Skip to content
This repository was archived by the owner on Nov 6, 2023. It is now read-only.

Remove Cloudflare __cfduid cookie configs #20071

Merged
zoracon merged 2 commits into from
Jun 1, 2021
Merged

Remove Cloudflare __cfduid cookie configs #20071

zoracon merged 2 commits into from
Jun 1, 2021

Conversation

@migueldemoura
Copy link
Contributor

@migueldemoura migueldemoura commented May 10, 2021

This cookie is no longer set for any requests proxied via Cloudflare and
thus the configs that were added for it can be removed.

Further context from Cloudflare's blog:
https://blog.cloudflare.com/deprecating-cfduid-cookie/

Not sure if the name attribute of <securecookie> always has to be a regex, but if not then you could simplify some of the expressions down to a straight strncmp.

Type of change

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Refactoring existing code
  • New Ruleset
  • Existing Ruleset

@migueldemoura
Remove Cloudflare __cfduid cookie configs
a162b61 
This cookie is no longer set for any requests proxied via Cloudflare and
thus the configs that were added for it can be removed.

Further context from Cloudflare's blog:
https://blog.cloudflare.com/deprecating-cfduid-cookie/
@migueldemoura
Copy link
Contributor Author

migueldemoura commented May 10, 2021

Getting this in the build that failed:

ERROR src/chrome/content/rules/Placehold.it.xml: Fetch error: http://placehold.it/ => https://placehold.it/: (60, 'SSL certificate problem: certificate has expired')
ERROR src/chrome/content/rules/Placehold.it.xml: Fetch error: http://www.placehold.it/ => https://www.placehold.it/: (60, 'SSL certificate problem: certificate has expired')

This is unrelated to the PR, but the certificate they are serving at time of posting is indeed expired, should I also change the https rule?

@zoracon
Copy link
Contributor

zoracon commented May 10, 2021

@migueldemoura Yes, go ahead and remove those domains from the rule. The PR should build fine afterwards.

@migueldemoura
Delete obsolete placehold.it rule
c80c775 
The hosts related to placehold.it are no longer serving a valid
certificate so the https rule for them no longer makes sense.
@migueldemoura
Copy link
Contributor Author

migueldemoura commented May 13, 2021
edited
Loading

Thanks @zoracon, I've removed the placehold.it config file.
Edit: one of the builds failed but it's not clear to me why that specific error would happen as a result of this change. Any ideas?

@zoracon zoracon merged commit 7a6f804 into EFForg:master Jun 1, 2021
@migueldemoura migueldemoura deleted the remove-cfduid-cookie branch June 1, 2021 18:16
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@zoracon zoracon zoracon approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@migueldemoura @zoracon