HTTPS-Only Mode and network.trr.mode=3 conflict
Categories
(Core :: Networking: HTTP, defect, P2)
Tracking
()
Tracking | Status | |
---|---|---|
firefox85 | --- | fixed |
People
(Reporter: lbotka2, Assigned: kershaw)
References
Details
(Whiteboard: [necko-triaged])
Attachments
(1 file)
User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:83.0) Gecko/20100101 Firefox/83.0
Steps to reproduce:
connect http://kb.mozillazine.org and http://uu.canna.to/
My 2 Firefox instances work fine (v 83 and v 84.0b3 beta), 2 other instances (v 83 for testing, v 85.0a1 Nightly) produce this error (not found).
I found that network.trr.mode was set differently, and network.trr.mode=3 setting causes this issue, set it to =0.
Then I got the proper “Secure Connection Not Available” error,
clicked Continue to HTTP Site, and set HTTPS_ONLY to OFF on the Lock icon, re-set network.trr.mode=3, and Firefox works fine, opens the HTTP site.
Actual results:
error message:
Hmm. We’re having trouble finding that site. We can’t connect to the server at ....
There is no Lock icon, I can't disable HTTPS-Only for these sites.
Expected results:
error message:
“Secure Connection Not Available”,
"Continue to HTTP Site" possibility
Reporter | ||
Comment 1•4 years ago
|
||
I have to correct, just the opposite
v 83 for testing, v 85.0a1 Nightly work fine, v 83 and v 84.0b3 beta produce this error
Comment 2•4 years ago
|
||
Setting a component for this issue in order to get the dev team involved.
If you feel it's an incorrect one please feel free to change it to a more appropriate one.
Assignee | ||
Comment 3•4 years ago
|
||
I happened to reproduce this with the latest nightly, so this problem is actually not fixed.
Here is the details of this problem.
- We tried to connect to
kb.mozillazine.org:443
. This failed because server doesn't support 443. - Since trr is enabled, we retry without trr at here.
- The trr mode is 3, so
AsyncResolveNative
immediately returnsNS_ERROR_UNKNOWN_HOST
, so we can't see the expected error page.
Assignee | ||
Comment 4•4 years ago
|
||
Updated•4 years ago
|
Updated•4 years ago
|
Pushed by kjang@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/9f21beac8249 Don't try to resolve the host name again when trr mode is trr only r=necko-reviewers,dragana
Comment 6•3 years ago
|
||
Backed out for perma failures.
Log: https://treeherder.mozilla.org/logviewer?job_id=323140401&repo=autoland&lineNumber=2934
Backout: https://hg.mozilla.org/integration/autoland/rev/e7b5663f5766eb49ea946b20a2e8e5fff6e3d2cd
Updated•3 years ago
|
Updated•3 years ago
|
Pushed by kjang@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/df97246563c4 Don't retry with native DNS if it's trr only mode r=necko-reviewers,dragana,valentin
Assignee | ||
Updated•3 years ago
|
Comment 8•3 years ago
|
||
bugherder |
Description
•