As discussed on matrix, we were too late in the cycle for esr91.7. This targets esr91.8.

This is a cumulative patch for parts of bug 1737701, bug 1739298,
bug 1737701, bug 1739298, bug 1739654, bug 1741525, bug 1738550,
bug 1741115, bug 1742032, bug 1747514.

This is a cumulative patch for the rlbox_wasm2c_sandbox parts of
bug 1713735, bug 1721765, bug 1723447, bug 1726476, bug 1726474,
bug 1737700, bug 1739298, bug 1739762, bug 1742032, bug 1730394,
bug 1744460.

This is a cumulative patch for the wasm2c parts of bug 1713735,
bug 1720817, bug 1721765, bug 1723447, bug 1724133, bug 1726476,
bug 1726474, bug 1727266, bug 1729232, bug 1734421, bug 1737700,
bug 1737717, bug 1736171, bug 1739762, bug 1740187, bug 1730394.

This is an uplift of bug 1720822.

This is a patch cumulating bug 1722439, bug 1738163 and parts of bug 1719229.

This is a cumulative patch for parts of bug 1722438, bug 1724522,
bug 1726100, bug 1726474, bug 1722437, bug 1726100, bug 1726101,
bug 1727266, bug 1727678, bug 1733076.

This is a cumulative patch for parts of bug 1713735, bug 1721765,
bug 1723623, bug 1723878, bug 1720828, bug 1721968, bug 1725564,
bug 1726100, bug 1726474, bug 1737731, bug 1647542, bug 1731976.

This is a cumulative patch for parts of bug 1725521, bug 1726476,
bug 1726474, bug 1723107, bug 1735455, bug 1572618, bug 1737733,
bug 1729411, bug 1737939.

This is a cumulative patch for parts of bug 1722127, bug 1728934,
bug 1735935, bug 1737703, bug 1737718, bug 1739669, bug 1740353,
bug 1737740, bug 1740399, bug 1739761, bug 1739298, bug 1740187,
bug 1738550, bug 1748408.

This is a cumulative patch for parts of bug 1722437, bug 1726100,
bug 1726101, bug 1726474, bug 1727266, bug 1727678, bug 1733686,
bug 1737911, bug 1737707, bug 1737704, bug 1726114.

This is a cumulative patch for parts of bug 1740624, bug 1688452,
bug 1741995, bug 1742914, bug 1743007, bug 1743023, bug 1747514,
bug 1732201, bug 1747925, bug 1745239, bug 1746996, bug 1743324,
bug 1744460, bug 1747586, bug 1742916, bug 1754147, bug 1754154.

This is an uplift of bug 1732824.

This is an uplift of bug 1724522.

Ryan, how do we go about this?

My understanding is that the main need driving this work was a desire to harden TB before the next ESR train (102). How possible is it for these changes to be left off for Firefox builds while available for TB to make use of?

We're actually interested in enabling them in Firefox.

I'm very uncomfortable backporting all this work to ESR91. While I appreciate the benefits we get from sandboxing these components, this seems like a very risky change to take on an ESR branch, especially this far into its lifecycle.

The RLBox work has only been on Release for a couple cycles now and we had a number of quality issues with it after landing. Furthermore, this goes far beyond the scope of the types of quality and security fixes we'd typically take on an ESR branch. Also, we have limited prerelease testing of ESR builds without Beta/Nightly channels and limited ability for QA to test in more typical enterprise-like environments where things are at the highest risk of breakage.

With the ESR102 train being less than 4 months away from shipping its first releases (with a long overlap with ESR91 to allow for enterprise users to test for compatibility issues in the field before EOL), I think this is safer to let ride the next train.

Bobby, do you want to weigh in?

I don't think this is critical to take for Firefox. I do think the risk is lower than it may appear: the affected modules are pretty isolated and infrequently modified, so assuming glandium methodically gathered all the changesets that have been made to these areas, I'm less concerned than I would be with a large change to a higher-traffic area. That said, I will defer to relman's recommendation here.

esr91 is not supported anymore.