Closed
Bug 1485463
Opened 6 years ago
Closed 5 years ago
Add a fuzzer for graphics IPC
Categories
(Core :: Graphics: Layers, enhancement, P3)
Core
Graphics: Layers
Tracking
()
RESOLVED
FIXED
mozilla66
People
(Reporter: Alex_Gaynor, Assigned: Alex_Gaynor)
References
(Blocks 1 open bug)
Details
(Keywords: sec-other, Whiteboard: [post-critsmash-triage][adv-main66-])
Attachments
(2 files, 1 obsolete file)
We should add a fuzzer for PCompositorManagerParent, in the same vein as PContentParent. I've got a patch for this working, and am running it locally. One small finding sof ar, once it's been running for a few days with no findings I think it'll be safe to land.
|
Assignee | |
Comment 1•6 years ago
|
||
Bug 1485463 - added a fuzzer for PCompositorManagerParent IPC; r?jrmuizel Bug 1485463 - use IPC errors to handle an attempt to allocate too many PCompositorBridgeParent; r?aosmond This cannot actually happen in the real world because this path is specific to when the compositor process is also the parent process, and thus is not actually IPC. However, the fuzzer can trigger this case.
|
||
Updated•6 years ago
|
Group: core-security → gfx-core-security
|
||
Updated•6 years ago
|
Priority: -- → P3
|
|
||
Comment 2•6 years ago
|
||
Comment on attachment 9003244 [details] Bug 1485463 - added a fuzzer for PCompositorManagerParent IPC; r?jrmuizel Andrew Osmond [:aosmond] has approved the revision.
Attachment #9003244 -
Flags: review+
|
|
Assignee | |
Comment 3•5 years ago
|
||
|
|
Assignee | |
Comment 4•5 years ago
|
||
This cannot actually happen in the real world because this path is specific to when the compositor process is also the parent process, and thus is not actually IPC. However, the fuzzer can trigger this case. Depends on D14587
|
|
Assignee | |
Updated•5 years ago
|
Attachment #9003244 -
Attachment is obsolete: true
|
|
Assignee | |
Updated•5 years ago
|
Assignee: nobody → agaynor
Keywords: checkin-needed
|
|
||
Comment 5•5 years ago
|
||
https://hg.mozilla.org/integration/autoland/rev/08a365b043d7
https://hg.mozilla.org/integration/autoland/rev/5f1830b621aa
status-firefox64:
--- → wontfix
status-firefox65:
--- → wontfix
status-firefox66:
--- → affected
status-firefox-esr60:
--- → wontfix
Keywords: checkin-needed
|
||
Comment 6•5 years ago
|
||
https://hg.mozilla.org/mozilla-central/rev/08a365b043d7
https://hg.mozilla.org/mozilla-central/rev/5f1830b621aa
Group: gfx-core-security → core-security-release
Status: NEW → RESOLVED
Closed: 5 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla66
|
||
Updated•5 years ago
|
Flags: qe-verify-
Whiteboard: [post-critsmash-triage]
|
||
Updated•5 years ago
|
Whiteboard: [post-critsmash-triage] → [post-critsmash-triage][adv-main66-]
|
||
Updated•4 years ago
|
Group: core-security-release
You need to log in
before you can comment on or make changes to this bug.
Description
•