Skip to content

/uBlock

Loading…

New issue

[Firefox] Extension signing #764

Open
Dimas-sc opened this Issue · 9 comments

Labels

None yet

Milestone

No milestone

Assignee

No one assigned

7 participants

@Dimas-sc @hotdogman @gorhill @SammysHP @xeoron @SohKa @lewisje
@Dimas-sc
Dimas-sc commented

https://blog.mozilla.org/addons/2015/02/10/extension-signing-safer-experience/

@hotdogman
hotdogman commented

#747

@gorhill
gorhill commented

@hotdogman

Extensions that are submitted for hosting on AMO and pass review will be automatically signed.

uBlock will be on AMO.

@hotdogman
hotdogman commented

uBlock will be on AMO.

Soon™

@SammysHP
SammysHP commented

The main issue is that you need a developer build of Firefox to install the add-on without sending it to Mozilla first. This is a huge drawback because I compile it myself with some small patches, but don't want to use a special build of Firefox. And it is annoying to compile the xpi first, then upload it via a web interface, wait, download it again etc.

I hope they'll implement some sort of local signing with own certificate that can be added to your Firefox installation.

@xeoron
xeoron commented

There might be a way to disable the signing check in about:about, once FF releases this new feature.

With that said, even if uBlock only submits the even or odd number version updates for Mozilla to sign, it should not be that hard for them to do. The bigger question is: why is it not in the AMO listing already?

@ghost
ghost commented

The bigger question is: why is it not in the AMO listing already?

@xeoron

gorhill/uBlock#550 (comment)

tl;dr; Some anon uploaded the file to AMO, blocking the file from subsequent upload, setting everything back by a few weeks.

@ghost
ghost commented

@xeoron commented on 11 févr. 2015 17:49 UTC+1:

There might be a way to disable the signing check in about:about, once FF releases this new feature.

Are we even sure Mozilla will release this new extension signing feature, or will release it without any amendments? Looks like many developers as well as users have already started complaining, and are doing so with arguments that could defeat a Mozilla's stubbornness should the company be tightly focused on their aim.

@SohKa
SohKa commented

There might be a way to disable the signing check in about:about, once FF releases this new feature.

Right now, this is not their intention.

The complete sentence, from the article (https://blog.mozilla.org/addons/2015/02/10/extension-signing-safer-experience/) :

After the transition period, it will not be possible to install unsigned extensions in Release or Beta versions of Firefox. There won’t be any preferences or command line options to disable this.

@lewisje
lewisje commented

It looks like Deathamns is the official steward of the Firefox build, considering this link from this project's README: https://addons.mozilla.org/en-US/firefox/addon/ublock/

@5t3f4n 5t3f4n referenced this issue
Closed

Further development for Firefox #1287

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Something went wrong with that request. Please try again.