Security/Tor Uplift/Tracking
Contents
Tor Uplift
To uplift all of the Tor Browser patches to mainline Firefox. The general approach is to add preferences for anything that breaks the web and set them to default "off" so that the behavior of default Firefox does not change. All bugs are tagged with [tor]. The Tor Browser design document is here.
Active Bugs
Bugs which are assigned and being worked on.
| ID | Whiteboard | Summary | Status | Resolution | Priority | Assigned to |
|---|---|---|---|---|---|---|
| 1429838 | [tor 27604] | After restoring profile to a different location, paths in extensions.json are incorrect | ASSIGNED | P2 | Alex Catarineu (Tor Browser dev) | |
| 1302566 | [tor][domsecurity-backlog1][OA] | remove the IsInPrivateBrowsing mode from shared workers and use origin attributes instead. | REOPENED | P3 | Andrea Marchesini [:baku] | |
| 1433030 | [tor 21830] | Copying large text from web console leaks to /tmp | REOPENED | P2 | Arthur Edelstein [:arthur] | |
| 1213698 | [tor][tor-standalone] | error: undefined reference to 'dlsym' if building with ASan and GCC (Tor 17509) | REOPENED | P3 | Georg Koppen | |
| 1314443 | [tor][fingerprinting][tor-mobile][fp-triaged] | Audit the existing disable WebRTC preferences and ensure they work as advertised | ASSIGNED | P3 | Tom Ritter [:tjr] (ni? for response to sec-[advisories/bounties/ratings/cves]) | |
| 1690038 | [fingerprinting][tor 22632][domsecurity-active] | Scrollbar is enabled and disabled based on a setting in macOS system preferences | ASSIGNED | P2 | Tom Ritter [:tjr] (ni? for response to sec-[advisories/bounties/ratings/cves]) |
6 Total; 6 Open (100%); 0 Resolved (0%); 0 Verified (0%);
Assigned, but not started
These bugs have an owner, but their status is 'NEW' indicating that they are not being worked on yet.
10 Total; 10 Open (100%); 0 Resolved (0%); 0 Verified (0%);
Backlog (all unowned)
Bugs looking for an owner.
<disabled-bugzilla>
{
"include_fields": "id, whiteboard, summary, status, resolution, priority, assigned_to",
"f1":"status_whiteboard",
"f2":"status_whiteboard",
"query_format":"advanced",
"o1":"substring",
"v1":"[TOR]",
"o2":"notsubstring",
"v2":"[OA-testing]",
"order": "bug_id",
"status":["__open__"],
"assigned_to":"nobody@mozilla.org",
"keywords_type":"nowords",
"keywords":"meta"
}
</disabled-bugzilla>
Testing Bugs
Origin Testing bugs are tagged with [tor-testing]
| ID | Whiteboard | Summary | Status | Resolution | Priority | Assigned to |
|---|---|---|---|---|---|---|
| 1264152 | btpp-active[OA-testing][tor-testing][domsecurity-backlog1] | Create a tag for OriginAttribute mochitests | NEW | P3 | ||
| 1314449 | [necko-would-take][tor-testing][meta] | Create testing framework for proxy-bypass tests for Firefox | NEW | P5 | ||
| 1337868 | [OA-testing][tor-testing][domsecurity-backlog1] | Add Origin Attribute connection isolation tests for HTTP2, TLS, and WebSockets | NEW | P3 | ||
| 1365623 | [necko-would-take][tor-testing] | Create a proxy bypass test for SourceMap | NEW | P5 |
4 Total; 4 Open (100%); 0 Resolved (0%); 0 Verified (0%);
Meta Bugs
This list is here for completeness.
| ID | Whiteboard | Summary | Status | Resolution | Priority | Assigned to |
|---|---|---|---|---|---|---|
| 1260929 | [tor], [domsecurity-meta] | [META] Tor Patch Uplifting | NEW | P3 | Ethan Tseng [:ethan] (PTO until Feb 26, 2021) |
1 Total; 1 Open (100%); 0 Resolved (0%); 0 Verified (0%);
Completed Bugs
Patches that have been successfully uplifted (or [tor] tickets otherwise fixed)
<disabled-bugzilla>
{
"include_fields": "id, whiteboard, summary, status, resolution, priority, assigned_to",
"f1":"status_whiteboard",
"query_format":"advanced",
"o1":"substring",
"v1":"[tor",
"order": "assigned_to,bug_id",
"status":["RESOLVED"],
"keywords_type":"nowords",
"keywords":"meta",
"resolution":["fixed", "duplicate"]
}
</disabled-bugzilla>
