Closed Bug 1974184 Opened 9 months ago Closed 7 months ago

Enable AES support for encrypting logins with the SDR and migrate all existing logins

Categories

(Toolkit :: Password Manager, enhancement)

Product:
Toolkit
Component:
Password Manager
Type:
enhancement

Tracking

()

Status:
RESOLVED FIXED
Milestone:
144 Branch
Tracking Flags:
Tracking Status
relnote-firefox --- 144+
firefox144 --- fixed

People

(Reporter: maltejur, Assigned: maltejur)

References

Details

Attachments

(2 files)

Bug 1974184 - Switch default SDR mechanism to AES r?simonf
48 bytes, text/x-phabricator-request
Details | Review
Bug 1974184 - Add migration to reencrypt all logins with AES r?simonf!,#credential-management-reviewers!,#firefox-desktop-core-reviewers!
48 bytes, text/x-phabricator-request
Details | Review

Now that AES-CBC support has been implemented behind a pref in Bug 198090, we should enable it by default and also handle migration of existing entries in logins.json.

Depends on: 1974505
Attachment #9497407 - Attachment description: WIP: Bug 1974184 - Switch default SDR mechanism to AES r?simonf → Bug 1974184 - Switch default SDR mechanism to AES r?simonf
Attachment #9497408 - Attachment description: WIP: Bug 1974184 - Add migration to reencrypt all logins with AES r?simonf!,#credential-management-reviewers! → Bug 1974184 - Add migration to reencrypt all logins with AES r?simonf!,#credential-management-reviewers!,#firefox-desktop-core-reviewers!

Just to be clear, you want to switch the default mechanism but not trigger a migration?

No, we want the migration to happen at the same time. I should have been more specific about that in the summary.

Summary: Enable AES support for encrypting logins with the SDR → Enable AES support for encrypting logins with the SDR and migrate all existing logins
Blocks: 1977170
Depends on: 1977171
Blocks: 1977171
No longer depends on: 1977171
Pushed by mjurgens@mozilla.com: https://github.com/mozilla-firefox/firefox/commit/4ce194cc248e https://hg.mozilla.org/integration/autoland/rev/97f68ff0fbad Switch default SDR mechanism to AES r=joschmidt https://github.com/mozilla-firefox/firefox/commit/a3c34ac6f4cc https://hg.mozilla.org/integration/autoland/rev/85db0e86de33 Add migration to reencrypt all logins with AES r=credential-management-reviewers,firefox-desktop-core-reviewers ,joschmidt,mossop

https://hg.mozilla.org/mozilla-central/rev/97f68ff0fbad
https://hg.mozilla.org/mozilla-central/rev/85db0e86de33

Status: ASSIGNED → RESOLVED
Closed: 7 months ago
status-firefox144: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 144 Branch
See Also: → 1985684

:maltejur, could you consider nominating this for a release note? (Process info)

Flags: needinfo?(maltejur)

Release Note Request (optional, but appreciated)

Why is this notable:
Logins on desktop are now encrypted with a more modern encryption scheme, which increases security against attackers with disk access.

Affects Firefox for Android:
No

Suggested wording:
Logins in Firefox's built-in password manager are now encrypted using a more modern encryption scheme, switching from 3DES-CBC to AES-256-CBC. This change only affects the local encryption of logins on the disk; logins synced through Firefox Sync are end-to-end encrypted independently and have already been using a strong encryption scheme (AES-256-GCM) previously.

Links (documentation, blog post, etc):
n/a

Flags: needinfo?(maltejur)

Thanks, added to the Fx144 nightly release notes, please allow 30 minutes for the site to update.
Keeping the relnote-firefox flag as ? to keep it on the radar for inclusion in the final Fx144 release notes.

Regressions: 1987673
QA Whiteboard: [qa-triage-done-c145/b144]

Added to the Fx144 release notes

relnote-firefox: ?144+
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: