Closed Bug 1570637 Opened 5 years ago Closed 5 years ago

Remote InternetGetConnectedStateExW

Categories

(Core :: Security: Process Sandboxing, task)

Product:
Core
Component:
Security: Process Sandboxing
Type:
task
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1567892

People

(Reporter: tjr, Unassigned)

References

Details

(Whiteboard: [sb+])

To obtain the local IP address, which is used by WebRTC, the content process calls InternetGetConnectedStateExW which will load wininet.dll lazily.

But after we've lowered ourselves to a restricted token, we can't load dlls lazily (we crash). We want to remote this function call.

Whiteboard: [sb+]

Bugbug thinks this bug is a task, but please change it back in case of error.

Type: defect → task

Uhg, I wish I can included Steps to Reproduce. I'm pretty sure that I was just visiting https://browserleaks.com/webrtc and observing the crash. Post Bug 1567892 however; I no longer crash (when I turn on a semi-restricted token.) It does not; however, display any IP addresses, so something is still broken here.

Status: NEW → RESOLVED
Closed: 5 years ago
Resolution: --- → DUPLICATE
See Also: → 1567892
You need to log in before you can comment on or make changes to this bug.