PulseAudio regressions from filesystem read restrictions ($XDG_RUNTIME_DIR/pulse and $XAUTHORITY)

RESOLVED FIXED in Firefox 57

Status

()

Core
Security: Process Sandboxing
P1
normal
RESOLVED FIXED
10 months ago
8 months ago

People

(Reporter: jld, Assigned: jld)

Tracking

({regression})

Trunk
mozilla57
Unspecified
Linux
regression
Points:
---
Dependency tree / graph

Firefox Tracking Flags

(firefox-esr52 unaffected, firefox55 unaffected, firefox56 unaffected, firefox57 fixed)

Details

(Whiteboard: sb+)

Attachments

(1 attachment, 1 obsolete attachment)

(Assignee)

Description

10 months ago
I'm going to split off the part of the bug about PulseAudio, because that has r+ and can be landed separately, and it will fix the getUserMedia problems.  (I probably should have done this sooner, but I wasn't expecting the DConf part to turn into such a huge thing.)

+++ This bug was initially created as a clone of Bug #1384986 +++
(Assignee)

Comment 1

10 months ago
Created attachment 8895112 [details] [diff] [review]
bug1388545-pulseaudio-fileread-hg0.diff

Carrying over r+.
Attachment #8895112 - Flags: review+
(Assignee)

Updated

10 months ago
No longer depends on: 1384986
See Also: → bug 1384986
(Assignee)

Comment 2

10 months ago
Created attachment 8895113 [details] [diff] [review]
bug1388545-pulseaudio-fileread-hg1.diff

…and rebase.
Attachment #8895112 - Attachment is obsolete: true
Attachment #8895113 - Flags: review+

Comment 3

10 months ago
Pushed by jedavis@mozilla.com:
https://hg.mozilla.org/integration/mozilla-inbound/rev/babbce26f79b
Fix PulseAudio breakage caused by read restrictions. r=gcp

Comment 4

10 months ago
bugherder
https://hg.mozilla.org/mozilla-central/rev/babbce26f79b
Status: NEW → RESOLVED
Last Resolved: 10 months ago
status-firefox57: affected → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla57
(Assignee)

Updated

10 months ago
Duplicate of this bug: 1385523

Comment 6

8 months ago
User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:57.0) Gecko/20100101 Firefox/57.0; Version: 57.0a1; Build ID: 20170918220054

I have managed to reproduce this issue on latest Nightly build using Ubuntu 14.04 x64 and Arch Linux 4.12. It seems that the Microphone permission doorhanger is not displayed on specific websites that request using the microphone.
You can reproduce the issue following the next steps:

[Steps to reproduce]
1. Open the browser and navigate to https://www.onlinemictest.com/.
2. Observe the Microphone permission doorhanger.

[Expected results]
The Microphone permission doorhanger is displayed.

[Actual results]
The Microphone permission doorhanger is not displayed.

[Notes]
- I have also reproduced this issue using "Voice Fill" Firefox experiment from Test Pilot.

-I used the Mozregression tool to find out what might caused this issue. Here are the results:
Last good revision: 8e1e06adf80f82d3d5cf08eadaf569a107bd1ecf
First bad revision: b5fa08551d6e74d8300fa94f3161afdffd867764
Pushlog: https://goo.gl/R24TR7

Jed, can you please take a look on latest Nightly and see if you can reproduce it?
Status: RESOLVED → REOPENED
status-firefox55: --- → unaffected
status-firefox56: --- → unaffected
status-firefox57: fixed → affected
Flags: needinfo?(jld)
Keywords: regression
Resolution: FIXED → ---

Comment 7

8 months ago
I just tested this issue on Ubuntu 16.04 x 64 and it seems that is not reproducible.
(Assignee)

Comment 8

8 months ago
I can reproduce comment #6, and adding /var/lib/dbus/machine-id to security.sandbox.content.read_path_whitelist seems to fix it, which means it's bug 1396542.
Status: REOPENED → RESOLVED
Last Resolved: 10 months ago8 months ago
Flags: needinfo?(jld)
Resolution: --- → FIXED
Summary: PulseAudio regressions from filesystem read restrictions → PulseAudio regressions from filesystem read restrictions ($XDG_RUNTIME_DIR/pulse and $XAUTHORITY)
status-firefox57: affected → fixed
status-firefox-esr52: --- → unaffected
You need to log in before you can comment on or make changes to this bug.