Closed Bug 1251856 Opened 4 years ago Closed 4 years ago

U2F-related test_interfaces.html is going to permafail when Gecko 47 merges to Beta


(Core :: DOM: Security, defect, major)

Not set



Tracking Status
firefox45 --- unaffected
firefox46 --- unaffected
firefox47 - fixed


(Reporter: RyanVM, Assigned: jcj)




(1 file)

[Tracking Requested - why for this release]: Merge day permafail.

Looks like test_interfaces.html needs to be updated.

TEST-UNEXPECTED-FAIL | dom/tests/mochitest/general/test_interfaces.html | If this is failing: DANGER, are you sure you want to expose the new interface U2F to all webpages as a property on the window (XBL: false)? Do not make a change to this file without a review from a DOM peer for that specific change!!! (or a JS peer for changes to ecmaGlobals)
Flags: needinfo?(jjones)
Ryan: I guess this is what Baku was referring to in the last line of about build-specific #ifdefs, though I'm still unclear as to the correct resolution.

The semantics we want is for window.u2f to be opt-in via pref on all builds, for the foreseeable future. What do I need to do to make that true?
Flags: needinfo?(jjones)
* Pref off the "U2F" interface to blank out the integer constants, and
* Disable U2F in all releases.

Review commit:
See other reviews:
Attachment #8724786 - Flags: review?(amarchesini)
Comment on attachment 8724786 [details]
MozReview Request: Bug 1251856 - Disable U2F in all releases (fix for 1231681) r?baku

::: dom/webidl/U2F.webidl:71
(Diff revision 1)
> +[Pref="security.webauth.u2f"]

is this pref set to false somewhere?
Attachment #8724786 - Flags: review?(amarchesini) → review+
Thanks for the review, baku!

> is this pref set to false somewhere?

Yes, in `netwerk/base/security-prefs.js` it's set false. :)
Closed: 4 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla47
Don't feel the need to track this since it's fixed.
You need to log in before you can comment on or make changes to this bug.