Opened 2 years ago

Last modified 13 months ago

#23805 new defect

Disable dom.enable_performance_navigation_timing in ESR 60

Reported by: tom Owned by: tbb-team
Priority: High Milestone:
Component: Applications/Tor Browser Version:
Severity: Normal Keywords: ff60-esr
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

See https://groups.google.com/forum/#!topic/mozilla.dev.platform/1OZrP1hR_SE

It might be disabled by dom.enable_performance though.

Child Tickets

Change History (6)

comment:1 Changed 2 years ago by gk

Keywords: ff59-esr added

comment:2 Changed 20 months ago by gk

Keywords: ff60-esr added; ff59-esr removed

Firefox 60 is the new ESR.

comment:3 Changed 20 months ago by cypherpunks

Summary: Disable dom.enable_performance_navigation_timing in ESR 59Disable dom.enable_performance_navigation_timing in ESR 60

comment:4 Changed 16 months ago by mcs

I have not done any tests, but my reading of the code says that dom.enable_performance does not disable everything. Therefore, we should set dom.enable_performance_navigation_timing to false.

The same goes for dom.enable_performance_observer, although we may want a separate ticket for that one.

comment:5 Changed 16 months ago by mcs

There is also performance.timeOrigin. See:

https://developer.mozilla.org/en-US/docs/Web/API/Performance/timeOrigin

Based on reading the code, it appears to be rounded for reduced precision when privacy.resistFingerprinting = true. We will need to determine if that is sufficient and make sure the system time zone offset is not leaked by this feature.

comment:6 Changed 13 months ago by gk

Priority: MediumHigh
Note: See TracTickets for help on using tickets.