Enable HTTPS-First Mode in Nightly
Categories
(Core :: DOM: Security, task, P3)
Tracking
()
| Tracking | Status | |
|---|---|---|
| firefox129 | --- | fixed |
People
(Reporter: ckerschb, Assigned: maltejur)
References
(Blocks 1 open bug)
Details
(Whiteboard: [domsecurity-active])
Attachments
(1 file)
Currently we are facing something like 700 test failures with https-first mode enabled. We could annotate those tests in a somehow semi-automated fashion and then enable https-first in Nightly.
|
Reporter | |
Updated•3 years ago
|
|
Assignee | |
Updated•6 months ago
|
|
|
Assignee | |
Comment 1•5 months ago
|
||
|
||
Updated•5 months ago
|
|
||
Comment 3•5 months ago
•
|
||
Backed out (bug 1835983, bug 1719271) for causing multiple failures.
-
Failure log for bc failures on browser_contextmenu_share_macosx.js
-
Failure log for bc failures on browser_autocomplete_enter_race.js
To see all the failures that were caused by this and to get a better overview on how this affected the tests, please visit this link where I made a filter that shows all the failures classified with fix by commit after this backout.
Thank you!
|
|
Assignee | |
Updated•5 months ago
|
|
||
Comment 5•5 months ago
•
|
||
Backed out for causing mochitests failures.
- Backout link
- Push with failures
- Failure Log
- Failure line: TEST-UNEXPECTED-FAIL | toolkit/components/extensions/test/mochitest/test_ext_webrequest_worker.html | Should be expecting a request for
Also these mochitests failures.
L.E. There are also these mochitests ( Failure Log ) and these build bustages ( Failure Log ).
|
|
Assignee | |
Updated•5 months ago
|
|
|
||
Comment 7•5 months ago
•
|
||
Backed out for causing mochitests failures in browser_crossGroupOpener.js.
- Backout link
- Push with failures
- Failure Log
- Failure line: TEST-UNEXPECTED-FAIL | docshell/test/browser/browser_crossGroupOpener.js | Test timed out -
Please also check this failure.
|
|
Assignee | |
Updated•5 months ago
|
|
||
Comment 9•5 months ago
|
||
| bugherder | ||
|
||
Comment 10•5 months ago
|
||
:mjurgens could you consider nominating this for a release note? (Process info)
We could include it in the nightly release notes.
|
|
Assignee | |
Comment 11•5 months ago
|
||
Release Note Request (optional, but appreciated)
[Why is this notable]:
In Nightly, HTTPS-First will upgrade all top-level requests (like visiting a url in the address bar or clicking a link) to use HTTPS, if the site supports HTTPS. This could confuse users who do not know about that behavior.
[Suggested wording]:
When loading a page, Nightly will now automatically try to use a secure HTTPS connection whenever possible. This behavior is known as "HTTPS-First" or "HTTPS Upgrades", and has already been the default in Firefox's private browsing mode for quite some time. Here is a blog post from back when we introduced this feature in private browsing that goes into more detail.
[Links (documentation, blog post, etc)]:
Old blog post about enabling HTTPS-First in PBM: https://blog.mozilla.org/security/2021/08/10/firefox-91-introduces-https-by-default-in-private-browsing/
E-Mail about enabling HTTPS-First in Nightly: https://groups.google.com/a/mozilla.org/g/dev-platform/c/yt6Kc8cAHag/m/90N-MtFrAAAJ
|
|
Assignee | |
Comment 12•5 months ago
|
||
Also:
[Affects Firefox for Android]:
Yes
(Bugzilla seems to eat away this part when its posted as normal text, very strange)
|
|
Assignee | |
Updated•5 months ago
|
|
|
||
Comment 13•5 months ago
|
||
Thanks, added to the Fx129 nightly release notes, please allow 30 minutes for the site to update.
|
||
Updated•2 months ago
|
|
||
Comment 14•13 days ago
|
||
Removing from the Nightly release notes as this has been included for more than 3 cycles now.
Description
•