Open
Bug 724052
Opened 13 years ago
Updated 3 years ago
Domains responsible for creating guilty WebGL contexts should not be able to create new contexts
Categories
(Core :: Graphics: CanvasWebGL, enhancement, P3)
Core
Graphics: CanvasWebGL
Tracking
()
NEW
People
(Reporter: jgilbert, Unassigned)
Details
(Keywords: csectype-dos, Whiteboard: [sg:dos])
Currently, though we don't allow WebGL contexts which are guilty of triggering a GPU reset to restore, there is no mechanism to prevent a domain from deliberately spawning multiple pathological contexts.
Such malicious domains should not be allowed to create new contexts if they are responsible for a guilty context.
The optimal solution for this is probably similar to the long-running-JS alert, where it asks the user if they want to continue to allow this page to use WebGL given that it was responsible for a GPU reset. (clearly, the wording will need to be way less technical)
Marking this as a security bug for now, though the attack is relatively obvious.
|
||
Updated•13 years ago
|
Whiteboard: [sg:dos]
|
||
Updated•10 years ago
|
Group: core-security → gfx-core-security
|
||
Updated•9 years ago
|
Group: gfx-core-security
|
Reporter | |
Updated•6 years ago
|
Type: defect → enhancement
Priority: -- → P3
|
|
||
Updated•3 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•