Closed Bug 1195789 Opened 5 years ago Closed 4 years ago

Fallback rc4 whitelist update for Firefox 41+

Categories

(Core :: Security: PSM, defect)

defect
Not set

Tracking

()

RESOLVED FIXED
mozilla43
Tracking Status
firefox41 + fixed
firefox42 + fixed
firefox43 + fixed

People

(Reporter: emk, Assigned: emk)

References

Details

Attachments

(1 file, 1 obsolete file)

+++ This bug was initially created as a clone of Bug #1165549 +++

[Tracking Requested - why for this release]: periodical task to maintain the whitelist

+++ This bug was initially created as a clone of Bug #1145844 +++

I would like to land this before the next merge.
No longer blocks: 1152990
No longer depends on: 1165549
Does this land on 41 and the other branches as well, or only on 41?  
Do we need to track it for 42 and 43? Thanks.
Flags: needinfo?(VYV03354)
Needed for all branches.
Flags: needinfo?(VYV03354)
Summary: Fallback whitelist update for Firefox 41 → Fallback whitelist update for Firefox 41+
Masatoshi, will you be a providing a patch for this bug? We are almost in the end game of Beta41 so I wanted to check on the status of this bug.
Flags: needinfo?(VYV03354)
Attached patch Update fallback whitelist (obsolete) — Splinter Review
* Added sites from bug 1126620 blockers and bug 1138101 blockers.
* Removed fixed sites.
* Removed the following sites that should have been removed in the previous batch:
https://www.escrowrefills.com

Keeler is on PTO. Cykesiopka, could you review this?
Assignee: nobody → VYV03354
Status: NEW → ASSIGNED
Flags: needinfo?(VYV03354)
Attachment #8655430 - Flags: review?(cykesiopka.bmo)
Comment on attachment 8655430 [details] [diff] [review]
Update fallback whitelist

Review of attachment 8655430 [details] [diff] [review]:
-----------------------------------------------------------------

r+ with the following addressed:
 - (www.)arcgames.com (66.151.133.182) has regressed and is RC4 only again
 - profiles.uthscsa.edu (129.111.230.83) still seems intolerant
 - www.ncsoft.com (64.25.35.120) is still RC4 only
Attachment #8655430 - Flags: review?(cykesiopka.bmo) → review+
https://hg.mozilla.org/mozilla-central/rev/6273b5918d6c
Status: ASSIGNED → RESOLVED
Closed: 4 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla43
Attached patch checked-in patchSplinter Review
Approval Request Comment
[Feature/regressing bug #]: N/A
[User impact if declined]: Users can not connect some sites.
[Describe test coverage new/current, TreeHerder]: tested locally and m-c
[Risks and why]: Very low. Only trivial changes to static data.
[String/UUID change made/needed]: none
Attachment #8655430 - Attachment is obsolete: true
Attachment #8655962 - Flags: approval-mozilla-beta?
Attachment #8655962 - Flags: approval-mozilla-aurora?
Summary: Fallback whitelist update for Firefox 41+ → Fallback rc4 whitelist update for Firefox 41+
Comment on attachment 8655962 [details] [diff] [review]
checked-in patch

This is something we need to do to support websites that still use RC4. Beta41+
Attachment #8655962 - Flags: approval-mozilla-beta? → approval-mozilla-beta+
Sylvestre, should this also be uplifted to Aurora? Or is this something that needs to be only uplifted during every Beta cycle? Please help.
Flags: needinfo?(sledru)
(In reply to Ritu Kothari (:ritu) from comment #10)
> Sylvestre, should this also be uplifted to Aurora? Or is this something that
> needs to be only uplifted during every Beta cycle? Please help.

I would like to keep whitelist in sync across all trees. Otherwise whitelist maintenance is almost impossible.
Comment on attachment 8655962 [details] [diff] [review]
checked-in patch

Yep, we want that in aurora too.
Flags: needinfo?(sledru)
Attachment #8655962 - Flags: approval-mozilla-aurora? → approval-mozilla-aurora+
You need to log in before you can comment on or make changes to this bug.