Closed
Bug 942728
Opened 11 years ago
Closed 11 years ago
Fix telemetry for cipher suites and crypto algorithms and key sizes
Categories
(Core :: Security: PSM, defect, P1)
Core
Security: PSM
Tracking
()
RESOLVED
FIXED
mozilla28
People
(Reporter: briansmith, Assigned: briansmith)
References
Details
(Whiteboard: [qa-])
Attachments
(2 files)
|
17.13 KB,
patch
|
keeler
:
review+
briansmith
:
checkin+
|
Details | Diff | Splinter Review |
|
15.86 KB,
patch
|
keeler
:
review+
|
Details | Diff | Splinter Review |
The telemetry added in bug 707275, that was uplifted to mozilla-aurora and mozilla-beta, isn't providing information as useful as it should be. In particular, the cipher suite telemetry is in the false start callback. However, that callback is never called because false start is disabled. It is important that we get this telemetry fixed in mozilla-beta and mozilla-aurora because this telemetry is being used to justify the changes we're making or have already made in mozilla-aurora. Note that we collect some of the cipher suite telemetry separately for full handshakes and resumed handshakes. This is because I want to explore some correlations between cipher suite and session resumption--in particular, whether we can predict whether a server will support session resumption based on the cipher suite. Also note that we only collect some information during full handshakes, because that is where that information is relevant. For example, we don't really need to collect certificate key size telemetry for resumption handshakes, because the certificate's key is not used during a session resumption.
Attachment #8337593 -
Flags: review?(dkeeler)
|
Assignee | |
Comment 1•11 years ago
|
||
David, here is the "diff -w" version of the patch, which will be easier to review because I changed the indention of quite a bit of the code in the patch.
Attachment #8337594 -
Flags: review?(dkeeler)
|
|
Assignee | |
Comment 2•11 years ago
|
||
This bug doesn't cause users any trouble, so it isn't an absolute must-have. However, having this telemetry in Firefox 26 is very important for us to make decisions for Firefox 27 and Firefox 28, so I'm adding the tracking flags. I will request the uplift as soon as the patch lands in m-i. It is a very, very safe patch, because it is just shuffling some telemetry around.
status-firefox26:
--- → affected
status-firefox27:
--- → affected
tracking-firefox26:
--- → ?
tracking-firefox27:
--- → ?
Comment on attachment 8337594 [details] [diff] [review] [NOT FOR CHECKIN] fix-telemetry-no-ws-changes.patch Review of attachment 8337594 [details] [diff] [review]: ----------------------------------------------------------------- This appears to do what you intend, as far as I can tell. It looks like the patch that landed for bug 707275 didn't actually match the patch I reviewed - what happened there?
Attachment #8337594 -
Flags: review?(dkeeler) → review+
|
||
Updated•11 years ago
|
Attachment #8337593 -
Flags: review?(dkeeler) → review+
|
||
Comment 4•11 years ago
|
||
If this can get uplift today and be in beta 9 that would be great, putting it in the last beta (and the release build) without any user facing time is more risky. Brian you can uplift to mozilla-beta and flag me for a+ based on the low risk you state in comment 2.
|
|
Assignee | |
Comment 5•11 years ago
|
||
(In reply to lsblakk@mozilla.com [:lsblakk] from comment #4) > If this can get uplift today and be in beta 9 that would be great, putting > it in the last beta (and the release build) without any user facing time is > more risky. Brian you can uplift to mozilla-beta and flag me for a+ based on > the low risk you state in comment 2. Thanks! https://hg.mozilla.org/integration/mozilla-inbound/rev/dfd3a8087c26 https://hg.mozilla.org/releases/mozilla-aurora/rev/6034648945f3 https://hg.mozilla.org/releases/mozilla-beta/rev/43cd7d6a3970
status-firefox28:
--- → fixed
Flags: needinfo?(brian)
|
|
Assignee | |
Updated•11 years ago
|
Attachment #8337593 -
Flags: checkin+
|
|
Assignee | |
Updated•11 years ago
|
Attachment #8337594 -
Attachment description: fix-telemetry-no-ws-changes.patch → [NOT FOR CHECKIN] fix-telemetry-no-ws-changes.patch
|
|
Assignee | |
Comment 6•11 years ago
|
||
(In reply to David Keeler (:keeler) from comment #3) > It looks like the patch that landed for bug 707275 didn't actually match the > patch I reviewed - what happened there? <briansmith> keeler: what was the difference between the landed patch and the reviewed patch that you were wondering about? <keeler> briansmith: the patch I reviewed had that code in HandshakeCallback, not CanFalseStartCallback <briansmith> keeler: it seems like it was a bad merge, on my part. <briansmith> I think I searched for the first place that called SSL_GetCipherSuiteInfo and didn't realize that I was merging into the wrong spot. <keeler> briansmith: ah, I see.
|
||
Updated•11 years ago
|
status-b2g-v1.2:
--- → fixed
|
||
Comment 8•11 years ago
|
||
https://hg.mozilla.org/mozilla-central/rev/dfd3a8087c26
Status: ASSIGNED → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•