MozillaWiki

Security/Tor Uplift/Tracking

< Security‎ | Tor Uplift
Revision as of 06:49, 7 September 2016 by Ethantseng (talk | contribs) (Add the condition resolution is duplicate.)

Tor Uplift

To uplift all of the Tor Browser patches to mainline Firefox. The general approach is to add preferences for anything that breaks the web and set them to default "off" so that the behavior of default Firefox does not change. All bugs are tagged with [tor]. The Tor Browser design document is here.

Active Bugs

Bugs which are assigned and being worked on.

Full Query
ID Whiteboard Summary Status Resolution Priority Assigned to
1799153 [tor 41454] No focus is set after opening preferences and scrolling with openPreferences ASSIGNED P2 :Gijs (he/him)
1963068 [tor 43693] Newwin protection is broken by Mutter's auto-resize ASSIGNED P3 Pier Angelo Vendrame
1314443 [tor][fingerprinting][tor-mobile][fp-triaged] Audit the existing disable WebRTC preferences and ensure they work as advertised ASSIGNED P3 Tom Ritter [:tjr]

3 Total; 3 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Assigned, but not started

These bugs have an owner, but their status is 'NEW' indicating that they are not being worked on yet.

Full Query
ID Whiteboard Summary Status Resolution Priority Assigned to
1594455 [tor 32220] Change the letterboxing background to match the theme, and reposition the content NEW P3 Giorgio Maone [:ma1]
1475811 [tor 26353][tor 31075][dfpi-ok] Entering URLs in address bar violates FPI NEW P5 Pier Angelo Vendrame
1339100 [tor 21445], investigation, triaged Firefox does not open correctly from read-only filesystem (FileUtils.getFile() failure when checking for bundled blocklist) NEW P3 Robert Helmer [:rhelmer]
1338006 [OA][tor] Perform OriginAttributes Review of WebRTC NEW P3 Tom Ritter [:tjr]
1393901 [tor 41459] --enable-webrtc does not build under MinGW NEW P5 Tom Ritter [:tjr]
1612422 [tor] Create a MinGW reproducible build job NEW -- Tom Ritter [:tjr]

6 Total; 6 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Backlog (all unowned)

Bugs looking for an owner.

Full Query
ID Whiteboard Summary Status Resolution Priority Assigned to
440892 [tor][tor-standalone] network.protocol-handler.warn-external are ignored NEW P3
901614 [tor] Adopt Tor as a feature in Firefox NEW P3
1041818 [fingerprinting][tor][fp-triaged] take steps to mitigate canvas fingerprinting NEW P2
1102415 [tor] Firefox should help users attempting to visit .onion URLs without Tor NEW P5
1205598 [tor][tor-standalone] Print preview doesn't honor Private Browsing Mode and writes to /tmp NEW P3
1213698 [tor][tor-standalone] error: undefined reference to 'dlsym' if building with ASan and GCC (Tor 17509) REOPENED P3
1216882 [tor][necko-backlog][tor-standalone] When "security.nocertdb" pref is true, HTTP Auth Dialog fails (Tor 14716) NEW P5
1217166 [tor][tor-standalone] OS X trying to run a profile from a mounted DMG file (read-only) shows error "Another copy of Firefox is running" (Tor 14631) NEW P3
1250696 [psm-backlog][tor] .onion names contain their own validator, we should use that NEW P5
1284986 [fxprivacy][OA][tor] JavaScript error: chrome://browser/content/pageinfo/permissions.js, line 224: Error: Callback received for bad URI: [xpconnect wrapped nsIURI @ 0x12cf99d40 (native @ 0x1356f7b08)] NEW P5
1287994 [tor][necko-backlog][proxy] Implement named pipe support on option SocksPort for Windows users (Tor 14209) NEW P3
1305177 [tor] Provide observer notification to allow extensions to cancel external app launch (Tor 19273) NEW P2
1316019 [tor][domsecurity-active] [FirstPartyIsolation] Failed to sign in to the pixnet.net NEW P3
1319728 [tor][domsecurity-active] Fx with FPI feature wrongly displays that sign-in on youtube has failed even though it did not NEW P3
1319761 [tor] [domsecurity-backlog1][platform-rel-Facebook] Login on pinterest using facebook social network not working on Fx with FPI NEW P3
1319839 [tor][domsecurity-backlog1][dfpi-ok] [FirstPartyIsolation] If you sign in to Gmail, you'll be automatically signed in when you visit YouTube NEW P3
1321158 [tor][domsecurity-backlog1] Investigate if window.open() inheriting firstPartyDomain resolves breakage NEW P5
1330675 [domsecurity-backlog1][tor] Consider adding support for style API for disabled SVG nodes NEW P3
1330882 [fingerprinting][tor][fp-triaged] When privacy.resistFingerprinting = true, set new windows to rounded dimensions [tor 19459] REOPENED P3
1361337 [tor][necko-triaged] dns leaks with remotedns in firefox 45.9.0 over tor NEW P3
1363952 [tor][domsecurity-meta] The counter isn't updated after tapping the Like button in "ltn.com.tw" website NEW P3
1366202 [tor][necko-would-take] Randomize HTTP requests to defend against traffic fingerprinting (Tor 5282) NEW P5
1374027 [tor] Allow user control for kMDItemWhereFroms xattr metadata writing on downloads in macOS NEW P3
1375122 [tor][sb-] Check preferences for WebRTC before processing WebRTC-related IPC messages NEW P3
1397624 [tor] Provide an option for first-party isolation in Private Browsing Mode NEW P3
1397996 [tor][fingerprinting][fp-triaged][tor 22137] scrollbar thickness reveals platform NEW P2
1398414 [tor] Key :visited per origin (first-party-isolation / partitioning for :visited). NEW P3
1401493 [tor][fingerprinting][fp-triaged] Perform Fingerprint Comparison of Tor Browser and Firefox NEW P3
1403747 [tor][fingerprinting][fp-triaged] When privacy.resistFingerprinting is true, warn users not to maximize their window NEW P5
1404219 [tor][gfx-noted] fsanitize=enum (ubsan) runtime errors for SkXfermode::Coeff NEW P3
1405142 [tor] fsanitize=enum (ubsan) runtime errors for GtkStateFlags NEW P3
1405147 [tor][gfx-noted] fsanitize=enum (ubsan) runtime error for std::_Ios_Fmtflags in gfx/angle NEW P3
1409251 [tor][domsecurity-backlog] <style> elements in <svg> nodes are rendered as text when svg.disabled is set NEW P5
1409253 [tor][domsecurity-backlog] When <svg> is used as a background image, elements such as buttons may become unusable NEW P5
1409927 [tor] svg.disabled does not apply to the network inspector NEW P3
1422482 [fingerprinting][tor] OS username disclosure using downloads manager NEW P3
1425287 [tor] If privacy.firstparty.isolate.restrict_opener_access is set, we can probably window.open in a new process more often NEW P3
1433504 [tor] Add a build flag for proxy bypass protection NEW --
1439784 [tor][fingerprinting][fp-triaged] Fix the KeyboardEvent mochitests NEW P3
1470592 [tor][fingerprinting][fp-triaged] macOS 10.14 Camera/Mic Permissions granted in Private Browsing Mode shouldn't persist NEW P3
1472808 [tor][fingerprinting][fp-triaged] For privacy.resistFingerprinting, spoof Keyboard Layout according to content locale NEW P3
1475973 [tor][fingerprinting][fp-triaged] browser/components/resistfingerprinting/test/browser/browser_roundedWindow_open_* and browser/components/resistfingerprinting/test/browser/browser_roundedWindow_windowSetting_* fail on Windows install with 150% dpi NEW P3
1490728 [tor][fingerprinting][domsecurity-backlog1][fp-triaged] Improve discoverability/explanation of RFP NEW P3
1495204 [tor][pdfjs-network] [pdf.js] Lots of errors "system principal mismatch" with privacy.firstparty.isolate=true NEW P5
1495458 [tor][trr][necko-triaged] Support DNS-over-Tor (via DNS-over-HTTPS) NEW P5
1497263 [tor][necko-triaged] Prioritize .onion hosts in Alt-Svc NEW P3
1532859 [domsecurity-backlog1][tor][fingerprinting][fp-triaged][fpp:m?] Non-integer devicePixelRatio's cause blurriness with RFPTarget::WindowDevicePixelRatio NEW P3
1598862 [fingerprinting][tor] When resistFingerprinting is enabled, alt+letter JS keyboard hotkey bindings don't work UNCONFIRMED P5
1603332 [fingerprinting][tor] privacy.resistFingerprinting and -moz- colors UNCONFIRMED P3
1618382 [tor][psm-waiting] Tor Browser: Disable self-signed certificate warnings when visiting .onion sites NEW P5
1620045 [tor] Enforce that rust code does not perform networking calls NEW --
1647906 [tor] Add pref webgl.force-software NEW P3
1961408 [tor] Mock navigator.sendBeacon for compatibility when beacons are disabled NEW P3

53 Total; 53 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Testing Bugs

Origin Testing bugs are tagged with [tor-testing]

Full Query
ID Whiteboard Summary Status Resolution Priority Assigned to
1264152 btpp-active[OA-testing][tor-testing][domsecurity-backlog1] Create a tag for OriginAttribute mochitests NEW P3
1314449 [necko-would-take][tor-testing][meta] Create testing framework for proxy-bypass tests for Firefox NEW P5
1314793 [tor-mobile][tor-testing] Creating Testing Framework for Proxy Bypasses for Firefox Android REOPENED P5
1337868 [OA-testing][tor-testing][domsecurity-backlog1] Add Origin Attribute connection isolation tests for HTTP2, TLS, and WebSockets NEW P3
1365623 [necko-would-take][tor-testing] Create a proxy bypass test for SourceMap NEW P5

5 Total; 5 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Meta Bugs

This list is here for completeness.

Full Query
ID Whiteboard Summary Status Resolution Priority Assigned to
1260929 [tor], [domsecurity-meta] [META] Tor Patch Uplifting NEW P3

1 Total; 1 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Completed Bugs

Patches that have been successfully uplifted (or [tor] tickets otherwise fixed)

Full Query
ID Whiteboard Summary Status Resolution Priority Assigned to
1046421 [reporter-external][post-critsmash-triage][adv-main42+][tor 12974] Information disclosure vulnerability in Firefox via NTLM based HTTP authentication feature RESOLVED FIXED -- Andrew Bartlett
467035 [sg:low][fingerprinting][fp-triaged][tor 30304][adv-main70-] <!DOCTYPE> ignores contentaccessible, leaks DTD strings and therefore browser UI locale RESOLVED FIXED P2 Alex Catarineu (Tor Browser dev)
1542309 [tor 24622][domsecurity-active] firstPartyDomain not set on top-level domain URLs RESOLVED FIXED P2 Alex Catarineu (Tor Browser dev)
1561322 [tor 24056] UI locale is detectable by button width RESOLVED FIXED -- Alex Catarineu (Tor Browser dev)
1561636 [tor 26514] Intermittent updater failures on Win64 RESOLVED FIXED P3 Alex Catarineu (Tor Browser dev)
1581537 [tor 30683][fingerprinting] Browser UI locale is leaked in several ways RESOLVED FIXED P3 Alex Catarineu (Tor Browser dev)
1598647 [tor 32255][domsecurity-active] Set Origin to null with network.http.referer.hideOnionSource RESOLVED FIXED P2 Alex Catarineu (Tor Browser dev)
1633015 [necko-triaged] [tor 21537] Allow 'secure' cookies when set by .onion site RESOLVED FIXED P5 Alex Catarineu (Tor Browser dev)
1636411 [necko-triaged] [tor 33962] Allow disabling DNS via pref RESOLVED FIXED P2 Alex Catarineu (Tor Browser dev)
1640707 [domsecurity-active] [tor 33963] Make sure whitelist_onions is disabled in test_isOriginPotentiallyTrustworthy.js RESOLVED FIXED P2 Alex Catarineu (Tor Browser dev)
1433350 [tor 13398][overhead:noted] As defense in depth, don't load user's name etc. into memory RESOLVED FIXED P3 :aceman
1345322 [fingerprinting][tor][fp:m1] Create the preference privacy.resistFingerprinting in firefox.js RESOLVED FIXED P1 Ethan Tseng [:ethan]
1358361 [tor][tor-mobile] Move prefs of First Party Isolation and resist fingerprinting to all.js RESOLVED FIXED P1 Ethan Tseng [:ethan]
1383495 [tor][fingerprinting][fp:m3][domsecurity-active] Spoofing Navigator API platform as Win64 when resisting fingerprinting is enabled RESOLVED FIXED P3 Ethan Tseng [:ethan]
1393283 [tor][fingerprinting][domsecurity-active] privacy.resistFingerprinting should change the user agent to 52, not 50 RESOLVED FIXED P2 Ethan Tseng [:ethan]
1396468 [tor][fingerprinting][domsecurity-active] Spoof navigator.oscpu as 'Windows NT 6.1; Win64; x64' when resisting fingerprinting is enabled RESOLVED FIXED P2 Ethan Tseng [:ethan]
1651660 [tor] Move application-services to a version of Glean that uses the gradle-plugin RESOLVED FIXED P1 Alessio Placitelli [:Dexter]
1260931 [tor], [domsecurity-active][ETA 9/12][tor 13742] Add 1st party isolation pref and OriginAttribute. RESOLVED FIXED P1 Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1300182 [domsecurity-intermittent][tor] Intermittent browser/components/originattributes/test/browser/browser_firstPartyIsolation.js | "KO" == "OK" - RESOLVED FIXED P3 Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1300671 [tor][domsecurity-active] Set firstPartyDomain for about: pages RESOLVED FIXED P2 Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1301274 [tor][domsecurity-active] 1st party isolation + cookie whitelist causes security error on stackoverflow.com RESOLVED FIXED P2 Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1301406 [tor][domsecurity-backlog1] The cookies of the top-level page are not keyed with firstPartyDomain when first party isolation is turned on in e10s mode. RESOLVED FIXED P3 Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1301649 [tor], [domsecurity-backlog2] nits for firstPartyDomain in bug 1260931 RESOLVED FIXED P2 Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1315602 [tor][domsecurity-active] Remove the assertion of FirstPartyDomain should be empty in HTTP redirect RESOLVED FIXED -- Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1315927 [tor][domsecurity-active] ignore firstPartyDomain and userContextId in PermissionStatus RESOLVED FIXED P2 Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1344170 [tor][domsecurity-active] set firstPartyDomain for blob: URI RESOLVED FIXED P2 Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1346713 [tor][domsecurity-active] Generate unique firstPartyDomain for NullPrincipal everytime RESOLVED FIXED -- Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1376971 [tor][tor 22327][OA][userContextId][domsecurity-backlog1] Isolate Page Info media previews to content first party RESOLVED FIXED P3 Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]
1317927 [OA][tor][domsecurity-active] Media caching needs to use origin attributes RESOLVED FIXED P1 Andrea Marchesini [:baku]
1335678 [tor][domsecurity-backlog1][OA] Add diagnostic assertions to see if OriginAttributes and loadGroup are in sync RESOLVED FIXED P3 Andrea Marchesini [:baku]
1264556 [tor][domsecurity-active][ETA 11/7] Isolate blob URLs to first party; no blobURLs in Web Workers (Tor 15502) RESOLVED DUPLICATE P2 Anthony Miyaguchi [:amiyaguchi]
1169421 [tor-mobile] Switch Fennec to use ch.boye instead of org.apache.http to allow for building with Android M SDK 23 RESOLVED FIXED P1 amoghbl1
1330149 [tor 20981] Regressions on ecma_3\Date\15.9.5.5.js 15.9.5.7.js RESOLVED FIXED P3 André Bargull [:anba]
418986 [fingerprinting][tor 5856][tor 2875][tor 4755] window.screen and CSS media queries provide a large amount of identifiable information (Tor 2875) RESOLVED FIXED -- Arthur Edelstein [:arthur]
436344 [tor] nsIProtocolProxyFilter.applyFilter() should be handed channel or request instead of URI (Tor 3455) RESOLVED FIXED -- Arthur Edelstein [:arthur]
629558 [tor] need way to disable intermediate SSL certificate cache to demonstrate SSL problems RESOLVED FIXED -- Arthur Edelstein [:arthur]
867501 [fingerprinting][tor] Date.toLocaleFormat exposes OS locale (Tor 13019) RESOLVED FIXED -- Arthur Edelstein [:arthur]
967812 [tor] Permissions Manager writes to disk in Private Browsing Mode RESOLVED FIXED -- Arthur Edelstein [:arthur]
967977 [tor] Add a pref to disable SSL Session cache (Disable sending session IDs and sending session tickets) RESOLVED FIXED -- Arthur Edelstein [:arthur]
1078657 [tor] Add a Task library for mochitest chrome and plain RESOLVED FIXED -- Arthur Edelstein [:arthur]
1121643 [gfx-noted] [tor][fingerprinting] Add an option to only expose whitelisted system fonts to avoid fontlist fingerprinting (Tor 13313) RESOLVED FIXED P3 Arthur Edelstein [:arthur]
1173171 [tor] Provide pref to disable download of remote jar files (Tor 12430) RESOLVED FIXED -- Arthur Edelstein [:arthur]
1187701 [tor] Implement add_task function for mochitest chrome and plain RESOLVED FIXED -- Arthur Edelstein [:arthur]
1190590 [gfx-noted][tor] MinGW build fails with --enable-bundled-fonts RESOLVED FIXED -- Arthur Edelstein [:arthur]
1193593 [tor][fingerprinting] Test fingerprinting resistance for media queries in picture elements RESOLVED FIXED -- Arthur Edelstein [:arthur]
1200802 [tor] Accept SOCKS credentials in proxyInfo object RESOLVED FIXED -- Arthur Edelstein [:arthur]
1217985 [tor] Don't depend on Windows crypto DLLs if not building the Windows Maintenance Service RESOLVED FIXED -- Arthur Edelstein [:arthur]
1237831 [tor][adv-main45-][post-critsmash-triage]lurking (but currently inert in Firefox) exploitable bug nsContentUtils::LogMessageToConsole() shouldn't take a format string as argument RESOLVED FIXED -- Arthur Edelstein [:arthur]
1281949 [tor][fingerprinting] btpp-active screen.orientation should be spoofed when privacy.resistFingerprinting is enabled (Tor 18958) RESOLVED FIXED -- Arthur Edelstein [:arthur]
1305144 [tor][necko-would-take] Spoof referrer when leaving a .onion domain (Tor 17334) RESOLVED FIXED -- Arthur Edelstein [:arthur]
1312541 [tor][domsecurity-active] Test first-party isolation of cookies RESOLVED FIXED P1 Arthur Edelstein [:arthur]
1333933 [tor][fingerprinting][fp-backlog][fp-triaged] Disable/spoof fingerprintable features when privacy.resistFingerprinting = true RESOLVED FIXED P1 Arthur Edelstein [:arthur]
1344613 [necko-triaged][tor 1344613] Crash seen in nsSOCKSIOLayer.cpp RESOLVED FIXED P3 Arthur Edelstein [:arthur]
1367564 [necko-would-take][tor 22320] Fix inconsistent pref name for suppressing .onion referers RESOLVED FIXED -- Arthur Edelstein [:arthur]
1384309 [tor 21972] about:support "Graphics" section breaks when "webgl.disable-extensions" is true RESOLVED FIXED P2 Arthur Edelstein [:arthur]
1404169 [tor] fsanitize=enum (ubsan) runtime errors in extensions/universalchardet/src/base/nsCodingStateMachine.h RESOLVED FIXED P3 Arthur Edelstein [:arthur]
1404174 [tor][gfx-noted] fsanitize=enum (ubsan) runtime errors for nsEventStatus RESOLVED FIXED P3 Arthur Edelstein [:arthur]
1404224 [tor] fsanitize=enum (ubsan) runtime errors for nsCSSTokenSerializationType RESOLVED FIXED P3 Arthur Edelstein [:arthur]
1404226 [tor] fsanitize=enum (ubsan) runtime errors for mozilla::ipc::Transport::Mode RESOLVED FIXED -- Arthur Edelstein [:arthur]
1404572 [tor][gfx-noted] fsanitize=enum (ubsan) runtime errors for ReferrerPolicy in gfxUserFontSet.h RESOLVED FIXED P3 Arthur Edelstein [:arthur]
1405139 [tor] fsanitize=enum (ubsan) runtime errors for TrackInfo::TrackType RESOLVED FIXED -- Arthur Edelstein [:arthur]
1405154 [tor] fsanitize=enum (ubsan) runtime error for JSExnType RESOLVED FIXED -- Arthur Edelstein [:arthur]
1405156 [tor] fsanitize=enum (ubsan) runtime error for js::jit::ABIArgType RESOLVED FIXED -- Arthur Edelstein [:arthur]
1432907 [tor 18799][tor-mobile] Add build flag to disable network tickler RESOLVED FIXED -- Arthur Edelstein [:arthur]
1433357 [tor 18101] Prevent proxy bypass via file dialog (Linux) RESOLVED FIXED -- Arthur Edelstein [:arthur]
1433507 [tor 23044][necko-triaged] GIO protocols can leak the user's IP RESOLVED FIXED P5 Arthur Edelstein [:arthur]
1433517 [tor 21723] Fix generate of MOZ_MACBUNDLE_ID RESOLVED FIXED -- Arthur Edelstein [:arthur]
1433523 [tor 18170] Disable session restore in permanent private browsing mode RESOLVED FIXED -- Arthur Edelstein [:arthur]
1434666 [tor 18900] updater failing on Linux (cannot find libraries) RESOLVED DUPLICATE P2 Arthur Edelstein [:arthur]
1434772 [tor 18995] test to ensure CacheStorage is disabled in Private Browsing mode RESOLVED FIXED P2 Arthur Edelstein [:arthur]
1337331 sbwc2 [tor 24197] Update security/sandbox/chromium/ to Chromium stable channel version 56.0.2924.87 RESOLVED FIXED -- Bob Owen (:bobowen)
1432381 [tor][mingw-upstream-pending][sb+] Sandbox MinGW Compilation errors: error: narrowing conversion RESOLVED FIXED P1 Bob Owen (:bobowen)
1305396 [psm-assigned][tor] mingw-w64 based on GCC >= 5.4.0 fails with "error: 'memmove' was not declared in this scope" RESOLVED FIXED P1 Nicolas Vigier
962314 [tor] Create nsIXULAppinfo.processID for obtaining Firefox PID RESOLVED FIXED -- Kathleen :Brade
1324044 [tor][fingerprinting] Fingerprinting resistance in pluginarray/mimetypesarray misses own prop names RESOLVED FIXED -- Boris Zbarsky [:bzbarsky]
967895 [tor][fingerprinting][fp:m3][ux] Prompt (w/ Site Permission) before allowing content to extract canvas data (Tor 6253) RESOLVED FIXED P1 Chung-Sheng Fu [:cfu]
1039069 [tor][fingerprinting][fp:m3][ux] Warn the user that customizing the preferred language list (Accept-Language) can be used for fingerprinting RESOLVED FIXED P1 Chung-Sheng Fu [:cfu]
1217290 [tor][tor-standalone][fingerprinting][fp:m3] Add fingerprinting resistance for WebGL (Tor 16005) RESOLVED FIXED P1 Chung-Sheng Fu [:cfu]
1330876 [fingerprinting] gfx-noted [tor][fp:m2] use properly contrasting colors if the desktop theme specifies white on black for text colors [tor 6786] RESOLVED FIXED P1 Chung-Sheng Fu [:cfu]
1337161 [tor][fingerprinting][fp:m2] Disable navigator.getGamepads() when privacy.resistFingerprinting = true RESOLVED FIXED P1 Chung-Sheng Fu [:cfu]
1354633 [tor 21792][fingerprinting][fp:m3] blank MediaError.message when resisting fingerprinting RESOLVED FIXED P2 Chung-Sheng Fu [:cfu]
1372073 [fingerprinting][tor][fp:m3] Neutralize the threat of fingerprinting of media devices API when 'privacy.resistFingerprinting' is true RESOLVED FIXED P3 Chung-Sheng Fu [:cfu]
1382499 [tor 10286][fingerprinting][fp:m3] Touch API leaks absolute screen coordinates RESOLVED FIXED P3 Chung-Sheng Fu [:cfu]
1382533 [tor 22165][fingerprinting][fp:m3] When resisting fingerprinting, don't expose local IP Addresses via mDNS RESOLVED FIXED P2 Chung-Sheng Fu [:cfu]
1406294 [tor][fingerprinting] Refactor browser/components/resistfingerprinting/test/browse rounded window tests RESOLVED FIXED P2 Chung-Sheng Fu [:cfu]
1384427 [tor][domsecurity-active] Update more tests within layout/ to comply with new data: URI inheritance model RESOLVED FIXED P2 Christoph Kerschbaumer [:ckerschb]
1384500 [tor][domsecurity-active] Update test_compatmode.html to comply with new data: URI inheritance model RESOLVED FIXED P2 Christoph Kerschbaumer [:ckerschb]
1388142 [tor][domsecurity-active] Convert editor/libeditor/tests/test_CF_HTML_clipboard.html to comply with new data: URI inheritance model RESOLVED FIXED P2 Christoph Kerschbaumer [:ckerschb]
1402363 [tor][domsecurity-active][adv-main57+][post-critsmash-triage] when a redirect is blocked for mixed content blocking the original redirect response is returned instead RESOLVED FIXED P1 Christoph Kerschbaumer [:ckerschb]
1403814 [tor][domsecurity-active] Block toplevel data: URI navigations only if openend in the browser RESOLVED FIXED P1 Christoph Kerschbaumer [:ckerschb]
1642387 [domsecurity-active][tor-P1] Avoid timeouts within HTTPS-Only Mode by sending background http request RESOLVED FIXED P2 Christoph Kerschbaumer [:ckerschb]
1658265 [domsecurity-active][tor-P1] Https-only: Consider exempting certain loads from being logged to the console RESOLVED FIXED P1 Christoph Kerschbaumer [:ckerschb]
1360039 [tor 21675][fingerprinting][fp:m1] Spoof navigator.hardwareConcurrency = 2 when privacy.resistFingerprinting = true RESOLVED FIXED P1 Chris Peterson [:cpeterson]
1511434 [tor][fingerprinting][domsecurity-active][fp-triaged] privacy.resistFingerprinting: Change spoofed OS version to Windows 10 and macOS 10.14 RESOLVED FIXED P2 Chris Peterson [:cpeterson]
1309816 [tor][domsecurity-active][dfpi-ok] Some firstPartyDomains are empty RESOLVED DUPLICATE P3 Cynthia Tang [:cynthiatang]
1503736 [tor][domsecurity-active] Origin header honors network.http.referer.hideOnionSource RESOLVED FIXED P3 Junior [inactive]
429070 [sg:low][tor] exposing Components.interfaces to untrusted content leaks information about installed extensions RESOLVED FIXED -- Camilo Viecco (:cviecco)
1959305 [necko-triaged][necko-priority-new][tor 43544] When Parental Controls Service is disabled, DNS Over HTTPS settings fail to work with uncaught exception RESOLVED FIXED P2 Dan Ballard (Tor Browser Dev)
1564208 [tor 31015] Setting `svg.disabled` to `true` causes extension icons to disappear RESOLVED FIXED P3 Daniel Holbert [:dholbert]
1329593 [tor] Compiling with mingw-w64 is broken with conflict-with-previous-declaration errors RESOLVED FIXED P1 Dimi Lee [:dimi]
1409677 [tor][fingerprinting-breakage][fp:backlog][gfx-noted] WebGL fails to initialize when resistFingerprint is enabled RESOLVED FIXED -- Daosheng Mu[:daoshengmu]
1408702 [tor][fingerprinting-breakage] Resist fingerprinting causes scrollbar glitch in Firefox 58 RESOLVED FIXED P2 Emilio Cobos Álvarez (:emilio)
1704110 [fingerprinting][tor][post-critsmash-triage][adv-main92-][adv-esr91.1-] Browser Tracking through Preflight Cache RESOLVED FIXED -- Emma Zühlcke [:emz]
1434706 [tor 16488][tor 22564] Add a preference to disable FxA/Sync and hide their UI RESOLVED FIXED P1 Edouard Oger [:eoger]
1390465 [tor][fingerprinting][fp-triaged] disable or limit WebVTT with privacy.resistFingerprinting RESOLVED FIXED P3 Fatih Kilic [:fkilic]
1436226 [tor 22548] [fingerprinting][fp-triaged] Hardcode VP8/VP9 algorithm choice when resisting fingerprinting RESOLVED FIXED P2 Fatih Kilic [:fkilic]
1607032 [tor 30543][fingerprinting] RFP: make spoofed orientation reflect spoofed screen dimensions RESOLVED FIXED -- Fatih Kilic [:fkilic]
1384657 [tor][dfpi-ok] Pocket doesn't work with privacy.firstparty.isolate set to true RESOLVED FIXED P3 :Gijs (he/him)
1958504 [tor 42194] Blank net error page on failed DNS resolution with active proxy RESOLVED FIXED P1 :Gijs (he/him)
1377137 [tor] Include windows targets in rustc.tar.xz RESOLVED FIXED -- Ralph Giles (:rillian)
939319 [tor] Provide a drag-and-drop observer to allow event filtering RESOLVED FIXED -- Georg Koppen
1371263 [tor 16485] Selecting particular caches on about:cache via checkboxes results in cryptic error RESOLVED FIXED -- Georg Koppen
1382359 [tor][domsecurity-active][tor 21321][tor 23439] Treat .onion as a secure context RESOLVED FIXED P1 Georg Koppen
1390583 [stylo][tor] Stylo: Build Broken with MinGW RESOLVED FIXED P1 Georg Koppen
1825033 [addons-jira][tor 41698] Badge descriptions should not use brand-product-name, but hardcode Mozilla RESOLVED FIXED P2 Henry Wilkes (they/them) [:henry-x]
1413868 [tor][sec-high for Tor][necko-triaged][adv-main61-][adv-esr52.9-][adv-esr60.1-][post-critsmash-triage] proxy bypass on windows via smb RESOLVED FIXED P2 Honza Bambas (:mayhemer)
1468071 [tor][sec-high for Tor][necko-triaged] small followup to proxy bypass on windows via smb RESOLVED FIXED P3 Honza Bambas (:mayhemer)
1266495 btpp-active [tor][fingerprinting] Consider removing <isindex> from the parser and form submission [tor 18914] RESOLVED FIXED P2 Henri Sivonen (:hsivonen)
232227 [tor] System colors for form elements used when browser.display.use_system_colors is set to false RESOLVED FIXED -- Dave Huseby [:huseby]
962358 lame-network [tor] Provide an API/observer to close persistent connections RESOLVED FIXED -- Dave Huseby [:huseby]
962365 [tor][ETA 10/10] Isolate/double-key the image cache to first party URI RESOLVED DUPLICATE P2 Dave Huseby [:huseby]
962374 [tor][necko-backlog][ETA 11/7] Isolate/Double-key Content Cache to first party URI (Tor 13742) RESOLVED DUPLICATE P2 Dave Huseby [:huseby]
1231487 [tor] Isolate favicon requests/caching to first party origin RESOLVED DUPLICATE -- Dave Huseby [:huseby]
1264572 [tor-testing][OA-testing][domsecurity-backlog1][ETA 10/10] Test the Isolate the Image Cache per url bar domain (Tor 13749.2) RESOLVED FIXED P2 Dave Huseby [:huseby]
1264574 [tor-testing][OA-testing][domsecurity-backlog1][ETA 11/7] Isolate cache to URL bar domain (Tor 13742) RESOLVED DUPLICATE P2 Dave Huseby [:huseby]
1268726 [tor][domsecurity-active][ETA 10/10][OA] isolate shared worker by first party domain (Tor 15564) RESOLVED FIXED P1 Dave Huseby [:huseby]
1281963 [tor][fingerprinting] Hide navigator.plugins and navigator.mimeTypes when resisting fingerprinting (Tor 17207) RESOLVED FIXED P1 Dave Huseby [:huseby]
1459420 [tor-mobile] HLS Player doesn't use the centralized Proxy Selector RESOLVED FIXED -- Igor Oliveira
1368616 [tor] Error compiling TestBlockingProcess.exe with MinGW: undefined reference to `_imp___ZN7mozilla6UnusedE' RESOLVED FIXED -- Jacek Caban
1372870 [tor][gfx-noted] Compiling with mingw-w64 based on GCC 6.3.0 breaks (operands to ?: have different types) RESOLVED FIXED P3 Jacek Caban
1443471 [stylo][tor] Update moz.build files to account for mingw-clang RESOLVED FIXED P2 Jacek Caban
1465798 [tor] Create a mingw-clang toolchain job RESOLVED FIXED P5 Jacek Caban
1465800 [tor] Create a mingw-clang Browser Build Job RESOLVED FIXED P5 Jacek Caban
1485264 [tor][fingerprinting][fp-triaged] Rip out the dom.event.highrestimestamp.enabled pref RESOLVED FIXED P3 Josef Citrine (:jcit)
751465 [tor] Websockets leak DNS requests (Tor 5741) RESOLVED FIXED -- Jason Duell
1173199 [tor] Add a pref to allow disabling MathML (Tor 13548) RESOLVED FIXED P3 Jonathan Kingston [:jkt] he/him
1216893 [tor][tor-standalone] Add pref to optionally disable SVG (Tor 12827) RESOLVED FIXED P3 Jonathan Kingston [:jkt] he/him
1466857 [tor][tor 25909] UpdatePing.handleUpdateSuccess() does not respect toolkit.telemetry.updatePing.enabled RESOLVED FIXED P1 Jan-Erik Rediger [:janerik]
1640853 [domsecurity-active][tor-P1] HTTPS Only Mode - Use PermissionManager for Exceptions RESOLVED FIXED P2 Julian Gaibler
1647829 [domsecurity-backlog1][tor-p1] HTTPS Only Mode Error page repeats forever when privacy.firstparty.isolate is enabled RESOLVED FIXED P3 Julian Gaibler
1651197 [domsecurity-active][tor-P2] Learn More link in Error Page RESOLVED FIXED P1 Julian Gaibler
1653026 [domsecurity-active][tor-P1] Give HTTPS Only Mode users a way to unbreak a page RESOLVED FIXED P2 Julian Gaibler
1174386 [tor] Internationalization on workers uses the wrong locale RESOLVED FIXED P3 Jeff Walden [:Waldo]
1358149 [tor 13017][fingerprinting][fp-triaged][fpp:m5] Address fingerprinting issues with AudioContext RESOLVED FIXED P2 Karl Tomlinson (:karlt)
1314514 [tor 23230] gtestify the cubeb unit tests RESOLVED FIXED P1 Matthew Gregan [:kinetik]
1047105 [tor][OA] asmjscache: should not store cache entries when private browsing is enabled (Tor 19417) RESOLVED FIXED P3 Kyle Machulis [:qdot] [:kmachulis] (INACTIVE)
654550 [tor] [fingerprinting] Preference to disable video statistics RESOLVED FIXED -- leonard.beck
1329835 [tor 23970] xpcshell tests involving a child process fail when run locally on linux after bug 1309205 RESOLVED FIXED -- Lee Salzman [:lsalzman]
1364627 [gfx-noted][tor 23970] NativeFontResourceFontconfig leak when using DrawTargetRecording on Linux RESOLVED FIXED P1 Lee Salzman [:lsalzman]
1626188 [stockwell unknown][tor 34015] load_shader.h is not generated deterministically RESOLVED FIXED P3 Lee Salzman [:lsalzman]
1588515 [tor 31955] TypeError: document.getElementById(...) is null in permanent private browsing mode RESOLVED FIXED P3 Marco Bonardo [:mak]
1590538 [tor 31764] Copying a link and using "Paste & Go" results in error when HTTPS Everywhere add-on is installed RESOLVED FIXED P3 Marco Bonardo [:mak]
1308275 [tor][necko-active] SOCKS socket does not support spaces and other special characters (Tor 20304) RESOLVED FIXED -- Mark Smith [:mcs]
1588549 [tor 31547] --disable-maintenance-service should exclude all maintenance service-related code RESOLVED FIXED P3 Mark Smith [:mcs]
1641329 [tor 4234] Add -q option to MAR generation scripts RESOLVED FIXED -- Mark Smith [:mcs]
1642404 [tor 28885] add an option to show that an update is being downloaded RESOLVED FIXED -- Mark Smith [:mcs]
1642754 [tor 28885] Update prompts should not depend on whether an update was initiated manually RESOLVED FIXED -- Mark Smith [:mcs]
1651662 [tor] Provide a way to build products using Glean "offline" RESOLVED FIXED P1 Michael Droettboom [:mdroettboom]
1673237 [tor 27002] ignore svg.disabled=false in about pages RESOLVED FIXED -- sanketh
1612035 [tor 33488] lucet does not produce reproducible .so files RESOLVED FIXED -- Mike Hommey [:glandium]
967970 [tor] [qa-] Set NSDisablePersistence to prevent disk leaks for non-Firefox branded builds RESOLVED FIXED -- Mike Perry
894806 [tor 13612] Remove Social.provider RESOLVED FIXED -- Shane Caraveo (:mixedpuppy)
1032432 [tor 13612] remove "builtin" and "whitelist" manifest support RESOLVED FIXED -- Shane Caraveo (:mixedpuppy)
1388902 [tor 13612] Shut down the last of socialapi RESOLVED FIXED -- Shane Caraveo (:mixedpuppy)
859782 [tor 20283] Firefox cannot start without /proc (chroot) RESOLVED FIXED -- morgan (Tor Project)
1441327 [tor][tor 22794][necko-triaged] Allow for seccomp filtering of socket(AF_INET/AF_INET_6) calls on Linux when using UNIX Domain Sockets for SOCKS Proxy RESOLVED FIXED P2 morgan (Tor Project)
1485836 [tor 26381] first tab is broken and completely white on first boot with security.sandbox.content.level >= 3 RESOLVED FIXED P1 morgan (Tor Project)
1506693 [tor 26540] PDFJS range-based requests violate FPI RESOLVED FIXED -- morgan (Tor Project)
1532486 [tor 29120] Ensure media cache is memory-only when in Private Browsing Mode RESOLVED FIXED P3 morgan (Tor Project)
1174244 [tor-mobile] Switch in-tree Adjust SDK to use ch.boye instead of org.apache.http to allow for building with Android M SDK 23 RESOLVED FIXED P1 Nick Alexander :nalexander [he/him]
1419581 [tor-mobile] Add --without-google-play-services to build Fennec without Google Play Services RESOLVED FIXED -- Nick Alexander :nalexander [he/him]
527667 [sg:want][tor][fingerprinting] DOM Storage (localStorage, sessionStorage) data is not cleared when "Clear Recent History" is used with Time range not "Everything" RESOLVED DUPLICATE P1
554303 [tor] Onion routing built-in RESOLVED DUPLICATE P3
565965 [evang-wanted][necko-backlog][tor] Key cookies on setting domain * toplevel load domain RESOLVED DUPLICATE --
570342 [tor] Metabug for mingw-w64 compilation RESOLVED FIXED --
732096 [fingerprinting][tor][tor-standalone] Add a preference to prevent local font enumeration RESOLVED DUPLICATE P3
870346 [tor][tor-standalone] innerHeight of content window is not properly resized from extensions on startup RESOLVED DUPLICATE --
967923 [tor] Randomize timestamps in TLS handshake RESOLVED DUPLICATE --
1077986 [tor][fingerprinting] offline storage permission setting not working correctly RESOLVED DUPLICATE --
1218004 [tor] Fix shutdown crashes on cross-compiled Windows builds RESOLVED DUPLICATE --
1264559 [tor][OA-testing][domsecurity-backlog] Revert Isolate blob URLs to first party; no blobURLs in Web Workers(Tor 15502) RESOLVED DUPLICATE --
1264581 [tor-testing][OA-testing][domsecurity-backlog1][ETA 10/10] test for the first party isolation pref (Tor 10819) RESOLVED DUPLICATE P2
1264598 [tor][domsecurity-backlog] Isolation on blob, mediasource & mediastream URLs to first party domain (Tor 15502) RESOLVED DUPLICATE --
1301530 [tor] [OA] [domsecurity-backlog1] First-party Isolation breaks Gmail RESOLVED DUPLICATE P3
1301623 [tor][domsecurity-backlog1] evalInSandbox for firstPartyDomain RESOLVED DUPLICATE P3
1301768 [tor] [domsecurity-backlog1] First-party isolation breaks worldtimebuddy.com RESOLVED DUPLICATE P3
1301778 [tor] [domsecurity-backlog1] First-party isolation breaks Google Calendar's guest email address auto-completion RESOLVED DUPLICATE P3
1314448 [tor][tor-testing][fingerprinting] Create a build target that adds --disable-webrtc to the mozconfig RESOLVED FIXED P3
1314979 [tor 1314979] windows.configure doesn't support cross compilation RESOLVED FIXED --
1315907 [tor][domsecurity-active] [FirstPartyIsolation] Failed to sign in to the hao123.com RESOLVED DUPLICATE P1
1330892 [fingerprinting][tor][fp:m3] <isindex> leaks user locale RESOLVED FIXED P1
1334485 [psm-backlog][tor] Tracking using intermediate CA caching RESOLVED FIXED P3
1360142 [tor][domsecurity-meta] Tab crashed after tapping the Facebook Like Button in "ltn.com.tw" website RESOLVED DUPLICATE --
1360145 [tor][domsecurity-meta] Tab crashed after tapping the Like Button in "nownews.com" website RESOLVED DUPLICATE --
1362188 [tor][fingerprinting][fp-triaged] Add Telemetry for navigator.hardwareConcurrency RESOLVED FIXED P5
1362931 [tor-mobile] Proxy the connections that use ch.boye.httpclientandroidlib RESOLVED DUPLICATE P1
1364261 [tor][fingerprinting-breakage][fp-backlog][fp-triaged] Make UTC Timezone Spoofing optional when privacy.resistfingerprinting = true RESOLVED DUPLICATE P3
1369330 [fingerprinting][tor][fp:m2] Make javascript use English locale when 'privacy.resistFingerprinting' is true RESOLVED DUPLICATE P1
1377553 [tor 21925] Ensure that ASAN builds disable fstack-protector RESOLVED FIXED --
1392844 [tor][fingerprinting][stylo][fp-backlog] Ensure that Stylo respects privacy.resistFingerprinting RESOLVED FIXED P3
1400582 [tor][fingerprinting] Deleting all history still leaves some traces that can be used to precisely track individual users. RESOLVED DUPLICATE P3
1404189 [tor][js:techdebt] fsanitize=enum (ubsan) runtime errors in js/src/jit/RegisterSets.h RESOLVED DUPLICATE P3
1405810 [domsecurity-backlog1][tor][fingerprinting-breakage][fp-triaged] Setting privacy.resistFingerprinting=true breaks cmd keyboard shortcuts for Google Docs on OSX RESOLVED DUPLICATE P1
1432905 [tor 18800] Add pref to prevent localhost DNS lookup in nsProfileLock.cpp RESOLVED DUPLICATE --
1432994 [tor 18619] When dom.indexedDB.enabled is false, browser console reports InvalidStateErrors on opening RESOLVED FIXED P5
1433815 [tor-mobile][fingerprinting][fp-triaged] Ensure EnableOrientationChangeListener respects privacy.resistFingerprinting RESOLVED DUPLICATE P3
1462115 [tor][fingerprinting][domsecurity-backlog1][fp-triaged] privacy.resistfingerprinting affects the timezone displayed in native file picker dialogs RESOLVED DUPLICATE P3
1485280 [tor][fingerprinting][fp-triaged] Prevent fingerprinting by SpeechRecognition RESOLVED DUPLICATE P3
1494327 [tor] Allow Popups For This Site is not keyed by OriginAttributes RESOLVED FIXED P3
1526663 [fingerprinting][tor] Intermittent browser/components/resistfingerprinting/test/browser/browser_roundedWindow_windowSetting_max_outer.js | The screen.height has a correct rounded value - 100 == 1000 - RESOLVED DUPLICATE P5
1533787 [tor][fingerprinting][fp-triaged][sci-exclude] privacy.resistFingerprinting causes icons on some sites (including Gmail) to be blurry RESOLVED DUPLICATE P3
1543120 [tor] mingw-clang has broken accessibility at runtime RESOLVED DUPLICATE --
1560580 [tor] Isolate Font Cache by OriginAttributes RESOLVED DUPLICATE P3
1560896 [tor] Cloudflare protected websites do not load properly with Tor proxy RESOLVED DUPLICATE --
1576621 [tor] --disable-bits-download is broken on ESR68 RESOLVED DUPLICATE --
1649764 [tor 40015] pages do not render in Firefox ESR 68.10 on macOS Big Sur 11.0 Beta (20A4299v) RESOLVED DUPLICATE --
1690038 [fingerprinting][tor 22632] Scrollbar is enabled and disabled based on a setting in macOS system preferences RESOLVED DUPLICATE P2
1958503 [tor 43101] Security features warning links to Firefox installation support page with incomplete info RESOLVED DUPLICATE P3
1404220 [tor] fsanitize=enum (ubsan) runtime errors for AudioSampleFormat RESOLVED FIXED P2 Paul Adenot (:padenot)
1555815 [tor 31064][tor 32411] Do not apply letterboxing to moz-extension:// pages RESOLVED FIXED P3 Pier Angelo Vendrame
1768907 [tor 21830] nsTransferable disk-leaks when private browsing mode is enabled by default RESOLVED FIXED P2 Pier Angelo Vendrame
1769030 [tor 32418] Add a configure flag to load policies only from the local policies.json file RESOLVED FIXED P3 Pier Angelo Vendrame
1900648 [tor 42288][fingerprinting] XSLT error messages can leak browser UI language RESOLVED FIXED -- Pier Angelo Vendrame
1923260 [tor 43129] about:neterror pages are not exempt from svg.disabled on Android RESOLVED FIXED -- Pier Angelo Vendrame
1946501 [tor 43468] ScreenCaptureKit.framework should be a weak_framework RESOLVED FIXED -- Pier Angelo Vendrame
1217238 [fingerprinting][tor][fp:m1] Reduce precision of time exposed by Javascript (Tor 1517) RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
1250983 [userContextId] btpp-active [domsecurity-backlog2][OA-testing][tor-testing] Add mochitest to ensure the "Forget" button correctly deletes all data from all user contexts. RESOLVED DUPLICATE P2 Jonathan Hao (inactive) [:jhao]
1264562 [tor][tor-testing][OA-testing][domsecurity-active][ETA 11/7] Isolate OCSP cache by first party domain. (Tor 13670.2) RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
1264567 [tor-testing][OA-testing][domsecurity-active][ETA 10/10] Tests for first party isolation of localStorage (Tor 13749.1) RESOLVED FIXED P2 Jonathan Hao (inactive) [:jhao]
1264573 [tor-testing][OA-testing][domsecurity-backlog1][ETA 11/7] Regression tests for blob URL isolation (Tor 15502) RESOLVED FIXED P2 Jonathan Hao (inactive) [:jhao]
1264595 [tor-testing][OA-testing][domsecurity-backlog1] test isolation by mediaSource URI by first party domain (Tor 15703) RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
1270338 [userContextId][OA-testing][domsecurity-backlog2][tor-testing] Add a mochitest to ensure Sanitizer clears data for all containers RESOLVED FIXED P2 Jonathan Hao (inactive) [:jhao]
1270680 [OA][userContextId][domsecurity-active][tor] image cache should respect originAttributes RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
1274020 [OA-testing][usercontextId][domsecurity-active][tor-testing] Add a test to show that the DOM Cache is separated by origin attributes RESOLVED FIXED P2 Jonathan Hao (inactive) [:jhao]
1282279 [domsecurity-backlog3][userContextId][tor][OA] Make user certificates Origin Attribute aware RESOLVED FIXED P2 Jonathan Hao (inactive) [:jhao]
1282655 [OA-testing][userContextId][domsecurity-backlog2][tor-testing] Add a test case to test whether site permissions are universal or isolated for each type of OriginAttribute RESOLVED FIXED P2 Jonathan Hao (inactive) [:jhao]
1301523 [tor-testing][OA-testing][necko-next] Add a test that checks HTTP auth is isolated by first party domain (Tor 13900) RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
1301617 [OA-testing][domsecurity-backlog1][tor-testing] test for firstParty and userContextId documents with nsIPermissionManager RESOLVED FIXED P3 Jonathan Hao (inactive) [:jhao]
1302047 [tor][domsecurity-active][OA] Ignore userContextId and firstPartyDomain when matching permissions. RESOLVED FIXED P2 Jonathan Hao (inactive) [:jhao]
1303062 [tor-testing][domsecurity-active] Turn on first party isolation tests RESOLVED FIXED P3 Jonathan Hao (inactive) [:jhao]
1312794 [tor][domsecurity-active] Annotate OCSP requests by first party domain. (Tor 13670.2) RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
1316283 [OA][tor] Isolate SSL session cache by origin attributes RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
1323644 [tor][tor 17965][necko-would-take][OA] Isolate the HSTS and HPKP cache by first party domain. RESOLVED FIXED P2 Jonathan Hao (inactive) [:jhao]
1334690 [tor][necko-would-take][OA] Isolate AlternateService mappings by Origin Attributes RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
1334693 [tor][necko-would-take][OA] Investigate and isolate SPDY/HTTP2 state by first-party domain when privacy.firstparty.isolate = true RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
1357997 [tor-mobile] Replace url.openConnection with ProxySelector.openConnectionWithProxy RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
1369327 [fingerprinting][tor][fp:m2] Making reader view users uniform when 'privacy.resistFingerprinting' is true RESOLVED FIXED P1 Jonathan Hao (inactive) [:jhao]
836439 [tor] Handle downloads started in private browsing mode RESOLVED FIXED -- Raymond Lee [:raymondlee]
1304490 [tor][fingerprinting] Build fails with --disable-webrtc RESOLVED FIXED P1 Randell Jesup [:jesup] (needinfo me)
1159826 [tor] ensure_copy_recursive() leaks directory streams RESOLVED FIXED -- Robert Strong (they/them - no direct email)
1344187 [tor] "ipc/mscom/ProxyStream.cpp(11): fatal error C1083: Cannot open include file: 'nsExceptionHandler.h': No such file or directory" with --disable-crashreporter RESOLVED FIXED -- Ryan VanderMeulen [:RyanVM]
1586061 [tor 31607] hidden window churn causes app menu to stop working RESOLVED FIXED P2 Stephen A Pohl [:spohl]
1589690 [tor][domsecurity-active] Add to nsIPrincipal an API for query if it Holds an .Onion URI RESOLVED FIXED P2 Sebastian Streich [:sstreich]
1585470 [tor 31915] Android cpu-features.c included twice when building GeckoView with --disable-webrtc RESOLVED FIXED P3 Matthew Finkel [:sysrqb]
1198559 [domsecurity-active][tor] Wrong requestingNode passed to NS_NewChannelInternal (Tor 16855) RESOLVED DUPLICATE -- Tanvi Vyas[:tanvi]
1272498 [tor 1272498] Compiling with GCC and Address Sanitizer is broken: "error: expected unqualified-id before string constant" RESOLVED FIXED P3 Trevor Saunders (:tbsaunde)
1406193 [tor 13612] Remove last remaining SocialAPI bits RESOLVED FIXED -- Simon Van Accoleyen
444222 [tor][tor-standalone][tor 16620][domsecurity-backlog1] , [wptsync upstream] window.name can be used as an XSS attack vector RESOLVED FIXED P2 Tim Huang[:timhuang]
680300 [fingerprinting][probing][necko-backlog][tor] Restrict discoverability of protocol handlers [Tor 1623] RESOLVED FIXED P2 Tim Huang[:timhuang]
744466 [tor][ETA 10/10][domsecurity-active] Isolate DOM Storage to first party domain (Tor 6564) RESOLVED DUPLICATE P2 Tim Huang[:timhuang]
1222285 [tor 15646][tor 17009][tor-standalone][fingerprinting][fp:m3][fp-triaged] Keyboard layout is leaked by KeyboardEvent RESOLVED FIXED P1 Tim Huang[:timhuang]
1264560 [tor-testing][OA-testing][domsecurity-backlog1][ETA 10/10] Test the Isolate DOM storage to first party URI (Tor 6564) RESOLVED DUPLICATE P2 Tim Huang[:timhuang]
1264564 [tor][domsecurity-active][ETA 11/7] Isolate favicon requests by first party (Tor 13670.1) RESOLVED DUPLICATE P2 Tim Huang[:timhuang]
1264571 [tor-testing][domsecurity-active][ETA 10/10] Add a test case of isolating Broadcast Channels for first party. (Tor 16300) RESOLVED FIXED P1 Tim Huang[:timhuang]
1264577 [tor-testing][OA-testing][domsecurity-backlog1][ETA 10/10] Tests for first-party isolation of cache (Tor 13749) RESOLVED FIXED P1 Tim Huang[:timhuang]
1264593 [tor-testing][OA-testing][domsecurity-active][ETA 10/10] test Isolation on SharedWorker by first party domain (Tor 15564) RESOLVED FIXED P2 Tim Huang[:timhuang]
1277803 [OA][userContextId][domsecurity-active][tor][tor 13670.1] Make the loading of favicon through the XUL:image uses the correct originAttributes RESOLVED FIXED P1 Tim Huang[:timhuang]
1289319 [tor-testing][OA-testing][domsecurity-active] Add a test framework for the first party isolation tests. RESOLVED FIXED P1 Tim Huang[:timhuang]
1304219 [tor-testing][necko-backlog][OA-testing] Ensure link rel=preconnect requests are isolated by origin attributes (Tor 16998) RESOLVED FIXED P1 Tim Huang[:timhuang]
1311237 [OA][domsecurity-intermittent][tor] Intermittent browser/components/originattributes/test/browser/browser_favicon_firstParty.js | The favicon image should be loaded through network. - Got http-on-examine-cached-response, expected http-on-examine-response, Test timed out, Found a tab RESOLVED FIXED P2 Tim Huang[:timhuang]
1312954 [tor] [domsecurity-active][OA] Making the network predictor obey originAttributes and updating SpeculativeConnect() to SpeculativeConnect2(). RESOLVED FIXED P1 Tim Huang[:timhuang]
1315723 [domsecurity-intermittent][tor][OA] Intermittent browser/components/originattributes/test/browser/browser_cache.js | Test timed out - RESOLVED FIXED P1 Tim Huang[:timhuang]
1316536 [tor][domsecurity-active][platform-rel-Facebook][dfpi-ok] [FirstPartyIsolation] The publishing window will not disappear after clicking on "Publish" to publish news to your Facebook Wall RESOLVED DUPLICATE P3 Tim Huang[:timhuang]
1333641 [tor][fingerprinting][fp:m2] Disable WebSpeech API when privacy.resistFingerprinting is enabled RESOLVED FIXED P1 Tim Huang[:timhuang]
1333651 [tor][fingerprinting][domsecurity-backlog1][fp:m2] Spoofing Navigator API when resisting fingerprinting is enabled RESOLVED FIXED P1 Tim Huang[:timhuang]
1337893 [OA][tor][necko-backlog] Isolate DNS Cache using Origin Attributes RESOLVED FIXED P1 Tim Huang[:timhuang]
1339336 [tor][domsecurity-active] Add a test case for pref "privacy.firstparty.isolate.restrict_opener_access". RESOLVED FIXED -- Tim Huang[:timhuang]
1352305 [tor 1352305] Dialog windows are incorrectly sized (fullscreen, or otherwise massive) after setting privacy.resistFingerprinting = true RESOLVED FIXED -- Tim Huang[:timhuang]
1363508 [tor 25794][fingerprinting] Consider how to do Anti-fingerprinting for Pointer Events RESOLVED FIXED P1 Tim Huang[:timhuang]
1369319 [fingerprinting][tor][fp:m2] Disable device sensors when 'privacy.resistFingerprinting' is true RESOLVED FIXED P1 Tim Huang[:timhuang]
1372069 [fingerprinting][tor][fp:m2] Neutralize the threat of fingerprinting of geolocation API when 'privacy.resistFingerprinting' is true RESOLVED FIXED P1 Tim Huang[:timhuang]
1372072 [fingerprinting][tor][fp:m2] Neutralize the threat of fingerprinting of network information API when 'privacy.resistFingerprinting' is true RESOLVED FIXED P1 Tim Huang[:timhuang]
1376973 [tor][tor 22452][OA][userContextId][domsecurity-active] The favicon of tabs dropdown list does not honor originAttributes. RESOLVED FIXED P2 Tim Huang[:timhuang]
1382545 [tor 16337][fingerprinting][fp:m3] Animation API exposes high-res time stamp RESOLVED FIXED P2 Tim Huang[:timhuang]
1508355 [tor 22343] Add a test to make sure "Save Page As" respect First-Party Isolation RESOLVED FIXED P5 Tim Huang[:timhuang]
1575670 [tor] Bump up mingw-w64 to take the fix for urlmon and unknwn.h RESOLVED FIXED -- Toshihito Kikuchi [:toshi]
461204 [sg:low][tor 22919][adv-main74-] Boundary delimiter for HTTP file posts is static. That is wrong according to RFC. RESOLVED FIXED -- Tom Ritter [:tjr]
1230910 [tor 16010][tor 23658][tor-standalone], sb- Get sandbox compiled with mingw-w64 RESOLVED FIXED P1 Tom Ritter [:tjr]
1314784 [tor-mobile] Collect Telemetry on how many Fennec users also have Orbot installed RESOLVED FIXED P1 Tom Ritter [:tjr]
1317642 [tor] Compiling with mingw-w64 is broken with: error: ‘thread’ in namespace ‘std’ does not name a type RESOLVED FIXED -- Tom Ritter [:tjr]
1330890 [fingerprinting][tor 16622][fp:m1][fp-triaged] Use UTC timezone when privacy.resistFingerprinting = true [tor 16622] RESOLVED FIXED P1 Tom Ritter [:tjr]
1331335 [tor][gfx-noted] Compiling SSE2 code in libANGLE with mingw-w64 fails with: error: inlining failed in call to always_inline RESOLVED FIXED P3 Tom Ritter [:tjr]
1331349 [tor 1331349] Compiling with mingw-w64 is broken with: error: unknown conversion type character ‘l’ in format RESOLVED FIXED -- Tom Ritter [:tjr]
1331939 [tor] Tidying up WasmBinary*.h breaks compilation with mingw-w64: error: expected primary-expression before ‘(’ token RESOLVED FIXED -- Tom Ritter [:tjr]
1337157 gfx-noted, [tor][fingerprinting] privacy.resistFingerprinting should disable WEBGL_debug_renderer_info RESOLVED FIXED P2 Tom Ritter [:tjr]
1344809 [tor] mingw build fails with function 'mozilla::PrintfTarget::PrintfTarget()' definition is marked dllimport RESOLVED FIXED -- Tom Ritter [:tjr]
1344845 [tor] --disable-sandbox broken: fatal error: sandboxPermissions.h: No such file or directory RESOLVED FIXED -- Tom Ritter [:tjr]
1344905 [tor] --disable-crashreporter broken with ProxyStream.cpp fatal error: nsExceptionHandler.h RESOLVED DUPLICATE -- Tom Ritter [:tjr]
1344909 [tor] mingw build broken with VideoDecoder.cpp error: 'std::thread' has not been declared RESOLVED FIXED P2 Tom Ritter [:tjr]
1344921 [tor] In mingw, jumps that cross initializations are errors. Affects WindowsDllBlocklist.cpp RESOLVED FIXED -- Tom Ritter [:tjr]
1349912 [tor] Solve MinGW's std::thread problems RESOLVED FIXED -- Tom Ritter [:tjr]
1350362 [tor] New NSS Build System in Firefox breaks MinGW Build RESOLVED FIXED -- Tom Ritter [:tjr]
1353541 [tor] MinGW build broken by rustc RESOLVED FIXED -- Tom Ritter [:tjr]
1355584 [tor] Make NSIS an optional build dependency for MinGW RESOLVED FIXED -- Tom Ritter [:tjr]
1359552 [tor] Angle Build Broken on MinGW RESOLVED FIXED -- Tom Ritter [:tjr]
1363173 [tor] Update openvr to build with MinGW RESOLVED FIXED -- Tom Ritter [:tjr]
1363216 [tor] MinGW cannot handle std::future RESOLVED FIXED -- Tom Ritter [:tjr]
1363465 [tor] VersionsHelpers.h is case-sensitive and does not build on MinGW RESOLVED FIXED -- Tom Ritter [:tjr]
1364555 [tor] --disable-crashreporter broken by "Unify device reset handling" RESOLVED DUPLICATE -- Tom Ritter [:tjr]
1364560 [tor] Skia 59 breaks MinGW Builds RESOLVED FIXED -- Tom Ritter [:tjr]
1365036 [tor] MinGW build breaks with "Objbase.h not found" RESOLVED FIXED -- Tom Ritter [:tjr]
1365047 [tor] MinGW build breaks with error: ‘eDllBlocklistInitFlagIsChildProcess’ was not declared RESOLVED FIXED -- Tom Ritter [:tjr]
1367847 [tor] MinGW Build fails when trying to create uninstaller RESOLVED FIXED -- Tom Ritter [:tjr]
1368406 [tor] MinGW Printf Format Errors when --enable-debug is set RESOLVED FIXED -- Tom Ritter [:tjr]
1368416 [tor][necko-active] TestNamedPipeService.cpp includes case-sensitive Windows.h on MinGW (which cannot be found) RESOLVED FIXED -- Tom Ritter [:tjr]
1370007 [tor] Autogenerating shaders using fxc does not work on Linux (MinGW Build) RESOLVED FIXED -- Tom Ritter [:tjr]
1372958 [tor] MinGW Debug Builds cause SIGTRAP and do not run RESOLVED FIXED P3 Tom Ritter [:tjr]
1372959 [tor 21240] MinGW Fails to build with --enable-accessibility RESOLVED FIXED -- Tom Ritter [:tjr]
1372963 [tor][tpi:+] WinPointerEvents:: qualifier breaks MinGW Build RESOLVED FIXED P2 Tom Ritter [:tjr]
1376621 [tor 21862] Enforce that Rust code is proxy-safe (doesn't call directly into libc networking functions) RESOLVED FIXED P2 Tom Ritter [:tjr]
1377605 [tor] mingw errors on signed vs unsigned comparison RESOLVED FIXED -- Tom Ritter [:tjr]
1377607 [tor] HasStableTSC compares signed and unsigned and causes an error RESOLVED FIXED -- Tom Ritter [:tjr]
1377617 [tor] error-unknown-pragma warnings as errors in vtune RESOLVED FIXED -- Tom Ritter [:tjr]
1377651 [tor] Static variable used in non-static function causes error in vtune RESOLVED FIXED -- Tom Ritter [:tjr]
1377948 [tor] MinGW complains abaout unused statements and variables in js/src/vm/Time.cpp RESOLVED FIXED -- Tom Ritter [:tjr]
1377951 [tor] Unused variable warning-as-error in Mingw in ArrayBufferObject.cpp RESOLVED FIXED -- Tom Ritter [:tjr]
1378529 [tor] third_party/aom causes 'error: multiple storage classes in declaration specifiers' during MinGW compile RESOLVED FIXED -- Tom Ritter [:tjr]
1380083 [tor] icu uses Windows-only backslash in include RESOLVED FIXED -- Tom Ritter [:tjr]
1380092 [tor] error: cannot convert ‘std::nullptr_t’ to ‘uintptr_t {aka unsigned int}’ RESOLVED FIXED -- Tom Ritter [:tjr]
1380103 [tor] Invalid conversion from WINAPI function pointer to void* RESOLVED FIXED -- Tom Ritter [:tjr]
1380114 [tor] Reapply MinGW build fixes to OpenVR RESOLVED FIXED -- Tom Ritter [:tjr]
1380147 [tor] GET_MODULE_HANDLE_EX_UNCHANGED_REFCOUNT is not an actual constant RESOLVED FIXED -- Tom Ritter [:tjr]
1389967 [tor] Browser built with mingw-w64 crashes on shutdown (Faulting module name: nssckbi.dll_unloaded) RESOLVED FIXED -- Tom Ritter [:tjr]
1390617 [tor] "D3D11.h" not found in MinGW due to case sensitivity RESOLVED FIXED -- Tom Ritter [:tjr]
1390624 [tor] --disable-crashreporter broken due to child minidumps RESOLVED FIXED -- Tom Ritter [:tjr]
1391127 [tor] Build error in Brotli: log2 not found in MinGW Build RESOLVED FIXED -- Tom Ritter [:tjr]
1391685 [tor] Get Crash Reporter building with MinGW RESOLVED FIXED -- Tom Ritter [:tjr]
1392594 [tor] Warning as Error in MinGW build: unusued variable in VolatileBufferWindows.cpp RESOLVED FIXED -- Tom Ritter [:tjr]
1392609 [tor] Signedness Comparison Warning in xpcom/io/nsLocalFileWin.cpp - Find returns an int not a unit RESOLVED FIXED -- Tom Ritter [:tjr]
1392617 [tor] Windows Thread Functions return (DWORD)-1 not -1 and it causes a signedness warning RESOLVED FIXED -- Tom Ritter [:tjr]
1392618 [tor] signed and unsigned integer causes warning (as error) in nsWindowsDllInterceptor.h RESOLVED FIXED -- Tom Ritter [:tjr]
1392626 [tor] unused variable in libmar RESOLVED FIXED -- Tom Ritter [:tjr]
1392630 [tor] Unused variables in XPCOM RESOLVED FIXED -- Tom Ritter [:tjr]
1392641 [tor][necko-active] netwerk/ ignores return values from a functions declared with warn_unused_result RESOLVED FIXED -- Tom Ritter [:tjr]
1392642 [tor][necko-active] Unused variable warnings in netwerk/ RESOLVED FIXED -- Tom Ritter [:tjr]
1392643 [tor][necko-active] error: lambda capture initializers only available with -std=c++14 or -std=gnu++14 RESOLVED FIXED P5 Tom Ritter [:tjr]
1392677 [tor] Unused function warning for mozilla::ReportException(EXCEPTION_POINTERS*) (false positive) RESOLVED DUPLICATE -- Tom Ritter [:tjr]
1392684 [tor] Type Qualifiers discarded after return of ObtainGit RESOLVED FIXED -- Tom Ritter [:tjr]
1392688 [tor] MinGW complains about unused variable - make it DebugOnly RESOLVED FIXED -- Tom Ritter [:tjr]
1393201 [tor] Signed/Unsigned comparison warning in uriloader/exthandler/win/nsMIMEInfoWin.cpp - Find returns an int, not a unit RESOLVED FIXED -- Tom Ritter [:tjr]
1393216 [tor] When compiling for Windows with gcc, we encounter lots of #pragma warning's - which generate warnings RESOLVED FIXED -- Tom Ritter [:tjr]
1393222 [tor] gcc seems inept at detecting unused functions when compiling for Windows RESOLVED FIXED -- Tom Ritter [:tjr]
1393454 [tor] Rust code expects test code to be there, breaks --disable-tests RESOLVED FIXED -- Tom Ritter [:tjr]
1393487 [tor] Spurious unused variable warning due to _alloca hack RESOLVED FIXED -- Tom Ritter [:tjr]
1393498 [tor] gcc throws noreturn warning about stub_BaseThreadInitThunk in WindowsDllBlocklist.cpp RESOLVED FIXED -- Tom Ritter [:tjr]
1393528 [tor] Fix confusing if statement (-Wparentheses warning) RESOLVED FIXED -- Tom Ritter [:tjr]
1393535 [tor] Fix Unused Variable Warnings in dom/ RESOLVED FIXED -- Tom Ritter [:tjr]
1393536 [tor] Fix Unused Variable Warnings in widget/ RESOLVED FIXED -- Tom Ritter [:tjr]
1393538 [tor] Fix Unused Variable Warnings in toolkit/ RESOLVED FIXED -- Tom Ritter [:tjr]
1393539 [tor] Fix Unused Variable Warnings in netwerk/ RESOLVED DUPLICATE -- Tom Ritter [:tjr]
1393607 [tor] --disable-tests fails in automation RESOLVED FIXED -- Tom Ritter [:tjr]
1393795 [tor] Fix capitalization of includes in webrtc to work with mingw RESOLVED FIXED -- Tom Ritter [:tjr]
1393803 [tor] Building installer on Linux fails: 7z not found RESOLVED FIXED P1 Tom Ritter [:tjr]
1393808 [tor] Profiler fails to build under MinGW with gcc 5.4.0 RESOLVED FIXED -- Tom Ritter [:tjr]
1393817 [tor] Enabling MOZ_AUTOMATION_L10N_CHECK breaks MinGW Build RESOLVED FIXED -- Tom Ritter [:tjr]
1394002 [tor] Suppress gcc warnings in cairo and libpixman RESOLVED FIXED -- Tom Ritter [:tjr]
1394005 [tor][gfx-noted] Overloaded virtual functions RESOLVED FIXED P3 Tom Ritter [:tjr]
1394007 [tor] signed/unsigned comparison warning in WindowsDllBlocklist.cpp RESOLVED FIXED -- Tom Ritter [:tjr]
1394013 [tor] Warnings converting from string constant to wchar_t* RESOLVED FIXED -- Tom Ritter [:tjr]
1394868 [tor] Fix include casing in VTableBuilder.h to fix MinGW build RESOLVED FIXED -- Tom Ritter [:tjr]
1394872 [tor] --disable-accessibility broken by "IGeckoBackChannel should use NOPING marshaling" RESOLVED DUPLICATE -- Tom Ritter [:tjr]
1394874 [tor] Undefined functions due to missing includes or function ordering in ipc/mscom/InterfaceRegistrationAnnotator.cpp RESOLVED FIXED -- Tom Ritter [:tjr]
1394875 [tor] error: ‘PreservedStreamPtr’ in namespace ‘mozilla::mscom’ does not name a type in PassthruProxy.h RESOLVED DUPLICATE -- Tom Ritter [:tjr]
1395047 [tor] --enable-tests for MinGW build is broken because it thinks it's linux RESOLVED FIXED -- Tom Ritter [:tjr]
1395418 [tor] Revert patches that turned off threading for MinGW build RESOLVED FIXED P1 Tom Ritter [:tjr]
1400484 [tor] Not using $root_dir broke the mingw build toolchain RESOLVED FIXED -- Tom Ritter [:tjr]
1402065 [tor] Remove __in and __out from PDFium RESOLVED FIXED -- Tom Ritter [:tjr]
1402328 [tor] New String Organization fully specializes structs inside of template classes which breaks gcc RESOLVED FIXED -- Tom Ritter [:tjr]
1402355 [tor] mozilla/ThreadLocal.h:96:12: error: ‘TLS_OUT_OF_INDEXES’ was not declared in this scope RESOLVED FIXED -- Tom Ritter [:tjr]
1402367 [tor] Fix casing of windows includes in dom/media/platforms/wmf/WMFUtils.cpp RESOLVED FIXED -- Tom Ritter [:tjr]
1402370 [tor][gfx-noted] Fix GLBlitHelperD3D.cpp to compile under MinGW RESOLVED FIXED P3 Tom Ritter [:tjr]
1402385 [tor] Undefined References to Panning functions RESOLVED FIXED -- Tom Ritter [:tjr]
1403058 [tor] Add MinGW Browser Build RESOLVED FIXED -- Tom Ritter [:tjr]
1403358 [tor] Disable Accessibility broken by ipc/mscom/ProxyStream.cpp:312:5: error: ‘ActivationContext’ has not been declared RESOLVED FIXED P2 Tom Ritter [:tjr]
1404434 [tor] error: '_vscprintf' was not declared in this scope breaks MinGW build RESOLVED FIXED -- Tom Ritter [:tjr]
1405417 [tor] Ambiguous typename in ipc/mscom/PassthruProxy.h RESOLVED FIXED -- Tom Ritter [:tjr]
1405439 [tor] Cannot cast nullptr to boolean in VR RESOLVED FIXED -- Tom Ritter [:tjr]
1406542 [tor] Clean up Pthread differences in MinGW build RESOLVED FIXED P1 Tom Ritter [:tjr]
1406736 [tor] Correct _POSIX_C_SOURCE-related break in MinGW RESOLVED FIXED -- Tom Ritter [:tjr]
1407311 [tor] Enable the js shell on MinGW Builds RESOLVED FIXED -- Tom Ritter [:tjr]
1407343 [tor] Silence, Ignore, or Otherwise Resolve certain classes of MinGW warnings through compiler and build flags RESOLVED FIXED -- Tom Ritter [:tjr]
1407366 [fingerprinting][fp-triaged][tor 14429] When privacy.resistFingerprinting=true, dynamically round content dimensions RESOLVED FIXED P2 Tom Ritter [:tjr]
1407513 [tor] Turn on std:future for ANGLE RESOLVED FIXED -- Tom Ritter [:tjr]
1407660 [tor] Promote MinGW builds back to Tier 2 RESOLVED FIXED -- Tom Ritter [:tjr]
1409915 [tor] MinGW's IDWriteFontFace1 is broken RESOLVED FIXED -- Tom Ritter [:tjr]
1409973 [fingerprinting][tor][fp-triaged] Make Date.toLocaleDateString and Intl.DateTimeFormat anti-fingerprintable RESOLVED FIXED P1 Tom Ritter [:tjr]
1411401 [tor][gfx-noted] MinGW build does not run without `gfx.direct2d.disabled` and `layers.acceleration.disabled` due to weird MinGW stuff RESOLVED FIXED P1 Tom Ritter [:tjr]
1418052 [tor 21925] Disable FORTIFY_SOURCE if --disable-hardening is set RESOLVED FIXED -- Tom Ritter [:tjr]
1419607 [tor 21925] Adding additional flags to build/unix/mozconfig.asan RESOLVED FIXED -- Tom Ritter [:tjr]
1430149 [tor] --enable-accessibility broken for MinGW RESOLVED FIXED -- Tom Ritter [:tjr]
1431621 [tor][mingw-upstream-pending] Sandbox MinGW Compilation error: error: stray ‘\’ in program RESOLVED FIXED -- Tom Ritter [:tjr]
1431797 [tor][mingw-upstream-pending] Sandbox MinGW Compilation errors: header capialization RESOLVED FIXED -- Tom Ritter [:tjr]
1431801 [tor][mingw-upstream-pending] Sandbox MinGW Compilation errors: Don't declare duplicate instantiations RESOLVED FIXED -- Tom Ritter [:tjr]
1431803 [tor][mingw-upstream-pending][sb+] Sandbox MinGW Compilation errors: __try / __except RESOLVED FIXED P1 Tom Ritter [:tjr]
1431807 [tor][mingw-upstream-pending] Sandbox MinGW Compilation errors: #error if it doesn't like your MSVC version RESOLVED FIXED -- Tom Ritter [:tjr]
1431809 [tor] Sandbox MinGW Compilation errors: Missing constants in MinGW RESOLVED FIXED -- Tom Ritter [:tjr]
1431825 [tor][mingw-upstream-pending] Sandbox MinGW Compilation errors: _Copy_s not defined RESOLVED FIXED -- Tom Ritter [:tjr]
1432213 [tor] Windows mingw32 builds are failing on Gecko 58 since the uplift to Beta (Automation Error: Can't checkout https://hg.mozilla.org/build/tools! | Caught exception: could not find the robustcheckout Mercurial extension) RESOLVED FIXED P1 Tom Ritter [:tjr]
1432239 [tor][mingw-upstream-pending] Sandbox MinGW Compilation errors: no matching function for call to operator new [] RESOLVED FIXED -- Tom Ritter [:tjr]
1432295 [tor][mingw-upstream-pending] Sandbox MinGW Compilation errors: error: invalid conversion from ‘FARPROC {aka int (__attribute__((__stdcall__)) *)()}’ to ‘const void*’ RESOLVED FIXED -- Tom Ritter [:tjr]
1432313 [tor] Sandbox MinGW Compilation errors: unable to find numeric literal operator ‘operator""ui64’ RESOLVED FIXED -- Tom Ritter [:tjr]
1432319 [tor][sb+] MinGW does not know about Process Mitigation options RESOLVED FIXED P1 Tom Ritter [:tjr]
1432790 [tor][mingw-upstream-pending] Sandbox MinGW Compilation error: undefined reference to `_ReturnAddress' RESOLVED FIXED -- Tom Ritter [:tjr]
1432983 [tor 18821] Introduce a build flag to disable libmdns RESOLVED FIXED -- Tom Ritter [:tjr]
1434316 [tor] Integrate x64 MinGW Build into Task Cluster RESOLVED FIXED -- Tom Ritter [:tjr]
1439365 [tor] Add a MinGW Opt Build RESOLVED FIXED -- Tom Ritter [:tjr]
1441558 [tor] MinGW debug build does not run with the Poison IO Interposer RESOLVED FIXED P1 Tom Ritter [:tjr]
1443823 [tor] undefined reference to `__imp_mozalloc_abort' error in MinGW x64 RESOLVED FIXED -- Tom Ritter [:tjr]
1448453 [tor] libvpx needs a MingGW x64 config RESOLVED FIXED -- Tom Ritter [:tjr]
1448461 [tor] libaom needs a MingGW x64 config RESOLVED FIXED -- Tom Ritter [:tjr]
1448749 [tor] undefined reference to `__imp_mozalloc_abort' error in pdfium in MinGW x64 RESOLVED FIXED -- Tom Ritter [:tjr]
1449834 [tor][gfx-noted] Do not use Skia Assembly on x64 MinGW Build RESOLVED FIXED P5 Tom Ritter [:tjr]
1461454 [tor 13543][fingerprinting][fp-triaged] Support Resist Fingerprinting in canPlayType and Media Capabilities APIs RESOLVED FIXED P2 Tom Ritter [:tjr]
1509829 [tor][fingerprinting][domsecurity-backlog1][fp-triaged] privacy.resistFingerprinting: UA header, upstream Tor 26146 RESOLVED FIXED P3 Tom Ritter [:tjr]
1515001 [tor 28875][fp-triaged] Debug build crashes with `privacy.spoof_english` set RESOLVED FIXED P1 Tom Ritter [:tjr]
1518839 [tor 26146][fingerprinting] In RFP: Only Spoof the OS in the User Agent; and do not lie in the HTTP Header RESOLVED DUPLICATE -- Tom Ritter [:tjr]
1520177 [tor] mingw-clang has broken accessibility RESOLVED FIXED P3 Tom Ritter [:tjr]
1520308 [tor] mingw-clang builds do not have ASLR RESOLVED FIXED P5 Tom Ritter [:tjr]
1520310 [tor] Sandbox broken at runtime on x86 Mingw-Clang build RESOLVED FIXED -- Tom Ritter [:tjr]
1535399 [tor] Add --enable-proxy-bypass-protection configure flag to mingw builds RESOLVED FIXED P5 Tom Ritter [:tjr]
1552706 [tor] Update MinGW to add some missing #defines required by sandbox. RESOLVED FIXED P2 Tom Ritter [:tjr]
1562045 [tor] Disable jemalloc on mingw-clang builds because of mismatched alloc/dealloc RESOLVED FIXED -- Tom Ritter [:tjr]
1576254 [tor 23719] Allow enabling WASM on Chrome content (including Extensions) but disabling it on web content RESOLVED FIXED P3 Tom Ritter [:tjr]
1599226 [tor 23719] Allow enabling Ion on Chrome content (including Extensions) but disabling it on web content RESOLVED FIXED P1 Tom Ritter [:tjr]
1607316 [fingerprinting][tor 32886] Implement separate fingerprinting resistance treatment of @media interaction features for desktop and android RESOLVED FIXED -- Tom Ritter [:tjr]
1634602 [tor 30812] exempt about:blank from privacy.resistFingerprinting (prefers-color-scheme) RESOLVED FIXED -- Tom Ritter [:tjr]
1412081 [tor 24052][sec-critical for Tor][necko-triaged][post-critsmash-triage][adv-main62+][adv-esr60.2+] (CVE-2017-16541) Proxy bypass caused by autofs on Mac, Linux RESOLVED FIXED P2 Valentin Gosu [:valentin] (he/him)
1483377 [tor 24052][sec-critical for Tor][necko-triaged][post-critsmash-triage][adv-esr60.2-] Use static array for sWhitelist instead of StaticAutoPtr RESOLVED FIXED P2 Valentin Gosu [:valentin] (he/him)
1211567 [tor][necko-active][proxy] Add support for domain socket/fifo connection to proxy. RESOLVED FIXED P2 Gary Chen [:xeonchen]
1288308 [tor][proxy][necko-active] Add support for named pipe connection to proxy. RESOLVED FIXED P2 Gary Chen [:xeonchen]
1311044 [tor][proxy][necko-active] non-existent Unix domain socket does not produce an error RESOLVED FIXED -- Gary Chen [:xeonchen]
1330467 [tor 21569][domsecurity-backlog2] When "privacy.firstparty.isolate" is true, double-key permissions to origin + firstPartyDomain RESOLVED FIXED P2 Gary Chen [:xeonchen]
1485266 [tor][gfx-noted][fingerprinting][fp-triaged] When privacy.resistFingerprinting = true, use stand-ins for native colors RESOLVED FIXED P2 Gary Chen [:xeonchen]
1486258 [tor 26611][fingerprinting][fp-triaged] Regression tests to check that new Intl APIs respect privacy.spoof_english RESOLVED FIXED P2 Gary Chen [:xeonchen]
1492587 [tor 21787][fingerprinting][fp-triaged] Ensure the date picker does not leak user locale when "privacy.spoof_english" == 2 RESOLVED FIXED P2 Gary Chen [:xeonchen]
1534339 [tor][domsecurity-active] OriginAttributes.firstPartyDomain does not support IPv6 addresses RESOLVED FIXED P2 Gary Chen [:xeonchen]
1560574 [fingerprinting][tor 30800] [necko-triaged] ftp:// on Windows can be used to leak the system time zone (Tor 30800) RESOLVED FIXED P2 Gary Chen [:xeonchen]
1388881 [tor] stylo: Respect mathml.disabled RESOLVED FIXED P3 Xidorn Quan [:xidorn] UTC+10

448 Total; 0 Open (0%); 448 Resolved (100%); 0 Verified (0%);

Retrieved from "https://wiki.allizom.org/index.php?title=Security/Tor_Uplift/Tracking&oldid=1146940"