FF101 Audit
General
The audit begins at the commit hash where the previous audit ended. Use code_audit.sh for creating the diff and highlighting potentially problematic code. The audit is scoped to a specific language (currently C/C++, Rust, Java/Kotlin, and Javascript).
The output includes the entire patch where the new problematic code was introduced. Search for XXX MATCH XXX
to find the next potential violation.
code_audit.sh
contains the list of known problematic APIs. New usage of these functions are documented and analyzed in this audit.
https://github.com/mozilla/gecko-dev.git
Firefox:- Start:
59930a20119813ea25546eaca75dcc3bbc500039
(FIREFOX_RELEASE_101_BASE
) - End:
856b9168439ef597dbd103cd1e2940a8ad110450
(FIREFOX_RELEASE_102_BASE
)
Languages:
-
java -
cpp -
js -
rust
Nothing of interest (using code_audit.sh
)
https://github.com/mozilla/application-services.git
Application Services:- Start:
6a4737d1c043d71dfac67e270ee4afa4fb6c73b4
(v93.2.1
) - End:
0302b89604bb29adb34fdcd710feabd3dd01992d
(v93.5.0
)
Languages:
-
java -
cpp -
js -
rust
Nothing of interest (using code_audit.sh
)
https://github.com/mozilla-mobile/android-components.git
Android Components:- Start:
4eef6c129c9611b6927bd50a5a1620ede57744b1
(v101.0.0
) - End:
95fe1972b83b518a70febc76cdf3e27d5cfa390f
(v101.0.9
)
Languages:
-
java -
cpp -
js -
rust
Nothing of interest (using code_audit.sh
)
https://github.com/mozilla-mobile/fenix.git
Fenix:- Start:
02ca27633b10acbe4db08aecf9c0a12d83376fd9
(v101.0.0-beta.1
) - End:
be90007a460cc7b06008f319447011b2dce76aaa
(releases_v101.0.0
)
Languages:
-
java -
cpp -
js -
rust
Nothing of interest (using code_audit.sh
)
Ticket Review
https://bugzilla.mozilla.org/buglist.cgi?query_format=advanced&resolution=FIXED&target_milestone=101%20Branch&order=priority%2Cbug_severity&limit=0
101- https://bugzilla.mozilla.org/show_bug.cgi?id=1766401 : @ma1 tor-browser#41147 (closed)
- https://bugzilla.mozilla.org/show_bug.cgi?id=1661450 : @boklm tor-browser#41148 (closed)
- https://bugzilla.mozilla.org/show_bug.cgi?id=1762576 : @dan tor-browser#41149 (closed)
- https://bugzilla.mozilla.org/show_bug.cgi?id=1753302 : @dan tor-browser#41150 (closed)
- https://bugzilla.mozilla.org/show_bug.cgi?id=1757823 : @dan tor-browser#41151
Regression/Prior Vuln Review
Review proxy bypass bugs; check for new vectors to look for:
-
https://gitlab.torproject.org/groups/tpo/applications/-/issues?scope=all&utf8=%E2%9C%93&state=opened&label_name[]=Proxy%20Bypass
- Look for new features like these. Especially external app launch vectors
Export
-
Export Report and save to tor-browser-spec/audits