

•

7 years ago

Keywords: checkin-needed

Pulsebot

Comment 13

•

7 years ago

Pushed by ryanvm@gmail.com: https://hg.mozilla.org/integration/autoland/rev/26b03e4d37d3 remove permissions related to audio from the macOS content process sandbox when cubeb remoting is enabled; r=haik

Keywords: checkin-needed

Narcis Beleuzu [:NarcisB]

Comment 14

•

7 years ago

bugherder

https://hg.mozilla.org/mozilla-central/rev/26b03e4d37d3

Status: NEW → RESOLVED

Closed: 7 years ago

status-firefox60: --- → fixed

Resolution: --- → FIXED

Target Milestone: --- → mozilla60

Ryan VanderMeulen [:RyanVM]

Updated

•

6 years ago

status-firefox55: affected → ---

You need to log in before you can comment on or make changes to this bug.