Security/Tor Uplift/Tracking

From MozillaWiki
Jump to: navigation, search

Tor Uplift

To uplift all of the Tor Browser patches to mainline Firefox. The general approach is to add preferences for anything that breaks the web and set them to default "off" so that the behavior of default Firefox does not change. All bugs are tagged with [tor]. The Tor Browser design document is here.

Active Bugs

Bugs which are assigned and being worked on.

Full Query
ID Whiteboard Summary Status Resolution Priority Assigned to
1302566 [tor][domsecurity-backlog1][OA] remove the IsInPrivateBrowsing mode from shared workers and use origin attributes instead. REOPENED P3 Andrea Marchesini [:baku]
1433030 [tor 21830] Copying large text from web console leaks to /tmp REOPENED P1 Arthur Edelstein (Tor Browser dev) [:arthuredelstein]
1434666 [tor 18900] updater failing on Linux (cannot find libraries) REOPENED P2 Arthur Edelstein (Tor Browser dev) [:arthuredelstein]
1369299 [fingerprinting][tor][fp:m4] Disable GeoIP/RegionDefault Search lookup when 'privacy.resistFingerprinting' is true ASSIGNED P3 Tim Huang[:timhuang]
1213698 [tor][tor-standalone] error: undefined reference to 'dlsym' if building with ASan and GCC (Tor 17509) REOPENED P3 Georg Koppen
1361337 [tor][necko-triaged] dns leaks with remotedns in firefox 45.9.0 over tor UNCONFIRMED P2 Jason Duell [:jduell] (needinfo me)
859782 [tor 20283] Firefox cannot start without /proc (chroot) ASSIGNED -- Richard Pospesel (Tor Browser Dev)
1314443 [tor][fingerprinting][tor-mobile] Audit the existing disable WebRTC preferences and ensure they work as advertised ASSIGNED P3 Tom Ritter [:tjr]

8 Total; 8 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Assigned, but not started

These bugs have an owner, but their status is 'NEW' indicating that they are not being worked on yet.

Full Query
ID Whiteboard Summary Status Resolution Priority Assigned to
1333933 [tor][fingerprinting][fp-backlog][fp-triaged] Disable/spoof fingerprintable features when privacy.resistFingerprinting = true NEW P1 Arthur Edelstein (Tor Browser dev) [:arthuredelstein]
1436226 [tor 22548] Hardcode VP8/VP9 algorithm choice when resisting fingerprinting NEW P3 Arthur Edelstein (Tor Browser dev) [:arthuredelstein]
1390583 [stylo][tor] Stylo: Build Broken with MinGW NEW P1 Georg Koppen
1339100 [tor], investigation, triaged Firefox does not open correctly from read-only filesystem (FileUtils.getFile() failure when checking for bundled blocklist) NEW P3 Robert Helmer [:rhelmer]
1330608 [tor] Add tor build chain to taskcluster NEW -- Tom Ritter [:tjr]
1336208 [tor][fingerprinting][gfx-noted][fp:m3][fp-triaged] Bundle and whitelist fonts when privacy.resistFingerprinting = true NEW P1 Tom Ritter [:tjr]
1338006 [OA][tor] Perform OriginAttributes Review of WebRTC NEW P3 Tom Ritter [:tjr]
1393896 [tor] nrappkit uses incorrect preprocessor flags to detect Windows NEW P3 Tom Ritter [:tjr]
1393897 [tor] nICEr does not compile with MinGW because of 'interface' keyword NEW P3 Tom Ritter [:tjr]
1393901 [tor] --enable-webrtc does not build under MinGW NEW P5 Tom Ritter [:tjr]
1393903 [tor] webrtc uses __try macros (which don't exist in MinGW) NEW P5 Tom Ritter [:tjr]
1393905 [tor] Lots of error: inlining failed errors when compiling WebRTC with MinGW NEW P5 Tom Ritter [:tjr]
1393906 [tor] std:: errors when compiling WebRTC with MinGW NEW P5 Tom Ritter [:tjr]
1397624 [tor] Provide an option for first-party isolation in Private Browsing Mode NEW P2 Tom Ritter [:tjr]
1400484 [tor] Adjust build-gcc to not use $root_dir for the mingw build NEW -- Tom Ritter [:tjr]
1411401 [tor][gfx-noted] MinGW build does not run without `gfx.direct2d.disabled` and `layers.acceleration.disabled` due to weird MinGW stuff NEW P1 Tom Ritter [:tjr]
1418162 [tor][fingerprinting][domsecurity-backlog1][fp-triaged] nsRFPService::GetSpoofedUserAgent() should use UpdateUtils.getUpdateChannel for 'defaultUpdateChannel' NEW P1 Tom Ritter [:tjr]
1430149 [tor] --enable-accessibility broken for MinGW NEW -- Tom Ritter [:tjr]
1443823 [tor] undefined reference to `__imp_mozalloc_abort' error in MinGW x64 NEW -- Tom Ritter [:tjr]
1443856 [tor] Disable stripping of MinGw Debug Builds NEW -- Tom Ritter [:tjr]
1448749 [tor] undefined reference to `__imp_mozalloc_abort' error in pdfium in MinGW x64 NEW -- Tom Ritter [:tjr]
1449834 [tor] Do not use Skia Assembly on x64 MinGW Build NEW -- Tom Ritter [:tjr]

22 Total; 22 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Backlog (all unowned)

Bugs looking for an owner.
<disabled-bugzilla>

 {
    "include_fields": "id, whiteboard, summary, status, resolution, priority, assigned_to",
   "f1":"status_whiteboard",
   "f2":"status_whiteboard",
   "query_format":"advanced",
   "o1":"substring",
   "v1":"[TOR]",
   "o2":"notsubstring",
   "v2":"[OA-testing]",
   "order": "bug_id",
   "status":["__open__"],
   "assigned_to":"nobody@mozilla.org",
   "keywords_type":"nowords",
   "keywords":"meta"
 }

</disabled-bugzilla>


Testing Bugs

Origin Testing bugs are tagged with [tor-testing]

Full Query
ID Whiteboard Summary Status Resolution Priority Assigned to
1264152 btpp-active[OA-testing][tor-testing][domsecurity-backlog1] Create a tag for OriginAttribute mochitests NEW P3
1314448 [tor][tor-testing][fingerprinting][fp-triaged] Create a build target that adds --disable-webrtc to the mozconfig NEW P3
1314449 [necko-would-take][tor-testing][meta] Create testing framework for proxy-bypass tests for Firefox NEW P2
1314793 [tor-mobile][tor-testing] Creating Testing Framework for Proxy Bypasses for Fennec NEW P3
1337868 [OA-testing][tor-testing][domsecurity-backlog1] Add Origin Attribute connection isolation tests for HTTP2, TLS, and WebSockets NEW P1
1365623 [necko-would-take][tor-testing] Create a proxy bypass test for SourceMap NEW P5

6 Total; 6 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Meta Bugs

This list is here for completeness.

Full Query
ID Whiteboard Summary Status Resolution Priority Assigned to
1260929 [tor], [domsecurity-meta] [META] Tor Patch Uplifting NEW -- Ethan Tseng [:ethan]

1 Total; 1 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Completed Bugs

Patches that have been successfully uplifted (or [tor] tickets otherwise fixed)
<disabled-bugzilla>

 {
   "include_fields": "id, whiteboard, summary, status, resolution, priority, assigned_to",
   "f1":"status_whiteboard",
   "query_format":"advanced",
   "o1":"substring",
   "v1":"[tor",
   "order": "assigned_to,bug_id",
   "status":["RESOLVED"],
   "keywords_type":"nowords",
   "keywords":"meta",
   "resolution":["fixed", "duplicate"]
 }

</disabled-bugzilla>