[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Public WebGL] Proposals for two new WebGL extensions
- To: Benoit Jacob <bjacob@mozilla.com>
- Subject: Re: [Public WebGL] Proposals for two new WebGL extensions
- From: "Gregg Tavares (wrk)" <gman@google.com>
- Date: Wed, 5 Oct 2011 12:56:34 -0700
- Cc: "Mo, Zhenyao" <zhenyao@gmail.com>, public webgl <public_webgl@khronos.org>
- Dkim-signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=google.com; s=beta; t=1317844596; bh=SwnWxET3GwSmP9TSjE3UWr8ZOgA=; h=MIME-Version:In-Reply-To:References:Date:Message-ID:Subject:From: To:Cc:Content-Type; b=OcM5sIhPWrH5DsZls8eOOzzihwttKTd63BrOZK+sLJMu83TKCEvvoOwfq172dqYGD Z8HSnN88llk2QMlrhWQ5Q==
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=beta; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=wKkrACDK3X3zpPiPXPtGej41GP3U7bav6amV3H4U0iE=; b=A9sqUs1Ijhan4HY2svVQL84s4Lsbeo7I6nG4C7qiGA4m9su/WZHgoNW+49uZnoiX+5 nJgY1evUxfP8hHhKOR9w==
- Domainkey-signature: a=rsa-sha1; s=beta; d=google.com; c=nofws; q=dns; h=dkim-signature:mime-version:in-reply-to:references:date: message-id:subject:from:to:cc:content-type:x-system-of-record; b=ii7Ja5GQivAPoY84pUw0/cWDmH4ls/uFMTPxDONwseHbPJ9/j8rEodJK4xOix9L2H N4OtZ0f84VoUeg+86kkDg==
- In-reply-to: <4E8CAB35.8050300@mozilla.com>
- List-id: Public WebGL Mailing List <public_webgl.khronos.org>
- References: <CABnkEkxcF3DaKsY36y68C1t+0go3+9qormTc=BN7exyvwN6kKA@mail.gmail.com> <4E8CAB35.8050300@mozilla.com>
- Sender: owner-public_webgl@khronos.org
On Wed, Oct 5, 2011 at 12:08 PM, Benoit Jacob
<bjacob@mozilla.com> wrote:
I'm OK with the two extensions as currently drafted; just a couple of remarks:
*WEBGL_debug_gpu_info might be better named WEBGL_debug_renderer_info (or see below, WEBGL_privileged_renderer_info) ? Also, it says that that info should not be exposed to unprivileged content, so should the WebGL spec also be updated to be consistent with that? Currently the WebGL spec does not mention the concern about these strings. Also, I wonder if PRIVILEGED would be a better word than UNMASKED, so it would tell in a more explicit and neutral way what the difference is with the current strings from the spec. Similarly, the extension might be better named WEBGL_privileged_renderer_info?
* WEBGL_debug_shaders might not be a specific enough name? How about WEBGL_get_translated_shader_source or some such. The text says that this should not be exposed to unprivileged content because this could be used to identify the GPU. Personally, my concern is a bit different. I'm not that much concerned about this particular privacy issue as it doesn't seem to expose a lot more information than we already expose (through getShaderInfoLog + getParameter + UA string), and doesn't make it more convenient to obtain. What I'm more concerned with is that it exposes precisely which workarounds we use, so if an attacker was fuzzing our ANGLE workarounds to find corner cases where we miss a workaround, that could be handy.
How is that any different from today? If an attacker wants to find out which workarounds we use, at least for Firefox and Chrome they can just download the source and find out. Yes this makes it slightly easier, they don't have to compile themselves and add a single printf, but it doesn't expose anything they couldn't already get.
Cheers,
Benoit
Comments are welcome.
Mo
-----------------------------------------------------------
You are currently subscribed to public_webgl@khronos.org.
To unsubscribe, send an email to majordomo@khronos.org with
the following command in the body of your email:
unsubscribe public_webgl
-----------------------------------------------------------