Closed Bug 1929368 Opened 1 year ago Closed 1 year ago

Disable HTTP/3 only when a third party root certificate is used in connection

Categories

(Core :: Networking: HTTP, task, P2)

Product:
Core
Component:
Networking: HTTP
Type:
task

Tracking

()

Status:
RESOLVED FIXED
Milestone:
134 Branch
Tracking Flags:
Tracking Status
firefox133 --- fixed
firefox134 --- fixed

People

(Reporter: kershaw, Assigned: kershaw)

References

Details

(Whiteboard: [necko-triaged][necko-priority-queue])

Attachments

(3 files, 1 obsolete file)

Bug 1929368 - Part1: Revert changes done in bug 1925014, r=#necko
48 bytes, text/x-phabricator-request
Details | Review
Bug 1929368 - Part2: Disable HTTP/3 when third party roots is found in mSucceededCertChain, r=#necko
48 bytes, text/x-phabricator-request
Details | Review
Bug 1929368 - Squashed patch for beta uplift,
48 bytes, text/x-phabricator-request
phab-bot
: approval-mozilla-beta+
Details | Review

See bug 1929093 #comment 0.
This bug is used to track the implementation work.

Attachment #9435554 - Attachment is obsolete: true
Attachment #9435555 - Attachment description: Bug 1929368 - Part3: Disable HTTP/3 when third party roots is found in mSucceededCertChain, r=#necko → Bug 1929368 - Part2: Disable HTTP/3 when third party roots is found in mSucceededCertChain, r=#necko
Pushed by kjang@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/102321f3b719 Part1: Revert changes done in bug 1925014, r=necko-reviewers,valentin https://hg.mozilla.org/integration/autoland/rev/fb0d2153de04 Part2: Disable HTTP/3 when third party roots is found in mSucceededCertChain, r=necko-reviewers,valentin

https://hg.mozilla.org/mozilla-central/rev/102321f3b719
https://hg.mozilla.org/mozilla-central/rev/fb0d2153de04

Status: NEW → RESOLVED
Closed: 1 year ago
status-firefox134: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 134 Branch
Attachment #9436733 - Flags: approval-mozilla-beta?

beta Uplift Approval Request

  • User impact if declined: HTTP/3 connections could be affected by Avast software.
  • Code covered by automated testing: yes
  • Fix verified in Nightly: yes
  • Needs manual QE test: no
  • Steps to reproduce for manual QE testing: N/A
  • Risk associated with taking this patch: Low
  • Explanation of risk level: This patch is straightforward and is verified.
  • String changes made/needed: N/A
  • Is Android affected?: yes
Attachment #9436733 - Flags: approval-mozilla-beta? → approval-mozilla-beta+
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: