Closed
Bug 1361238
Opened 7 years ago
Closed 7 years ago
Re-allow accept4 in content processes to make accessibility not crash
Categories
(Core :: Security: Process Sandboxing, defect)
Tracking
()
RESOLVED
FIXED
mozilla55
Tracking | Status | |
---|---|---|
firefox55 | --- | fixed |
People
(Reporter: jld, Assigned: jld)
References
Details
Crash Data
Attachments
(1 file)
The way AT-SPI works, with a DBus transport, is that each accessible application creates its own private bus and becomes a DBus server, accepting connections from accessibility tools. Currently, content processes set themselves up as accessibility targets; the socket/bind/listen calls appear to happen before the sandbox is started, but they can accept connections at any time. This is probably what bug 1285816 was responding to. Bug 1358647 forbade all the server-related socket calls, because I didn't know accessibility used them like that, and this is causing content crashes.
Comment hidden (mozreview-request) |
Comment 2•7 years ago
|
||
Dear all, I'm low-vision person. It's an important bug that produces more than 15 crashes by day. Each time I restart the Orca screen reader all actives Firefox Nightly tabs and I need to restart Firefox to solve the issue. I'll switch to Aurora or to Release channel until the fix. Best regards.
Comment 3•7 years ago
|
||
(In reply to Jed Davis [:jld] (⏰UTC-6) from comment #0) > The way AT-SPI works, with a DBus transport, is that each accessible > application creates its own private bus and becomes a DBus server, accepting > connections from accessibility tools. > > Currently, content processes set themselves up as accessibility targets; the > socket/bind/listen calls appear to happen before the sandbox is started, but > they can accept connections at any time. This is probably what bug 1285816 > was responding to. huh, content processes really shouldn't be registering themselves as accessible applications. So I guess we should disable that and see what's broken that we didn't notice because of it.
Comment 4•7 years ago
|
||
(In reply to Trevor Saunders (:tbsaunde) from comment #3) > (In reply to Jed Davis [:jld] (⏰UTC-6) from comment #0) > So I guess we should disable that and see what's broken that we didn't > notice because of it. I spun off bug 1361338 for this part.
Comment 5•7 years ago
|
||
mozreview-review |
Comment on attachment 8863591 [details] Bug 1361238 - Re-allow accept4, used by accessibility. https://reviewboard.mozilla.org/r/135360/#review138770 I guess this can then be removed immediately when the other bug lands?
Attachment #8863591 -
Flags: review?(gpascutto) → review+
Assignee | ||
Comment 6•7 years ago
|
||
(In reply to Gian-Carlo Pascutto [:gcp] from comment #5) > I guess this can then be removed immediately when the other bug lands? Yes.
Pushed by jedavis@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/13407f841b7f Re-allow accept4, used by accessibility. r=gcp
Comment 8•7 years ago
|
||
bugherder |
https://hg.mozilla.org/mozilla-central/rev/13407f841b7f
Status: NEW → RESOLVED
Closed: 7 years ago
status-firefox55:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla55
You need to log in
before you can comment on or make changes to this bug.
Description
•