canmove, Confirmed users
1,537
edits
Platform/2013-Q4-Goals: Difference between revisions
m
→Security
m (→Security) |
|||
| (10 intermediate revisions by 5 users not shown) | |||
| Line 49: | Line 49: | ||
* {{deferred|Update document.register to latest spec revision ({{bug|856140}}) (blake / wchen)}} | * {{deferred|Update document.register to latest spec revision ({{bug|856140}}) (blake / wchen)}} | ||
** The spec for this changed during the quarter to something much more complex, we'll get to this in Q1. | ** The spec for this changed during the quarter to something much more complex, we'll get to this in Q1. | ||
* {{ | * {{deferred|Implement ShadowRoot event retargeting algorithm ({{bug|887541}}) (blake / wchen)}} | ||
** The spec has issues and it's unclear when they'll be resolved. Work that was done here hasn't landed due to spec flux. | ** The spec has issues and it's unclear when they'll be resolved. Work that was done here hasn't landed due to spec flux. We'll defer this until the spec stabilizes a bit more. | ||
* {{ | * {{done|ShadowRoot <shadow> element ({{bug|887538}}) (blake / wchen)}} | ||
** Status as of 2013-12-16: there are some regressions here but they're hard to diagnose; wchen may just land and figure it out afterwards. | ** Status as of 2013-12-16: there are some regressions here but they're hard to diagnose; wchen may just land and figure it out afterwards. | ||
* {{miss|Implement HTML imports ({{bug|877072}}) (blake / wchen)}} | * {{miss|Implement HTML imports ({{bug|877072}}) (blake / wchen)}} | ||
| Line 57: | Line 57: | ||
* {{miss|Finalize the patch for per-document,docshell,window event queue (olli)}} | * {{miss|Finalize the patch for per-document,docshell,window event queue (olli)}} | ||
** More investigation is needed here to know if this is worth doing | ** More investigation is needed here to know if this is worth doing | ||
* {{ | * {{done|Service Workers (nikhil)}} | ||
* {{done|Think about Push payload (nikhil)}} | * {{done|Think about Push payload (nikhil)}} | ||
** This ask went away, so we ended up really not doing any work here, but we did deal with this situation. | ** This ask went away, so we ended up really not doing any work here, but we did deal with this situation. | ||
* {{ | * {{done|ICC landed but not turned on. ({{bug|850065}}) (mccr8)}} | ||
* {{miss|Deal with all the main bullet items in our Window bindings [https://etherpad.mozilla.org/WebIDL-Window task list]}} | * {{miss|Deal with all the main bullet items in our Window bindings [https://etherpad.mozilla.org/WebIDL-Window task list]}} | ||
** Large parts of this is done, but we ran into unexpected complications along the way that took more time than expected to get through, so this won't be done for the end of Q4 | ** Large parts of this is done, but we ran into unexpected complications along the way that took more time than expected to get through, so this won't be done for the end of Q4 | ||
* {{ | * {{miss|Ensure that the median age of all DOM sec-critical and sec-high bugs is 3 weeks or less.}} | ||
** We hit some hard ones this quarter, and a bunch of stuff is blocked by larger security work (i.e. slaughterhouse), and didn't get to deal with as much of this as hoped. | |||
=== WebAPI === | === WebAPI === | ||
| Line 115: | Line 115: | ||
==== Core Platform ==== | ==== Core Platform ==== | ||
* {{ | * {{miss|Stability: to include crashes and new asserts. Tracking {{bug|888531}}.}} (good progress but didn't hit target) | ||
* {{miss|Stability: investigate instantiation of a11y for other test suites and make them pass.}} | * {{miss|Stability: investigate instantiation of a11y for other test suites and make them pass.}} | ||
* {{done|Resolve all actionable sec-moderate or higher a11y bugs within six weeks of their sec-rating.}} | * {{done|Resolve all actionable sec-moderate or higher a11y bugs within six weeks of their sec-rating.}} | ||
| Line 125: | Line 125: | ||
=== Networking === | === Networking === | ||
* {{miss|Turn on new HTTP cache in nightly (honza / michal)}} | * {{miss|Turn on new HTTP cache in nightly (honza / michal)}} | ||
** new timeline is to land mid-February (for Firefox 31) | |||
* {{done|HTTP/2: implement draft-06; contribute internet draft for http:// over TLS; test coverage (hurley / mcmanus)}} | * {{done|HTTP/2: implement draft-06; contribute internet draft for http:// over TLS; test coverage (hurley / mcmanus)}} | ||
* {{ | * {{done|Design docs and go/no go decision on Carpe Net proposal (mcmanus / hurley)}} | ||
* {{ | * {{done|"lame-network": use TCP keepalive to time out stale connections ({{bug|444328}}), timeout 1/2 open connections (need to file bug) (sworkman)}} | ||
* {{ | ** closed in early January, so I'm counting this :) | ||
* {{defer|B2G: Provide way to "set network offline" per app ({{bug|786419}}) (jduell)}} | |||
** punted on this in favor of working on last-minute priority for webRTC: DNS working on child ({{bug|945066}}) | |||
* {{miss|Support off-main send/recv from Websockets (for workers) ({{bug|925623}}) (jduell/sworkman)}} | * {{miss|Support off-main send/recv from Websockets (for workers) ({{bug|925623}}) (jduell/sworkman)}} | ||
** neither Steve nor jduell found the time to get to this. | |||
* {{risk|make e10s FTP work with HTTP proxies ({{bug|915024}}) (jduell) }} | * {{risk|make e10s FTP work with HTTP proxies ({{bug|915024}}) (jduell) }} | ||
* {{done|get DNS service working on child ({{bug|945066}})}} (added mid-quarter for B2G/WebRTC support) | |||
=== Mobile === | === Mobile === | ||
| Line 136: | Line 141: | ||
[[SecurityEngineering/2013/Q4Goals|Security Engineering's Q4 goal details here]]. Summary: | [[SecurityEngineering/2013/Q4Goals|Security Engineering's Q4 goal details here]]. Summary: | ||
* {{done|Sandboxing: Land chromium-sandbox and make it enableable}} | * {{done|Sandboxing: Land chromium-sandbox and make it enableable}} | ||
* {{ | * {{done|B2G: Get CSP tests enabled on b2g (observer thing)}} | ||
* {{done|Roadmaps: Update privacy/security roadmaps.}} | * {{done|Roadmaps: Update privacy/security roadmaps.}} | ||
* {{done|TLS: Land and enable TLS 1.2}} | * {{done|TLS: Land and enable TLS 1.2}} | ||
* {{ | * {{miss|Mixed Content: Land last critical follow-ups for MCB.}} - close, see link above for details. | ||
* {{ | * {{miss|CSP: Evaluate C++ rewrite perf gains, implement nonce and hash support.}} | ||
(many goals | (many sub-goals done, see the link above for more details) | ||