Closed Bug 917010 Opened 11 years ago Closed 10 years ago

Debug server socket permissions might be wrong on production FxOS builds

Categories

(DevTools :: Debugger, defect, P3)

Product:
DevTools
Component:
Debugger
Platform:
ARM
Gonk (Firefox OS)
Type:
defect

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 935229

People

(Reporter: jimb, Unassigned)

Details

I have not verified this myself, but based on what I've heard, ADB will not be able to connect to the debug server on FxOS production builds.

As of bug 832000, the debug server listens for connections on a Unix domain socket. Unix domain sockets have names in the filesystem, and the kernel enforces the usual filesystem permission rules when someone attempts to connect. At present, the main B2G process grants processes running as the same user as itself read and write permission on the socket.

On non-production builds, ADB runs as 'root', and thus can forward connections to any Unix domain socket. On production builds, ADB runs as the user 'shell', which is different from the main B2G process. The permissions with which the main B2G process creates the listening socket forbid a 'shell' process from connecting, meaning that ADB cannot forward connections to the debug server.

We probably need a group that includes both 'shell' and the main B2G process's user. Then, we can put the listening socket in that group, and enable group read and write permission.
Priority: -- → P3
This sounds like same issue that was resolved in bug 935229, but please reopen if I misunderstood.
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → DUPLICATE
Product: Firefox → DevTools
You need to log in before you can comment on or make changes to this bug.