Hi all, The VR team is working on a Steam packaged browser with a VR specific UI and richer VR experience. In order to prevent the overhead of having the VR specific assets included in every Firefox build while still running on tested executables, we will be doing a repack build.
WebVR will still continue to be supported in the regular Firefox builds; API surface area is the same in normal desktop builds. Mochitests validating these API calls should be unaffected. We will need a means for testing the VR frontend and assets that are added with the re-pack. Ideally, we could use the existing test mechanisms, including mochitests. Perhaps we could disable the sandbox for these front-end tests? The Steam packaged builds will also need slightly expanded access to resources such as files, registry, and pipes required for communication with Steam. Are there any plans to make the sandboxing rules configurable at runtime? Cheers, - Kearwood “Kip” Gilbert From: Alex Gaynor Sent: May 8, 2017 10:26 AM To: dev-platform@lists.mozilla.org Subject: Running mochitest on packaged builds with the sandbox Hi dev-platform, Top-line question: Do you rely on being able to run mochitests from a packaged build (`--appname`)? Context: The sandboxing team has been hard at work making the content process sandbox as restrictive as possible. Our latest focus is removing file read permissions from content processes -- the sandbox's value is pretty limited if a compromised content process can ship all your files off by itself! One of the things we've discovered in the process of developing these patches is that they break running mochitest on packaged firefox builds (this is the `--appname` flag to mochitest)! `try` doesn't appear to use this, and none of us use it in our development workflows, but we wanted to check in with dev-platform and see if we were going to be breaking people's development flows! While these restrictions are not on by default yet, once they are you'd only be able to run tests on packaged builds by disabling the sandbox. If this is a fundamental part of lots of folks' workflows we'll dig into whether there's a way to keep this working. Happy Monday! Alex _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform
