Closed Bug 1719271 Opened 3 years ago Closed 3 months ago

Enable HTTPS-First Mode in Nightly

Categories

(Core :: DOM: Security, task, P3)

Product:
Core
Component:
DOM: Security
Type:
task

Tracking

()

Status:
RESOLVED FIXED
Milestone:
129 Branch
Tracking Flags:
Tracking Status
relnote-firefox --- nightly+
firefox129 --- fixed

People

(Reporter: ckerschb, Assigned: maltejur)

References

(Blocks 1 open bug)

Details

(Whiteboard: [domsecurity-active])

Attachments

(1 file)

Bug 1719271 - Enable HTTPS-First by default in Nightly r?freddyb!
48 bytes, text/x-phabricator-request
Details | Review

Currently we are facing something like 700 test failures with https-first mode enabled. We could annotate those tests in a somehow semi-automated fashion and then enable https-first in Nightly.

Depends on: 1719272
Assignee: ckerschb → nobody
Status: ASSIGNED → NEW
Priority: P2 → P3
Whiteboard: [domsecurity-active] → [domsecurity-backlog1]
Depends on: 1884171
Depends on: 1835983
Depends on: 1885313
Depends on: 1885383
Depends on: 1885987
Depends on: 1886036
Depends on: 1888102
Depends on: 1888117
Depends on: 1888359
Depends on: 1888383
Depends on: 1888391
Depends on: 1888394
Depends on: 1891684
Depends on: 1891694
Depends on: 1891717
Depends on: 1894205
Depends on: 1894662
Depends on: 1897127
Depends on: 1897136
Depends on: 1897148
Depends on: 1897075
Whiteboard: [domsecurity-backlog1] → [domsecurity-active]
No longer depends on: 1885383
Assignee: nobody → mjurgens
Status: NEW → ASSIGNED
No longer depends on: 1897136
No longer depends on: 1897075
Pushed by mjurgens@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/cc4918cd9802 Enable HTTPS-First by default in Nightly r=freddyb,ckerschb

Backed out (bug 1835983, bug 1719271) for causing multiple failures.

To see all the failures that were caused by this and to get a better overview on how this affected the tests, please visit this link where I made a filter that shows all the failures classified with fix by commit after this backout.
Thank you!

Flags: needinfo?(mjurgens)
Flags: needinfo?(mjurgens)
Pushed by mjurgens@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/23d719860ea7 Enable HTTPS-First by default in Nightly r=freddyb,ckerschb

Backed out for causing mochitests failures.

Also these mochitests failures.

L.E. There are also these mochitests ( Failure Log ) and these build bustages ( Failure Log ).

Flags: needinfo?(mjurgens)
Flags: needinfo?(mjurgens)
Pushed by mjurgens@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/2f1047347853 Enable HTTPS-First by default in Nightly r=freddyb,ckerschb

Backed out for causing mochitests failures in browser_crossGroupOpener.js.

Please also check this failure.

Flags: needinfo?(mjurgens)
Flags: needinfo?(mjurgens)
Pushed by mjurgens@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/630819c98ef6 Enable HTTPS-First by default in Nightly r=freddyb,ckerschb

https://hg.mozilla.org/mozilla-central/rev/630819c98ef6

Status: ASSIGNED → RESOLVED
Closed: 3 months ago
status-firefox129: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 129 Branch

:mjurgens could you consider nominating this for a release note? (Process info)
We could include it in the nightly release notes.

Flags: needinfo?(mjurgens)

Release Note Request (optional, but appreciated)

[Why is this notable]:
In Nightly, HTTPS-First will upgrade all top-level requests (like visiting a url in the address bar or clicking a link) to use HTTPS, if the site supports HTTPS. This could confuse users who do not know about that behavior.

[Suggested wording]:
When loading a page, Nightly will now automatically try to use a secure HTTPS connection whenever possible. This behavior is known as "HTTPS-First" or "HTTPS Upgrades", and has already been the default in Firefox's private browsing mode for quite some time. Here is a blog post from back when we introduced this feature in private browsing that goes into more detail.

[Links (documentation, blog post, etc)]:
Old blog post about enabling HTTPS-First in PBM: https://blog.mozilla.org/security/2021/08/10/firefox-91-introduces-https-by-default-in-private-browsing/
E-Mail about enabling HTTPS-First in Nightly: https://groups.google.com/a/mozilla.org/g/dev-platform/c/yt6Kc8cAHag/m/90N-MtFrAAAJ

Flags: needinfo?(mjurgens)

Also:

[Affects Firefox for Android]:
Yes

(Bugzilla seems to eat away this part when its posted as normal text, very strange)

relnote-firefox: --- → ?

Thanks, added to the Fx129 nightly release notes, please allow 30 minutes for the site to update.

relnote-firefox: ?nightly+
Summary: Consider enabling HTTPS-First Mode in Nightly → Enable HTTPS-First Mode in Nightly
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: