Open Bug 1362579 Opened 7 years ago Updated 2 years ago

Add sandboxing to the VR process

Tracking

()

Status:

NEW

People

(Reporter: kip, Unassigned)

References

Details

:kip (Kearwood Gilbert)

Reporter

Description

•

7 years ago

In Bug 1362578, we are moving the VRManager functionality to its own process.  This will allow more restrictive sandboxing rules to be applied to the GPU process as the rules required for the Oculus and OpenVR runtimes can be applied separately to the new VR process.

We are working with external parties to ensure that the VR runtimes have prefixes in the resource paths that they access to allow wildcards to work effectively when the runtimes are updated by end users.

If its not possible to ensure forward compatibility with these rules, we will need to either have limited sandboxing on the VR process or implement a mechanism to update the sandbox rules for the VR process in release builds.  (The sandboxing rules are currently hard-coded)

:kip (Kearwood Gilbert)

Reporter

Updated

•

7 years ago

Comment 1

•

7 years ago

Please see comments in Bug 1359460 for details of the initial exploration of the sandbox rules required for OpenVR and Oculus runtimes.

Updated

•

7 years ago

Blocks: 1368591

Daosheng Mu[:daoshengmu]

Updated

•

6 years ago

Blocks: 1476092

BMO Automation

Updated

•

2 years ago

Severity: normal → S3

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

Add sandboxing to the VR process

Categories

(Core :: WebVR, enhancement)

Tracking

()

People

(Reporter: kip, Unassigned)

References

Details

Crash Data

Security

(public)

User Story

Description

Updated

Comment 1

Updated

Updated

Updated