Closed Bug 1856928 Opened 8 months ago Closed 8 months ago

Enable ECH in Firefox by default

Categories

(Core :: Security: PSM, enhancement, P1)

enhancement

Tracking

()

RESOLVED FIXED
120 Branch
Tracking Status
relnote-firefox --- 119+
firefox119 + fixed
firefox120 --- fixed

People

(Reporter: djackson, Assigned: djackson)

References

(Blocks 1 open bug)

Details

Attachments

(1 file)

ECH has been rolling out to Firefox users over recent weeks via Nimbus. We can now enable it by default.

Pushed by djackson@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/ba9c3d10164b
Enable ECH and ECH GREASE by default r=kershaw
Status: NEW → RESOLVED
Closed: 8 months ago
Resolution: --- → FIXED
Target Milestone: --- → 120 Branch

:Dennis do you want to mention this in the Fx120 release notes?

Flags: needinfo?(djackson)

I was going to let this sit for a day just to be doubly sure I didn't typo anything and then ask for a beta uplift + 119 rel notes. Is that reasonable?

Flags: needinfo?(djackson) → needinfo?(dsmith)

Sounds good, ty!

Flags: needinfo?(dsmith)

Comment on attachment 9356596 [details]
Bug 1856928 - Enable ECH and ECH GREASE by default r=kershaw,keeler

Beta/Release Uplift Approval Request

  • User impact if declined: This patch enables ECH by default in line with our announcement. ECH is already rolled out to the Firefox Release population via Nimbus.
  • Is this code covered by automated tests?: Yes
  • Has the fix been verified in Nightly?: Yes
  • Needs manual test from QE?: No
  • If yes, steps to reproduce:
  • List of other uplifts needed: None
  • Risk to taking this patch: Low
  • Why is the change risky/not risky? (and alternatives if risky):
  • String changes made/needed:
  • Is Android affected?: Yes
Attachment #9356596 - Flags: approval-mozilla-beta?

Release Note Request (optional, but appreciated)
[Why is this notable]: Enables a recently announced privacy feature (ECH) by default.
[Affects Firefox for Android]: Yes
[Suggested wording]: Encrypted Client Hello (ECH) is now available to Firefox users, delivering a more private browsing experience. ECH extends the encryption used in TLS connections to cover more of the handshake and better protect sensitive fields. Read more about the launch of ECH on Mozilla Distilled."
[Links (documentation, blog post, etc)]: https://blog.mozilla.org/en/products/firefox/encrypted-hello/

Comment on attachment 9356596 [details]
Bug 1856928 - Enable ECH and ECH GREASE by default r=kershaw,keeler

Approved for 119.0b7

Attachment #9356596 - Flags: approval-mozilla-beta? → approval-mozilla-beta+

Added to 119 beta release notes (https://www.mozilla.org/en-US/firefox/119.0beta/releasenotes/) as well as the draft release notes doc for Fx119

You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: